Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AC8A462074B98D3F9638821F9060DECDE1637FCAB7B5FCD6A69D9450167A2798/0/3138362e34332e3132382e302f31372d3234203d3e203237363638.roa
File: 3138362e34332e3132382e302f31372d3234203d3e203237363638.roa (raw, json)
Hash identifier: MeZXCC21goBdWj7HkCOVECY/llwo4cMZLBBnSSN11BU=
Subject key identifier: D3:12:77:ED:5E:7A:3D:D7:AC:41:24:B4:85:FD:64:BF:F2:12:39:DA
Certificate issuer: /CN=61672627CE7E727EFF60A56D0A466F15315B7FD0
Certificate serial: 03D15255A8C9CD6D8988840FC1B2BB21CCCF24EC
Authority key identifier: 61:67:26:27:CE:7E:72:7E:FF:60:A5:6D:0A:46:6F:15:31:5B:7F:D0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/61672627CE7E727EFF60A56D0A466F15315B7FD0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AC8A462074B98D3F9638821F9060DECDE1637FCAB7B5FCD6A69D9450167A2798/0/3138362e34332e3132382e302f31372d3234203d3e203237363638.roa
Signing time: Tue 04 Feb 2025 19:57:46 +0000
ROA not before: Tue 04 Feb 2025 19:52:46 +0000
ROA not after: Tue 03 Feb 2026 19:57:46 +0000
asID: 27668
IP address blocks: 186.43.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:d1:52:55:a8:c9:cd:6d:89:88:84:0f:c1:b2:bb:21:cc:cf:24:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61672627CE7E727EFF60A56D0A466F15315B7FD0
Validity
Not Before: Feb 4 19:52:46 2025 GMT
Not After : Feb 3 19:57:46 2026 GMT
Subject: CN=D31277ED5E7A3DD7AC4124B485FD64BFF21239DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d6:9e:d2:cd:05:ab:1d:5e:9a:b3:79:99:93:
10:83:53:8a:04:63:b5:75:88:3d:77:a6:34:f9:8b:
86:97:99:fe:d8:40:c3:fa:cb:a6:3a:18:c9:1e:21:
b3:65:b4:7e:89:99:0d:c7:94:63:60:ca:43:5d:fd:
fa:6a:a6:18:23:e8:3c:d0:30:b1:fc:73:7a:00:c6:
ea:72:46:2d:e8:3f:c0:f1:c1:06:6b:6e:33:9d:ae:
9e:3c:f1:38:b7:e1:1f:e3:82:c8:3b:7a:57:eb:ff:
5a:d9:e4:80:8e:3d:3b:90:cd:80:e0:0d:74:9c:80:
64:7d:cc:34:6c:6f:08:9e:40:00:40:d9:4b:e8:2f:
ab:d2:15:35:bc:da:c7:a8:aa:48:50:4f:8f:4b:0a:
bd:95:4c:c6:96:fe:2c:1b:8e:fb:d0:cf:25:49:d0:
64:90:52:7f:d7:54:11:58:8f:34:58:b9:e8:88:5f:
ba:a8:16:3b:77:c4:3d:36:53:68:9a:8f:ef:70:a1:
6d:d6:21:df:4f:9b:b6:36:2d:ac:0a:ed:c5:5c:e3:
df:9b:9c:9e:c0:0d:1c:03:b3:d6:38:e7:72:d5:43:
cf:9f:bf:36:eb:b7:55:2f:18:79:6b:7d:c6:11:55:
d4:3d:ff:3b:82:8a:c7:41:d0:f6:e8:1d:12:47:21:
9b:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:12:77:ED:5E:7A:3D:D7:AC:41:24:B4:85:FD:64:BF:F2:12:39:DA
X509v3 Authority Key Identifier:
keyid:61:67:26:27:CE:7E:72:7E:FF:60:A5:6D:0A:46:6F:15:31:5B:7F:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/AC8A462074B98D3F9638821F9060DECDE1637FCAB7B5FCD6A69D9450167A2798/0/61672627CE7E727EFF60A56D0A466F15315B7FD0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/61672627CE7E727EFF60A56D0A466F15315B7FD0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AC8A462074B98D3F9638821F9060DECDE1637FCAB7B5FCD6A69D9450167A2798/0/3138362e34332e3132382e302f31372d3234203d3e203237363638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.43.128.0/17
Signature Algorithm: sha256WithRSAEncryption
2c:88:e3:74:84:5e:c6:af:40:96:46:d4:f9:05:69:e7:c5:ba:
75:65:16:54:4f:a3:b2:c9:cd:13:1b:e8:c3:36:b8:d7:8b:f7:
ff:45:40:ba:5c:02:b8:9f:74:37:01:9f:b3:ed:64:73:35:3e:
34:2d:66:91:a3:af:87:56:39:21:80:3c:3a:87:56:9b:cc:a9:
e9:5a:8b:06:a0:8e:c7:05:f2:55:82:dd:11:d0:7c:45:c6:6c:
5e:90:4b:3e:b9:d7:73:ee:43:e4:1a:01:3e:bd:7a:9f:be:84:
ad:15:ab:cc:d7:22:b1:8d:59:b0:21:cd:57:a6:dd:70:97:e3:
19:ab:cf:f0:33:f2:b5:b7:f6:3e:f0:01:b8:97:42:78:19:08:
27:80:e9:a7:a0:e6:ea:62:36:dd:af:ae:f9:e4:da:1e:11:7d:
87:bc:c8:b2:c4:50:d1:bc:14:ac:81:d9:df:0a:10:91:85:63:
5e:bd:1a:57:df:f9:a6:01:49:02:17:ca:b6:32:68:91:e6:27:
13:94:5a:ab:b1:7d:a1:9e:25:49:6a:42:33:81:8a:11:92:00:
75:da:7f:30:56:70:d8:a6:eb:26:6b:7c:f9:25:75:7e:bc:51:
4f:07:93:4c:b4:31:80:ac:8b:11:4f:cb:ee:90:4d:8b:4f:75:
27:7b:95:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 13:56:33 2025 by rpki-client