Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AB19A1F333FFA36CC0FA1B59F186DA1CFD5AFC697CF1D898D76C3E7C5F417EBA/0/3133382e3131382e3134342e302f32322d3234203d3e20323633373730.roa
File: 3133382e3131382e3134342e302f32322d3234203d3e20323633373730.roa (raw, json)
Hash identifier: 2FkPrgQJBNlqlH2PZfo+oxKj6dlmlHqQ9qCn+0j5bf8=
Subject key identifier: 99:68:0C:B3:5F:E8:9A:4E:D0:AF:3E:D4:9F:49:58:E1:A8:18:E1:D9
Certificate issuer: /CN=8099611B7BF0F6A8CA74DFD374E3EDF2C89FBD7A
Certificate serial: 2E951A136A8AEAF1D421F07FB19DFDFA6EE3BD47
Authority key identifier: 80:99:61:1B:7B:F0:F6:A8:CA:74:DF:D3:74:E3:ED:F2:C8:9F:BD:7A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8099611B7BF0F6A8CA74DFD374E3EDF2C89FBD7A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AB19A1F333FFA36CC0FA1B59F186DA1CFD5AFC697CF1D898D76C3E7C5F417EBA/0/3133382e3131382e3134342e302f32322d3234203d3e20323633373730.roa
Signing time: Tue 04 Feb 2025 18:05:49 +0000
ROA not before: Tue 04 Feb 2025 18:00:49 +0000
ROA not after: Tue 03 Feb 2026 18:05:49 +0000
asID: 263770
IP address blocks: 138.118.144.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:95:1a:13:6a:8a:ea:f1:d4:21:f0:7f:b1:9d:fd:fa:6e:e3:bd:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8099611B7BF0F6A8CA74DFD374E3EDF2C89FBD7A
Validity
Not Before: Feb 4 18:00:49 2025 GMT
Not After : Feb 3 18:05:49 2026 GMT
Subject: CN=99680CB35FE89A4ED0AF3ED49F4958E1A818E1D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ce:be:14:66:c1:c3:3e:a5:6b:65:90:23:1e:
c2:bb:dc:e5:b0:ea:6d:01:19:15:4b:1a:1b:d2:7f:
1b:06:02:6a:9a:dd:eb:fe:b1:ab:56:3e:07:ab:3a:
bc:e4:41:c0:61:55:f6:9e:73:0a:bc:9b:85:9f:a3:
5a:0c:a3:22:24:dc:68:00:c2:01:33:c3:41:8f:ff:
e4:ff:6e:db:07:02:84:17:d6:70:fc:d8:23:e9:e6:
76:1d:03:a1:5d:78:d6:94:f8:03:50:4a:ef:ba:1f:
9f:08:f0:de:ca:5d:0f:13:60:af:ba:dd:3b:13:1e:
65:23:5e:0d:4b:25:5f:f4:6e:f1:f4:b8:c2:2d:f0:
dc:9f:c7:f1:83:a4:e5:63:a7:70:84:27:6a:cd:08:
5d:72:01:97:27:a3:ad:e4:f3:f2:4c:cd:27:1f:72:
17:d9:a4:44:12:a6:7b:f7:33:43:aa:22:39:25:18:
a5:2d:4f:15:a9:10:c5:ea:77:f6:53:25:b7:91:f3:
72:b6:be:ad:a4:10:36:43:5f:b0:03:02:f0:a9:5c:
c4:16:bd:2b:08:bb:72:00:cf:40:50:ea:a2:44:fb:
f5:a1:1f:33:57:0f:3c:ed:24:9a:92:78:4c:21:10:
25:77:34:d8:4e:da:47:f5:0f:16:89:4c:92:02:01:
9c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:68:0C:B3:5F:E8:9A:4E:D0:AF:3E:D4:9F:49:58:E1:A8:18:E1:D9
X509v3 Authority Key Identifier:
keyid:80:99:61:1B:7B:F0:F6:A8:CA:74:DF:D3:74:E3:ED:F2:C8:9F:BD:7A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/AB19A1F333FFA36CC0FA1B59F186DA1CFD5AFC697CF1D898D76C3E7C5F417EBA/0/8099611B7BF0F6A8CA74DFD374E3EDF2C89FBD7A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8099611B7BF0F6A8CA74DFD374E3EDF2C89FBD7A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AB19A1F333FFA36CC0FA1B59F186DA1CFD5AFC697CF1D898D76C3E7C5F417EBA/0/3133382e3131382e3134342e302f32322d3234203d3e20323633373730.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.118.144.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:12:04:5a:70:1e:9f:04:c3:c5:0b:e1:ef:61:a2:85:9f:d9:
42:27:58:02:e2:a8:53:97:62:2e:70:0c:95:bd:1e:cb:47:68:
58:4c:7d:73:09:6d:c5:24:3b:fb:f0:1c:70:e4:3b:27:82:b0:
97:a1:92:48:dd:4f:22:53:a4:2c:7d:86:d6:43:45:66:51:4b:
00:2c:c3:90:7e:74:43:eb:08:07:ab:27:ad:e1:f9:3c:e1:df:
b9:01:7a:e0:df:63:b0:c9:97:21:1f:3a:5d:1a:91:c3:06:ad:
d6:55:b1:62:ed:44:d1:8d:19:02:76:b8:fd:0d:01:c0:5d:e0:
c5:48:97:f5:05:b0:ba:1a:d0:bb:e4:82:15:62:fb:4f:70:4e:
37:28:cb:ec:20:87:40:5e:f7:ee:23:f0:9b:e2:e7:4b:9f:c5:
af:9a:af:f8:39:81:89:dd:68:26:0d:82:eb:8b:09:94:20:c1:
1d:01:26:7c:bf:07:da:7c:37:0c:d9:56:81:24:c1:1a:43:28:
04:37:41:98:b0:72:42:a0:36:fb:0d:65:12:e6:9a:ec:36:dc:
b2:97:bb:66:9b:8c:ae:d2:53:46:c8:b9:07:84:85:58:6d:bf:
de:7e:66:9c:be:d8:b4:96:eb:ba:96:6d:48:c8:d8:ca:c7:72:
29:2f:f4:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:08:53 2025 by rpki-client