Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E52FD6A6A46B7828B44D62F7E0AB52216C5E6EEAD8DE8F789F9A0C8D1195A94C/0/3133382e3230342e31352e302f32342d3234203d3e203431303935.roa
File: 3133382e3230342e31352e302f32342d3234203d3e203431303935.roa (raw, json)
Hash identifier: +x4snRpMugw87hf+BfxY0Q8F8yhrnaYI/C8/O0Is1aU=
Subject key identifier: 72:F3:95:7F:2F:07:3C:98:48:AC:B0:7B:5F:F4:A1:EC:5B:CE:17:DA
Certificate issuer: /CN=DCD3F0E4EE043C5BA9858A89B5A60E7FF2D355C6
Certificate serial: 79F1FBFE07F629DAA9BD52E896E3D478912E8904
Authority key identifier: DC:D3:F0:E4:EE:04:3C:5B:A9:85:8A:89:B5:A6:0E:7F:F2:D3:55:C6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DCD3F0E4EE043C5BA9858A89B5A60E7FF2D355C6.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E52FD6A6A46B7828B44D62F7E0AB52216C5E6EEAD8DE8F789F9A0C8D1195A94C/0/3133382e3230342e31352e302f32342d3234203d3e203431303935.roa
Signing time: Thu 13 Mar 2025 15:11:43 +0000
ROA not before: Thu 13 Mar 2025 15:06:43 +0000
ROA not after: Thu 12 Mar 2026 15:11:43 +0000
asID: 41095
IP address blocks: 138.204.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:f1:fb:fe:07:f6:29:da:a9:bd:52:e8:96:e3:d4:78:91:2e:89:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DCD3F0E4EE043C5BA9858A89B5A60E7FF2D355C6
Validity
Not Before: Mar 13 15:06:43 2025 GMT
Not After : Mar 12 15:11:43 2026 GMT
Subject: CN=72F3957F2F073C9848ACB07B5FF4A1EC5BCE17DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:cd:45:19:17:6c:fb:43:c4:9f:23:e9:cb:4a:
a9:77:8e:3c:94:2f:bf:e7:b6:ea:af:ff:60:de:16:
37:fc:4e:e4:80:20:a2:dc:c6:f6:b9:2b:94:b5:9b:
35:75:8e:ec:96:af:73:1e:dc:0c:3b:72:28:8b:98:
8a:b4:18:12:35:6c:fd:1b:8c:f6:a2:2b:24:46:a6:
64:b6:23:76:5e:61:91:fd:4f:52:60:32:86:e8:48:
01:d6:08:46:8f:54:28:50:9f:2d:82:f1:32:54:84:
22:6e:0c:0a:62:49:a7:a1:05:65:e5:f0:a3:9d:2f:
b1:45:b1:ff:b1:63:62:cb:a5:98:9d:99:85:82:dc:
b1:a9:7a:8e:ad:d3:7c:45:af:21:da:f4:56:61:15:
ac:47:57:07:25:53:b8:4f:8b:44:bc:65:d1:85:cc:
79:60:eb:e8:c7:18:ce:02:26:4e:83:72:14:a5:2b:
f0:9f:d3:f0:e2:86:a9:ea:9a:96:b3:c3:d0:9d:5c:
6b:df:38:98:f6:01:5c:60:c5:54:0c:dd:6e:ed:c2:
15:d0:54:b3:7b:01:58:c0:76:c5:16:a2:03:90:5a:
44:3a:9c:f6:f0:df:d1:b5:34:de:b2:8f:ea:d5:5a:
71:36:17:00:b7:ef:30:be:15:69:ae:b1:e7:6d:48:
71:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:F3:95:7F:2F:07:3C:98:48:AC:B0:7B:5F:F4:A1:EC:5B:CE:17:DA
X509v3 Authority Key Identifier:
keyid:DC:D3:F0:E4:EE:04:3C:5B:A9:85:8A:89:B5:A6:0E:7F:F2:D3:55:C6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/E52FD6A6A46B7828B44D62F7E0AB52216C5E6EEAD8DE8F789F9A0C8D1195A94C/0/DCD3F0E4EE043C5BA9858A89B5A60E7FF2D355C6.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DCD3F0E4EE043C5BA9858A89B5A60E7FF2D355C6.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E52FD6A6A46B7828B44D62F7E0AB52216C5E6EEAD8DE8F789F9A0C8D1195A94C/0/3133382e3230342e31352e302f32342d3234203d3e203431303935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.204.15.0/24
Signature Algorithm: sha256WithRSAEncryption
12:47:bc:8d:a5:61:07:b7:0e:ad:62:83:aa:87:5d:ee:ae:4d:
48:76:50:ec:39:43:c1:f4:eb:9b:3d:d6:e4:1d:ec:60:78:92:
88:31:c7:b7:4a:44:de:30:d3:fa:60:a2:6e:5d:b9:48:c1:8a:
37:e1:8b:97:41:63:58:a7:6a:41:31:21:f5:5f:13:40:cc:28:
9c:b8:b0:8a:58:fd:39:1b:be:74:79:bb:85:fa:db:56:58:9f:
f6:22:bc:50:46:59:b4:24:05:d2:96:a6:94:5f:f5:f0:78:62:
50:c2:96:94:1b:53:fb:35:57:d9:fa:e5:d3:76:7f:cd:6f:58:
7b:60:71:2e:a5:31:f1:88:fc:b6:5a:79:2c:8e:80:bd:32:22:
a2:fb:8e:3a:bf:bc:11:99:d2:c4:59:f6:7d:1a:5a:5d:40:45:
27:a5:7f:46:02:e4:0b:3c:b9:23:1d:8a:bf:c8:13:43:bb:ee:
ea:97:cf:1f:a7:fe:ab:17:bc:b2:cf:e5:21:09:ed:8c:b4:bd:
22:1c:66:f3:77:06:3c:b7:1e:cb:bc:2f:bf:e8:4a:30:82:66:
3c:ef:d9:43:cb:2d:47:d9:b4:52:dc:ab:cd:e0:92:0d:e1:e0:
1a:57:f8:b9:0c:2b:66:86:8b:94:83:75:1d:9a:e8:cd:6a:e4:
a1:86:fb:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:30:59 2025 by rpki-client