Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9CBEC127A80C3E1F1A34E553B878B5857AAC0FBCDB542E9D88F9FE2ECBA7369F/0/3133312e3235352e3130342e302f32322d3232203d3e203238303037.roa
File: 3133312e3235352e3130342e302f32322d3232203d3e203238303037.roa (raw, json)
Hash identifier: ctOY+G+5Zhar+6fbk/i1mfCd30UbYTcNU5VliLr9iWg=
Subject key identifier: B9:99:F7:86:C1:11:47:DC:DE:86:0E:F4:F7:CD:C8:85:15:74:0C:4A
Certificate issuer: /CN=B1ED8C2B436F8456A9FFB7A803770E5760A2589B
Certificate serial: 16D4DA5AD1D4970A48DF7A28D06514C6E6F76E6E
Authority key identifier: B1:ED:8C:2B:43:6F:84:56:A9:FF:B7:A8:03:77:0E:57:60:A2:58:9B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B1ED8C2B436F8456A9FFB7A803770E5760A2589B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9CBEC127A80C3E1F1A34E553B878B5857AAC0FBCDB542E9D88F9FE2ECBA7369F/0/3133312e3235352e3130342e302f32322d3232203d3e203238303037.roa
Signing time: Tue 04 Feb 2025 18:14:56 +0000
ROA not before: Tue 04 Feb 2025 18:09:56 +0000
ROA not after: Tue 03 Feb 2026 18:14:56 +0000
asID: 28007
IP address blocks: 131.255.104.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:d4:da:5a:d1:d4:97:0a:48:df:7a:28:d0:65:14:c6:e6:f7:6e:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B1ED8C2B436F8456A9FFB7A803770E5760A2589B
Validity
Not Before: Feb 4 18:09:56 2025 GMT
Not After : Feb 3 18:14:56 2026 GMT
Subject: CN=B999F786C11147DCDE860EF4F7CDC88515740C4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:e7:98:c6:44:bf:b6:8c:e3:7f:28:7a:5f:05:
46:53:22:ed:cd:51:7f:4b:a2:0d:9d:27:b4:51:2c:
15:4f:c5:7e:c9:d0:8d:53:ec:17:2b:23:a9:ee:f8:
6f:bb:8c:bb:4b:d0:5f:35:38:f1:2f:cd:f4:e4:41:
d2:72:ae:3c:5b:1b:08:a2:fd:7d:73:fb:a6:33:a1:
61:d0:e5:26:01:36:7b:b2:3d:38:fd:1f:48:4d:10:
77:67:e5:bf:b1:fc:3e:57:62:c9:8f:fa:40:79:93:
76:04:26:3e:b3:e9:2f:51:d4:3e:47:de:ac:65:dd:
5c:54:49:3b:9e:e7:e8:c3:28:4d:7c:f0:60:fd:33:
f4:74:a2:c7:b2:f9:d4:a1:01:8e:79:86:c6:ac:14:
c9:91:ae:4f:c1:df:c9:ba:d2:bf:3f:6f:5f:28:5f:
d0:eb:b0:49:c2:9e:2d:ff:59:2d:72:e1:9b:e1:0d:
66:80:55:da:5e:66:85:64:95:bb:50:66:70:fb:f3:
0e:ba:b1:c0:b8:c2:b2:1b:7c:f6:f1:25:0d:bb:73:
56:52:88:1e:af:6a:7d:89:e2:f8:62:9f:7c:cd:d8:
af:15:9e:fa:c3:7b:a9:d7:f6:d3:9f:43:1c:b8:4e:
bd:44:2a:2a:5c:87:bc:ae:e3:4a:4e:3d:21:0d:1f:
9a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:99:F7:86:C1:11:47:DC:DE:86:0E:F4:F7:CD:C8:85:15:74:0C:4A
X509v3 Authority Key Identifier:
keyid:B1:ED:8C:2B:43:6F:84:56:A9:FF:B7:A8:03:77:0E:57:60:A2:58:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9CBEC127A80C3E1F1A34E553B878B5857AAC0FBCDB542E9D88F9FE2ECBA7369F/0/B1ED8C2B436F8456A9FFB7A803770E5760A2589B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B1ED8C2B436F8456A9FFB7A803770E5760A2589B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9CBEC127A80C3E1F1A34E553B878B5857AAC0FBCDB542E9D88F9FE2ECBA7369F/0/3133312e3235352e3130342e302f32322d3232203d3e203238303037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.255.104.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:54:bf:75:ad:d8:34:79:54:49:30:96:08:f3:c2:26:0a:ff:
82:f7:91:b6:d7:01:4c:e1:c1:02:e4:2b:5a:db:84:6d:d9:2c:
5f:14:73:97:59:5e:af:3e:a6:24:8f:c4:bd:f8:7d:37:0a:3e:
35:4a:ff:68:c4:85:12:c6:d7:7e:64:c8:ef:aa:ed:34:46:c1:
36:11:4d:80:2e:ea:34:78:89:05:b1:8a:7c:fe:19:c5:19:bf:
9a:ab:99:64:f8:85:46:bd:72:70:ab:98:9f:0e:3a:e0:07:84:
35:24:66:ce:3c:39:f5:fd:3e:bd:b2:8a:cf:94:1a:4f:b2:e5:
3b:a0:9b:78:f7:de:ca:7a:57:c6:ae:5a:5d:de:7b:af:ad:78:
1d:d3:0a:35:a6:c0:ff:06:e4:30:1a:53:1d:bc:03:ac:87:ff:
bd:1d:ce:8e:59:57:69:dc:48:79:e8:8c:7d:4e:92:36:fd:f5:
53:d4:56:73:64:b9:de:cf:31:6f:72:f6:e2:65:7b:dc:d9:71:
83:81:b9:0d:3f:73:98:d1:a2:c0:3b:23:ee:87:68:dd:e0:2f:
36:af:70:ed:32:73:66:8b:58:93:62:3d:09:39:7c:b3:5e:2a:
4a:35:a2:89:54:62:7b:ff:97:64:65:d5:92:7d:c7:35:ac:6a:
01:0c:4c:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 04:06:19 2025 by rpki-client