Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A18A71492F3E5E321DF8D5506BC3A6D41CBED52DCCB1BAF2346C85E9D654B29F/0/3133382e35392e3130382e302f32322d3234203d3e203134343230.roa
File: 3133382e35392e3130382e302f32322d3234203d3e203134343230.roa (raw, json)
Hash identifier: YwYlvopLYf44WehLEKtE/VinVOLlK/720uweYTl5LNs=
Subject key identifier: 34:F8:AC:EF:B1:B8:B6:C1:79:AF:DF:A5:4C:36:25:6F:F4:B6:5C:2E
Certificate issuer: /CN=7BE7CC31A1159D6C3A36D6F8B83F912F3D53D249
Certificate serial: 597A6EB76FAE034EE59ADAD773AA28188058E64E
Authority key identifier: 7B:E7:CC:31:A1:15:9D:6C:3A:36:D6:F8:B8:3F:91:2F:3D:53:D2:49
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7BE7CC31A1159D6C3A36D6F8B83F912F3D53D249.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A18A71492F3E5E321DF8D5506BC3A6D41CBED52DCCB1BAF2346C85E9D654B29F/0/3133382e35392e3130382e302f32322d3234203d3e203134343230.roa
Signing time: Tue 04 Feb 2025 20:06:23 +0000
ROA not before: Tue 04 Feb 2025 20:01:23 +0000
ROA not after: Tue 03 Feb 2026 20:06:23 +0000
asID: 14420
IP address blocks: 138.59.108.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:7a:6e:b7:6f:ae:03:4e:e5:9a:da:d7:73:aa:28:18:80:58:e6:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7BE7CC31A1159D6C3A36D6F8B83F912F3D53D249
Validity
Not Before: Feb 4 20:01:23 2025 GMT
Not After : Feb 3 20:06:23 2026 GMT
Subject: CN=34F8ACEFB1B8B6C179AFDFA54C36256FF4B65C2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b1:44:ec:14:df:00:fa:6b:c9:a5:2f:e5:66:
13:7b:1d:45:44:a9:7e:5b:4b:8a:19:e7:b8:43:a9:
e1:94:9f:29:b3:88:c0:70:82:cb:53:fd:64:84:99:
38:36:6e:de:1c:21:18:e2:d2:f3:2d:e5:20:be:b6:
83:ad:b9:f4:7f:02:45:af:0f:6e:a2:55:02:61:41:
73:0a:bc:55:bf:de:63:51:18:e1:cd:65:45:7a:6d:
f5:17:d5:eb:43:e5:20:3e:78:91:55:79:94:c4:a3:
39:df:7f:3f:61:af:30:ec:fd:5a:b6:de:13:c3:bf:
86:d5:cf:b7:7f:53:b4:68:c1:72:b1:1b:03:d7:82:
e5:58:8b:ef:b0:a1:3b:38:b5:e8:ce:fa:b7:06:cf:
36:c2:8c:f2:2a:8a:7b:cd:df:61:8d:f8:5c:ac:05:
4e:e2:41:b8:e3:4a:bb:07:4a:27:4d:a8:5a:9c:a7:
00:20:42:db:d0:09:1c:ed:12:93:16:6f:ed:95:73:
4c:d0:7a:2d:f5:af:3b:dc:67:6d:a0:f8:e7:45:0e:
46:f1:45:a1:d5:1a:3e:cd:3a:90:bd:90:e3:ab:3f:
aa:bb:fa:f9:0c:96:04:b2:1a:88:bc:55:22:13:4a:
4d:98:3e:95:02:a9:7f:e9:80:ee:92:67:85:90:43:
16:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:F8:AC:EF:B1:B8:B6:C1:79:AF:DF:A5:4C:36:25:6F:F4:B6:5C:2E
X509v3 Authority Key Identifier:
keyid:7B:E7:CC:31:A1:15:9D:6C:3A:36:D6:F8:B8:3F:91:2F:3D:53:D2:49
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A18A71492F3E5E321DF8D5506BC3A6D41CBED52DCCB1BAF2346C85E9D654B29F/0/7BE7CC31A1159D6C3A36D6F8B83F912F3D53D249.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7BE7CC31A1159D6C3A36D6F8B83F912F3D53D249.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A18A71492F3E5E321DF8D5506BC3A6D41CBED52DCCB1BAF2346C85E9D654B29F/0/3133382e35392e3130382e302f32322d3234203d3e203134343230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.59.108.0/22
Signature Algorithm: sha256WithRSAEncryption
29:32:7a:5d:d8:5d:e3:53:83:78:33:c1:a5:82:92:73:0a:30:
9b:31:dd:57:73:6c:ac:55:72:35:6e:29:c1:e6:29:8b:8b:4c:
65:9c:1e:15:5b:d7:6f:51:ae:fc:1b:8a:e7:dc:94:54:e8:16:
39:66:09:19:72:14:63:7f:07:b5:3a:98:5a:39:65:30:c2:80:
6d:c8:29:ec:25:ef:ca:08:74:c8:9d:40:4d:4f:23:e4:c8:15:
bb:d9:49:ee:65:3e:d5:37:1d:cb:85:78:45:43:34:23:ac:2d:
e4:d2:6f:19:13:0f:13:a1:18:e4:9b:7a:16:1e:bf:05:26:f2:
92:78:92:20:da:12:0b:5d:8f:0f:9b:f4:c2:a9:8d:be:a0:50:
5e:be:83:47:c6:c2:f0:44:27:53:88:9a:7e:95:25:4c:f2:43:
11:db:8c:cb:87:66:54:59:be:cf:14:79:a0:a8:0d:a6:3c:75:
70:e5:1d:b3:a9:09:49:56:cd:81:e6:e1:9d:87:87:ca:58:fc:
6e:af:d8:fc:19:13:00:81:41:24:d4:a5:fb:89:45:5d:cb:94:
fc:e7:00:5d:86:02:9f:ff:d2:df:d3:dc:8c:e5:ce:6c:3a:25:
28:43:39:f7:aa:a3:8f:b0:83:4c:e8:25:40:87:23:e7:c7:de:
a9:b6:0e:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:44:08 2025 by rpki-client