Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/04BB42195A3038A81C1F1200E30F8D51F752801E722B954EE7A5705D70C72CB0/0/323830303a3239303a3a2f33322d3332203d3e203230303135.roa
File: 323830303a3239303a3a2f33322d3332203d3e203230303135.roa (raw, json)
Hash identifier: ikHPzFpp7bxy6y2vOlwCnW74zSUZqwVYjJ+r5iOn+BA=
Subject key identifier: 3E:90:74:04:0F:C0:CC:DA:AE:F8:B5:DD:B9:40:10:8F:2E:00:2B:22
Certificate issuer: /CN=BA56744DBF20010C478D63405BC3FD8408043C5B
Certificate serial: 05C1B57D33A0E038213FD3D2A1B2A3162365E16E
Authority key identifier: BA:56:74:4D:BF:20:01:0C:47:8D:63:40:5B:C3:FD:84:08:04:3C:5B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BA56744DBF20010C478D63405BC3FD8408043C5B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/04BB42195A3038A81C1F1200E30F8D51F752801E722B954EE7A5705D70C72CB0/0/323830303a3239303a3a2f33322d3332203d3e203230303135.roa
Signing time: Tue 04 Feb 2025 18:32:29 +0000
ROA not before: Tue 04 Feb 2025 18:27:29 +0000
ROA not after: Tue 03 Feb 2026 18:32:29 +0000
asID: 20015
IP address blocks: 2800:290::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:c1:b5:7d:33:a0:e0:38:21:3f:d3:d2:a1:b2:a3:16:23:65:e1:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BA56744DBF20010C478D63405BC3FD8408043C5B
Validity
Not Before: Feb 4 18:27:29 2025 GMT
Not After : Feb 3 18:32:29 2026 GMT
Subject: CN=3E9074040FC0CCDAAEF8B5DDB940108F2E002B22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:49:b4:7c:ff:3c:0d:28:11:5d:b6:84:8f:91:
c3:8d:1e:a7:73:83:60:b2:c0:75:22:c6:ea:19:24:
d9:b1:a1:e8:c7:06:c0:88:2d:40:6b:ed:79:61:ca:
68:ab:ea:c1:9f:e8:42:5f:38:3e:56:1d:dd:11:7a:
18:e3:e5:74:ce:1f:e5:df:b8:d2:57:f0:19:bb:83:
34:01:83:2a:ea:ef:5b:75:6a:91:c6:92:9f:0f:46:
9b:30:74:c7:9b:7f:8d:e4:fd:45:de:af:7f:a6:13:
ee:e4:4a:b0:f7:4a:57:12:23:2e:1b:64:b0:68:3c:
66:cb:0b:39:8c:28:bb:ce:1e:f4:34:a5:2e:f9:11:
18:ea:b3:35:a9:53:98:27:75:45:c8:a4:21:10:68:
82:c5:79:11:cf:14:d4:ec:c3:04:51:7f:9c:63:73:
2a:e2:5f:9e:d1:ef:db:d5:4d:95:7e:40:8d:8c:96:
5a:f6:6b:15:5d:80:e1:1b:1d:63:f5:7e:09:11:7b:
33:85:49:50:d4:d1:c4:70:b1:14:b5:76:28:87:29:
5e:07:82:b6:6a:17:63:b1:e5:82:8f:a4:9d:76:83:
8e:41:66:bc:ff:bb:53:00:88:cc:ca:32:98:60:b7:
b7:20:d7:67:de:93:f0:7b:3f:29:92:09:79:a5:47:
f6:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:90:74:04:0F:C0:CC:DA:AE:F8:B5:DD:B9:40:10:8F:2E:00:2B:22
X509v3 Authority Key Identifier:
keyid:BA:56:74:4D:BF:20:01:0C:47:8D:63:40:5B:C3:FD:84:08:04:3C:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/04BB42195A3038A81C1F1200E30F8D51F752801E722B954EE7A5705D70C72CB0/0/BA56744DBF20010C478D63405BC3FD8408043C5B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BA56744DBF20010C478D63405BC3FD8408043C5B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/04BB42195A3038A81C1F1200E30F8D51F752801E722B954EE7A5705D70C72CB0/0/323830303a3239303a3a2f33322d3332203d3e203230303135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2800:290::/32
Signature Algorithm: sha256WithRSAEncryption
3b:59:fd:16:15:bb:03:0b:cf:1b:f5:ea:43:96:18:d7:25:db:
d1:36:8b:c3:8c:d4:4b:88:20:13:72:c5:ed:e8:35:6c:95:8b:
7f:c3:f2:98:25:48:b8:a3:51:62:34:e8:d7:91:dd:89:65:e0:
3b:cb:a4:ac:e2:c6:61:bc:d5:25:1e:82:0c:da:f4:98:3b:1d:
a2:89:68:92:0d:88:81:1d:97:05:c3:c6:c7:1c:d7:de:87:1b:
8d:22:da:5e:91:bd:be:94:17:f6:48:48:f2:76:ef:50:39:d3:
c7:e5:47:8e:72:ac:b0:2a:cf:d5:0a:7a:c6:c5:eb:37:e0:08:
b7:6f:2b:bb:5d:e6:fa:27:51:dd:55:5a:60:66:8f:aa:d3:b1:
59:19:ae:29:96:6a:6a:16:a0:cd:8f:7e:98:23:aa:ab:74:69:
05:b9:cb:6f:dc:1e:77:2b:ac:b6:34:3a:a4:a3:8e:e4:fb:2f:
38:15:e7:1d:88:52:9e:c5:c7:5a:4e:b0:ca:92:10:00:7c:f5:
b3:f8:68:f0:7c:6f:22:36:96:8e:c6:ad:cf:ec:3f:8b:3c:e9:
d5:ba:e2:79:ee:1f:b3:25:f2:fc:95:42:fe:0c:7b:55:aa:69:
c5:e4:26:2c:87:73:26:b3:01:18:51:c7:23:11:7a:e1:77:2f:
1e:a5:40:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:04:42 2025 by rpki-client