Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C52E2D250F5BAABEF264E9E0A52FF71E8C9ACBDC87835A5BFBC5AFEE689C71EA/0/3133312e37322e3234302e302f32332d3234203d3e203532333237.roa
File: 3133312e37322e3234302e302f32332d3234203d3e203532333237.roa (raw, json)
Hash identifier: unB+4ILAK+5yszVtQHA0dkiDzd4sRKiZY6aQANPyBx4=
Subject key identifier: F9:AB:4E:0F:5C:52:B6:87:66:F9:21:13:36:9B:B4:1F:FF:30:4E:11
Certificate issuer: /CN=EC869BAFB5A3882FB7CB6D7F22FD36685961C5B7
Certificate serial: 42BEF74E495C9BF65133D44755CA1CFEC45672C4
Authority key identifier: EC:86:9B:AF:B5:A3:88:2F:B7:CB:6D:7F:22:FD:36:68:59:61:C5:B7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EC869BAFB5A3882FB7CB6D7F22FD36685961C5B7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C52E2D250F5BAABEF264E9E0A52FF71E8C9ACBDC87835A5BFBC5AFEE689C71EA/0/3133312e37322e3234302e302f32332d3234203d3e203532333237.roa
Signing time: Tue 04 Feb 2025 18:48:31 +0000
ROA not before: Tue 04 Feb 2025 18:43:31 +0000
ROA not after: Tue 03 Feb 2026 18:48:31 +0000
asID: 52327
IP address blocks: 131.72.240.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:be:f7:4e:49:5c:9b:f6:51:33:d4:47:55:ca:1c:fe:c4:56:72:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EC869BAFB5A3882FB7CB6D7F22FD36685961C5B7
Validity
Not Before: Feb 4 18:43:31 2025 GMT
Not After : Feb 3 18:48:31 2026 GMT
Subject: CN=F9AB4E0F5C52B68766F92113369BB41FFF304E11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:8d:76:64:e5:cb:19:d4:9f:5f:bf:51:90:db:
9d:80:58:d8:8a:56:36:16:2e:ad:b6:3c:e8:f6:07:
fe:f0:33:0d:b6:40:d1:60:6b:0b:d9:b8:f8:18:21:
6d:6a:37:d5:bb:16:27:57:48:63:20:75:98:51:38:
1f:15:31:97:db:2b:9f:5a:5a:3f:d1:d5:77:97:1e:
c8:cf:19:87:f3:de:d8:b1:3c:86:2c:46:fa:60:bb:
31:04:19:08:ea:f8:d4:8f:c1:e5:36:55:03:8a:55:
76:ed:e3:d8:98:b6:ef:39:19:bf:7b:a2:8b:a5:b8:
f0:29:d9:36:f4:d3:65:bc:ef:f9:54:ed:b7:b6:50:
73:37:62:f4:6d:ce:83:bf:7c:5c:7c:48:b8:10:98:
1d:d5:45:08:1e:34:c5:1a:cb:93:4c:3d:88:a9:51:
80:7f:18:01:23:df:c4:b5:6b:40:7b:7f:47:55:b0:
bb:e5:19:01:23:05:bd:af:57:37:b3:cc:48:41:fc:
d3:50:18:cb:d7:dd:f5:0a:46:17:88:cd:40:5c:e1:
71:91:7f:57:26:6a:a4:9f:59:e3:6f:65:76:d6:df:
b7:bc:9b:43:fb:90:94:69:6b:10:f0:7b:f3:e5:2a:
d6:46:24:52:3a:75:f0:3e:88:88:f4:65:e2:82:94:
68:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:AB:4E:0F:5C:52:B6:87:66:F9:21:13:36:9B:B4:1F:FF:30:4E:11
X509v3 Authority Key Identifier:
keyid:EC:86:9B:AF:B5:A3:88:2F:B7:CB:6D:7F:22:FD:36:68:59:61:C5:B7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C52E2D250F5BAABEF264E9E0A52FF71E8C9ACBDC87835A5BFBC5AFEE689C71EA/0/EC869BAFB5A3882FB7CB6D7F22FD36685961C5B7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EC869BAFB5A3882FB7CB6D7F22FD36685961C5B7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C52E2D250F5BAABEF264E9E0A52FF71E8C9ACBDC87835A5BFBC5AFEE689C71EA/0/3133312e37322e3234302e302f32332d3234203d3e203532333237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.72.240.0/23
Signature Algorithm: sha256WithRSAEncryption
52:d3:81:c8:92:ff:39:e2:86:83:ad:29:e9:b2:bd:45:50:a9:
1d:72:33:39:19:19:1e:e7:63:dc:04:51:6a:99:e0:04:6f:38:
a1:79:d4:09:7b:7d:9f:f0:f0:7e:4a:cd:70:99:f7:b4:67:f5:
62:1d:75:ad:92:9f:fb:f6:ae:23:ab:c8:b4:6d:14:b6:a4:a2:
36:0b:8c:83:eb:00:bc:ac:21:f1:4d:42:04:56:7d:d7:fb:d4:
73:e3:1b:ff:91:64:b5:07:de:3f:a2:d3:6e:b8:86:63:04:6d:
bd:75:5d:d5:31:11:42:e8:b0:e7:3c:74:31:9e:12:09:8f:97:
9b:2d:b2:d7:de:4d:e3:aa:75:df:b6:72:2e:66:29:ac:7a:b9:
12:e8:fc:bd:6f:30:c6:db:89:11:f3:1a:d2:12:57:a4:0e:10:
e5:af:8f:8b:50:29:d3:c0:27:29:25:8c:47:6a:47:e7:a5:93:
34:a0:87:6a:f6:09:5d:38:e9:96:88:0b:ba:1c:c4:33:26:ea:
c8:91:4c:c3:a4:b3:c6:bf:6e:80:1c:21:d4:e7:3b:1f:5a:5d:
8b:6c:13:4b:bb:d8:ba:66:96:6d:70:8b:4a:78:7a:ab:cd:b2:
af:3a:58:c4:b8:fa:e3:3f:d2:01:fa:1b:22:b4:9f:92:74:ea:
8d:42:2e:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:37:18 2025 by rpki-client