Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/FC60C9DA0B072FAAB19BC51C5DE33A8E7138352000994794564E328D959CF17D/0/3133382e3231392e37322e302f32322d3232203d3e20323633383239.roa
File: 3133382e3231392e37322e302f32322d3232203d3e20323633383239.roa (raw, json)
Hash identifier: 2AUMtLQZ7aZkrGKLCLHuDL7ZIJ9UUb1Nh45366eDHQc=
Subject key identifier: 84:C1:4A:90:9B:30:B3:ED:75:B3:B0:D2:86:0C:AA:E3:07:FE:E2:AE
Certificate issuer: /CN=533F533C8354549C5674B43113DA207BD7EF1A31
Certificate serial: 4FC88A07F6BA1D92A5E208869D6A4C05313DDDBA
Authority key identifier: 53:3F:53:3C:83:54:54:9C:56:74:B4:31:13:DA:20:7B:D7:EF:1A:31
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/533F533C8354549C5674B43113DA207BD7EF1A31.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/FC60C9DA0B072FAAB19BC51C5DE33A8E7138352000994794564E328D959CF17D/0/3133382e3231392e37322e302f32322d3232203d3e20323633383239.roa
Signing time: Tue 04 Feb 2025 18:40:15 +0000
ROA not before: Tue 04 Feb 2025 18:35:15 +0000
ROA not after: Tue 03 Feb 2026 18:40:15 +0000
asID: 263829
IP address blocks: 138.219.72.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:c8:8a:07:f6:ba:1d:92:a5:e2:08:86:9d:6a:4c:05:31:3d:dd:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=533F533C8354549C5674B43113DA207BD7EF1A31
Validity
Not Before: Feb 4 18:35:15 2025 GMT
Not After : Feb 3 18:40:15 2026 GMT
Subject: CN=84C14A909B30B3ED75B3B0D2860CAAE307FEE2AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:93:31:26:f1:1e:31:09:25:f1:26:6c:45:d5:
9f:77:7a:3c:6f:59:eb:12:0a:57:bb:07:d0:11:10:
7f:d5:19:a1:a0:bf:26:0f:be:b7:66:73:b1:7d:50:
c2:f5:ba:83:95:6e:68:9f:a2:9c:60:c8:f9:d1:fb:
c8:3f:4c:20:27:cd:7f:96:70:98:1f:91:0e:12:c0:
93:a9:ab:28:14:37:4e:1b:43:73:7c:9f:2f:ee:9c:
9d:8f:96:13:3b:a2:43:78:63:13:20:05:26:5d:d2:
4c:5e:33:38:5e:d3:c5:36:d9:90:b5:a4:50:3c:4e:
96:74:90:d7:dd:c7:3c:86:0f:47:43:8a:6b:ff:d4:
26:75:73:7b:3d:ea:a1:9c:6f:4e:af:38:15:c0:8e:
0d:43:ff:df:ff:98:76:ce:54:0c:68:71:c4:4c:9a:
c9:d4:39:61:98:6d:f4:36:1d:9b:16:15:a3:19:e6:
d2:78:15:4c:0b:c5:94:34:e4:58:cc:57:3c:5e:c4:
72:96:f0:33:12:60:ad:d7:2c:57:b1:39:a3:15:f3:
98:1b:85:5c:e3:e6:58:61:16:f3:12:9a:1c:d7:59:
ec:2e:53:da:58:08:c8:37:a1:f8:13:9c:33:bc:a1:
d5:3f:d6:9b:58:05:20:4b:ef:8f:6e:3a:76:72:a8:
26:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:C1:4A:90:9B:30:B3:ED:75:B3:B0:D2:86:0C:AA:E3:07:FE:E2:AE
X509v3 Authority Key Identifier:
keyid:53:3F:53:3C:83:54:54:9C:56:74:B4:31:13:DA:20:7B:D7:EF:1A:31
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/FC60C9DA0B072FAAB19BC51C5DE33A8E7138352000994794564E328D959CF17D/0/533F533C8354549C5674B43113DA207BD7EF1A31.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/533F533C8354549C5674B43113DA207BD7EF1A31.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/FC60C9DA0B072FAAB19BC51C5DE33A8E7138352000994794564E328D959CF17D/0/3133382e3231392e37322e302f32322d3232203d3e20323633383239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.219.72.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:ce:61:bb:87:a6:62:d9:48:37:53:f4:27:dc:12:9f:63:ca:
00:af:f4:16:71:c5:93:a3:e7:0a:0b:86:44:51:d3:d9:31:fc:
55:a7:2a:8a:55:54:49:02:9e:25:38:ef:85:0c:30:33:fe:12:
1e:cb:ca:3a:23:72:f0:43:88:fc:0b:ac:e3:71:30:eb:e2:a6:
af:6b:fd:de:8f:7f:1e:98:ca:05:e4:d5:30:5b:5f:f2:49:b3:
41:93:c3:7c:51:0b:36:95:fa:08:ae:fc:dc:24:a0:c1:27:9d:
07:4f:97:2b:bb:71:f7:c1:b4:fb:4c:0c:a8:1f:95:05:a1:98:
7e:61:9a:4e:ee:54:dc:14:95:83:4a:a7:33:1f:ce:62:28:84:
a4:46:c7:5d:73:4b:ec:01:51:e7:ce:48:0e:50:3b:28:ca:c0:
13:17:0e:17:8a:96:0a:9f:18:f2:c5:05:1d:de:e9:78:97:63:
d8:2e:a9:11:d9:97:ea:65:42:d5:65:ae:c5:36:91:77:ce:ea:
0a:4a:c7:5c:91:9b:1a:09:31:08:f3:13:9c:dd:43:76:7b:25:
4d:06:f2:97:28:3d:df:8d:7a:c5:91:a1:1d:eb:de:22:ae:b3:
b4:4f:0b:a2:a2:06:07:36:b5:70:ac:4b:ea:b8:68:ba:04:39:
80:ea:fb:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:11:50 2025 by rpki-client