Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/CF416BA52A17B78F7D57F16A98E5D9A0B7DC328D02D2CC14A9D7467235748F04/0/3133382e39392e3138302e302f32322d3234203d3e20323632313939.roa
File: 3133382e39392e3138302e302f32322d3234203d3e20323632313939.roa (raw, json)
Hash identifier: Qch6C8TdTeBFMeQ97p2hd+lCmU4szsx3A62GfN1sGM4=
Subject key identifier: 45:A9:77:8E:1A:8F:7B:CC:06:46:27:AC:C6:1F:6D:E2:43:A5:4E:D5
Certificate issuer: /CN=B38BDE76E463241532282B264A16F479CD7D0224
Certificate serial: 72D50BE57A9BC124D1AEF6DF0DCA582CF92039C1
Authority key identifier: B3:8B:DE:76:E4:63:24:15:32:28:2B:26:4A:16:F4:79:CD:7D:02:24
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B38BDE76E463241532282B264A16F479CD7D0224.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/CF416BA52A17B78F7D57F16A98E5D9A0B7DC328D02D2CC14A9D7467235748F04/0/3133382e39392e3138302e302f32322d3234203d3e20323632313939.roa
Signing time: Tue 04 Feb 2025 18:39:50 +0000
ROA not before: Tue 04 Feb 2025 18:34:50 +0000
ROA not after: Tue 03 Feb 2026 18:39:50 +0000
asID: 262199
IP address blocks: 138.99.180.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:d5:0b:e5:7a:9b:c1:24:d1:ae:f6:df:0d:ca:58:2c:f9:20:39:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B38BDE76E463241532282B264A16F479CD7D0224
Validity
Not Before: Feb 4 18:34:50 2025 GMT
Not After : Feb 3 18:39:50 2026 GMT
Subject: CN=45A9778E1A8F7BCC064627ACC61F6DE243A54ED5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:4a:3c:8f:39:3f:df:ce:39:65:c1:bc:96:9d:
80:30:7d:9f:8d:c5:0b:c3:93:4a:26:fd:d9:81:f3:
9f:1a:02:ca:66:c4:96:cc:14:6b:f5:6f:08:be:6d:
c4:5f:1d:35:68:c4:6b:80:3d:b4:25:84:76:e8:7d:
46:30:78:0d:b8:07:a7:61:5e:f8:ca:42:a2:ab:44:
32:65:89:4d:dd:83:ae:51:36:35:96:64:32:7e:b3:
bc:ea:ea:ba:eb:c9:ae:81:b8:7e:84:c6:b4:fd:f3:
c5:16:97:b1:50:8e:00:a3:45:e3:72:47:6e:35:80:
b8:16:ec:43:b9:eb:ce:23:60:44:39:e8:cf:24:20:
27:9d:e0:63:60:be:a2:e1:b3:48:f5:b9:80:78:26:
14:31:8d:0e:cc:80:5c:6a:89:55:1b:31:3c:53:c8:
8f:47:95:c3:b3:56:23:bf:26:4f:4f:41:9f:c6:6d:
8b:84:5c:34:b0:c6:ae:c8:2a:40:c0:6e:60:4e:09:
38:5f:7c:f2:ed:ec:2a:95:72:99:73:7e:58:55:e9:
83:cc:43:ce:3b:34:3a:17:0b:5f:6d:a9:11:45:e6:
4b:5b:88:fe:70:54:23:f0:6c:52:09:7b:4a:51:30:
c9:7d:f6:ec:b9:b9:56:14:f8:66:3e:3d:ca:e0:82:
d5:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:A9:77:8E:1A:8F:7B:CC:06:46:27:AC:C6:1F:6D:E2:43:A5:4E:D5
X509v3 Authority Key Identifier:
keyid:B3:8B:DE:76:E4:63:24:15:32:28:2B:26:4A:16:F4:79:CD:7D:02:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/CF416BA52A17B78F7D57F16A98E5D9A0B7DC328D02D2CC14A9D7467235748F04/0/B38BDE76E463241532282B264A16F479CD7D0224.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B38BDE76E463241532282B264A16F479CD7D0224.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/CF416BA52A17B78F7D57F16A98E5D9A0B7DC328D02D2CC14A9D7467235748F04/0/3133382e39392e3138302e302f32322d3234203d3e20323632313939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.99.180.0/22
Signature Algorithm: sha256WithRSAEncryption
04:02:a5:14:38:23:f7:c7:7b:f0:47:72:4c:8f:71:95:d5:be:
24:63:bf:be:8b:0d:27:1b:02:a1:23:15:75:8a:3f:dc:49:1c:
f6:c4:c1:b9:b4:7f:e4:a2:b1:69:95:04:0b:7d:e8:f8:4b:d6:
cd:65:60:16:ff:78:0b:e0:e5:d0:81:c5:c5:3f:99:3e:cd:e1:
a2:87:31:1d:0f:3b:22:d9:e5:31:00:4a:67:dd:fd:d2:ef:df:
29:6a:eb:fb:07:d6:5d:00:0e:1f:93:2b:df:8e:54:03:94:ad:
3f:ff:50:a4:9d:c2:72:85:da:8c:3d:a9:21:d1:18:a8:0d:2f:
88:3f:dd:4a:fe:c1:61:2c:e2:9c:57:73:a6:b3:b4:9e:e4:c9:
6f:1f:f5:fb:83:07:d2:79:1a:89:5d:bd:a0:54:1d:fb:cd:95:
8e:39:aa:a2:e2:36:b5:9f:1d:9d:58:62:38:31:9e:3e:12:7b:
23:8f:1f:be:b5:d7:15:36:a8:66:e7:1e:21:0f:e9:ce:7c:56:
f2:51:19:a0:3d:e5:21:f8:b1:30:f7:3f:94:df:a6:5f:d6:40:
dc:bb:9c:95:46:cf:25:1d:b8:0a:72:c1:77:97:9e:49:85:dd:
c6:68:e2:ae:a2:d5:bd:b2:9c:86:ad:34:2a:54:50:6b:0a:5d:
51:0b:5b:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:12:53 2025 by rpki-client