Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B5F255A001017B89E4755212415E4A07B50DEA0A9B93A7C0F8672EACC8951C47/0/3133382e3132322e3132382e302f32322d3234203d3e203230323037.roa
File: 3133382e3132322e3132382e302f32322d3234203d3e203230323037.roa (raw, json)
Hash identifier: s4VZWiZHXbQQeiWHk2HUxWVkbLjKL6uRoPobnOpFCuQ=
Subject key identifier: 30:E7:34:11:0F:6C:28:48:76:BC:D4:6C:17:2B:CC:AC:EE:E4:5A:34
Certificate issuer: /CN=845FC621EC41AE7512D63082015413006FEF3E35
Certificate serial: 2ADCB4E4020FE3E7E34CE11D8380759EFF16DBC8
Authority key identifier: 84:5F:C6:21:EC:41:AE:75:12:D6:30:82:01:54:13:00:6F:EF:3E:35
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/845FC621EC41AE7512D63082015413006FEF3E35.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B5F255A001017B89E4755212415E4A07B50DEA0A9B93A7C0F8672EACC8951C47/0/3133382e3132322e3132382e302f32322d3234203d3e203230323037.roa
Signing time: Tue 04 Feb 2025 18:56:12 +0000
ROA not before: Tue 04 Feb 2025 18:51:12 +0000
ROA not after: Tue 03 Feb 2026 18:56:12 +0000
asID: 20207
IP address blocks: 138.122.128.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:dc:b4:e4:02:0f:e3:e7:e3:4c:e1:1d:83:80:75:9e:ff:16:db:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=845FC621EC41AE7512D63082015413006FEF3E35
Validity
Not Before: Feb 4 18:51:12 2025 GMT
Not After : Feb 3 18:56:12 2026 GMT
Subject: CN=30E734110F6C284876BCD46C172BCCACEEE45A34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:eb:8e:81:0a:d9:9d:e1:09:31:ad:39:c3:46:
cc:75:65:be:be:51:7a:ad:e4:c2:61:5b:07:91:2e:
fe:68:a8:00:f8:1c:8f:33:51:81:88:4b:d1:20:9a:
e0:03:45:4a:6e:2f:c1:35:0c:82:86:79:ec:7a:17:
91:1d:8d:e5:bf:11:ea:24:43:4d:af:6e:80:7b:f3:
f3:35:f8:6c:ea:f9:f6:33:c3:90:ee:8c:c7:4b:47:
0b:34:6b:90:57:67:0d:2c:21:59:c9:e4:25:bd:b1:
a0:cc:c4:4b:ba:dc:cf:32:ee:29:3a:cc:ef:e4:5f:
69:b8:1f:1d:db:71:26:6c:54:ac:69:a2:e5:20:50:
2e:ac:dd:69:7c:aa:1f:bb:af:db:07:24:d8:c8:03:
ec:db:b6:98:4d:87:6f:54:10:28:7f:93:d2:3c:fa:
4b:09:c1:f7:35:86:b0:f2:e7:d5:86:d9:68:ee:c2:
d0:f9:b6:42:dc:b2:b8:ed:6e:55:21:12:80:87:2d:
eb:aa:30:c2:a8:d7:be:5d:53:c5:71:59:68:b4:74:
14:a3:34:2c:6f:73:ac:12:9c:cc:97:23:91:a2:4e:
57:cb:19:fc:81:3e:ac:f1:b3:2b:9b:60:46:75:d6:
67:86:ad:c3:6b:e6:e8:40:9f:bd:26:a9:7b:3a:53:
4f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:E7:34:11:0F:6C:28:48:76:BC:D4:6C:17:2B:CC:AC:EE:E4:5A:34
X509v3 Authority Key Identifier:
keyid:84:5F:C6:21:EC:41:AE:75:12:D6:30:82:01:54:13:00:6F:EF:3E:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/B5F255A001017B89E4755212415E4A07B50DEA0A9B93A7C0F8672EACC8951C47/0/845FC621EC41AE7512D63082015413006FEF3E35.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/845FC621EC41AE7512D63082015413006FEF3E35.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B5F255A001017B89E4755212415E4A07B50DEA0A9B93A7C0F8672EACC8951C47/0/3133382e3132322e3132382e302f32322d3234203d3e203230323037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.122.128.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:5f:a9:b9:7a:4c:bd:69:c4:46:03:98:f1:cf:19:f4:0f:ba:
c8:fb:c8:46:22:6e:b4:72:99:3f:00:32:b5:a5:10:b6:03:1a:
c8:b5:ce:1b:e1:54:57:a0:53:b7:ff:5c:c9:d3:63:77:fa:c6:
a7:4e:8c:44:54:c7:0d:b3:a5:50:d6:4d:d0:c8:09:df:a8:de:
63:72:d7:d3:44:74:b8:1e:2b:b6:cc:e1:c9:0e:ba:53:7d:d6:
46:87:d1:71:cb:cc:ac:56:69:b3:19:ec:2a:b3:29:20:d9:94:
39:03:ad:9d:5b:89:0f:5a:d4:f5:4a:e4:d2:0e:84:68:9c:a2:
6a:af:6a:f8:3b:ed:ff:34:d5:9c:44:c9:92:2a:13:f3:7f:7b:
bb:d8:4b:3d:07:d0:18:b8:8f:18:cd:cb:6d:36:af:e4:14:5c:
bd:3a:f4:1c:1e:c6:be:38:6c:a0:e6:b0:bb:80:a3:29:82:8b:
1d:4e:33:6c:0d:90:3f:3d:5a:e0:b8:5f:32:d5:78:1f:e8:c2:
cb:0b:fe:66:33:54:d3:af:2f:c0:ae:e2:fb:69:9e:7e:50:f6:
ec:4a:2c:79:dd:d7:68:1a:02:1d:7f:51:fa:da:39:c6:01:ae:
1c:69:e2:31:76:78:42:64:d6:1c:10:9b:aa:85:87:2e:7d:45:
57:c9:8e:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 23 04:47:10 2025 by rpki-client