Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/07C0096B91EEE14598A448131C1F2250BEC9AE9D2F5809CE4A43201C1092A294/0/323830333a636332303a3a2f33322d3332203d3e20323634363638.roa
File: 323830333a636332303a3a2f33322d3332203d3e20323634363638.roa (raw, json)
Hash identifier: dTk3OiJ6UrS0s4KkZfsMHvjt/J6RcX6ttXOYoWfB9eQ=
Subject key identifier: 5A:ED:AF:97:24:3A:13:29:BE:16:49:37:E0:45:73:AE:D2:23:36:3F
Certificate issuer: /CN=DD74393AEC4E41A41C6F1FD02E0D9D2806ED9D5A
Certificate serial: 0DB0E4E5AA04C8B851DA8C867A806379C2ACFE51
Authority key identifier: DD:74:39:3A:EC:4E:41:A4:1C:6F:1F:D0:2E:0D:9D:28:06:ED:9D:5A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DD74393AEC4E41A41C6F1FD02E0D9D2806ED9D5A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/07C0096B91EEE14598A448131C1F2250BEC9AE9D2F5809CE4A43201C1092A294/0/323830333a636332303a3a2f33322d3332203d3e20323634363638.roa
Signing time: Tue 04 Feb 2025 18:37:28 +0000
ROA not before: Tue 04 Feb 2025 18:32:28 +0000
ROA not after: Tue 03 Feb 2026 18:37:28 +0000
asID: 264668
IP address blocks: 2803:cc20::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0d:b0:e4:e5:aa:04:c8:b8:51:da:8c:86:7a:80:63:79:c2:ac:fe:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DD74393AEC4E41A41C6F1FD02E0D9D2806ED9D5A
Validity
Not Before: Feb 4 18:32:28 2025 GMT
Not After : Feb 3 18:37:28 2026 GMT
Subject: CN=5AEDAF97243A1329BE164937E04573AED223363F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e2:d0:37:a2:78:9a:69:d2:8e:a2:40:64:7d:
05:79:8d:d5:2a:07:76:72:b5:22:ad:66:97:7a:94:
c7:6b:95:f5:4f:7d:d1:bb:c7:8f:c1:0f:7f:f4:b3:
50:2f:5a:fc:81:b2:1d:cf:d0:c9:06:ac:4d:7d:46:
6c:4d:02:c2:88:73:e1:f5:43:06:b5:c7:34:da:c7:
01:fe:ba:51:b0:37:98:79:69:2b:20:e4:52:39:c0:
e7:eb:bd:81:7c:04:a2:45:45:d6:66:82:e8:f5:8d:
06:02:86:d7:2c:33:5e:81:3f:4d:4c:b5:3f:ed:33:
33:ad:f4:81:02:1e:d3:3a:c7:cc:b0:c0:8a:c6:5f:
ff:af:1c:68:59:bd:ae:28:a4:e7:71:1a:01:c8:14:
01:66:a5:20:b7:f0:a5:b3:07:ad:8f:a5:d3:e4:b5:
f0:e9:dc:2a:86:85:3b:83:48:69:c8:f7:77:dc:4c:
78:0c:73:ac:26:ea:b7:f0:47:b3:b7:ff:23:43:50:
5c:75:a8:ae:14:6a:db:03:ad:a0:32:d4:d3:22:62:
21:86:72:d8:c1:3d:84:90:58:1d:3b:11:3b:ff:ac:
b4:df:b1:b2:d6:a3:49:8b:58:ad:0a:f8:89:af:6e:
53:b1:53:92:f8:47:b7:f7:86:cb:ba:d2:f2:48:a7:
8f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:ED:AF:97:24:3A:13:29:BE:16:49:37:E0:45:73:AE:D2:23:36:3F
X509v3 Authority Key Identifier:
keyid:DD:74:39:3A:EC:4E:41:A4:1C:6F:1F:D0:2E:0D:9D:28:06:ED:9D:5A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/07C0096B91EEE14598A448131C1F2250BEC9AE9D2F5809CE4A43201C1092A294/0/DD74393AEC4E41A41C6F1FD02E0D9D2806ED9D5A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DD74393AEC4E41A41C6F1FD02E0D9D2806ED9D5A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/07C0096B91EEE14598A448131C1F2250BEC9AE9D2F5809CE4A43201C1092A294/0/323830333a636332303a3a2f33322d3332203d3e20323634363638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:cc20::/32
Signature Algorithm: sha256WithRSAEncryption
50:99:31:f9:54:bc:9c:84:7f:36:ac:f5:c6:b0:6a:51:5a:14:
52:4f:85:f9:5f:98:e3:5b:8c:c5:7b:1e:a0:61:bf:da:4a:ed:
89:4d:64:f0:fb:46:ea:bc:34:60:7b:d4:03:44:80:f7:99:85:
07:e9:03:5a:d5:bd:97:01:93:f7:5e:e5:3b:88:54:78:d5:3b:
cf:bf:37:00:28:64:26:0b:ac:08:f3:f4:b6:4c:d4:3e:1e:dc:
16:6a:6f:aa:db:f1:d8:d1:64:75:9d:fa:91:65:d0:a3:fe:03:
a1:d5:8e:d4:68:8d:a0:35:cd:ff:95:8d:2d:b5:fd:2e:4f:2b:
d2:0d:3b:6f:37:c2:e2:d5:93:49:93:ee:29:8b:b5:21:da:f8:
72:b2:fc:6c:f5:a6:db:61:61:cb:fa:a2:7a:86:4e:64:eb:64:
7b:92:83:18:8f:37:2f:cb:e6:46:f2:54:00:cb:9e:5e:bf:99:
09:94:76:ef:52:b7:4d:61:9f:97:a1:1a:2e:23:fe:24:c5:03:
98:5a:9d:9e:ca:4e:db:6c:6b:14:db:db:e2:df:ae:2c:00:0a:
8f:aa:ea:96:aa:48:db:3c:2a:13:3c:dc:7d:77:ed:b9:67:83:
74:fe:ea:87:74:ba:36:16:57:e4:62:4a:19:e6:26:86:b1:9a:
43:77:6b:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:59:02 2025 by rpki-client