Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/3133382e39392e3137322e302f32322d3232203d3e203532333238.roa
File: 3133382e39392e3137322e302f32322d3232203d3e203532333238.roa (raw, json)
Hash identifier: tRm+KX0FrzG0c/V9c7SJXC2K22wAoyLpEs36SeskfNs=
Subject key identifier: F0:50:BB:72:66:7E:10:EC:6C:EB:68:A9:4B:B3:E3:68:5A:F5:8C:82
Certificate issuer: /CN=D3BEE2BC3DBF41E55940899128EEA1A38DD0778F
Certificate serial: 5A8B30DE80B119C9154C5DD95754559E8F4CCD53
Authority key identifier: D3:BE:E2:BC:3D:BF:41:E5:59:40:89:91:28:EE:A1:A3:8D:D0:77:8F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3BEE2BC3DBF41E55940899128EEA1A38DD0778F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/3133382e39392e3137322e302f32322d3232203d3e203532333238.roa
Signing time: Tue 04 Feb 2025 18:16:22 +0000
ROA not before: Tue 04 Feb 2025 18:11:22 +0000
ROA not after: Tue 03 Feb 2026 18:16:22 +0000
asID: 52328
IP address blocks: 138.99.172.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:8b:30:de:80:b1:19:c9:15:4c:5d:d9:57:54:55:9e:8f:4c:cd:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D3BEE2BC3DBF41E55940899128EEA1A38DD0778F
Validity
Not Before: Feb 4 18:11:22 2025 GMT
Not After : Feb 3 18:16:22 2026 GMT
Subject: CN=F050BB72667E10EC6CEB68A94BB3E3685AF58C82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:70:e8:c1:d2:81:97:fa:bf:37:8f:04:9f:9a:
96:20:f0:6b:66:a0:64:bd:87:e1:e4:e3:6b:c6:77:
04:0d:b7:a0:31:7a:88:77:bd:5f:12:63:11:cd:79:
aa:fa:07:f8:05:60:16:b4:24:f1:b0:fe:dd:80:16:
a2:47:fd:ba:b6:a7:c9:cf:51:be:e0:71:c7:89:07:
ea:04:d3:31:8b:d4:15:85:f5:45:b5:9f:11:94:da:
37:d4:5b:f4:2b:2c:10:c6:c4:c6:dc:b3:24:c4:3f:
a8:dd:40:77:ed:30:aa:cd:be:be:21:b9:27:f5:b6:
0b:20:35:91:48:69:06:bb:21:56:a5:52:27:42:4b:
5b:ab:bb:35:2a:30:38:69:d0:47:46:24:d3:e3:fa:
fb:42:e6:34:8e:a7:8b:3b:00:61:18:30:40:0c:1a:
3e:3c:43:95:4b:10:76:4a:c8:06:58:88:b6:21:6f:
a7:fe:a5:8c:6f:da:0e:4e:36:eb:66:1d:9c:02:b9:
f9:e0:c0:0d:e9:cb:76:3f:67:2e:58:84:f5:14:29:
d7:ec:c1:f9:7f:24:34:8c:01:84:48:d8:59:93:1a:
67:7a:29:8f:36:2f:21:18:65:ab:b5:10:7b:2f:2a:
4d:87:b4:90:64:c6:1c:28:bb:af:4f:2c:d6:71:b0:
12:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:50:BB:72:66:7E:10:EC:6C:EB:68:A9:4B:B3:E3:68:5A:F5:8C:82
X509v3 Authority Key Identifier:
keyid:D3:BE:E2:BC:3D:BF:41:E5:59:40:89:91:28:EE:A1:A3:8D:D0:77:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/D3BEE2BC3DBF41E55940899128EEA1A38DD0778F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3BEE2BC3DBF41E55940899128EEA1A38DD0778F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/3133382e39392e3137322e302f32322d3232203d3e203532333238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.99.172.0/22
Signature Algorithm: sha256WithRSAEncryption
07:21:e0:09:bb:a9:53:72:d1:94:d1:ce:98:cc:b5:59:13:ef:
8d:8e:6b:ee:ab:63:95:e8:c5:c3:05:28:e5:2b:71:56:83:d2:
67:e8:07:dc:44:61:9c:9e:b3:d0:f3:53:d8:b5:bd:68:5b:41:
d8:82:4a:d0:ee:86:c6:f5:15:e8:63:3f:91:ff:74:c5:95:ec:
38:5c:b4:2a:51:2f:18:a7:d4:5c:2c:74:db:cc:80:54:1e:f0:
86:e1:fc:65:b6:38:54:a4:d6:11:b9:4e:24:73:ad:5b:45:79:
6b:63:6b:65:9a:dd:a3:9e:c1:01:a4:5e:6e:9b:73:59:bf:40:
d8:f3:47:d4:eb:b4:52:14:11:22:77:80:a7:64:ae:e4:9c:4c:
42:5e:cc:16:a7:c8:97:93:90:dc:3a:fe:1f:19:b3:18:7c:54:
b0:b9:a5:96:9d:fa:c6:67:28:a0:48:02:ec:1b:f5:df:10:ea:
ac:0b:2f:60:1c:17:7c:c6:29:2a:ac:58:2c:e0:3c:15:ce:95:
a4:16:20:05:78:e8:e8:e0:bc:4f:34:43:92:3c:85:47:7a:6f:
31:49:a8:7e:95:3e:13:99:8c:98:29:8f:76:88:0f:5f:5f:ba:
72:9d:86:59:2d:f5:52:77:ff:e5:db:fa:8e:05:56:8f:9c:9b:
17:05:c9:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:10:48 2025 by rpki-client