Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/EE664F72D9B391E53BD233E258BF0C2E97193405A4F8BAC8A6D7BD823EA3C9A6/0/3133382e3131372e3134302e302f32342d3234203d3e203532343638.roa
File: 3133382e3131372e3134302e302f32342d3234203d3e203532343638.roa (raw, json)
Hash identifier: XcLaxTKbVUscmvVn0U3PcAZRDTuUvTleVGRPUqZ90M4=
Subject key identifier: BB:89:59:33:57:F5:08:6C:DC:2F:6C:86:F0:01:3C:3C:1D:10:F0:79
Certificate issuer: /CN=F279D661C4E03FF0C843C0E122E4839565933C7C
Certificate serial: 2402D3588F79055AFE4C5675C69BA8D8B72923B2
Authority key identifier: F2:79:D6:61:C4:E0:3F:F0:C8:43:C0:E1:22:E4:83:95:65:93:3C:7C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F279D661C4E03FF0C843C0E122E4839565933C7C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/EE664F72D9B391E53BD233E258BF0C2E97193405A4F8BAC8A6D7BD823EA3C9A6/0/3133382e3131372e3134302e302f32342d3234203d3e203532343638.roa
Signing time: Tue 25 Feb 2025 05:11:00 +0000
ROA not before: Tue 25 Feb 2025 05:06:00 +0000
ROA not after: Tue 24 Feb 2026 05:11:00 +0000
asID: 52468
IP address blocks: 138.117.140.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:02:d3:58:8f:79:05:5a:fe:4c:56:75:c6:9b:a8:d8:b7:29:23:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F279D661C4E03FF0C843C0E122E4839565933C7C
Validity
Not Before: Feb 25 05:06:00 2025 GMT
Not After : Feb 24 05:11:00 2026 GMT
Subject: CN=BB89593357F5086CDC2F6C86F0013C3C1D10F079
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:26:ab:a4:5a:47:fd:75:b8:19:ec:84:8a:f2:
ef:48:80:53:20:3d:a6:dd:1d:b6:c1:0e:7d:71:c6:
1c:89:d7:1d:18:e1:ef:ef:23:18:07:68:d9:39:95:
78:b8:c0:6d:b3:2b:80:4b:5a:c1:68:be:ff:38:dd:
70:b2:12:6a:88:20:dc:a2:f7:8e:35:61:be:c4:93:
bc:07:0b:cc:a5:e7:b2:06:70:be:3b:00:5e:68:14:
7f:11:71:49:d7:fe:d8:a4:64:0c:04:79:41:da:7b:
5c:e9:d3:70:bb:7d:de:5a:82:57:fe:18:0f:02:f7:
96:54:11:db:77:87:cb:43:dc:ac:ac:8a:ed:3c:69:
cc:0f:be:15:ad:8c:73:97:2e:71:46:db:1f:67:17:
2d:87:2e:a8:a8:b8:05:3c:6c:e9:46:37:ee:fe:be:
34:5a:11:c5:7c:bd:53:c0:a2:f7:43:8b:7b:ee:3c:
3a:9d:8c:72:c3:4c:b8:47:61:3e:8e:96:1c:00:bb:
9f:95:e6:82:57:72:78:b1:a2:b4:d2:8b:0b:ce:f8:
8b:d7:23:a2:fd:20:f5:19:04:8e:d5:d8:d6:e8:90:
44:45:a3:bc:5c:0a:7b:d3:1c:c6:a2:c4:ca:cd:92:
d7:3f:c1:46:cb:5f:ff:bf:c4:0a:a2:7a:79:0a:ef:
d7:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:89:59:33:57:F5:08:6C:DC:2F:6C:86:F0:01:3C:3C:1D:10:F0:79
X509v3 Authority Key Identifier:
keyid:F2:79:D6:61:C4:E0:3F:F0:C8:43:C0:E1:22:E4:83:95:65:93:3C:7C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/EE664F72D9B391E53BD233E258BF0C2E97193405A4F8BAC8A6D7BD823EA3C9A6/0/F279D661C4E03FF0C843C0E122E4839565933C7C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F279D661C4E03FF0C843C0E122E4839565933C7C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/EE664F72D9B391E53BD233E258BF0C2E97193405A4F8BAC8A6D7BD823EA3C9A6/0/3133382e3131372e3134302e302f32342d3234203d3e203532343638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.117.140.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:ea:4b:13:e1:0b:b2:43:ef:7b:ea:68:54:5f:b9:c2:e2:fa:
de:48:e5:2d:88:28:42:8a:ad:1e:de:6a:f7:be:c9:68:34:f8:
95:df:2b:89:66:a1:85:05:1e:55:e3:b0:ef:50:83:7e:81:da:
d5:9d:09:28:4b:7d:6c:73:66:b5:10:e6:3b:47:19:fc:60:0e:
5d:54:9d:2c:e9:2a:1d:d4:cd:22:40:0b:eb:f7:2b:ae:6e:8e:
49:55:14:2a:16:71:7a:a5:1b:74:3b:5f:36:fe:8a:03:35:63:
0a:67:93:ce:9d:56:21:cf:f0:87:af:ef:d3:5e:10:32:01:14:
55:b4:e3:b0:a9:cd:80:18:03:70:cf:b4:1e:2d:8a:2a:d4:47:
25:bb:c4:a1:c4:31:b7:85:10:ef:0d:e9:92:b9:db:fe:c0:01:
92:87:3f:85:45:7c:89:98:10:ef:67:85:5b:43:de:6f:e9:4f:
3e:0b:45:de:cd:62:f0:71:9b:6a:64:b2:97:19:59:cb:f5:11:
cb:29:c0:95:88:bf:a2:37:20:a0:8a:51:d1:0f:2a:1f:bc:e3:
08:07:b1:b4:9b:6a:e8:44:5f:48:cb:7d:37:e2:db:32:5d:a7:
a3:0d:34:8c:05:1b:5f:1a:73:fd:0c:ea:3e:d5:e3:6d:fb:dc:
fa:31:77:f2
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUJALTWI95BVr+TFZ1xpuo2LcpI7IwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjI3OUQ2NjFDNEUwM0ZGMEM4NDNDMEUxMjJFNDgzOTU2
NTkzM0M3QzAeFw0yNTAyMjUwNTA2MDBaFw0yNjAyMjQwNTExMDBaMDMxMTAvBgNV
BAMTKEJCODk1OTMzNTdGNTA4NkNEQzJGNkM4NkYwMDEzQzNDMUQxMEYwNzkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCJqukWkf9dbgZ7ISK8u9IgFMg
PabdHbbBDn1xxhyJ1x0Y4e/vIxgHaNk5lXi4wG2zK4BLWsFovv843XCyEmqIINyi
9441Yb7Ek7wHC8yl57IGcL47AF5oFH8RcUnX/tikZAwEeUHae1zp03C7fd5aglf+
GA8C95ZUEdt3h8tD3Kysiu08acwPvhWtjHOXLnFG2x9nFy2HLqiouAU8bOlGN+7+
vjRaEcV8vVPAovdDi3vuPDqdjHLDTLhHYT6OlhwAu5+V5oJXcnixorTSiwvO+IvX
I6L9IPUZBI7V2NbokERFo7xcCnvTHMaixMrNktc/wUbLX/+/xAqienkK79dZAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUu4lZM1f1CGzcL2yG8AE8PB0Q8HkwHwYDVR0j
BBgwFoAU8nnWYcTgP/DIQ8DhIuSDlWWTPHwwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9FRTY2NEY3MkQ5QjM5MUU1M0JEMjMzRTI1OEJGMEMyRTk3
MTkzNDA1QTRGOEJBQzhBNkQ3QkQ4MjNFQTNDOUE2LzAvRjI3OUQ2NjFDNEUwM0ZG
MEM4NDNDMEUxMjJFNDgzOTU2NTkzM0M3Qy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9GMjc5RDY2MUM0RTAzRkYwQzg0
M0MwRTEyMkU0ODM5NTY1OTMzQzdDLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRUU2NjRGNzJEOUIzOTFFNTNCRDIzM0UyNThCRjBDMkU5NzE5MzQwNUE0
RjhCQUM4QTZEN0JEODIzRUEzQzlBNi8wLzMxMzMzODJlMzEzMTM3MmUzMTM0MzAy
ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzNTMyMzQzNjM4LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAinWM
MA0GCSqGSIb3DQEBCwUAA4IBAQC26ksT4QuyQ+976mhUX7nC4vreSOUtiChCiq0e
3mr3vsloNPiV3yuJZqGFBR5V47DvUIN+gdrVnQkoS31sc2a1EOY7Rxn8YA5dVJ0s
6Sod1M0iQAvr9yuubo5JVRQqFnF6pRt0O182/ooDNWMKZ5POnVYhz/CHr+/TXhAy
ARRVtOOwqc2AGANwz7QeLYoq1Eclu8ShxDG3hRDvDemSudv+wAGShz+FRXyJmBDv
Z4VbQ95v6U8+C0XezWLwcZtqZLKXGVnL9RHLKcCViL+iNyCgilHRDyofvOMIB7G0
m2roRF9Iy3034tsyXaejDTSMBRtfGnP9DOo+1eNt+9z6MXfy
-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:52 2025 by rpki-client