Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/3133382e39392e3137322e302f32342d3234203d3e203532333238.roa
File: 3133382e39392e3137322e302f32342d3234203d3e203532333238.roa (raw, json)
Hash identifier: losg9Pd4oS9JBZqaaeiqss1lF0YR+O06+GMt318f7cQ=
Subject key identifier: 11:A6:7A:AB:32:29:A7:A0:3C:C3:31:3E:5A:F8:52:4B:7B:A7:36:5F
Certificate issuer: /CN=D3BEE2BC3DBF41E55940899128EEA1A38DD0778F
Certificate serial: 32C706FFAC7D19D36FACE376CF4C5E00F0961EB4
Authority key identifier: D3:BE:E2:BC:3D:BF:41:E5:59:40:89:91:28:EE:A1:A3:8D:D0:77:8F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3BEE2BC3DBF41E55940899128EEA1A38DD0778F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/3133382e39392e3137322e302f32342d3234203d3e203532333238.roa
Signing time: Tue 04 Feb 2025 18:16:25 +0000
ROA not before: Tue 04 Feb 2025 18:11:25 +0000
ROA not after: Tue 03 Feb 2026 18:16:25 +0000
asID: 52328
IP address blocks: 138.99.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:c7:06:ff:ac:7d:19:d3:6f:ac:e3:76:cf:4c:5e:00:f0:96:1e:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D3BEE2BC3DBF41E55940899128EEA1A38DD0778F
Validity
Not Before: Feb 4 18:11:25 2025 GMT
Not After : Feb 3 18:16:25 2026 GMT
Subject: CN=11A67AAB3229A7A03CC3313E5AF8524B7BA7365F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:4d:0b:33:26:64:c2:e4:fe:d0:7d:bf:45:6a:
9a:18:00:9b:ca:ea:3f:2e:5d:40:e9:e6:8d:4a:f5:
76:58:6f:a3:d4:1c:4e:26:ae:07:3c:8e:c3:08:c9:
0a:df:de:e1:f0:d7:98:bf:51:e8:8c:65:0a:b2:ee:
bc:a1:4b:1a:38:d0:a1:fe:8b:f3:57:bc:db:88:31:
13:ad:31:ae:2b:7f:6f:08:77:b2:57:fb:d1:ee:cd:
7b:6e:be:9a:f9:79:aa:ad:a4:34:29:d6:06:60:9e:
c2:1f:b7:49:94:c9:2d:eb:2a:03:66:65:ee:69:e9:
35:ca:bb:b2:74:27:5b:f9:30:c7:68:90:a1:61:a5:
c5:35:23:1b:b1:e9:d0:c3:ab:a8:3a:55:38:06:b8:
12:e3:ad:8d:48:bb:e2:5c:72:2e:4d:ff:f0:c5:a4:
2e:de:9f:ed:ee:84:e8:d1:00:94:1c:f1:ef:47:09:
b0:7e:e1:23:a4:8f:5e:5f:83:f6:a7:78:83:22:aa:
b5:c0:30:d3:92:6e:68:01:80:16:74:6c:bb:6b:7e:
c6:71:fe:d4:03:8b:c7:6c:7d:3f:af:36:d3:30:a6:
33:2d:ba:20:7f:3b:aa:2e:e0:35:f1:10:82:06:f6:
ac:e1:f2:53:4e:eb:b5:35:22:63:93:30:69:eb:99:
d9:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:A6:7A:AB:32:29:A7:A0:3C:C3:31:3E:5A:F8:52:4B:7B:A7:36:5F
X509v3 Authority Key Identifier:
keyid:D3:BE:E2:BC:3D:BF:41:E5:59:40:89:91:28:EE:A1:A3:8D:D0:77:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/D3BEE2BC3DBF41E55940899128EEA1A38DD0778F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3BEE2BC3DBF41E55940899128EEA1A38DD0778F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/93FCEDB9F6E2C46A3F82B14D50AE8F334AC64287131F1FF475AB64EB7F96E10D/0/3133382e39392e3137322e302f32342d3234203d3e203532333238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.99.172.0/24
Signature Algorithm: sha256WithRSAEncryption
38:e9:35:86:03:ae:4a:a2:06:3f:04:60:c9:27:7a:3b:43:87:
4d:8a:12:b2:eb:d4:05:80:87:ad:58:11:ee:ff:b0:cc:fb:c5:
36:e7:96:09:d9:8e:9b:80:1f:63:c6:41:e6:c3:af:a8:60:f6:
9a:44:d6:d9:d7:6a:c2:92:82:2e:db:39:0a:88:5f:52:a5:03:
5e:b3:e7:05:f8:1e:8e:b5:ee:dc:96:f8:b3:6b:51:db:dd:70:
f6:3e:ae:3d:a2:e2:55:38:9d:02:4f:68:22:9f:02:35:cb:0b:
61:a4:b2:c0:03:b5:cf:bf:54:17:72:7c:e8:2c:35:03:7e:07:
d1:4f:43:07:0a:eb:da:ea:54:c5:79:79:0b:5c:a5:c1:a8:2a:
a6:ca:4b:54:d8:45:ea:22:7a:3c:b2:ee:2e:c7:4d:7f:5d:fb:
d2:09:23:cb:d9:71:b9:9d:11:a3:ca:21:f4:ec:71:b2:d9:a5:
07:67:78:2f:61:32:ea:4f:6d:eb:5f:22:d2:44:da:5d:77:d3:
8c:26:2f:fd:a9:08:d1:55:47:8a:ea:ae:31:00:66:19:39:d8:
84:fd:36:cb:88:23:cc:de:48:52:d1:d1:59:12:9d:3a:52:e9:
08:48:eb:c0:36:57:12:0b:e7:e6:f9:ad:46:e3:e0:8b:f6:26:
99:0d:d6:82
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUMscG/6x9GdNvrON2z0xeAPCWHrQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDNCRUUyQkMzREJGNDFFNTU5NDA4OTkxMjhFRUExQTM4
REQwNzc4RjAeFw0yNTAyMDQxODExMjVaFw0yNjAyMDMxODE2MjVaMDMxMTAvBgNV
BAMTKDExQTY3QUFCMzIyOUE3QTAzQ0MzMzEzRTVBRjg1MjRCN0JBNzM2NUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPTQszJmTC5P7Qfb9FapoYAJvK
6j8uXUDp5o1K9XZYb6PUHE4mrgc8jsMIyQrf3uHw15i/UeiMZQqy7ryhSxo40KH+
i/NXvNuIMROtMa4rf28Id7JX+9HuzXtuvpr5eaqtpDQp1gZgnsIft0mUyS3rKgNm
Ze5p6TXKu7J0J1v5MMdokKFhpcU1Ixux6dDDq6g6VTgGuBLjrY1Iu+Jcci5N//DF
pC7en+3uhOjRAJQc8e9HCbB+4SOkj15fg/aneIMiqrXAMNOSbmgBgBZ0bLtrfsZx
/tQDi8dsfT+vNtMwpjMtuiB/O6ou4DXxEIIG9qzh8lNO67U1ImOTMGnrmdn/AgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUEaZ6qzIpp6A8wzE+WvhSS3unNl8wHwYDVR0j
BBgwFoAU077ivD2/QeVZQImRKO6ho43Qd48wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy85M0ZDRURCOUY2RTJDNDZBM0Y4MkIxNEQ1MEFFOEYzMzRB
QzY0Mjg3MTMxRjFGRjQ3NUFCNjRFQjdGOTZFMTBELzAvRDNCRUUyQkMzREJGNDFF
NTU5NDA4OTkxMjhFRUExQTM4REQwNzc4Ri5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EM0JFRTJCQzNEQkY0MUU1NTk0
MDg5OTEyOEVFQTFBMzhERDA3NzhGLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvOTNGQ0VEQjlGNkUyQzQ2QTNGODJCMTRENTBBRThGMzM0QUM2NDI4NzEz
MUYxRkY0NzVBQjY0RUI3Rjk2RTEwRC8wLzMxMzMzODJlMzkzOTJlMzEzNzMyMmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzMjMzMzIzOC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAIpjrDAN
BgkqhkiG9w0BAQsFAAOCAQEAOOk1hgOuSqIGPwRgySd6O0OHTYoSsuvUBYCHrVgR
7v+wzPvFNueWCdmOm4AfY8ZB5sOvqGD2mkTW2ddqwpKCLts5CohfUqUDXrPnBfge
jrXu3Jb4s2tR291w9j6uPaLiVTidAk9oIp8CNcsLYaSywAO1z79UF3J86Cw1A34H
0U9DBwrr2upUxXl5C1ylwagqpspLVNhF6iJ6PLLuLsdNf1370gkjy9lxuZ0Ro8oh
9OxxstmlB2d4L2Ey6k9t618i0kTaXXfTjCYv/akI0VVHiuquMQBmGTnYhP02y4gj
zN5IUtHRWRKdOlLpCEjrwDZXEgvn5vmtRuPgi/YmmQ3Wgg==
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:12:31 2025 by rpki-client