Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/3133382e39392e3137322e302f32332d3233203d3e203532333238.roa
File: 3133382e39392e3137322e302f32332d3233203d3e203532333238.roa (raw, json)
Hash identifier: gRtA4ePvMhd+xQ3Wid3UhrpU4zIUwI6xgHvSJJRcS/I=
Subject key identifier: B0:4F:54:9C:43:E0:42:9F:78:FF:7E:66:80:A1:91:78:CC:F6:5A:20
Certificate issuer: /CN=D3BEE2BC3DBF41E55940899128EEA1A38DD0778F
Certificate serial: 41A2BBEB66F203D47B17FA0025F4FC641AB3B22A
Authority key identifier: D3:BE:E2:BC:3D:BF:41:E5:59:40:89:91:28:EE:A1:A3:8D:D0:77:8F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3BEE2BC3DBF41E55940899128EEA1A38DD0778F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/3133382e39392e3137322e302f32332d3233203d3e203532333238.roa
Signing time: Tue 04 Feb 2025 18:16:32 +0000
ROA not before: Tue 04 Feb 2025 18:11:32 +0000
ROA not after: Tue 03 Feb 2026 18:16:32 +0000
asID: 52328
IP address blocks: 138.99.172.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:a2:bb:eb:66:f2:03:d4:7b:17:fa:00:25:f4:fc:64:1a:b3:b2:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D3BEE2BC3DBF41E55940899128EEA1A38DD0778F
Validity
Not Before: Feb 4 18:11:32 2025 GMT
Not After : Feb 3 18:16:32 2026 GMT
Subject: CN=B04F549C43E0429F78FF7E6680A19178CCF65A20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:16:1e:86:eb:42:4d:1c:f0:0b:f7:0f:f4:83:
7f:f0:d2:70:84:d9:d6:0b:d9:b5:64:60:d6:9a:29:
f0:8a:1a:da:a6:fd:dc:ae:8c:13:0d:84:ec:08:6d:
cd:90:54:f2:40:a4:4c:70:c1:47:ef:56:2f:16:70:
8a:ab:71:1b:63:9c:cf:14:49:a5:88:2c:da:ee:bc:
64:64:ba:6e:43:c1:f3:3a:4d:f9:12:26:cb:d3:17:
8b:87:32:ff:08:53:a9:19:9a:a5:58:65:93:be:ac:
21:cd:f0:48:1a:bd:1f:cc:37:52:45:c1:2b:ec:16:
42:1e:2b:5c:5d:07:60:a9:9b:ee:8a:2d:8e:0d:94:
c6:ae:dc:c3:82:e7:5b:2b:28:ee:0b:90:cf:c6:38:
7e:74:c8:50:07:50:f6:cc:5e:65:82:a8:02:a9:30:
b3:28:58:61:79:ce:e0:d8:4e:72:61:78:2e:fc:d7:
6d:24:eb:e8:1a:8c:77:be:91:58:41:23:71:35:d0:
a6:d2:4e:82:71:c7:bd:6c:c8:63:a5:b6:37:53:5f:
04:6f:9e:86:57:c2:be:5c:d3:3e:b8:a8:50:1b:f5:
7b:b1:13:9d:9f:30:4b:01:b8:fe:ad:bc:5f:6e:1c:
74:b9:75:76:a2:17:59:27:0a:82:d4:a1:03:7b:38:
57:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:4F:54:9C:43:E0:42:9F:78:FF:7E:66:80:A1:91:78:CC:F6:5A:20
X509v3 Authority Key Identifier:
keyid:D3:BE:E2:BC:3D:BF:41:E5:59:40:89:91:28:EE:A1:A3:8D:D0:77:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/D3BEE2BC3DBF41E55940899128EEA1A38DD0778F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3BEE2BC3DBF41E55940899128EEA1A38DD0778F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/3133382e39392e3137322e302f32332d3233203d3e203532333238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.99.172.0/23
Signature Algorithm: sha256WithRSAEncryption
72:11:22:fc:47:5d:11:b3:fc:e6:a7:47:82:73:42:48:a6:1d:
cb:a8:6d:0c:69:7d:1d:59:52:41:43:b9:ed:64:6b:4d:03:a9:
06:14:d9:c9:cc:a8:8d:3e:91:e3:8b:d6:99:fd:61:da:05:c1:
34:e9:1d:89:aa:cf:d5:26:8b:29:34:f1:ce:02:6b:2e:49:0c:
09:5f:9c:c5:b0:8d:a3:6d:db:1b:98:4e:23:83:3b:34:5b:30:
3d:32:55:46:d0:22:2d:2e:06:0a:01:43:7d:9e:8e:48:e5:02:
5d:45:bf:c8:bf:d4:56:dd:5e:99:29:e1:2f:cc:d0:e0:87:fe:
65:5c:4a:3b:65:47:d1:ac:f3:28:4b:08:aa:38:e6:50:0b:12:
d0:61:2c:df:96:9f:b8:c5:4f:97:57:48:98:2b:1c:8c:62:93:
05:1f:76:bc:a0:f8:f9:f0:38:bf:97:22:38:49:c3:f1:74:91:
bd:71:f5:ec:79:6f:95:ee:54:23:79:eb:80:58:e3:93:4c:71:
9d:1a:5b:de:98:dc:db:ae:b0:31:02:98:f4:22:31:66:37:5e:
93:51:aa:5e:14:b2:ca:d8:a8:31:a0:4a:50:67:01:35:01:ce:
ee:09:68:5d:e8:eb:91:a9:83:11:2d:ce:72:fd:df:a8:75:0a:
7f:ec:bf:5d
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUQaK762byA9R7F/oAJfT8ZBqzsiowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDNCRUUyQkMzREJGNDFFNTU5NDA4OTkxMjhFRUExQTM4
REQwNzc4RjAeFw0yNTAyMDQxODExMzJaFw0yNjAyMDMxODE2MzJaMDMxMTAvBgNV
BAMTKEIwNEY1NDlDNDNFMDQyOUY3OEZGN0U2NjgwQTE5MTc4Q0NGNjVBMjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCCFh6G60JNHPAL9w/0g3/w0nCE
2dYL2bVkYNaaKfCKGtqm/dyujBMNhOwIbc2QVPJApExwwUfvVi8WcIqrcRtjnM8U
SaWILNruvGRkum5DwfM6TfkSJsvTF4uHMv8IU6kZmqVYZZO+rCHN8EgavR/MN1JF
wSvsFkIeK1xdB2Cpm+6KLY4NlMau3MOC51srKO4LkM/GOH50yFAHUPbMXmWCqAKp
MLMoWGF5zuDYTnJheC78120k6+gajHe+kVhBI3E10KbSToJxx71syGOltjdTXwRv
noZXwr5c0z64qFAb9XuxE52fMEsBuP6tvF9uHHS5dXaiF1knCoLUoQN7OFd/AgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUsE9UnEPgQp94/35mgKGReMz2WiAwHwYDVR0j
BBgwFoAU077ivD2/QeVZQImRKO6ho43Qd48wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy85M0ZDRURCOUY2RTJDNDZBM0Y4MkIxNEQ1MEFFOEYzMzRB
QzY0Mjg3MTMxRjFGRjQ3NUFCNjRFQjdGOTZFMTBELzAvRDNCRUUyQkMzREJGNDFF
NTU5NDA4OTkxMjhFRUExQTM4REQwNzc4Ri5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EM0JFRTJCQzNEQkY0MUU1NTk0
MDg5OTEyOEVFQTFBMzhERDA3NzhGLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvOTNGQ0VEQjlGNkUyQzQ2QTNGODJCMTRENTBBRThGMzM0QUM2NDI4NzEz
MUYxRkY0NzVBQjY0RUI3Rjk2RTEwRC8wLzMxMzMzODJlMzkzOTJlMzEzNzMyMmUz
MDJmMzIzMzJkMzIzMzIwM2QzZTIwMzUzMjMzMzIzOC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAYpjrDAN
BgkqhkiG9w0BAQsFAAOCAQEAchEi/EddEbP85qdHgnNCSKYdy6htDGl9HVlSQUO5
7WRrTQOpBhTZycyojT6R44vWmf1h2gXBNOkdiarP1SaLKTTxzgJrLkkMCV+cxbCN
o23bG5hOI4M7NFswPTJVRtAiLS4GCgFDfZ6OSOUCXUW/yL/UVt1emSnhL8zQ4If+
ZVxKO2VH0azzKEsIqjjmUAsS0GEs35afuMVPl1dImCscjGKTBR92vKD4+fA4v5ci
OEnD8XSRvXH17Hlvle5UI3nrgFjjk0xxnRpb3pjc266wMQKY9CIxZjdek1GqXhSy
ytioMaBKUGcBNQHO7gloXejrkamDES3Ocv3fqHUKf+y/XQ==
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:10:35 2025 by rpki-client