Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0E699A4AC5E7E33EA4631859F9725254302D1C195DE84573251829587A3BB466/0/323830333a623836303a3a2f33322d3332203d3e20323637383238.roa
File: 323830333a623836303a3a2f33322d3332203d3e20323637383238.roa (raw, json)
Hash identifier: eJmlT26CwZyxaelOUPoLLiMMd4BSp8QyR8CJ1X/hKcM=
Subject key identifier: 03:A6:AE:56:61:B7:39:81:E0:C0:AA:73:DD:F3:EF:F9:80:94:52:C6
Certificate issuer: /CN=298935C9A43C5C9BDC9AE1F8185BFD98FF1A7B39
Certificate serial: 2BF959D7EF2A0868BE2D0BE2C8CDDE5CBD2C668C
Authority key identifier: 29:89:35:C9:A4:3C:5C:9B:DC:9A:E1:F8:18:5B:FD:98:FF:1A:7B:39
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/298935C9A43C5C9BDC9AE1F8185BFD98FF1A7B39.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0E699A4AC5E7E33EA4631859F9725254302D1C195DE84573251829587A3BB466/0/323830333a623836303a3a2f33322d3332203d3e20323637383238.roa
Signing time: Tue 04 Feb 2025 18:22:53 +0000
ROA not before: Tue 04 Feb 2025 18:17:53 +0000
ROA not after: Tue 03 Feb 2026 18:22:53 +0000
asID: 267828
IP address blocks: 2803:b860::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:f9:59:d7:ef:2a:08:68:be:2d:0b:e2:c8:cd:de:5c:bd:2c:66:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=298935C9A43C5C9BDC9AE1F8185BFD98FF1A7B39
Validity
Not Before: Feb 4 18:17:53 2025 GMT
Not After : Feb 3 18:22:53 2026 GMT
Subject: CN=03A6AE5661B73981E0C0AA73DDF3EFF9809452C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:d5:db:16:cc:a9:52:f2:96:4e:81:8f:a1:f3:
bd:4d:69:93:4c:98:0b:ec:4e:05:f5:c5:e7:bb:91:
35:b7:5e:80:29:3c:0b:f1:8a:b4:38:30:2d:64:a2:
ab:b6:e1:26:dc:cb:0b:1a:89:1b:8e:4b:17:da:83:
47:ab:80:74:77:b0:de:74:86:25:8c:35:22:cb:37:
0c:b8:7d:73:a1:70:70:41:06:0d:4b:ea:23:17:c8:
a5:25:0f:7f:c6:c8:a3:6b:8a:c4:1e:43:02:cd:fe:
0c:d7:bf:a7:41:e1:46:81:f0:4d:a5:7e:5b:7f:3f:
13:96:fc:65:46:0e:b6:b5:0a:ca:3b:38:b4:71:d2:
d9:98:b8:80:44:16:28:58:fd:ac:08:a8:b1:ca:be:
ef:96:27:13:f1:34:4c:85:fc:12:a9:8c:75:dc:65:
fc:66:c2:2b:87:23:f6:2f:d0:cb:12:ec:99:3a:7e:
81:37:1f:58:0a:fa:09:87:40:1b:e7:29:b1:a2:58:
91:78:53:32:ee:36:91:c1:fb:2e:54:df:c7:ed:a9:
ce:8f:fb:be:51:53:19:3b:4f:48:c1:f8:c4:79:74:
17:0e:33:fc:83:91:3e:8b:c3:09:d2:37:0d:a8:a8:
74:8c:e4:5f:ed:c7:ef:fa:e1:7f:35:22:96:ba:70:
e6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:A6:AE:56:61:B7:39:81:E0:C0:AA:73:DD:F3:EF:F9:80:94:52:C6
X509v3 Authority Key Identifier:
keyid:29:89:35:C9:A4:3C:5C:9B:DC:9A:E1:F8:18:5B:FD:98:FF:1A:7B:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0E699A4AC5E7E33EA4631859F9725254302D1C195DE84573251829587A3BB466/0/298935C9A43C5C9BDC9AE1F8185BFD98FF1A7B39.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/298935C9A43C5C9BDC9AE1F8185BFD98FF1A7B39.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0E699A4AC5E7E33EA4631859F9725254302D1C195DE84573251829587A3BB466/0/323830333a623836303a3a2f33322d3332203d3e20323637383238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:b860::/32
Signature Algorithm: sha256WithRSAEncryption
10:b6:ee:79:59:3e:67:9e:e5:01:dd:6d:17:5d:38:8e:c3:4a:
90:a0:25:1a:c6:79:3d:57:5f:49:32:e4:9e:cd:18:4c:4d:5b:
de:a1:29:00:7a:eb:cb:e9:63:b4:e5:d1:05:b1:d8:f4:15:fe:
e3:a7:6f:86:0e:f6:3f:6f:9d:ce:94:39:4c:7d:23:7a:81:f1:
f7:9b:b3:ae:e1:61:56:73:49:83:ba:3c:23:bf:c3:ff:23:10:
10:c4:b5:c0:60:24:41:5d:45:0f:63:5b:59:52:3b:0c:53:e4:
b2:33:1e:35:f7:0f:43:c1:50:72:4e:47:a9:61:c9:ea:4c:9b:
c0:66:a7:d3:d9:75:3c:3b:d7:c7:b4:f1:9f:6a:55:63:e6:84:
b2:9d:bf:3c:cd:23:eb:49:ba:4b:df:9d:0f:13:70:d6:02:0d:
8c:32:a1:1e:db:16:0d:d0:3b:a8:dc:ea:68:e8:9f:98:5c:ff:
54:72:d8:84:75:06:61:e8:99:c0:cf:21:d7:df:75:69:89:21:
bf:99:ad:48:54:ce:69:03:9d:3d:3b:e5:3b:95:b1:46:6c:1f:
57:9a:ae:a2:41:41:42:77:14:d9:46:bb:bc:5e:a9:f5:6f:45:
71:52:10:7d:ef:b4:9f:79:10:e0:e2:52:9c:ef:94:30:3e:c9:
2f:b9:6c:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:28:28 2025 by rpki-client