Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F4E0D369BDA1BE128FD6B1B238232DB4F414B5B64EB3F6DF8B03D93DE6FBA072/0/3133382e3230342e34302e302f32322d3234203d3e20323633373536.roa
File: 3133382e3230342e34302e302f32322d3234203d3e20323633373536.roa (raw, json)
Hash identifier: u+ujrJgPmZtcdjJTpHFf8bbftsn30NGjYlUat+jHQVA=
Subject key identifier: 41:78:5E:0A:D3:D8:E4:1F:4C:30:E8:04:4B:0C:F8:65:C7:B9:09:45
Certificate issuer: /CN=C08E42881CA1FD152E117E3F6E43B23302A768EF
Certificate serial: 791D0CA13F623AC0FC4B62DF98CD4812E372DFF2
Authority key identifier: C0:8E:42:88:1C:A1:FD:15:2E:11:7E:3F:6E:43:B2:33:02:A7:68:EF
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C08E42881CA1FD152E117E3F6E43B23302A768EF.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F4E0D369BDA1BE128FD6B1B238232DB4F414B5B64EB3F6DF8B03D93DE6FBA072/0/3133382e3230342e34302e302f32322d3234203d3e20323633373536.roa
Signing time: Tue 04 Feb 2025 18:35:00 +0000
ROA not before: Tue 04 Feb 2025 18:30:00 +0000
ROA not after: Tue 03 Feb 2026 18:35:00 +0000
asID: 263756
IP address blocks: 138.204.40.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:1d:0c:a1:3f:62:3a:c0:fc:4b:62:df:98:cd:48:12:e3:72:df:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C08E42881CA1FD152E117E3F6E43B23302A768EF
Validity
Not Before: Feb 4 18:30:00 2025 GMT
Not After : Feb 3 18:35:00 2026 GMT
Subject: CN=41785E0AD3D8E41F4C30E8044B0CF865C7B90945
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:2a:23:2f:ac:93:eb:8d:2f:54:c9:b9:09:9d:
84:cb:31:58:42:fd:8b:f9:df:fc:a5:c5:f9:b5:0e:
3b:a1:26:a3:9e:bb:01:64:6e:27:17:1a:8e:59:f4:
1e:95:aa:24:54:78:76:50:90:d1:16:e4:2d:8e:6f:
eb:ba:7e:a2:fd:fc:bf:ff:28:f3:af:29:18:37:1d:
e4:93:e4:31:73:fc:76:4a:a4:85:f1:96:c8:c3:3c:
0d:bd:cd:4d:0e:70:ad:22:7e:e9:d6:c1:f1:53:b9:
b1:5e:23:fd:0f:ba:79:5b:a4:17:38:02:2b:68:c1:
d2:bf:4f:86:6b:cf:21:72:64:4b:d2:0d:1c:ae:7d:
72:20:be:dc:21:6a:d5:bd:b3:8d:93:33:48:46:9c:
03:1e:2c:60:93:7a:9b:37:89:77:94:42:a1:ae:6d:
56:1e:ad:ff:49:ef:45:94:4d:76:7e:c5:19:55:35:
66:fd:f4:e5:11:16:d2:73:0e:76:f6:b6:91:7e:c4:
6f:e9:61:90:c1:5d:8e:b2:37:04:3f:9f:40:dc:cb:
47:c0:bd:9d:eb:f9:9e:32:11:74:62:08:e0:8c:0c:
97:0c:58:b3:f2:f7:a9:d4:e6:ec:11:70:63:b5:b7:
e7:05:84:2b:22:68:66:91:6a:d6:0d:33:71:a5:25:
0c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:78:5E:0A:D3:D8:E4:1F:4C:30:E8:04:4B:0C:F8:65:C7:B9:09:45
X509v3 Authority Key Identifier:
keyid:C0:8E:42:88:1C:A1:FD:15:2E:11:7E:3F:6E:43:B2:33:02:A7:68:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/F4E0D369BDA1BE128FD6B1B238232DB4F414B5B64EB3F6DF8B03D93DE6FBA072/0/C08E42881CA1FD152E117E3F6E43B23302A768EF.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C08E42881CA1FD152E117E3F6E43B23302A768EF.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F4E0D369BDA1BE128FD6B1B238232DB4F414B5B64EB3F6DF8B03D93DE6FBA072/0/3133382e3230342e34302e302f32322d3234203d3e20323633373536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.204.40.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:d2:48:66:7a:5a:50:1d:90:97:18:64:36:3c:2d:54:96:59:
67:4f:af:9d:6a:6c:b0:05:99:f4:a6:8f:62:c6:0b:90:d5:79:
75:61:49:7e:d8:e0:d1:81:22:f4:e7:54:0b:5b:68:1a:d8:4d:
a6:ff:03:97:c4:08:0f:6b:cc:d3:ec:40:8d:a5:d5:b2:4b:d4:
79:82:02:e9:90:0d:cb:48:4b:5a:ec:10:80:df:48:1f:6e:a1:
1a:45:83:09:e6:b6:35:12:e4:60:5a:45:d1:04:ed:96:29:c7:
7b:f6:fa:33:bd:62:a6:0c:38:fa:87:b8:d5:28:a4:02:c2:1b:
c1:eb:7a:8e:53:39:0c:c3:0e:9d:40:f4:6e:e8:64:b3:d5:81:
dd:a1:a8:2c:fb:d8:cd:e0:11:7e:d1:2b:60:5a:f8:d2:ec:6b:
be:5e:41:50:c0:7c:d2:36:2d:b8:4c:52:7d:bc:b4:5d:7d:48:
c4:90:90:6f:cb:bc:fd:57:a9:f4:16:ea:d8:44:ee:da:34:7d:
63:70:e3:23:4f:68:3d:ff:a1:f7:fd:02:cc:85:30:5a:2e:17:
4e:f2:39:9a:bd:bf:56:94:45:b6:3a:ad:0f:8e:0d:85:3a:0e:
87:d5:c9:c7:f5:3a:21:13:0c:78:4a:76:29:84:48:16:69:58:
88:32:0f:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:07:28 2025 by rpki-client