Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E52FD6A6A46B7828B44D62F7E0AB52216C5E6EEAD8DE8F789F9A0C8D1195A94C/0/3133382e3230342e31322e302f32342d3234203d3e20323733303030.roa
File: 3133382e3230342e31322e302f32342d3234203d3e20323733303030.roa (raw, json)
Hash identifier: 5UGom+yzEtZyFKaNNyOfkfCMBvW7jGXinZw00JUwarE=
Subject key identifier: 96:1B:F2:76:E7:CB:39:68:08:29:1A:0D:15:98:EF:B1:51:32:F8:2E
Certificate issuer: /CN=DCD3F0E4EE043C5BA9858A89B5A60E7FF2D355C6
Certificate serial: 4DCDBC544F6DE0EAF26C539B06F2F41D08A31000
Authority key identifier: DC:D3:F0:E4:EE:04:3C:5B:A9:85:8A:89:B5:A6:0E:7F:F2:D3:55:C6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DCD3F0E4EE043C5BA9858A89B5A60E7FF2D355C6.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E52FD6A6A46B7828B44D62F7E0AB52216C5E6EEAD8DE8F789F9A0C8D1195A94C/0/3133382e3230342e31322e302f32342d3234203d3e20323733303030.roa
Signing time: Tue 11 Mar 2025 22:11:40 +0000
ROA not before: Tue 11 Mar 2025 22:06:40 +0000
ROA not after: Tue 10 Mar 2026 22:11:40 +0000
asID: 273000
IP address blocks: 138.204.12.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:cd:bc:54:4f:6d:e0:ea:f2:6c:53:9b:06:f2:f4:1d:08:a3:10:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DCD3F0E4EE043C5BA9858A89B5A60E7FF2D355C6
Validity
Not Before: Mar 11 22:06:40 2025 GMT
Not After : Mar 10 22:11:40 2026 GMT
Subject: CN=961BF276E7CB396808291A0D1598EFB15132F82E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:84:fd:2d:b2:66:86:e5:af:6a:2d:f5:b8:05:
49:4c:ba:71:f8:73:21:5f:a6:0e:5d:8e:ae:6b:5a:
51:16:c1:5f:8b:b6:bf:80:e3:aa:f2:34:b5:88:b9:
e5:9d:e0:c1:ed:41:47:06:4b:78:5c:0b:fe:df:61:
39:3a:b9:b8:a7:a1:7d:6f:bd:8c:b4:6f:fc:f7:00:
e1:fe:77:36:d2:84:4d:43:e7:7e:0e:3e:dc:fb:45:
44:cc:e9:f1:00:a0:d0:38:24:bf:a0:04:cc:14:e8:
66:0e:7e:db:fd:60:09:56:d2:ab:0e:7d:80:9f:26:
50:4d:cb:3e:ca:43:98:62:32:0b:3b:54:a7:21:ef:
b8:04:65:ff:21:82:36:95:51:c2:5c:18:14:5d:b6:
af:8b:4b:3f:e4:d5:28:a6:b9:f2:c4:c1:8e:f9:60:
27:76:6b:a9:b6:9d:20:7e:3c:21:26:62:2c:0d:ed:
40:da:ac:97:a4:4f:e3:3e:cb:a9:ce:2f:58:c5:d2:
a3:78:20:79:71:b8:0a:55:09:92:d9:0d:c8:69:00:
5b:f7:33:85:2c:1e:9c:ba:3c:4f:c5:9a:90:d6:2b:
7d:e2:f4:69:9b:c5:d7:c6:25:97:f5:4c:93:5e:10:
f1:42:30:96:82:f9:19:75:d2:c1:72:40:8d:05:64:
dc:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:1B:F2:76:E7:CB:39:68:08:29:1A:0D:15:98:EF:B1:51:32:F8:2E
X509v3 Authority Key Identifier:
keyid:DC:D3:F0:E4:EE:04:3C:5B:A9:85:8A:89:B5:A6:0E:7F:F2:D3:55:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/E52FD6A6A46B7828B44D62F7E0AB52216C5E6EEAD8DE8F789F9A0C8D1195A94C/0/DCD3F0E4EE043C5BA9858A89B5A60E7FF2D355C6.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DCD3F0E4EE043C5BA9858A89B5A60E7FF2D355C6.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E52FD6A6A46B7828B44D62F7E0AB52216C5E6EEAD8DE8F789F9A0C8D1195A94C/0/3133382e3230342e31322e302f32342d3234203d3e20323733303030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.204.12.0/24
Signature Algorithm: sha256WithRSAEncryption
73:dc:e9:fd:67:e1:c9:e9:74:d3:8a:2e:5a:aa:3e:14:63:3b:
9b:69:15:e5:f7:c4:0e:ef:d2:f0:d0:bf:6d:42:a7:8c:d9:ed:
30:86:a6:51:81:f9:7d:69:87:01:80:33:09:fd:d5:cf:41:db:
66:d6:23:ad:d9:67:4c:d5:70:5b:08:5e:6f:2d:49:40:b1:58:
04:a8:ac:1a:a4:05:30:77:78:7c:54:0b:55:bb:bd:e1:a5:bd:
cf:ba:ff:60:9c:ac:6d:51:ff:2c:02:f4:55:6c:61:a1:a3:42:
d9:64:1b:4a:7c:72:a2:49:5f:39:2d:09:d7:41:6e:fb:19:5a:
ae:3f:80:ba:bd:bb:d7:e5:ea:b5:cd:05:a1:9d:b1:b2:72:b9:
87:9f:e9:0e:ef:9d:14:dd:f4:cd:08:fb:7e:0b:a8:64:5d:0e:
84:5c:6b:d2:e0:6b:fd:43:fe:c0:9a:4f:3b:f6:61:8c:ff:3d:
38:29:39:3c:2e:ab:d9:bb:26:d7:37:67:1b:5b:f5:f0:57:6e:
c1:f3:e7:6c:0a:ff:f6:6f:01:c1:fb:a2:66:94:ce:d1:e4:dc:
2e:32:54:d2:31:e1:10:02:05:e4:38:dc:98:54:ad:4d:27:1a:
80:1f:67:b9:74:d3:15:f7:61:85:f0:f5:41:b0:dd:d3:5e:90:
07:d0:b9:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:31:00 2025 by rpki-client