Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/FE52AC90C50FD22FE2521E5D54BBC6A5B30781F33450A62DEDDDAF3AB3F705ED/0/3133382e3131372e34332e302f32342d3234203d3e20323639393830.roa
File: 3133382e3131372e34332e302f32342d3234203d3e20323639393830.roa (raw, json)
Hash identifier: KEQBP/I/3eKRZFMZGZGkFGj57LmL7hWygI8OEZC1H6E=
Subject key identifier: F8:16:F5:22:78:0C:76:88:60:7C:F6:99:C2:E4:2C:59:F2:F3:68:91
Certificate issuer: /CN=2FD825A27B2B347F806C2CACDF49209D17BBF654
Certificate serial: 7611B9A7083D1251A1C31418C70C9DB7FFA20DA7
Authority key identifier: 2F:D8:25:A2:7B:2B:34:7F:80:6C:2C:AC:DF:49:20:9D:17:BB:F6:54
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2FD825A27B2B347F806C2CACDF49209D17BBF654.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/FE52AC90C50FD22FE2521E5D54BBC6A5B30781F33450A62DEDDDAF3AB3F705ED/0/3133382e3131372e34332e302f32342d3234203d3e20323639393830.roa
Signing time: Fri 21 Feb 2025 21:45:00 +0000
ROA not before: Fri 21 Feb 2025 21:40:00 +0000
ROA not after: Fri 20 Feb 2026 21:45:00 +0000
asID: 269980
IP address blocks: 138.117.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:11:b9:a7:08:3d:12:51:a1:c3:14:18:c7:0c:9d:b7:ff:a2:0d:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2FD825A27B2B347F806C2CACDF49209D17BBF654
Validity
Not Before: Feb 21 21:40:00 2025 GMT
Not After : Feb 20 21:45:00 2026 GMT
Subject: CN=F816F522780C7688607CF699C2E42C59F2F36891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5a:92:7e:2d:c9:b0:56:b8:d3:97:94:f4:ca:
88:94:ce:b2:12:4c:dd:75:a7:56:ae:ab:3e:6c:33:
e2:56:63:70:f8:dc:d9:04:a2:00:a6:45:0d:86:f6:
22:97:d9:e9:c9:4d:b5:98:c1:47:ac:5b:af:f5:2c:
63:72:01:de:42:aa:f6:4c:11:c4:ca:7a:ac:7e:0e:
77:7f:80:37:15:d1:b1:0b:56:1e:74:20:0d:b6:a6:
ec:19:7c:59:0c:d7:f5:2f:38:61:6e:e3:de:91:0d:
ec:1d:36:cf:4b:53:66:41:a0:bf:ff:5e:ef:d5:24:
dc:a5:8d:e5:02:46:99:fc:57:60:6e:3f:be:40:bd:
0d:22:9f:a2:29:13:4d:d3:24:5c:04:03:dd:db:de:
fd:a0:d5:79:d9:4e:34:fd:3e:1b:79:5b:33:fa:3f:
c8:d9:71:dd:81:07:cd:a1:1e:ee:99:72:e9:31:85:
c8:8b:f6:88:d3:47:7f:64:c2:5c:b4:32:d8:a3:d5:
3b:a9:31:ef:ca:6d:a7:11:c9:a8:af:d1:8d:56:66:
4d:90:78:f3:89:3a:35:26:cf:cf:ea:b1:1d:80:d8:
74:1b:2f:e4:a8:04:8a:e4:11:aa:35:90:74:e4:04:
16:25:88:a7:43:f3:20:63:f4:8a:d4:e4:89:76:cf:
24:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:16:F5:22:78:0C:76:88:60:7C:F6:99:C2:E4:2C:59:F2:F3:68:91
X509v3 Authority Key Identifier:
keyid:2F:D8:25:A2:7B:2B:34:7F:80:6C:2C:AC:DF:49:20:9D:17:BB:F6:54
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/FE52AC90C50FD22FE2521E5D54BBC6A5B30781F33450A62DEDDDAF3AB3F705ED/0/2FD825A27B2B347F806C2CACDF49209D17BBF654.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2FD825A27B2B347F806C2CACDF49209D17BBF654.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/FE52AC90C50FD22FE2521E5D54BBC6A5B30781F33450A62DEDDDAF3AB3F705ED/0/3133382e3131372e34332e302f32342d3234203d3e20323639393830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.117.43.0/24
Signature Algorithm: sha256WithRSAEncryption
04:f5:dc:53:60:36:d3:76:8e:1a:42:50:f6:67:16:11:c2:49:
2a:04:44:86:ef:e4:32:f8:90:83:be:72:83:63:a2:ec:3d:b5:
fd:d1:9e:a0:2f:5a:57:5d:33:97:0d:97:d4:e1:cb:c7:98:80:
de:8d:b1:4c:82:ec:f7:ea:2c:a6:5b:c8:52:2a:93:57:54:79:
5c:a4:d5:e6:2d:d0:db:d4:8f:60:aa:51:b5:e6:91:b2:a4:de:
c2:ca:ca:7e:4e:28:41:c9:5c:ef:fe:62:21:cf:86:2a:11:34:
73:08:9b:e5:a5:1b:4f:44:6d:61:83:6e:a6:be:39:13:f6:47:
34:a4:89:b2:22:33:ef:f0:93:75:b8:a2:39:a1:59:84:7c:8e:
f0:16:48:0f:c5:b4:7b:70:16:8e:a0:db:f7:40:31:3f:2f:70:
ee:ea:c6:d0:b1:29:4b:6f:d9:1e:1b:9f:52:80:c8:62:fa:28:
c7:7f:29:d9:6a:45:36:4b:3f:47:cf:9d:41:43:b1:e8:33:84:
3e:50:fb:32:50:cc:db:e7:15:65:65:aa:3f:af:c4:13:da:26:
da:fe:2a:06:96:33:8d:ea:b2:90:2c:43:0e:33:e0:45:d9:0f:
b3:e9:cc:24:81:0b:ae:45:98:a1:7a:f3:41:b3:bd:ab:9d:f5:
12:3f:6e:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 6 07:21:52 2025 by rpki-client