Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DE025ADE63A9177898D7E1EF1103089E82D18CE0541050F4C849516A60F77423/0/3133382e3231392e35372e302f32342d3234203d3e203532353130.roa
File: 3133382e3231392e35372e302f32342d3234203d3e203532353130.roa (raw, json)
Hash identifier: cPN9RrSCFxDTCMJEOw7CX5/c7Wv6Qr06SYSVP7w0m7Y=
Subject key identifier: 3E:C6:12:45:DB:76:7C:3B:D6:82:E8:8B:FB:BA:B7:00:06:E8:4E:96
Certificate issuer: /CN=2636D4CBEDBE7A0F4D43DC1621DE3D1936645F3D
Certificate serial: 174DA5E1658A69FD0ED77CE47B76EAA3736781D5
Authority key identifier: 26:36:D4:CB:ED:BE:7A:0F:4D:43:DC:16:21:DE:3D:19:36:64:5F:3D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2636D4CBEDBE7A0F4D43DC1621DE3D1936645F3D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/DE025ADE63A9177898D7E1EF1103089E82D18CE0541050F4C849516A60F77423/0/3133382e3231392e35372e302f32342d3234203d3e203532353130.roa
Signing time: Tue 04 Feb 2025 18:31:43 +0000
ROA not before: Tue 04 Feb 2025 18:26:43 +0000
ROA not after: Tue 03 Feb 2026 18:31:43 +0000
asID: 52510
IP address blocks: 138.219.57.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:4d:a5:e1:65:8a:69:fd:0e:d7:7c:e4:7b:76:ea:a3:73:67:81:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2636D4CBEDBE7A0F4D43DC1621DE3D1936645F3D
Validity
Not Before: Feb 4 18:26:43 2025 GMT
Not After : Feb 3 18:31:43 2026 GMT
Subject: CN=3EC61245DB767C3BD682E88BFBBAB70006E84E96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fe:6d:31:20:f1:a1:a9:d2:cd:47:28:8c:f3:
09:56:2a:a5:45:23:19:15:ec:ef:7a:d0:5c:ab:df:
96:9a:08:03:6f:9f:b6:29:ab:09:9c:58:79:77:33:
9d:27:ea:d3:25:82:7a:ec:4d:60:57:94:49:de:8e:
5a:c2:bc:26:8d:1a:0c:83:e7:ce:9b:fb:49:64:04:
2b:a6:b0:ad:c1:5d:b8:e7:59:5d:ca:7c:f0:cd:0d:
43:63:1c:09:68:ce:9b:29:bf:b0:51:1d:0c:d8:e5:
df:05:dd:04:f7:ce:32:f8:c8:6a:1d:c1:fb:19:88:
5a:a2:96:3c:8a:19:d2:a7:a4:00:8f:ea:74:58:ce:
a2:d1:16:98:ce:55:bd:91:32:5a:80:56:8d:f2:07:
de:21:ff:1e:f4:96:2d:8e:ed:97:3d:d8:be:d4:4f:
50:79:3d:73:0a:75:81:5e:76:4a:c5:fc:a7:33:cb:
d0:96:69:e8:6f:30:65:bd:4e:10:e7:a9:b8:80:10:
65:d6:7d:ab:88:b3:e9:c4:0f:c5:d0:dd:01:39:63:
81:2b:73:b7:41:a2:8a:08:2a:db:f6:d4:13:42:c2:
e6:35:d6:25:44:c6:f2:00:96:74:49:74:cf:da:83:
10:34:bc:d3:0d:7c:d4:ea:77:72:59:57:7a:b0:41:
b4:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:C6:12:45:DB:76:7C:3B:D6:82:E8:8B:FB:BA:B7:00:06:E8:4E:96
X509v3 Authority Key Identifier:
keyid:26:36:D4:CB:ED:BE:7A:0F:4D:43:DC:16:21:DE:3D:19:36:64:5F:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/DE025ADE63A9177898D7E1EF1103089E82D18CE0541050F4C849516A60F77423/0/2636D4CBEDBE7A0F4D43DC1621DE3D1936645F3D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2636D4CBEDBE7A0F4D43DC1621DE3D1936645F3D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DE025ADE63A9177898D7E1EF1103089E82D18CE0541050F4C849516A60F77423/0/3133382e3231392e35372e302f32342d3234203d3e203532353130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.219.57.0/24
Signature Algorithm: sha256WithRSAEncryption
87:9b:d1:8d:31:58:0c:d7:3e:51:42:62:a0:4f:5e:6f:7f:6b:
91:e4:96:22:de:7f:df:ce:02:2d:d0:ea:5a:6e:81:86:df:4f:
52:62:f2:8f:df:a4:32:b3:ca:f2:95:61:46:bc:5f:8a:c8:b3:
54:b5:57:52:d5:56:9a:4a:71:5a:fa:ae:19:b5:e4:0c:dc:9d:
8a:36:0c:c2:bb:67:5e:0a:ef:8d:74:64:44:8e:56:3c:6f:60:
86:10:c2:28:72:2c:2f:88:60:99:c8:7c:e4:63:6c:cb:7d:24:
3b:13:43:07:3a:50:87:be:7f:2a:90:3b:e3:dc:72:12:e8:d0:
08:3d:09:40:5e:4d:0f:4b:d4:e7:a7:0c:f5:e8:36:2c:13:fa:
c9:43:9f:bd:fc:ce:77:b5:77:b1:1b:67:6b:17:99:c1:25:7d:
99:36:24:92:91:88:0e:1e:0b:0a:44:43:9d:47:75:9d:97:43:
cc:5b:52:e9:4f:d3:31:ea:59:04:62:54:9a:56:0f:75:f7:af:
bf:96:e9:ae:0e:2f:bb:0e:b6:09:25:24:b7:5c:31:b7:06:fa:
28:87:10:f9:29:b0:78:58:2c:6e:cd:f9:16:1f:f6:71:c6:5e:
6a:cd:fb:eb:29:3d:f4:aa:f9:1c:55:8b:1b:c7:3c:a1:bd:e3:
55:08:81:3d
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUF02l4WWKaf0O13zke3bqo3NngdUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjYzNkQ0Q0JFREJFN0EwRjRENDNEQzE2MjFERTNEMTkz
NjY0NUYzRDAeFw0yNTAyMDQxODI2NDNaFw0yNjAyMDMxODMxNDNaMDMxMTAvBgNV
BAMTKDNFQzYxMjQ1REI3NjdDM0JENjgyRTg4QkZCQkFCNzAwMDZFODRFOTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9/m0xIPGhqdLNRyiM8wlWKqVF
IxkV7O960Fyr35aaCANvn7YpqwmcWHl3M50n6tMlgnrsTWBXlEnejlrCvCaNGgyD
586b+0lkBCumsK3BXbjnWV3KfPDNDUNjHAlozpspv7BRHQzY5d8F3QT3zjL4yGod
wfsZiFqiljyKGdKnpACP6nRYzqLRFpjOVb2RMlqAVo3yB94h/x70li2O7Zc92L7U
T1B5PXMKdYFedkrF/Kczy9CWaehvMGW9ThDnqbiAEGXWfauIs+nED8XQ3QE5Y4Er
c7dBoooIKtv21BNCwuY11iVExvIAlnRJdM/agxA0vNMNfNTqd3JZV3qwQbT9AgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUPsYSRdt2fDvWguiL+7q3AAboTpYwHwYDVR0j
BBgwFoAUJjbUy+2+eg9NQ9wWId49GTZkXz0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9ERTAyNUFERTYzQTkxNzc4OThEN0UxRUYxMTAzMDg5RTgy
RDE4Q0UwNTQxMDUwRjRDODQ5NTE2QTYwRjc3NDIzLzAvMjYzNkQ0Q0JFREJFN0Ew
RjRENDNEQzE2MjFERTNEMTkzNjY0NUYzRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yNjM2RDRDQkVEQkU3QTBGNEQ0
M0RDMTYyMURFM0QxOTM2NjQ1RjNELmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvREUwMjVBREU2M0E5MTc3ODk4RDdFMUVGMTEwMzA4OUU4MkQxOENFMDU0
MTA1MEY0Qzg0OTUxNkE2MEY3NzQyMy8wLzMxMzMzODJlMzIzMTM5MmUzNTM3MmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzUzMjM1MzEzMC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAIrbOTAN
BgkqhkiG9w0BAQsFAAOCAQEAh5vRjTFYDNc+UUJioE9eb39rkeSWIt5/384CLdDq
Wm6Bht9PUmLyj9+kMrPK8pVhRrxfisizVLVXUtVWmkpxWvquGbXkDNydijYMwrtn
XgrvjXRkRI5WPG9ghhDCKHIsL4hgmch85GNsy30kOxNDBzpQh75/KpA749xyEujQ
CD0JQF5ND0vU56cM9eg2LBP6yUOfvfzOd7V3sRtnaxeZwSV9mTYkkpGIDh4LCkRD
nUd1nZdDzFtS6U/TMepZBGJUmlYPdfevv5bprg4vuw62CSUkt1wxtwb6KIcQ+Smw
eFgsbs35Fh/2ccZeas376yk99Kr5HFWLG8c8ob3jVQiBPQ==
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:58:44 2025 by rpki-client