Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9DA8C6A0A5D36D7F1AFFB191D4907002FFAA0AABF3C1E484B47ED02D28D7D10D/0/3133382e3131372e34382e302f32322d3234203d3e20323633373537.roa
File: 3133382e3131372e34382e302f32322d3234203d3e20323633373537.roa (raw, json)
Hash identifier: vX7cjjT2B+FyrySwIcntPfTJDcNA+ospf+nGdCAsup0=
Subject key identifier: D9:7B:98:C5:66:58:B0:68:B8:46:15:B0:20:3F:1B:03:09:17:E3:CE
Certificate issuer: /CN=78E57A653F4F50DBE32E97A0E2737B358F4219C2
Certificate serial: 25DAEC0EBD9912CB209ED929AFDCC50E376AA8C2
Authority key identifier: 78:E5:7A:65:3F:4F:50:DB:E3:2E:97:A0:E2:73:7B:35:8F:42:19:C2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/78E57A653F4F50DBE32E97A0E2737B358F4219C2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9DA8C6A0A5D36D7F1AFFB191D4907002FFAA0AABF3C1E484B47ED02D28D7D10D/0/3133382e3131372e34382e302f32322d3234203d3e20323633373537.roa
Signing time: Tue 04 Feb 2025 18:28:48 +0000
ROA not before: Tue 04 Feb 2025 18:23:48 +0000
ROA not after: Tue 03 Feb 2026 18:28:48 +0000
asID: 263757
IP address blocks: 138.117.48.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:da:ec:0e:bd:99:12:cb:20:9e:d9:29:af:dc:c5:0e:37:6a:a8:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78E57A653F4F50DBE32E97A0E2737B358F4219C2
Validity
Not Before: Feb 4 18:23:48 2025 GMT
Not After : Feb 3 18:28:48 2026 GMT
Subject: CN=D97B98C56658B068B84615B0203F1B030917E3CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:eb:47:63:d3:cd:f0:d4:23:9f:63:88:d3:96:
60:8a:48:d0:fd:87:79:ae:7a:4d:67:80:bc:6d:87:
04:fe:0c:14:c2:de:0f:79:5a:09:dd:35:93:72:04:
02:0c:3c:eb:41:8d:b4:f9:cf:3d:54:1e:5d:2d:d8:
b7:55:3a:6c:be:0d:58:4c:fe:f4:c6:71:d5:55:d4:
c6:f5:82:4b:7a:90:7e:ee:00:db:d6:e3:3d:3c:13:
4c:b1:26:3d:d4:04:4b:24:94:6e:03:82:43:a9:a9:
81:b0:98:3b:b6:cf:df:d0:8f:77:de:77:a1:83:5f:
ad:3e:ad:90:35:e9:da:e1:e2:15:47:fa:da:d8:5e:
01:92:75:c2:7b:f8:d2:6d:d6:3b:42:5c:b8:5f:b5:
28:19:c6:60:48:6f:e5:63:b2:48:37:20:a6:bb:00:
75:e2:ed:ed:53:1b:78:f0:d5:7f:21:b6:09:09:10:
66:db:d4:59:f5:6d:79:c6:f5:cf:7b:5d:aa:b8:ad:
37:82:b7:88:dd:9a:3e:1d:9c:11:da:89:3e:ba:c7:
fa:eb:b8:f3:69:3f:d3:18:8c:d4:02:ed:cc:1f:dd:
87:84:aa:af:b8:b9:84:7b:fb:4f:56:a4:9c:45:98:
0a:02:06:d4:7d:cf:40:48:12:9b:ab:27:9a:73:9f:
43:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:7B:98:C5:66:58:B0:68:B8:46:15:B0:20:3F:1B:03:09:17:E3:CE
X509v3 Authority Key Identifier:
keyid:78:E5:7A:65:3F:4F:50:DB:E3:2E:97:A0:E2:73:7B:35:8F:42:19:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9DA8C6A0A5D36D7F1AFFB191D4907002FFAA0AABF3C1E484B47ED02D28D7D10D/0/78E57A653F4F50DBE32E97A0E2737B358F4219C2.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/78E57A653F4F50DBE32E97A0E2737B358F4219C2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9DA8C6A0A5D36D7F1AFFB191D4907002FFAA0AABF3C1E484B47ED02D28D7D10D/0/3133382e3131372e34382e302f32322d3234203d3e20323633373537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.117.48.0/22
Signature Algorithm: sha256WithRSAEncryption
c8:04:85:bd:25:1b:95:e4:76:d1:bb:6f:8e:05:ac:e2:71:dc:
d2:d4:8d:80:2b:b5:c3:26:97:ef:31:b5:57:9e:11:d4:b7:3a:
30:b9:43:ef:e0:e5:ce:a0:11:b7:83:fd:1d:e0:a6:3c:66:b9:
d6:54:33:e7:1e:9e:d0:2a:b0:94:aa:0e:b3:a3:ff:3c:1d:b8:
41:e5:31:6b:82:9f:8b:d7:87:54:d9:ba:a4:17:12:85:23:6d:
95:e6:96:f2:e5:a0:21:4b:29:9f:2c:3c:e7:6b:bf:fa:05:c7:
d2:59:db:cf:89:68:2e:5f:44:a5:90:58:7d:a5:b4:17:94:01:
30:76:74:41:40:93:0a:0c:ba:f9:de:1f:d9:80:ea:9b:b8:7e:
0c:6c:a8:e3:39:ca:a9:2a:69:fa:b6:fd:08:01:62:42:21:0b:
9f:08:87:88:f7:12:50:cb:8e:7b:7f:1c:d0:5d:bb:45:ff:16:
7e:7b:3f:40:65:7d:af:8f:97:e1:27:0a:c3:33:92:70:f3:3b:
e9:92:12:d4:31:69:b6:de:30:93:38:37:0e:63:2c:69:a7:85:
bf:64:ee:17:c7:64:51:e3:49:28:2f:fc:4c:a4:86:e4:5d:31:
c0:e4:12:02:0f:d1:49:c7:75:94:8b:7f:d2:13:d8:cb:86:fb:
d4:5e:8b:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:38:26 2025 by rpki-client