Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F33622924E5F8D4BD0F1A61FAF7716DAD8DBE66FE9AEBDA179D95AED56B2B697/0/3133382e3230342e342e302f32322d3234203d3e20323633373737.roa
File: 3133382e3230342e342e302f32322d3234203d3e20323633373737.roa (raw, json)
Hash identifier: Frh0wJUvShZYAtR6/HHxQDDuVdTBdXvnNyz/cEQRAEA=
Subject key identifier: D7:16:28:41:D9:5A:E9:58:89:DF:C4:84:CE:A4:CC:5C:B5:1E:0C:CE
Certificate issuer: /CN=765D05128298873F41D1D65632AB25BDBE113398
Certificate serial: 04AA249D01EDE7DF4CA80C36D3B095CC28C675D6
Authority key identifier: 76:5D:05:12:82:98:87:3F:41:D1:D6:56:32:AB:25:BD:BE:11:33:98
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/765D05128298873F41D1D65632AB25BDBE113398.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F33622924E5F8D4BD0F1A61FAF7716DAD8DBE66FE9AEBDA179D95AED56B2B697/0/3133382e3230342e342e302f32322d3234203d3e20323633373737.roa
Signing time: Tue 04 Feb 2025 18:12:01 +0000
ROA not before: Tue 04 Feb 2025 18:07:01 +0000
ROA not after: Tue 03 Feb 2026 18:12:01 +0000
asID: 263777
IP address blocks: 138.204.4.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:aa:24:9d:01:ed:e7:df:4c:a8:0c:36:d3:b0:95:cc:28:c6:75:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=765D05128298873F41D1D65632AB25BDBE113398
Validity
Not Before: Feb 4 18:07:01 2025 GMT
Not After : Feb 3 18:12:01 2026 GMT
Subject: CN=D7162841D95AE95889DFC484CEA4CC5CB51E0CCE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:51:64:90:e2:96:76:a7:67:30:bf:27:a1:bf:
0a:e7:96:f4:64:53:0d:e3:27:59:23:6e:29:45:85:
eb:31:6c:7a:3b:86:84:f0:9f:3f:b5:d3:55:fa:17:
f6:24:ee:66:6f:88:1f:08:42:ef:4f:36:88:af:1a:
3a:a5:e6:db:6e:e8:2b:56:9a:46:1c:53:ed:02:47:
08:c5:18:3e:b2:c9:f8:a5:01:4c:75:77:bc:12:49:
cc:fc:1e:bf:d9:cc:39:36:a3:7b:e5:e7:68:c0:cf:
94:bb:54:1d:45:47:fc:a2:ab:5c:2f:90:0a:5f:2c:
1e:87:f9:9f:1d:9a:e6:d6:8d:e9:47:41:90:8e:1c:
b3:2a:e7:fc:6d:ff:35:47:5e:1f:16:68:e2:1a:fb:
03:80:ba:32:16:ba:62:9a:5f:b9:d2:4a:e6:95:5c:
9a:cf:d1:c8:1e:d2:ed:34:87:04:57:fd:c6:11:3f:
8f:7a:ab:d3:af:e7:0e:e2:86:11:c0:21:eb:7b:e2:
af:aa:ec:c7:d4:f1:9e:d9:e5:ac:d5:e6:14:2a:bf:
7c:c5:66:a5:2d:09:be:e3:03:6d:7d:24:cd:81:fe:
5a:b6:e9:44:82:aa:eb:4b:ed:16:ed:28:0a:92:1e:
51:01:36:9f:80:2c:eb:81:28:a7:da:f1:00:b6:33:
b4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:16:28:41:D9:5A:E9:58:89:DF:C4:84:CE:A4:CC:5C:B5:1E:0C:CE
X509v3 Authority Key Identifier:
keyid:76:5D:05:12:82:98:87:3F:41:D1:D6:56:32:AB:25:BD:BE:11:33:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/F33622924E5F8D4BD0F1A61FAF7716DAD8DBE66FE9AEBDA179D95AED56B2B697/0/765D05128298873F41D1D65632AB25BDBE113398.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/765D05128298873F41D1D65632AB25BDBE113398.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F33622924E5F8D4BD0F1A61FAF7716DAD8DBE66FE9AEBDA179D95AED56B2B697/0/3133382e3230342e342e302f32322d3234203d3e20323633373737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.204.4.0/22
Signature Algorithm: sha256WithRSAEncryption
35:5e:71:1c:ab:0f:f7:25:92:8d:c3:dc:0a:04:fa:61:bb:84:
b6:b0:e1:2a:90:b5:b1:72:94:96:25:8a:5f:d8:e7:2a:2e:2c:
82:e1:13:e9:6b:d3:b3:b5:26:c7:76:17:a4:05:90:42:e1:7d:
1e:85:d4:33:68:ca:17:24:62:fb:c5:10:eb:0f:86:b5:8a:27:
b2:65:3d:14:58:56:2e:5e:7e:28:51:0a:91:da:7d:df:2e:d4:
e3:2c:28:67:20:d5:2d:e9:a0:90:3b:3b:19:33:07:bb:22:5f:
2c:43:ce:87:1f:92:55:da:21:15:39:5f:6a:2c:46:c3:95:d3:
5d:5b:98:f5:7e:9d:c5:57:b5:e3:d3:2d:e7:ed:f1:9a:95:ac:
7d:85:00:cc:8e:68:33:53:81:0a:64:e7:96:8c:f9:ba:a8:d8:
ba:66:33:a2:9c:8b:6b:12:dd:4f:8a:f6:06:02:c2:8d:ec:4a:
06:9a:af:db:b2:a6:ab:8a:1a:85:b5:c1:3f:69:fd:9e:4c:b6:
d0:6d:f8:22:c5:32:09:e2:96:d1:79:3e:31:ea:36:55:ca:f8:
14:85:e9:dc:82:42:c1:d1:10:5b:37:20:49:70:5f:25:6e:93:
d7:da:2d:83:8b:6a:2a:ab:58:c1:5c:38:d0:6c:54:93:bf:ef:
cc:ba:7f:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:56:01 2025 by rpki-client