Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B1141BE89A8EF7C3F494BBEDE567BDA8AC82618B809B5072167B3C36A05D8AD9/0/3133382e33362e3235322e302f32322d3234203d3e203631353033.roa
File: 3133382e33362e3235322e302f32322d3234203d3e203631353033.roa (raw, json)
Hash identifier: 5Eo6vyGJ7asnl0zAMzcfIF8HJertZ9toNgxwRy3CZh4=
Subject key identifier: B2:45:F3:F1:86:3E:7D:51:B4:1A:6A:FA:F1:01:D8:02:A8:9C:86:A5
Certificate issuer: /CN=342CE218F6DBE708D87221F8FFFD2B182B5A6F8C
Certificate serial: 6381E10C9F74F9E544445752D1568C894450CAD6
Authority key identifier: 34:2C:E2:18:F6:DB:E7:08:D8:72:21:F8:FF:FD:2B:18:2B:5A:6F:8C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/342CE218F6DBE708D87221F8FFFD2B182B5A6F8C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B1141BE89A8EF7C3F494BBEDE567BDA8AC82618B809B5072167B3C36A05D8AD9/0/3133382e33362e3235322e302f32322d3234203d3e203631353033.roa
Signing time: Tue 04 Feb 2025 20:06:17 +0000
ROA not before: Tue 04 Feb 2025 20:01:17 +0000
ROA not after: Tue 03 Feb 2026 20:06:17 +0000
asID: 61503
IP address blocks: 138.36.252.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
63:81:e1:0c:9f:74:f9:e5:44:44:57:52:d1:56:8c:89:44:50:ca:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=342CE218F6DBE708D87221F8FFFD2B182B5A6F8C
Validity
Not Before: Feb 4 20:01:17 2025 GMT
Not After : Feb 3 20:06:17 2026 GMT
Subject: CN=B245F3F1863E7D51B41A6AFAF101D802A89C86A5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c5:c3:2d:b1:eb:7f:b5:4f:3c:95:ee:b3:b5:
b6:90:ff:72:1b:f5:57:bb:fb:5d:73:43:d5:11:81:
76:7d:42:73:00:94:f1:53:7c:0d:db:a7:7a:9b:4e:
06:d7:87:57:38:e1:f1:94:5f:83:96:b5:78:90:ae:
23:d6:3e:25:10:a0:41:50:57:aa:93:c4:09:d2:b8:
d2:47:91:38:84:ef:49:96:26:b1:0c:83:e9:41:a0:
39:03:a9:7b:59:60:da:01:03:cf:a7:83:c3:30:59:
9f:a1:63:19:2d:0a:ba:80:39:9c:e1:80:47:3b:24:
ce:0b:dd:19:a1:37:11:ac:c8:2f:ef:f6:af:61:f6:
65:76:f2:35:eb:7e:6b:23:a2:0d:86:62:8f:4c:5f:
3d:b6:5f:6c:87:23:16:95:04:2e:b9:7e:5c:f9:6f:
12:a9:39:98:0b:95:10:31:85:29:15:f3:f3:09:eb:
7a:67:fb:d3:9c:e3:3c:a4:e0:f2:8c:f6:ea:36:78:
84:b1:d7:0c:49:32:7b:f7:37:c2:6f:5c:c4:29:59:
e9:22:2b:51:14:3e:82:6f:84:d0:39:ae:a9:da:f2:
0e:85:78:e2:d1:e9:0e:2d:f5:a9:64:68:5d:67:a6:
a4:90:1e:74:4d:28:2a:30:9a:e6:c0:84:37:90:3b:
e6:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:45:F3:F1:86:3E:7D:51:B4:1A:6A:FA:F1:01:D8:02:A8:9C:86:A5
X509v3 Authority Key Identifier:
keyid:34:2C:E2:18:F6:DB:E7:08:D8:72:21:F8:FF:FD:2B:18:2B:5A:6F:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/B1141BE89A8EF7C3F494BBEDE567BDA8AC82618B809B5072167B3C36A05D8AD9/0/342CE218F6DBE708D87221F8FFFD2B182B5A6F8C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/342CE218F6DBE708D87221F8FFFD2B182B5A6F8C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B1141BE89A8EF7C3F494BBEDE567BDA8AC82618B809B5072167B3C36A05D8AD9/0/3133382e33362e3235322e302f32322d3234203d3e203631353033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.36.252.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:67:79:2f:db:60:4d:38:c9:b5:53:bd:81:ca:06:a4:e3:5d:
e6:5d:f5:72:a8:49:11:45:bc:dc:3f:37:e7:95:b8:5a:91:1a:
67:b9:ae:2e:d6:eb:0c:cb:81:3a:07:c2:ba:f3:6e:2c:f2:87:
2c:a3:73:03:34:4d:43:97:04:ea:c0:c8:e8:4e:b1:25:85:a0:
c2:36:6f:33:39:21:50:4b:6c:10:8f:2f:5e:78:e6:bf:89:65:
37:5d:2a:74:7f:d7:ef:ce:5e:7e:bb:44:f4:2c:16:d0:cd:0e:
ef:02:c8:9d:3a:b2:3e:42:5f:b6:1d:04:60:6c:37:0e:29:dc:
a1:ee:3f:1d:ca:72:9a:9c:5e:81:50:41:e2:76:a2:c7:3f:3c:
f7:4f:03:42:f9:55:f2:b9:4b:ab:8f:17:b8:b3:4d:9d:72:d8:
fc:74:e6:12:6f:26:68:3e:0b:fb:13:0e:ce:91:97:4b:a8:56:
c8:26:43:ba:d2:b3:87:16:19:20:21:c1:43:8f:4b:50:6e:73:
54:4f:bd:b4:fe:9e:5e:6e:2e:6f:5c:9f:4a:e5:96:f1:f0:28:
d1:a0:74:b1:8d:b5:3f:12:4c:96:d8:3e:df:91:e5:06:c8:f5:
37:0a:c1:17:60:ae:95:7a:f4:cc:f4:00:3d:62:73:09:3c:91:
6b:74:7e:ba
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUY4HhDJ90+eVERFdS0VaMiURQytYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzQyQ0UyMThGNkRCRTcwOEQ4NzIyMUY4RkZGRDJCMTgy
QjVBNkY4QzAeFw0yNTAyMDQyMDAxMTdaFw0yNjAyMDMyMDA2MTdaMDMxMTAvBgNV
BAMTKEIyNDVGM0YxODYzRTdENTFCNDFBNkFGQUYxMDFEODAyQTg5Qzg2QTUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzxcMtset/tU88le6ztbaQ/3Ib
9Ve7+11zQ9URgXZ9QnMAlPFTfA3bp3qbTgbXh1c44fGUX4OWtXiQriPWPiUQoEFQ
V6qTxAnSuNJHkTiE70mWJrEMg+lBoDkDqXtZYNoBA8+ng8MwWZ+hYxktCrqAOZzh
gEc7JM4L3RmhNxGsyC/v9q9h9mV28jXrfmsjog2GYo9MXz22X2yHIxaVBC65flz5
bxKpOZgLlRAxhSkV8/MJ63pn+9Oc4zyk4PKM9uo2eISx1wxJMnv3N8JvXMQpWeki
K1EUPoJvhNA5rqna8g6FeOLR6Q4t9alkaF1npqSQHnRNKCowmubAhDeQO+YLAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUskXz8YY+fVG0Gmr68QHYAqichqUwHwYDVR0j
BBgwFoAUNCziGPbb5wjYciH4//0rGCtab4wwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9CMTE0MUJFODlBOEVGN0MzRjQ5NEJCRURFNTY3QkRBOEFD
ODI2MThCODA5QjUwNzIxNjdCM0MzNkEwNUQ4QUQ5LzAvMzQyQ0UyMThGNkRCRTcw
OEQ4NzIyMUY4RkZGRDJCMTgyQjVBNkY4Qy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8zNDJDRTIxOEY2REJFNzA4RDg3
MjIxRjhGRkZEMkIxODJCNUE2RjhDLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQjExNDFCRTg5QThFRjdDM0Y0OTRCQkVERTU2N0JEQThBQzgyNjE4Qjgw
OUI1MDcyMTY3QjNDMzZBMDVEOEFEOS8wLzMxMzMzODJlMzMzNjJlMzIzNTMyMmUz
MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzYzMTM1MzAzMy5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAook/DAN
BgkqhkiG9w0BAQsFAAOCAQEAq2d5L9tgTTjJtVO9gcoGpONd5l31cqhJEUW83D83
55W4WpEaZ7muLtbrDMuBOgfCuvNuLPKHLKNzAzRNQ5cE6sDI6E6xJYWgwjZvMzkh
UEtsEI8vXnjmv4llN10qdH/X785efrtE9CwW0M0O7wLInTqyPkJfth0EYGw3Dinc
oe4/HcpympxegVBB4naixz88908DQvlV8rlLq48XuLNNnXLY/HTmEm8maD4L+xMO
zpGXS6hWyCZDutKzhxYZICHBQ49LUG5zVE+9tP6eXm4ub1yfSuWW8fAo0aB0sY21
PxJMltg+35HlBsj1NwrBF2CulXr0zPQAPWJzCTyRa3R+ug==
-----END CERTIFICATE-----
Generated at Sat Apr 5 14:09:11 2025 by rpki-client