Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/03488AE1568F403C1762497280248EB8A68596C93A96E77A4C7053E4F7AC2DB3/0/323830313a31313a383830303a3a2f34382d3438203d3e203139343239.roa
File: 323830313a31313a383830303a3a2f34382d3438203d3e203139343239.roa (raw, json)
Hash identifier: Mu1aiZbTuKob4P/uHzlI5H1bWCj0RfxIyLfLzn5wSP0=
Subject key identifier: B6:B7:11:5B:96:04:90:FC:E7:8A:69:23:8A:96:27:76:EA:02:88:06
Certificate issuer: /CN=CB568FC0EFE95FEF1D6396BA2502367B6B93E1EB
Certificate serial: 4AA9DB54271BE202EC66F4853447C719354800D8
Authority key identifier: CB:56:8F:C0:EF:E9:5F:EF:1D:63:96:BA:25:02:36:7B:6B:93:E1:EB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CB568FC0EFE95FEF1D6396BA2502367B6B93E1EB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/03488AE1568F403C1762497280248EB8A68596C93A96E77A4C7053E4F7AC2DB3/0/323830313a31313a383830303a3a2f34382d3438203d3e203139343239.roa
Signing time: Tue 04 Feb 2025 18:14:40 +0000
ROA not before: Tue 04 Feb 2025 18:09:40 +0000
ROA not after: Tue 03 Feb 2026 18:14:40 +0000
asID: 19429
IP address blocks: 2801:11:8800::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:a9:db:54:27:1b:e2:02:ec:66:f4:85:34:47:c7:19:35:48:00:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CB568FC0EFE95FEF1D6396BA2502367B6B93E1EB
Validity
Not Before: Feb 4 18:09:40 2025 GMT
Not After : Feb 3 18:14:40 2026 GMT
Subject: CN=B6B7115B960490FCE78A69238A962776EA028806
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:3a:dc:35:47:a2:02:1d:2d:b9:af:ea:21:ad:
c5:d7:eb:ff:15:f4:d1:2c:a5:0c:72:5c:2b:48:6e:
63:d7:fc:c4:13:c9:83:89:a2:3a:12:b2:b2:78:29:
79:04:f0:ce:91:f2:ad:0d:fe:37:0c:f2:98:a1:22:
64:42:a6:ef:6a:0a:13:2c:d2:4a:a1:58:23:b0:90:
ba:96:08:a0:36:bf:64:5f:36:4b:1c:78:cd:f1:59:
f6:25:3e:c3:88:f5:e4:21:02:b8:22:3b:19:c2:e9:
e4:74:e0:58:9d:72:aa:76:d2:bd:ae:17:30:a3:45:
a1:33:15:d3:f1:d4:f5:59:33:36:64:53:07:35:4d:
2c:53:76:74:fb:91:3c:53:d0:5c:db:5a:67:52:cd:
1e:93:43:52:ae:36:1f:91:a6:ac:73:6a:6a:9a:64:
bb:79:59:3a:0b:69:ea:6e:f2:d3:06:68:2b:95:07:
bc:84:b3:1a:78:4a:4a:bc:50:90:2d:5e:ad:29:65:
75:de:c0:e8:00:a6:c3:8e:97:36:da:20:2e:10:38:
17:8a:3d:b3:5d:12:bc:da:67:f4:1a:a1:97:f4:35:
2a:31:c8:8a:58:b1:27:2c:f2:18:f5:62:f4:8d:15:
59:1e:a8:2a:03:95:48:64:8d:0f:9e:d1:ec:8a:bc:
f5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:B7:11:5B:96:04:90:FC:E7:8A:69:23:8A:96:27:76:EA:02:88:06
X509v3 Authority Key Identifier:
keyid:CB:56:8F:C0:EF:E9:5F:EF:1D:63:96:BA:25:02:36:7B:6B:93:E1:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/03488AE1568F403C1762497280248EB8A68596C93A96E77A4C7053E4F7AC2DB3/0/CB568FC0EFE95FEF1D6396BA2502367B6B93E1EB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CB568FC0EFE95FEF1D6396BA2502367B6B93E1EB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/03488AE1568F403C1762497280248EB8A68596C93A96E77A4C7053E4F7AC2DB3/0/323830313a31313a383830303a3a2f34382d3438203d3e203139343239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:11:8800::/48
Signature Algorithm: sha256WithRSAEncryption
2a:5b:70:e2:81:0d:ae:a7:22:30:89:1f:5e:ec:2f:20:98:09:
6a:33:da:7f:e3:1a:46:a6:02:e6:bd:7c:80:cf:b0:5f:69:29:
5a:52:df:c0:73:da:cd:96:35:96:d9:8d:8c:3e:2b:71:76:da:
00:8f:9d:76:5f:28:a6:d8:43:52:e0:6f:69:ae:ac:f5:a3:33:
a9:6b:87:ec:0d:da:65:39:b8:82:0c:69:d1:97:1f:13:82:02:
23:ef:2b:39:e6:4e:92:9a:fd:bd:ba:a1:a6:08:d5:ee:84:27:
d6:28:51:7f:36:1c:0a:96:01:86:ed:f2:9e:d2:9d:fd:68:5d:
8c:50:f4:2e:01:a8:9b:84:5e:dd:75:b4:ba:49:88:4a:f2:ff:
24:46:78:18:32:a9:59:8e:f0:8c:6b:63:8c:15:47:b4:28:9b:
64:7b:6f:cf:df:9b:b8:30:0d:60:3f:89:25:0c:32:cc:26:b6:
64:f3:f2:76:3c:6d:05:62:b5:d1:72:32:64:31:10:91:60:d4:
51:c3:ef:d0:9d:00:31:ce:ee:1b:0e:d0:0e:f2:64:56:8d:82:
d4:0a:a1:fc:83:fe:0d:ce:8b:f7:11:56:d9:2c:5e:04:b7:d7:
9e:54:df:1b:f9:b9:61:9a:bd:21:ac:d3:a3:3f:f7:2e:58:74:
fc:ed:21:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:10:49 2025 by rpki-client