Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BB554C471A70AB73B965B1569AA454FA3211FD142C831AEE1EAF89FA0FD12EB8/0/3133382e39372e3137362e302f32322d3234203d3e203532343336.roa
File: 3133382e39372e3137362e302f32322d3234203d3e203532343336.roa (raw, json)
Hash identifier: DZ1JYBD4D1lcfyyi/lDKdapEtms87ntGtmXsrbVHP9I=
Subject key identifier: 36:80:BC:CB:70:8E:F3:78:F3:76:EF:28:9D:5C:62:E1:38:D2:D6:8C
Certificate issuer: /CN=0DD8C886E7D641E553703DC5E196957F1368902C
Certificate serial: 14B405BE1EC203202645E831BAE5ECAE38B2A7D8
Authority key identifier: 0D:D8:C8:86:E7:D6:41:E5:53:70:3D:C5:E1:96:95:7F:13:68:90:2C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0DD8C886E7D641E553703DC5E196957F1368902C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BB554C471A70AB73B965B1569AA454FA3211FD142C831AEE1EAF89FA0FD12EB8/0/3133382e39372e3137362e302f32322d3234203d3e203532343336.roa
Signing time: Tue 04 Feb 2025 18:34:33 +0000
ROA not before: Tue 04 Feb 2025 18:29:33 +0000
ROA not after: Tue 03 Feb 2026 18:34:33 +0000
asID: 52436
IP address blocks: 138.97.176.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:b4:05:be:1e:c2:03:20:26:45:e8:31:ba:e5:ec:ae:38:b2:a7:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0DD8C886E7D641E553703DC5E196957F1368902C
Validity
Not Before: Feb 4 18:29:33 2025 GMT
Not After : Feb 3 18:34:33 2026 GMT
Subject: CN=3680BCCB708EF378F376EF289D5C62E138D2D68C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:45:c8:31:7b:ac:bd:ca:32:f2:ac:a5:05:81:
2f:98:88:d6:7a:93:39:ce:68:fe:05:7e:88:2c:92:
1c:19:13:c7:89:55:7a:f6:06:4a:82:ae:a7:99:c3:
3c:b9:b6:cf:e5:d1:d4:11:e8:e8:17:d3:a8:74:93:
58:a1:a2:6b:1e:73:bd:61:92:fc:38:ad:ce:b8:98:
57:76:8a:28:26:eb:b8:c3:f7:01:35:ea:35:68:45:
e6:27:d0:b5:a7:ea:98:b8:10:0e:77:46:4b:b7:92:
80:b2:ab:71:66:9c:5d:c9:4c:f5:f7:64:48:a4:a1:
a3:eb:6d:79:df:d8:31:94:09:b2:26:ac:4d:56:1a:
39:c7:e9:b8:f8:26:86:0d:9a:f5:34:15:43:a6:de:
60:d6:0b:e1:5d:f6:8a:9d:96:75:cb:84:2e:81:93:
a0:9c:76:85:bd:b6:81:6c:1a:5e:83:1c:9c:7b:f2:
eb:a4:37:6c:4e:a9:06:97:fb:c4:e5:3b:f7:29:c1:
fe:17:a2:af:77:bb:9f:79:be:7c:24:17:d4:48:76:
a1:db:65:1b:b6:aa:c4:7e:4d:93:29:77:a1:08:f0:
dc:51:b8:07:be:68:67:7f:5c:1c:9b:71:a8:94:83:
ee:2f:8b:8a:b9:3e:55:ba:04:9a:77:c3:32:33:52:
8c:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:80:BC:CB:70:8E:F3:78:F3:76:EF:28:9D:5C:62:E1:38:D2:D6:8C
X509v3 Authority Key Identifier:
keyid:0D:D8:C8:86:E7:D6:41:E5:53:70:3D:C5:E1:96:95:7F:13:68:90:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BB554C471A70AB73B965B1569AA454FA3211FD142C831AEE1EAF89FA0FD12EB8/0/0DD8C886E7D641E553703DC5E196957F1368902C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0DD8C886E7D641E553703DC5E196957F1368902C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BB554C471A70AB73B965B1569AA454FA3211FD142C831AEE1EAF89FA0FD12EB8/0/3133382e39372e3137362e302f32322d3234203d3e203532343336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.97.176.0/22
Signature Algorithm: sha256WithRSAEncryption
cb:72:63:0b:2d:70:51:1c:f0:bd:8b:64:b9:41:0c:1b:14:ed:
ba:21:4e:3b:67:56:b6:9d:a5:0c:61:42:e4:1f:4e:e1:fd:7f:
3d:b8:89:6a:ef:d0:77:63:bf:e9:9b:21:32:2f:26:53:d5:0d:
75:b1:76:8e:64:ff:e2:69:05:8b:cc:d2:fc:63:90:40:fb:84:
3e:2d:d3:f6:a1:0d:97:67:c4:bd:50:dd:4e:1d:7a:5d:4d:b1:
5a:cb:a2:5f:74:25:90:0e:a1:e4:b9:63:fe:cd:a9:af:f1:b3:
1f:93:83:65:e4:a4:6a:ab:68:18:37:82:f9:e5:d6:58:76:b7:
0d:d6:33:ce:c8:d0:10:a5:05:f6:6f:b9:c8:b9:d5:93:c2:9c:
af:56:77:96:78:a9:94:99:fd:c0:b7:2f:00:83:17:13:7a:a0:
7c:9b:93:82:29:fa:4a:81:41:03:85:be:e8:4d:7c:aa:37:31:
9f:f5:80:ae:6b:d6:a0:ff:83:f1:45:6d:6f:a4:d2:23:f3:d1:
3d:64:04:03:37:56:3b:4d:b9:1a:6e:c9:20:92:6a:41:21:9f:
9b:8a:fe:58:4d:07:fa:13:e0:4e:35:c5:4a:6d:34:af:32:7b:
e2:1f:b6:48:36:99:05:a1:a0:0e:6c:05:d8:67:28:2b:e4:98:
14:88:53:8b
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUFLQFvh7CAyAmRegxuuXsrjiyp9gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMEREOEM4ODZFN0Q2NDFFNTUzNzAzREM1RTE5Njk1N0Yx
MzY4OTAyQzAeFw0yNTAyMDQxODI5MzNaFw0yNjAyMDMxODM0MzNaMDMxMTAvBgNV
BAMTKDM2ODBCQ0NCNzA4RUYzNzhGMzc2RUYyODlENUM2MkUxMzhEMkQ2OEMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfRcgxe6y9yjLyrKUFgS+YiNZ6
kznOaP4FfogskhwZE8eJVXr2BkqCrqeZwzy5ts/l0dQR6OgX06h0k1ihomsec71h
kvw4rc64mFd2iigm67jD9wE16jVoReYn0LWn6pi4EA53Rku3koCyq3FmnF3JTPX3
ZEikoaPrbXnf2DGUCbImrE1WGjnH6bj4JoYNmvU0FUOm3mDWC+Fd9oqdlnXLhC6B
k6CcdoW9toFsGl6DHJx78uukN2xOqQaX+8TlO/cpwf4Xoq93u595vnwkF9RIdqHb
ZRu2qsR+TZMpd6EI8NxRuAe+aGd/XBybcaiUg+4vi4q5PlW6BJp3wzIzUowhAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUNoC8y3CO83jzdu8onVxi4TjS1owwHwYDVR0j
BBgwFoAUDdjIhufWQeVTcD3F4ZaVfxNokCwwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9CQjU1NEM0NzFBNzBBQjczQjk2NUIxNTY5QUE0NTRGQTMy
MTFGRDE0MkM4MzFBRUUxRUFGODlGQTBGRDEyRUI4LzAvMEREOEM4ODZFN0Q2NDFF
NTUzNzAzREM1RTE5Njk1N0YxMzY4OTAyQy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8wREQ4Qzg4NkU3RDY0MUU1NTM3
MDNEQzVFMTk2OTU3RjEzNjg5MDJDLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQkI1NTRDNDcxQTcwQUI3M0I5NjVCMTU2OUFBNDU0RkEzMjExRkQxNDJD
ODMxQUVFMUVBRjg5RkEwRkQxMkVCOC8wLzMxMzMzODJlMzkzNzJlMzEzNzM2MmUz
MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzUzMjM0MzMzNi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAophsDAN
BgkqhkiG9w0BAQsFAAOCAQEAy3JjCy1wURzwvYtkuUEMGxTtuiFOO2dWtp2lDGFC
5B9O4f1/PbiJau/Qd2O/6ZshMi8mU9UNdbF2jmT/4mkFi8zS/GOQQPuEPi3T9qEN
l2fEvVDdTh16XU2xWsuiX3QlkA6h5Llj/s2pr/GzH5ODZeSkaqtoGDeC+eXWWHa3
DdYzzsjQEKUF9m+5yLnVk8Kcr1Z3lniplJn9wLcvAIMXE3qgfJuTgin6SoFBA4W+
6E18qjcxn/WArmvWoP+D8UVtb6TSI/PRPWQEAzdWO025Gm7JIJJqQSGfm4r+WE0H
+hPgTjXFSm00rzJ74h+2SDaZBaGgDmwF2GcoK+SYFIhTiw==
-----END CERTIFICATE-----
Generated at Sun Apr 6 03:57:51 2025 by rpki-client