Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0F48FCFC23FDFD424102777A017D42D680468077188C2F1E9A691E030F4A0C15/0/323830303a3236303a3a2f32382d3332203d3e203139343239.roa
File: 323830303a3236303a3a2f32382d3332203d3e203139343239.roa (raw, json)
Hash identifier: yWJFTnkoM7UsZ/gEtsx0qAgLQnf4boSU9GnMq/oka0k=
Subject key identifier: A9:0B:BD:6A:2D:81:4D:C6:E1:3F:5B:0A:4C:E9:0D:EA:56:C6:F8:39
Certificate issuer: /CN=6447D4623D0D72E1619CC6C94EF835E9D3D5E620
Certificate serial: 06F018A30C8B4682BBE8667F5996BF0F789B8138
Authority key identifier: 64:47:D4:62:3D:0D:72:E1:61:9C:C6:C9:4E:F8:35:E9:D3:D5:E6:20
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6447D4623D0D72E1619CC6C94EF835E9D3D5E620.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0F48FCFC23FDFD424102777A017D42D680468077188C2F1E9A691E030F4A0C15/0/323830303a3236303a3a2f32382d3332203d3e203139343239.roa
Signing time: Tue 04 Feb 2025 18:17:55 +0000
ROA not before: Tue 04 Feb 2025 18:12:55 +0000
ROA not after: Tue 03 Feb 2026 18:17:55 +0000
asID: 19429
IP address blocks: 2800:260::/28 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:f0:18:a3:0c:8b:46:82:bb:e8:66:7f:59:96:bf:0f:78:9b:81:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6447D4623D0D72E1619CC6C94EF835E9D3D5E620
Validity
Not Before: Feb 4 18:12:55 2025 GMT
Not After : Feb 3 18:17:55 2026 GMT
Subject: CN=A90BBD6A2D814DC6E13F5B0A4CE90DEA56C6F839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:03:87:95:05:b0:91:da:be:8b:83:b2:0c:e8:
c3:00:a2:09:ed:36:3c:93:78:55:f7:c9:b9:65:ba:
ac:64:ae:9c:7a:f9:90:ce:32:c1:d2:57:6d:51:1e:
0b:71:1a:a3:bb:3c:80:b8:11:ab:40:e8:d5:fa:de:
1c:57:c2:8d:eb:49:8e:89:49:92:e6:44:f3:cf:de:
36:40:4e:c5:81:67:54:c3:e9:7e:11:76:a8:98:e1:
45:ae:b3:09:85:fd:07:49:7b:8e:c5:07:bd:89:2e:
75:ae:ec:90:37:06:f0:58:e7:d1:c4:12:7b:93:50:
72:66:9b:9e:58:75:2e:ec:1f:4c:79:65:f1:13:63:
bd:33:38:29:bb:f8:a5:14:7c:6f:39:58:f9:3e:83:
06:99:8a:88:55:07:75:4c:f8:74:d0:ce:96:6d:24:
45:ad:44:13:e8:d4:69:4a:8e:44:db:c8:80:6b:00:
86:e9:e9:a0:96:f7:8d:31:97:1d:a9:22:aa:59:d6:
5b:60:9d:d1:9d:0c:89:32:f7:bb:64:05:ec:25:a8:
b3:73:5a:96:f6:af:b0:c6:42:b7:ed:c0:34:b8:e4:
46:82:5b:5f:ca:fb:22:e8:8b:93:80:f2:10:60:15:
b5:e9:9c:34:f4:86:f9:ea:25:cb:58:0a:5f:21:c2:
79:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:0B:BD:6A:2D:81:4D:C6:E1:3F:5B:0A:4C:E9:0D:EA:56:C6:F8:39
X509v3 Authority Key Identifier:
keyid:64:47:D4:62:3D:0D:72:E1:61:9C:C6:C9:4E:F8:35:E9:D3:D5:E6:20
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0F48FCFC23FDFD424102777A017D42D680468077188C2F1E9A691E030F4A0C15/0/6447D4623D0D72E1619CC6C94EF835E9D3D5E620.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6447D4623D0D72E1619CC6C94EF835E9D3D5E620.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0F48FCFC23FDFD424102777A017D42D680468077188C2F1E9A691E030F4A0C15/0/323830303a3236303a3a2f32382d3332203d3e203139343239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2800:260::/28
Signature Algorithm: sha256WithRSAEncryption
89:7c:69:c8:5f:c4:dc:94:87:36:c7:65:73:ee:50:32:79:c8:
bf:ae:8a:ba:f7:b0:47:6b:bf:48:85:55:92:0b:be:6f:38:23:
b7:1c:c4:6f:ed:7e:05:4c:ee:15:b2:1c:76:16:05:4b:49:68:
e3:5d:b1:33:fb:c2:50:a4:ff:99:29:2a:39:9b:8e:8b:f4:4d:
35:79:31:81:02:56:e6:bc:a4:3a:da:e2:58:33:c3:c7:4d:e3:
9f:e0:c9:91:9e:3f:9a:8f:e0:4a:d3:95:27:c8:c8:2e:54:91:
2a:7f:4c:55:77:33:ee:cb:b6:ce:3f:5e:68:18:7a:06:7b:ec:
89:72:8b:9c:8b:1d:c2:c7:90:dc:ab:87:ac:7e:0f:bb:b3:b9:
8a:4d:9d:1a:32:41:2d:10:69:90:95:df:79:3b:3b:bc:d6:0c:
f6:84:54:9b:72:67:5a:3a:29:dc:cd:f3:ac:6b:85:58:3a:32:
ed:7c:b5:44:c4:36:d7:eb:19:30:66:9b:73:d8:07:79:fe:b2:
0c:03:e7:06:27:b3:01:51:32:aa:5d:56:d0:ef:7f:84:96:42:
3e:76:1c:56:d6:eb:87:5c:7e:b7:1d:cd:d9:2d:1f:b6:de:23:
39:74:02:0f:55:f8:5b:61:98:80:2a:46:52:73:f7:cb:88:0e:
c8:dd:b8:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:02:12 2025 by rpki-client