Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/FC60C9DA0B072FAAB19BC51C5DE33A8E7138352000994794564E328D959CF17D/0/3133382e33362e3133362e302f32322d3232203d3e20323633383239.roa
File: 3133382e33362e3133362e302f32322d3232203d3e20323633383239.roa (raw, json)
Hash identifier: cIresJVe1MgQzlCQQZUPcrYXf60vw1shBDDKb68VppI=
Subject key identifier: 04:5E:47:B1:FA:46:26:9E:2A:DE:74:08:27:13:21:65:58:5E:A6:25
Certificate issuer: /CN=533F533C8354549C5674B43113DA207BD7EF1A31
Certificate serial: 61F37A204BAF9E8A0009AA43163D46F19FA88182
Authority key identifier: 53:3F:53:3C:83:54:54:9C:56:74:B4:31:13:DA:20:7B:D7:EF:1A:31
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/533F533C8354549C5674B43113DA207BD7EF1A31.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/FC60C9DA0B072FAAB19BC51C5DE33A8E7138352000994794564E328D959CF17D/0/3133382e33362e3133362e302f32322d3232203d3e20323633383239.roa
Signing time: Tue 04 Feb 2025 18:40:14 +0000
ROA not before: Tue 04 Feb 2025 18:35:14 +0000
ROA not after: Tue 03 Feb 2026 18:40:14 +0000
asID: 263829
IP address blocks: 138.36.136.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:f3:7a:20:4b:af:9e:8a:00:09:aa:43:16:3d:46:f1:9f:a8:81:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=533F533C8354549C5674B43113DA207BD7EF1A31
Validity
Not Before: Feb 4 18:35:14 2025 GMT
Not After : Feb 3 18:40:14 2026 GMT
Subject: CN=045E47B1FA46269E2ADE740827132165585EA625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b0:80:44:8b:c8:02:99:90:47:cd:fa:31:a3:
5e:07:d4:9e:83:a0:c2:96:6a:b4:e5:be:d7:22:e6:
20:0e:b3:1a:98:6f:73:a9:6b:b5:c0:a2:74:78:67:
46:21:a2:5f:7d:aa:0e:14:d7:12:bd:e9:17:e9:2a:
9d:5f:74:31:24:ed:00:9a:04:36:a9:33:2e:04:b1:
a6:0e:6d:d9:61:d6:05:54:63:99:c5:07:d4:74:86:
2e:a7:8d:39:d7:5a:47:a9:fc:38:d4:09:54:f2:bf:
34:c8:bc:e6:21:32:ce:4b:89:b0:1d:6d:6a:94:60:
68:02:9e:af:73:91:7a:ca:fd:fb:1f:6a:82:cd:ba:
93:5b:4c:d4:91:d7:bc:7e:6c:bc:14:eb:3d:8b:d7:
cf:0a:d6:f9:8a:20:34:54:12:fd:60:3b:b6:40:84:
0c:2a:78:fb:2e:25:37:4c:92:5d:85:b1:7c:c8:55:
d1:7b:41:93:fd:0a:4e:0d:9e:5c:f0:3e:ff:61:a5:
9d:66:95:60:5b:d6:31:06:2a:1b:c6:ac:20:84:1a:
82:ac:c2:f9:53:e9:56:8d:3d:11:0d:f3:b0:4b:33:
0d:8f:4e:83:ad:c9:06:34:5d:df:39:7f:3a:20:29:
69:7c:85:70:aa:ff:2f:20:66:2d:30:ce:3c:8b:3e:
66:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:5E:47:B1:FA:46:26:9E:2A:DE:74:08:27:13:21:65:58:5E:A6:25
X509v3 Authority Key Identifier:
keyid:53:3F:53:3C:83:54:54:9C:56:74:B4:31:13:DA:20:7B:D7:EF:1A:31
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/FC60C9DA0B072FAAB19BC51C5DE33A8E7138352000994794564E328D959CF17D/0/533F533C8354549C5674B43113DA207BD7EF1A31.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/533F533C8354549C5674B43113DA207BD7EF1A31.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/FC60C9DA0B072FAAB19BC51C5DE33A8E7138352000994794564E328D959CF17D/0/3133382e33362e3133362e302f32322d3232203d3e20323633383239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.36.136.0/22
Signature Algorithm: sha256WithRSAEncryption
79:5e:3f:c6:37:c2:66:34:d4:33:18:0d:2e:f0:1f:7b:10:3f:
78:40:77:d6:ba:de:17:83:69:c0:e5:1a:73:53:83:39:42:35:
a8:3d:fb:6d:b9:e0:95:93:35:d7:5e:9b:8b:51:35:df:14:5b:
c6:c4:b2:70:da:37:97:80:68:b1:09:0e:ff:f4:17:ed:93:55:
b1:01:7d:23:2c:86:20:07:6f:5c:39:f9:76:d9:62:a9:31:1d:
5e:ba:2d:81:ff:1e:c1:2c:63:9a:a8:79:7a:8f:83:9e:61:0a:
1c:78:97:c7:ea:2c:39:ae:79:3f:5f:cc:54:17:d3:16:91:fd:
43:ca:09:3f:11:0b:40:67:47:c0:2b:96:9c:16:9b:59:e5:d8:
da:b1:52:55:24:87:14:7c:29:84:03:e1:97:c6:6b:c5:73:5d:
59:1e:14:09:89:71:b3:6e:81:f0:1d:7e:2c:6d:f1:1f:bf:19:
97:37:a0:db:5f:f9:8b:c4:ec:2d:9e:18:e3:85:01:85:7e:e8:
d5:0b:3f:f7:4c:9f:7b:23:59:d9:6e:8f:0a:6b:29:cd:32:e9:
ac:25:09:2c:1d:d9:bc:ca:14:47:8b:c9:a3:99:cd:cf:3b:f0:
56:de:41:e4:6d:fb:e1:85:09:57:f3:c0:d5:7e:3a:76:c5:14:
02:34:e1:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:12:45 2025 by rpki-client