Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1118004B9FB26EEEF7D87297DF93257C3291D69E4FEC982212EF47F7F6897659/0/323830313a3135353a3a2f34302d3438203d3e20323733313439.roa
File: 323830313a3135353a3a2f34302d3438203d3e20323733313439.roa (raw, json)
Hash identifier: AKXkfOP4+Dm/6LCvS3t3BhfahxAYyak42WX5svt+804=
Subject key identifier: F2:DE:AE:AB:70:2C:2F:FA:24:D9:EB:25:14:86:65:37:40:7F:2C:8B
Certificate issuer: /CN=7039B2C15CFC707C0F3843B1C8341A31CE412765
Certificate serial: 44AA8BF9F6D3C222278AB3433B379F9152501AEA
Authority key identifier: 70:39:B2:C1:5C:FC:70:7C:0F:38:43:B1:C8:34:1A:31:CE:41:27:65
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7039B2C15CFC707C0F3843B1C8341A31CE412765.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1118004B9FB26EEEF7D87297DF93257C3291D69E4FEC982212EF47F7F6897659/0/323830313a3135353a3a2f34302d3438203d3e20323733313439.roa
Signing time: Tue 04 Feb 2025 20:07:07 +0000
ROA not before: Tue 04 Feb 2025 20:02:07 +0000
ROA not after: Tue 03 Feb 2026 20:07:07 +0000
asID: 273149
IP address blocks: 2801:155::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:aa:8b:f9:f6:d3:c2:22:27:8a:b3:43:3b:37:9f:91:52:50:1a:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7039B2C15CFC707C0F3843B1C8341A31CE412765
Validity
Not Before: Feb 4 20:02:07 2025 GMT
Not After : Feb 3 20:07:07 2026 GMT
Subject: CN=F2DEAEAB702C2FFA24D9EB2514866537407F2C8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:0e:c1:3e:00:65:b8:59:55:72:b2:a4:01:bf:
93:ef:7a:3f:91:0f:42:b3:d1:97:17:12:10:99:87:
54:7e:bc:7f:0e:ff:8a:0a:a4:08:20:08:ac:71:8b:
86:af:96:e4:b5:2e:d3:04:e7:65:d4:3a:4b:cc:d1:
78:2e:e9:a8:f9:47:f5:c3:bf:1f:8e:3a:97:2d:72:
cd:64:d1:f4:69:56:e0:e8:72:3d:ad:97:e4:68:95:
d4:c3:fc:ea:05:1a:81:ce:be:9f:f2:95:1f:e7:4f:
2e:87:fe:8c:f1:4c:87:1d:b8:4e:5e:9f:0b:66:80:
73:a0:15:df:49:7b:dd:84:ef:c7:3b:fa:0e:d4:c5:
e9:2d:33:66:77:81:26:bd:87:c0:4a:74:7e:db:92:
60:fe:21:69:e4:31:ad:73:dd:06:d9:34:3d:33:f7:
0e:7f:f0:ae:c7:af:0b:f5:a5:dd:c0:79:1c:9f:8f:
3a:1b:3e:82:71:64:07:62:63:51:8f:33:fe:cf:d3:
92:06:a4:f2:6f:4b:8d:d3:f4:20:dc:91:86:94:4b:
7e:b6:a8:01:21:b9:9b:d0:59:1f:94:fd:47:e2:f0:
c7:a1:e3:63:6f:aa:51:03:66:d5:47:17:83:cf:51:
46:33:72:1b:82:9a:b4:0a:a4:9b:cf:14:16:18:76:
f3:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:DE:AE:AB:70:2C:2F:FA:24:D9:EB:25:14:86:65:37:40:7F:2C:8B
X509v3 Authority Key Identifier:
keyid:70:39:B2:C1:5C:FC:70:7C:0F:38:43:B1:C8:34:1A:31:CE:41:27:65
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1118004B9FB26EEEF7D87297DF93257C3291D69E4FEC982212EF47F7F6897659/0/7039B2C15CFC707C0F3843B1C8341A31CE412765.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7039B2C15CFC707C0F3843B1C8341A31CE412765.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1118004B9FB26EEEF7D87297DF93257C3291D69E4FEC982212EF47F7F6897659/0/323830313a3135353a3a2f34302d3438203d3e20323733313439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:155::/40
Signature Algorithm: sha256WithRSAEncryption
78:62:75:d9:45:0c:24:ea:1d:40:7f:47:52:1c:6b:98:c6:00:
ec:10:94:f8:30:a6:bc:3e:76:64:90:1c:70:25:21:3d:6f:fc:
d6:ac:e3:73:5d:a3:9e:b2:2d:8f:fd:ba:25:b5:64:78:5e:9b:
84:b1:eb:14:f6:74:60:21:53:01:4f:02:ec:6b:3f:a1:62:2f:
58:84:09:65:77:a5:58:83:5f:6a:57:07:27:dd:c5:9b:8d:8a:
ff:b8:72:15:07:fc:9c:5d:30:d9:9e:44:7f:af:fd:c2:6b:64:
ce:18:f0:61:cc:89:d6:5c:d6:19:23:a6:d2:c4:f2:2c:5a:4c:
ec:41:da:7f:48:50:4c:ff:f8:d5:b8:ad:11:ee:a2:f9:0e:1f:
67:99:22:c4:7c:8f:e6:55:e4:e4:2b:a4:33:5a:82:69:2c:56:
36:5b:bb:8d:cc:6e:66:ec:55:d5:a7:fc:1c:b0:07:fb:c2:5e:
64:ba:cf:06:bb:e5:88:4c:6b:49:12:63:a2:4b:db:73:5c:5e:
30:5c:e0:e5:73:1d:a9:32:5e:d0:2c:4e:b2:e8:c9:6e:8f:89:
78:a3:f1:24:31:d3:6b:8e:d3:d9:5b:0d:be:23:44:7a:d6:30:
08:22:f7:cd:f0:b0:30:01:a5:c2:7f:4a:5d:ce:88:7d:b7:3b:
2c:33:70:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:23:21 2025 by rpki-client