Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/CFF07613B767B29D935687D46B7A37F33B71AEC2FD4AB9779C434A9F7C10D4EF/0/3133382e33362e31362e302f32322d3232203d3e203437383639.roa
File: 3133382e33362e31362e302f32322d3232203d3e203437383639.roa (raw, json)
Hash identifier: dnIer9rPavDSpbeM75DnZGq3Gkvi21i1ivuEQ5UXx6g=
Subject key identifier: C4:E2:C2:0F:AB:9C:B1:AC:29:27:44:C5:AB:E2:4C:01:84:0B:3A:4B
Certificate issuer: /CN=BD459ECC75B18B5274DF19D2C3A50A019B34696E
Certificate serial: 45DEEE8F09D60789BEE7BC88386492E11D5CFAAB
Authority key identifier: BD:45:9E:CC:75:B1:8B:52:74:DF:19:D2:C3:A5:0A:01:9B:34:69:6E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD459ECC75B18B5274DF19D2C3A50A019B34696E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/CFF07613B767B29D935687D46B7A37F33B71AEC2FD4AB9779C434A9F7C10D4EF/0/3133382e33362e31362e302f32322d3232203d3e203437383639.roa
Signing time: Tue 04 Feb 2025 20:06:52 +0000
ROA not before: Tue 04 Feb 2025 20:01:52 +0000
ROA not after: Tue 03 Feb 2026 20:06:52 +0000
asID: 47869
IP address blocks: 138.36.16.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:de:ee:8f:09:d6:07:89:be:e7:bc:88:38:64:92:e1:1d:5c:fa:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD459ECC75B18B5274DF19D2C3A50A019B34696E
Validity
Not Before: Feb 4 20:01:52 2025 GMT
Not After : Feb 3 20:06:52 2026 GMT
Subject: CN=C4E2C20FAB9CB1AC292744C5ABE24C01840B3A4B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:2b:c9:08:49:14:f4:c9:fd:84:72:d3:5b:38:
8b:c0:20:2f:45:76:d6:ce:0b:4f:f8:a5:57:86:ad:
84:c6:b9:9a:4a:5d:36:53:76:16:a9:9e:c9:61:93:
5e:5f:d8:c0:d1:25:53:16:70:04:a3:91:ec:77:85:
89:c2:b4:90:ff:b8:5d:a4:d8:8a:60:4f:ac:a0:84:
2d:4b:9c:d5:b1:28:ff:eb:38:74:84:c6:22:97:ac:
4c:34:6e:e6:42:1e:d5:ff:cd:6b:ef:58:4e:89:f6:
9e:24:4f:ab:a3:84:08:de:80:14:8b:24:aa:39:8f:
9a:f1:0f:45:c3:e7:3d:86:69:1e:e7:a0:61:0d:66:
0a:30:02:e1:e0:e1:59:6d:1f:41:f0:d3:32:ed:cb:
84:c5:7b:38:5f:21:ea:8d:5e:9e:57:57:08:96:b6:
c8:cc:1b:43:51:ac:9b:c0:77:ad:1b:9d:d0:a8:0f:
46:1e:01:f1:08:ad:35:1c:de:5b:3e:60:14:4a:d7:
d1:ec:0b:fd:1e:a8:22:82:3c:30:7f:76:a4:9c:e0:
54:08:a8:62:27:3a:c4:2b:e2:18:4a:f0:3f:af:89:
6e:7a:86:52:0d:3a:9e:33:1d:0f:d3:64:d7:ac:86:
d0:07:2e:83:e1:3e:63:96:e5:e0:41:71:0f:49:2a:
4e:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:E2:C2:0F:AB:9C:B1:AC:29:27:44:C5:AB:E2:4C:01:84:0B:3A:4B
X509v3 Authority Key Identifier:
keyid:BD:45:9E:CC:75:B1:8B:52:74:DF:19:D2:C3:A5:0A:01:9B:34:69:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/CFF07613B767B29D935687D46B7A37F33B71AEC2FD4AB9779C434A9F7C10D4EF/0/BD459ECC75B18B5274DF19D2C3A50A019B34696E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD459ECC75B18B5274DF19D2C3A50A019B34696E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/CFF07613B767B29D935687D46B7A37F33B71AEC2FD4AB9779C434A9F7C10D4EF/0/3133382e33362e31362e302f32322d3232203d3e203437383639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.36.16.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:7f:55:47:bc:0e:2a:2b:30:49:dd:61:91:3d:bd:bc:fb:bb:
e9:0f:30:3b:e7:49:80:e2:22:00:9e:c5:a9:9a:8a:d2:51:2c:
b6:77:0a:ac:ae:24:fe:b4:be:34:21:f6:a1:0a:7a:52:fd:a8:
06:94:af:03:45:62:cb:72:0f:f7:36:99:c0:d6:09:38:df:74:
ae:31:c7:b6:47:07:df:89:f9:03:29:61:f8:88:56:ac:b9:a4:
db:4c:e8:21:e8:40:45:dd:3b:62:2d:fb:91:1e:f1:2d:6e:07:
fe:a5:f3:89:8e:a4:e8:b2:c4:cb:62:fc:9a:1a:28:81:8b:4f:
60:3e:32:33:8f:e8:01:8a:a7:66:dc:d2:75:d5:34:48:76:80:
2a:3f:e4:e1:16:d2:25:cf:98:ff:d8:92:7b:aa:00:bf:c5:0d:
af:d6:2d:48:7d:42:9a:81:99:97:e3:78:03:87:7b:e5:03:97:
61:22:4b:a6:3c:c3:c0:ce:b1:7c:08:21:d8:b1:7d:aa:80:fd:
7c:f7:93:7f:1c:30:10:1c:22:ef:ac:d9:10:c3:82:03:6e:83:
a3:e9:e6:a9:e4:72:62:71:0f:2c:a1:9d:71:fd:d2:6e:bb:30:
f0:a3:36:85:3f:fa:f0:ad:90:ef:50:fc:47:85:62:26:35:ea:
3d:e0:9f:91
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIURd7ujwnWB4m+57yIOGSS4R1c+qswDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQkQ0NTlFQ0M3NUIxOEI1Mjc0REYxOUQyQzNBNTBBMDE5
QjM0Njk2RTAeFw0yNTAyMDQyMDAxNTJaFw0yNjAyMDMyMDA2NTJaMDMxMTAvBgNV
BAMTKEM0RTJDMjBGQUI5Q0IxQUMyOTI3NDRDNUFCRTI0QzAxODQwQjNBNEIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCJK8kISRT0yf2EctNbOIvAIC9F
dtbOC0/4pVeGrYTGuZpKXTZTdhapnslhk15f2MDRJVMWcASjkex3hYnCtJD/uF2k
2IpgT6yghC1LnNWxKP/rOHSExiKXrEw0buZCHtX/zWvvWE6J9p4kT6ujhAjegBSL
JKo5j5rxD0XD5z2GaR7noGENZgowAuHg4VltH0Hw0zLty4TFezhfIeqNXp5XVwiW
tsjMG0NRrJvAd60bndCoD0YeAfEIrTUc3ls+YBRK19HsC/0eqCKCPDB/dqSc4FQI
qGInOsQr4hhK8D+viW56hlINOp4zHQ/TZNeshtAHLoPhPmOW5eBBcQ9JKk4VAgMB
AAGjggLGMIICwjAdBgNVHQ4EFgQUxOLCD6ucsawpJ0TFq+JMAYQLOkswHwYDVR0j
BBgwFoAUvUWezHWxi1J03xnSw6UKAZs0aW4wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9DRkYwNzYxM0I3NjdCMjlEOTM1Njg3RDQ2QjdBMzdGMzNC
NzFBRUMyRkQ0QUI5Nzc5QzQzNEE5RjdDMTBENEVGLzAvQkQ0NTlFQ0M3NUIxOEI1
Mjc0REYxOUQyQzNBNTBBMDE5QjM0Njk2RS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9CRDQ1OUVDQzc1QjE4QjUyNzRE
RjE5RDJDM0E1MEEwMTlCMzQ2OTZFLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQ0ZGMDc2MTNCNzY3QjI5RDkzNTY4N0Q0NkI3QTM3RjMzQjcxQUVDMkZE
NEFCOTc3OUM0MzRBOUY3QzEwRDRFRi8wLzMxMzMzODJlMzMzNjJlMzEzNjJlMzAy
ZjMyMzIyZDMyMzIyMDNkM2UyMDM0MzczODM2Mzkucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKKJBAwDQYJ
KoZIhvcNAQELBQADggEBAKB/VUe8DiorMEndYZE9vbz7u+kPMDvnSYDiIgCexama
itJRLLZ3CqyuJP60vjQh9qEKelL9qAaUrwNFYstyD/c2mcDWCTjfdK4xx7ZHB9+J
+QMpYfiIVqy5pNtM6CHoQEXdO2It+5Ee8S1uB/6l84mOpOiyxMti/JoaKIGLT2A+
MjOP6AGKp2bc0nXVNEh2gCo/5OEW0iXPmP/YknuqAL/FDa/WLUh9QpqBmZfjeAOH
e+UDl2EiS6Y8w8DOsXwIIdixfaqA/Xz3k38cMBAcIu+s2RDDggNug6Pp5qnkcmJx
DyyhnXH90m67MPCjNoU/+vCtkO9Q/EeFYiY16j3gn5E=
-----END CERTIFICATE-----
Generated at Sat Apr 5 09:17:03 2025 by rpki-client