Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E52FD6A6A46B7828B44D62F7E0AB52216C5E6EEAD8DE8F789F9A0C8D1195A94C/0/3133382e3230342e31342e302f32342d3234203d3e203431303935.roa
File: 3133382e3230342e31342e302f32342d3234203d3e203431303935.roa (raw, json)
Hash identifier: gWdppglAMx9gEJKv+Db7qOgqFUZSFd0IM+z+VG0Fnyk=
Subject key identifier: 9F:E9:2F:6A:4F:13:F1:A6:B5:26:4B:66:6C:33:A1:6C:92:26:7C:8C
Certificate issuer: /CN=DCD3F0E4EE043C5BA9858A89B5A60E7FF2D355C6
Certificate serial: 17E39A6EDD2D881A302F759A3B17D310278CEFCB
Authority key identifier: DC:D3:F0:E4:EE:04:3C:5B:A9:85:8A:89:B5:A6:0E:7F:F2:D3:55:C6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DCD3F0E4EE043C5BA9858A89B5A60E7FF2D355C6.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E52FD6A6A46B7828B44D62F7E0AB52216C5E6EEAD8DE8F789F9A0C8D1195A94C/0/3133382e3230342e31342e302f32342d3234203d3e203431303935.roa
Signing time: Thu 13 Mar 2025 15:11:43 +0000
ROA not before: Thu 13 Mar 2025 15:06:43 +0000
ROA not after: Thu 12 Mar 2026 15:11:43 +0000
asID: 41095
IP address blocks: 138.204.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:e3:9a:6e:dd:2d:88:1a:30:2f:75:9a:3b:17:d3:10:27:8c:ef:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DCD3F0E4EE043C5BA9858A89B5A60E7FF2D355C6
Validity
Not Before: Mar 13 15:06:43 2025 GMT
Not After : Mar 12 15:11:43 2026 GMT
Subject: CN=9FE92F6A4F13F1A6B5264B666C33A16C92267C8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ac:65:6c:12:85:ab:0a:3a:ec:cc:e5:45:db:
10:9d:d6:86:51:1a:ef:13:93:39:77:ae:20:e4:17:
d9:07:5f:93:49:28:8c:4e:a4:6b:cc:00:af:e6:3a:
ab:5b:89:94:84:e9:23:1a:cd:cf:5d:f9:2a:cf:f2:
17:b7:92:91:e0:3f:bf:31:b8:53:f2:21:82:59:df:
30:dc:d7:b0:b8:70:b6:b0:97:b8:4d:dd:a6:c8:71:
95:71:0f:87:b9:b3:0f:4a:01:e9:10:56:37:cf:9a:
e9:66:65:9d:72:bd:38:20:53:04:f1:0c:f6:8f:51:
67:f5:48:b6:45:8a:62:98:bf:68:c1:92:de:dc:72:
06:dd:70:d6:8d:b3:c9:b4:fb:96:12:6e:64:35:f4:
e4:49:c7:97:2a:9d:cf:18:ba:2c:8f:1f:68:8d:36:
b3:f9:ff:d5:a2:19:63:97:a3:67:56:49:49:2b:5d:
1d:b5:93:31:d0:60:15:8f:4b:98:49:77:f7:4f:59:
e2:9e:5c:8d:e5:5b:8a:d5:52:a2:22:e0:90:1b:58:
3c:cd:7a:26:51:bf:b8:7a:97:d9:d3:5a:9c:2b:b8:
83:0f:72:86:ab:1d:78:70:ac:64:a6:7b:2e:5f:54:
92:3f:d8:a9:00:5d:ed:46:e0:21:14:dc:26:ab:fa:
84:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:E9:2F:6A:4F:13:F1:A6:B5:26:4B:66:6C:33:A1:6C:92:26:7C:8C
X509v3 Authority Key Identifier:
keyid:DC:D3:F0:E4:EE:04:3C:5B:A9:85:8A:89:B5:A6:0E:7F:F2:D3:55:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/E52FD6A6A46B7828B44D62F7E0AB52216C5E6EEAD8DE8F789F9A0C8D1195A94C/0/DCD3F0E4EE043C5BA9858A89B5A60E7FF2D355C6.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DCD3F0E4EE043C5BA9858A89B5A60E7FF2D355C6.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E52FD6A6A46B7828B44D62F7E0AB52216C5E6EEAD8DE8F789F9A0C8D1195A94C/0/3133382e3230342e31342e302f32342d3234203d3e203431303935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.204.14.0/24
Signature Algorithm: sha256WithRSAEncryption
30:75:4d:b4:a5:3e:de:ee:b0:71:f3:5f:94:07:9e:3e:d3:be:
62:9a:27:d5:ea:55:28:75:19:e9:48:b6:6e:97:f2:73:53:ab:
9b:08:ae:87:ca:fd:c2:c5:c4:99:ff:cb:f6:e6:52:72:85:3f:
bb:07:b5:da:c4:96:84:8c:f3:4b:3b:8b:7b:6e:b3:80:02:9a:
b2:b7:fe:06:85:ec:4b:6d:19:b2:8d:a3:cf:f6:4b:13:d0:c8:
fc:d5:c2:69:bd:6a:e6:2c:65:0d:c4:f0:c5:b0:83:31:b7:61:
a3:53:9d:db:77:53:53:bd:56:f9:d2:35:af:b6:d6:71:f9:f7:
f0:51:f4:79:71:c2:f1:cc:26:5e:e1:ac:d7:6b:fc:e3:90:77:
6d:e5:d7:5a:1e:ad:5c:7d:72:59:70:8f:9d:1f:76:60:63:0d:
c4:75:c2:62:1b:eb:98:98:63:49:2d:9f:a8:fe:e5:e2:6a:68:
48:fb:95:04:f0:ff:eb:95:c5:26:29:5f:3b:f3:2f:1f:e3:b7:
c8:d4:4a:9b:bb:d8:d9:21:95:6b:dd:dd:0a:13:43:4e:fd:d8:
79:0d:b5:4c:d2:d9:81:98:c1:e5:1b:35:02:1e:a2:33:f3:a2:
d8:26:a3:c2:3a:29:d5:3e:72:b4:e8:63:48:0d:dd:87:99:81:
db:e8:41:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:28:34 2025 by rpki-client