Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/09BA4188BF43656013680C793F6A4846A561718EFC7F97B2FC105BF504A867AD/0/323830303a3666303a3a2f33322d3438203d3e203230323037.roa
File: 323830303a3666303a3a2f33322d3438203d3e203230323037.roa (raw, json)
Hash identifier: mNsk3bu3Sl4uSNB5eJpXaH3H95pd+Qhcb0fjbRH9pFk=
Subject key identifier: BF:46:A4:9D:46:5E:82:3C:6B:33:05:1A:74:0A:59:1B:7E:47:F2:19
Certificate issuer: /CN=4F99A2A558BEB359E92AC3908E9098C384DE72F7
Certificate serial: 0A12D7473866D7AED7DCFC7422CE1F98757A65C8
Authority key identifier: 4F:99:A2:A5:58:BE:B3:59:E9:2A:C3:90:8E:90:98:C3:84:DE:72:F7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4F99A2A558BEB359E92AC3908E9098C384DE72F7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/09BA4188BF43656013680C793F6A4846A561718EFC7F97B2FC105BF504A867AD/0/323830303a3666303a3a2f33322d3438203d3e203230323037.roa
Signing time: Tue 04 Feb 2025 20:00:39 +0000
ROA not before: Tue 04 Feb 2025 19:55:39 +0000
ROA not after: Tue 03 Feb 2026 20:00:39 +0000
asID: 20207
IP address blocks: 2800:6f0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:12:d7:47:38:66:d7:ae:d7:dc:fc:74:22:ce:1f:98:75:7a:65:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4F99A2A558BEB359E92AC3908E9098C384DE72F7
Validity
Not Before: Feb 4 19:55:39 2025 GMT
Not After : Feb 3 20:00:39 2026 GMT
Subject: CN=BF46A49D465E823C6B33051A740A591B7E47F219
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ba:5c:2b:7f:0c:ab:f3:03:03:fd:9b:73:65:
2c:cc:d7:13:8d:2b:ea:63:f5:d2:05:49:7b:3d:68:
70:3b:fe:2c:b1:d1:d4:4e:4e:6e:da:ad:05:39:4d:
90:ad:f7:34:94:bb:34:82:0e:e8:bc:74:99:0d:c4:
dd:d1:30:bc:cc:9e:74:95:7c:fc:2e:6a:d7:d2:da:
83:9b:cd:c8:6d:8a:9f:24:44:29:df:5c:00:d4:51:
20:14:9d:5b:7c:a2:1c:04:56:43:e8:2d:0c:33:16:
58:af:f1:77:9e:8c:6a:a3:7f:0e:67:f2:a8:12:65:
b0:2a:bb:03:c6:40:45:06:68:1c:29:53:fb:5f:2a:
99:bc:d7:c0:7d:a9:72:2e:ed:61:3f:5f:ff:a0:2d:
98:81:52:5f:04:61:d7:3e:97:81:bd:5f:19:5c:9d:
d3:c6:27:86:33:f8:5e:33:67:c0:d8:92:f9:91:8a:
3c:a0:4d:fe:aa:db:e8:f6:8b:ae:a3:c8:5a:0d:2c:
34:ee:42:fe:99:1d:c8:71:99:78:af:8b:d2:90:81:
76:76:c8:24:18:b6:31:21:e9:fb:5d:29:55:a2:6d:
94:02:4a:0c:62:3a:b3:b0:ea:56:a4:30:c2:cc:39:
25:06:de:fe:fd:3e:0f:85:21:32:74:54:34:7f:86:
68:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:46:A4:9D:46:5E:82:3C:6B:33:05:1A:74:0A:59:1B:7E:47:F2:19
X509v3 Authority Key Identifier:
keyid:4F:99:A2:A5:58:BE:B3:59:E9:2A:C3:90:8E:90:98:C3:84:DE:72:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/09BA4188BF43656013680C793F6A4846A561718EFC7F97B2FC105BF504A867AD/0/4F99A2A558BEB359E92AC3908E9098C384DE72F7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4F99A2A558BEB359E92AC3908E9098C384DE72F7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/09BA4188BF43656013680C793F6A4846A561718EFC7F97B2FC105BF504A867AD/0/323830303a3666303a3a2f33322d3438203d3e203230323037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2800:6f0::/32
Signature Algorithm: sha256WithRSAEncryption
81:42:3a:73:f6:18:3e:8b:0e:14:05:23:43:7c:c7:a3:6b:1f:
40:30:9b:47:ab:e3:1c:68:be:ed:a7:00:b1:0c:4e:06:4f:e5:
ef:10:9f:e9:31:1a:12:88:8e:ed:aa:b9:86:90:85:04:e0:75:
78:b6:f5:66:21:17:35:64:85:6c:5c:14:a4:d9:16:05:f0:1f:
a4:43:ae:35:18:b8:6d:c9:ba:d4:30:a2:06:73:ca:fa:86:45:
e6:28:01:ab:33:0a:ca:0b:ea:ce:44:a0:d4:e3:0a:ee:22:5a:
dd:52:7d:06:b4:e1:b6:19:2e:af:69:7b:67:29:60:45:0b:91:
81:dd:fe:07:06:ba:3e:f2:bd:bd:76:8c:fc:1a:83:2f:98:3c:
df:bb:6c:54:05:49:35:0e:5a:af:2d:86:ef:90:79:a9:b0:c1:
5c:45:f6:f5:e4:28:e1:43:7f:83:d9:4f:12:69:78:6e:ed:5a:
55:9c:c8:3c:90:7c:95:27:62:cb:4d:fd:12:91:70:52:28:10:
15:8c:00:40:0c:fc:27:75:a9:67:36:07:72:54:67:7a:ec:b2:
a4:28:a1:c8:e1:3c:c5:18:c8:c5:dc:73:c5:a3:42:eb:3b:1c:
82:8b:af:6d:b5:7a:ad:b6:68:41:f3:90:b3:bc:2a:dc:12:fa:
93:35:06:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:08:47 2025 by rpki-client