Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E52FD6A6A46B7828B44D62F7E0AB52216C5E6EEAD8DE8F789F9A0C8D1195A94C/0/3133382e3230342e31332e302f32342d3234203d3e203431303935.roa
File: 3133382e3230342e31332e302f32342d3234203d3e203431303935.roa (raw, json)
Hash identifier: CRfyEzhMymqZ64luc/meDUgM0EKhF7s/bF5hKK+tbdc=
Subject key identifier: 91:22:C4:67:83:C8:A9:38:05:DC:B8:0E:2F:DF:49:54:6A:04:D3:A7
Certificate issuer: /CN=DCD3F0E4EE043C5BA9858A89B5A60E7FF2D355C6
Certificate serial: 1A70C71E946CCB78DFC0C21BC4DC7225CEDE37E6
Authority key identifier: DC:D3:F0:E4:EE:04:3C:5B:A9:85:8A:89:B5:A6:0E:7F:F2:D3:55:C6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DCD3F0E4EE043C5BA9858A89B5A60E7FF2D355C6.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E52FD6A6A46B7828B44D62F7E0AB52216C5E6EEAD8DE8F789F9A0C8D1195A94C/0/3133382e3230342e31332e302f32342d3234203d3e203431303935.roa
Signing time: Thu 13 Mar 2025 15:11:43 +0000
ROA not before: Thu 13 Mar 2025 15:06:43 +0000
ROA not after: Thu 12 Mar 2026 15:11:43 +0000
asID: 41095
IP address blocks: 138.204.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:70:c7:1e:94:6c:cb:78:df:c0:c2:1b:c4:dc:72:25:ce:de:37:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DCD3F0E4EE043C5BA9858A89B5A60E7FF2D355C6
Validity
Not Before: Mar 13 15:06:43 2025 GMT
Not After : Mar 12 15:11:43 2026 GMT
Subject: CN=9122C46783C8A93805DCB80E2FDF49546A04D3A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:71:db:be:cc:e1:29:98:93:20:e0:5e:bb:2d:
f7:33:80:6b:09:15:87:f0:13:84:c6:d1:aa:56:a2:
7f:29:11:7d:1d:42:1e:6d:84:3c:5d:2e:24:76:e0:
4d:5e:96:e1:e0:7f:51:1b:9c:a9:a9:fd:ce:af:c1:
b9:9f:87:9b:19:d8:20:65:f5:da:0d:12:a3:23:fa:
23:1a:f9:bb:1f:0c:91:4e:31:53:28:c1:49:5c:cc:
a7:b7:da:1b:98:31:2b:11:c4:6c:9f:bb:cf:e4:ad:
bc:e5:67:73:53:64:9c:9c:f1:5e:06:86:5c:70:09:
16:ae:51:8c:35:31:32:81:59:fb:28:6a:32:e4:66:
b5:56:ea:6f:1f:bc:35:54:93:79:27:7a:08:ea:61:
15:55:7b:b2:4a:bc:b8:c0:49:b7:bf:f2:cb:fc:fc:
f2:11:00:09:08:1d:95:41:ba:6b:3a:b0:2f:0a:c3:
94:8d:26:de:ea:0f:9b:5d:f1:35:50:90:0e:48:32:
38:19:88:bd:33:f1:6a:04:e5:c8:7f:70:3b:25:da:
d4:ee:eb:f6:23:c4:75:00:1e:29:1f:80:a4:86:78:
76:6a:c6:33:a8:d6:49:cd:25:23:dd:96:85:3a:b8:
f7:88:3b:f4:b6:25:a1:1e:b9:0b:11:7c:77:a0:5c:
46:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:22:C4:67:83:C8:A9:38:05:DC:B8:0E:2F:DF:49:54:6A:04:D3:A7
X509v3 Authority Key Identifier:
keyid:DC:D3:F0:E4:EE:04:3C:5B:A9:85:8A:89:B5:A6:0E:7F:F2:D3:55:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/E52FD6A6A46B7828B44D62F7E0AB52216C5E6EEAD8DE8F789F9A0C8D1195A94C/0/DCD3F0E4EE043C5BA9858A89B5A60E7FF2D355C6.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DCD3F0E4EE043C5BA9858A89B5A60E7FF2D355C6.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E52FD6A6A46B7828B44D62F7E0AB52216C5E6EEAD8DE8F789F9A0C8D1195A94C/0/3133382e3230342e31332e302f32342d3234203d3e203431303935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.204.13.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:eb:c3:b2:e1:b6:01:f8:d6:49:c2:18:5c:01:13:80:d5:98:
c9:cd:5f:96:d0:61:53:57:2e:14:b2:d1:82:2e:f7:b2:44:e2:
72:23:c0:53:b5:cb:13:ad:d6:76:97:a2:4f:8e:5b:83:79:b6:
97:1a:42:b5:df:a9:5b:63:cc:6e:a0:b5:c7:af:32:54:69:b7:
de:b1:3f:78:ed:d1:9e:c5:93:15:e7:24:02:9e:6e:bf:3d:d9:
2d:63:d3:05:7c:b3:2d:36:71:42:4c:c7:c1:dc:8b:bf:1a:25:
ec:19:14:9b:f5:dd:00:f8:0c:60:24:0a:f5:8c:9e:9c:6a:29:
70:de:bc:42:7f:9c:1c:03:51:4e:65:1a:eb:1a:81:a4:e8:81:
32:c0:b3:1b:b9:2a:1e:ca:6c:03:9e:7d:86:9e:14:ab:12:9d:
26:6d:f7:48:c6:89:94:07:87:e6:c1:f8:21:48:bf:7d:2e:49:
c5:1e:b7:93:1f:64:fb:e2:c4:7d:e8:10:2a:9b:22:9d:55:c7:
ab:fa:cd:73:cc:fd:d5:d3:d4:f7:5a:3a:48:15:46:1a:b2:5b:
fe:2c:3f:45:99:ff:45:6e:81:f9:87:48:db:28:b8:8c:83:cd:
ec:53:63:00:20:e4:81:02:39:f1:c5:9d:c1:fb:eb:5e:b5:58:
73:a7:a2:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:27:29 2025 by rpki-client