Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9FBE2537717648BE4584E0F63E98CB75116E7872F1ED3854D24B7DEDEA94B5CE/0/3133382e39392e3132382e302f32322d3234203d3e20323633373638.roa
File: 3133382e39392e3132382e302f32322d3234203d3e20323633373638.roa (raw, json)
Hash identifier: tSnt3X10qje7iG9h4IKHUKwCkNPrmJeBqqw0grQahhc=
Subject key identifier: EB:DC:C1:FB:05:8F:8D:DC:36:52:5B:D0:DD:85:7E:DE:D3:DF:50:37
Certificate issuer: /CN=EF3FFEAAA09A4CFCC635E48A4CFC0659BCBA4231
Certificate serial: 36301A4CDBBD2526106C1CDF08F9230D9AD64253
Authority key identifier: EF:3F:FE:AA:A0:9A:4C:FC:C6:35:E4:8A:4C:FC:06:59:BC:BA:42:31
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EF3FFEAAA09A4CFCC635E48A4CFC0659BCBA4231.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9FBE2537717648BE4584E0F63E98CB75116E7872F1ED3854D24B7DEDEA94B5CE/0/3133382e39392e3132382e302f32322d3234203d3e20323633373638.roa
Signing time: Tue 04 Feb 2025 18:23:59 +0000
ROA not before: Tue 04 Feb 2025 18:18:59 +0000
ROA not after: Tue 03 Feb 2026 18:23:59 +0000
asID: 263768
IP address blocks: 138.99.128.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:30:1a:4c:db:bd:25:26:10:6c:1c:df:08:f9:23:0d:9a:d6:42:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EF3FFEAAA09A4CFCC635E48A4CFC0659BCBA4231
Validity
Not Before: Feb 4 18:18:59 2025 GMT
Not After : Feb 3 18:23:59 2026 GMT
Subject: CN=EBDCC1FB058F8DDC36525BD0DD857EDED3DF5037
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:35:37:7b:cc:6e:b5:3c:87:25:68:13:f1:1e:
66:ed:7f:d6:93:cb:b6:33:fe:e9:dc:31:26:be:bc:
da:2e:be:5a:42:0a:f1:62:27:f6:d7:52:91:7e:1e:
72:3c:75:5d:cd:b9:b3:2a:e8:59:9a:16:b1:ba:b6:
5b:f0:ad:c0:28:f8:e4:5e:cb:ba:dc:bd:d2:9c:f6:
6b:ab:ae:94:3b:8b:94:15:a5:c5:7f:af:7e:af:eb:
40:34:83:f5:a8:f7:f8:22:62:37:e5:60:46:36:13:
6c:ee:88:88:d4:58:db:c7:37:c0:46:8d:8e:89:64:
bb:7f:0b:b6:3f:38:98:bd:ea:7e:5d:a4:82:5f:8e:
88:b0:57:34:52:6f:d8:d9:e5:dd:83:d1:26:13:f7:
a1:d6:b4:c0:70:d8:27:67:ac:39:38:d0:45:2b:29:
5e:ba:65:19:72:94:f3:7e:6e:90:27:fb:6f:86:7e:
26:d1:c8:14:8f:bf:1d:0b:01:e8:4f:b7:3d:4b:24:
e2:d2:93:eb:fd:f0:25:36:f8:12:f7:6b:64:41:98:
ef:91:ed:2f:30:85:fa:ef:d4:a7:3c:ce:9a:5b:a2:
a2:ce:70:ca:21:8d:9f:46:9d:14:84:42:01:f6:b0:
d8:bc:45:c8:8e:b0:f8:50:25:83:23:c4:fb:9e:be:
f4:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:DC:C1:FB:05:8F:8D:DC:36:52:5B:D0:DD:85:7E:DE:D3:DF:50:37
X509v3 Authority Key Identifier:
keyid:EF:3F:FE:AA:A0:9A:4C:FC:C6:35:E4:8A:4C:FC:06:59:BC:BA:42:31
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9FBE2537717648BE4584E0F63E98CB75116E7872F1ED3854D24B7DEDEA94B5CE/0/EF3FFEAAA09A4CFCC635E48A4CFC0659BCBA4231.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EF3FFEAAA09A4CFCC635E48A4CFC0659BCBA4231.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9FBE2537717648BE4584E0F63E98CB75116E7872F1ED3854D24B7DEDEA94B5CE/0/3133382e39392e3132382e302f32322d3234203d3e20323633373638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.99.128.0/22
Signature Algorithm: sha256WithRSAEncryption
51:d0:81:4d:62:66:c9:5f:8a:19:25:7a:38:3e:c0:78:e5:05:
17:c6:6d:f1:0e:6e:30:41:59:92:c4:fc:26:88:87:1e:41:0d:
9d:3c:77:78:f8:9d:91:63:d8:5c:1f:1d:bf:bd:35:a1:57:a6:
da:79:59:2c:a4:b9:22:de:06:c3:2d:55:82:86:59:c8:21:1a:
ab:94:f6:32:cb:5f:5d:ec:d0:9d:af:38:8a:c4:9a:48:e1:c3:
c4:60:0f:df:d5:0d:4f:66:06:36:cd:a1:38:92:d4:35:5f:7f:
36:04:42:b1:22:2e:21:45:a8:6a:52:b3:16:ce:ff:98:85:9d:
d5:ae:31:8c:c4:ad:fb:47:ee:76:1d:a5:d6:cf:b2:64:dc:2d:
dd:cf:92:04:e5:06:74:d1:87:19:0d:d8:5d:89:8d:a5:d8:b9:
ac:04:ea:fa:23:ae:df:3f:24:dd:d7:ce:ba:a3:f1:eb:97:e3:
b8:12:0c:23:44:1d:f4:40:fc:cb:7e:5c:99:5f:fc:a7:1e:79:
ce:0d:18:22:74:0a:62:26:9f:27:81:8f:e4:82:e4:8e:49:a5:
6f:0d:2a:ed:76:a9:19:8d:05:85:c7:0d:b1:5e:7e:d7:57:ec:
69:cc:f1:e8:76:6d:2b:14:28:b8:7e:66:cd:e7:ff:a9:3f:1b:
7c:18:87:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:24:53 2025 by rpki-client