Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/114524E86CBEDB1BBBA6B5568E97599EC02601B8263BBE3C6132E9D787321E00/0/323830333a316332303a3a2f33322d3438203d3e20323634363638.roa
File: 323830333a316332303a3a2f33322d3438203d3e20323634363638.roa (raw, json)
Hash identifier: vUuOqlpA/DpaS6Iez89k3xhVH+FUmAa4rbliZENTiqk=
Subject key identifier: A9:07:94:3D:FE:54:90:57:73:AE:7D:6E:7C:F9:00:A4:D9:D7:9C:32
Certificate issuer: /CN=BC6522E3C11015B5E5613800EF79B4EAC428C2BA
Certificate serial: 43CF44D5F14636CC453AFD356AE028438ACE1581
Authority key identifier: BC:65:22:E3:C1:10:15:B5:E5:61:38:00:EF:79:B4:EA:C4:28:C2:BA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BC6522E3C11015B5E5613800EF79B4EAC428C2BA.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/114524E86CBEDB1BBBA6B5568E97599EC02601B8263BBE3C6132E9D787321E00/0/323830333a316332303a3a2f33322d3438203d3e20323634363638.roa
Signing time: Tue 04 Feb 2025 18:56:14 +0000
ROA not before: Tue 04 Feb 2025 18:51:14 +0000
ROA not after: Tue 03 Feb 2026 18:56:14 +0000
asID: 264668
IP address blocks: 2803:1c20::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:cf:44:d5:f1:46:36:cc:45:3a:fd:35:6a:e0:28:43:8a:ce:15:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BC6522E3C11015B5E5613800EF79B4EAC428C2BA
Validity
Not Before: Feb 4 18:51:14 2025 GMT
Not After : Feb 3 18:56:14 2026 GMT
Subject: CN=A907943DFE54905773AE7D6E7CF900A4D9D79C32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ce:d0:94:d9:9e:22:0b:95:2a:b2:ec:16:cc:
9a:a4:92:68:2b:7c:72:f2:aa:2a:29:6e:d1:12:f7:
59:d2:ff:10:76:5d:4b:53:50:cd:76:15:f9:2d:77:
d1:9a:d2:85:92:a0:f0:69:54:cd:3d:dc:2e:de:e0:
1f:ca:09:a4:46:27:2b:49:78:c0:69:6a:35:92:aa:
45:91:dc:08:26:15:79:08:cf:d3:29:a3:10:d6:03:
d6:51:3a:83:fe:4f:c1:f3:9e:cd:86:2e:f9:2e:ab:
91:6f:23:3f:22:07:ef:aa:10:c2:e8:9f:8a:f5:ae:
6c:e9:1f:75:b8:71:ed:38:04:e4:0e:3a:d3:32:ad:
49:23:b1:7c:ac:45:a3:e1:48:eb:6b:a1:c8:7b:86:
9a:60:b3:65:09:37:5a:2a:e2:ed:5a:8f:7d:e1:7a:
15:ae:a0:4b:81:03:f8:25:30:e1:d1:ce:a1:c3:a0:
98:c0:6a:87:19:86:0d:3c:bc:95:d9:44:b5:41:0a:
7e:db:94:ba:1d:a3:b8:1c:be:c5:38:11:c4:c3:27:
be:34:15:dc:8c:1b:89:04:21:8c:5a:7d:6c:01:31:
03:35:c6:10:23:9e:92:1e:01:bf:a1:99:e1:82:8e:
f7:c1:bb:a7:83:d7:73:0e:7d:01:34:61:59:1f:e8:
71:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:07:94:3D:FE:54:90:57:73:AE:7D:6E:7C:F9:00:A4:D9:D7:9C:32
X509v3 Authority Key Identifier:
keyid:BC:65:22:E3:C1:10:15:B5:E5:61:38:00:EF:79:B4:EA:C4:28:C2:BA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/114524E86CBEDB1BBBA6B5568E97599EC02601B8263BBE3C6132E9D787321E00/0/BC6522E3C11015B5E5613800EF79B4EAC428C2BA.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BC6522E3C11015B5E5613800EF79B4EAC428C2BA.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/114524E86CBEDB1BBBA6B5568E97599EC02601B8263BBE3C6132E9D787321E00/0/323830333a316332303a3a2f33322d3438203d3e20323634363638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:1c20::/32
Signature Algorithm: sha256WithRSAEncryption
49:c9:d3:c6:c4:1b:df:17:7c:a5:fb:62:d4:33:b5:a2:20:1f:
81:be:7c:12:3e:3f:8f:ba:be:fa:8d:7d:47:1b:2d:43:2a:0a:
76:88:e6:ae:79:d4:e2:fa:8b:f9:18:11:59:da:82:d9:da:6b:
7c:c1:1b:8a:77:12:27:86:c5:41:73:12:78:e9:0b:d5:44:15:
c6:8c:3b:6e:92:92:1c:a3:7c:5f:63:a2:8e:1e:2b:d4:84:48:
14:7b:db:2b:9e:16:34:46:4b:c6:9b:59:e9:88:f0:a9:26:21:
4f:6d:ed:2d:12:fe:39:48:15:2a:c7:a5:92:b9:86:36:56:db:
28:31:4c:a8:85:2e:c7:a5:2d:11:57:6d:a4:ed:5d:09:4a:b2:
dd:57:07:7c:ae:a8:13:f6:fc:0b:17:81:8c:36:52:ba:23:16:
f8:53:dd:91:c7:de:2d:c1:c7:a1:6f:07:dd:10:df:46:c5:d8:
40:62:b7:b6:2f:56:4a:87:87:73:93:e2:3c:43:33:06:68:c0:
c5:6b:b6:c3:ff:dc:54:3f:3f:24:cd:55:d0:be:b5:ff:bc:0e:
1d:d9:da:ab:0d:25:ba:12:4e:f9:66:34:13:39:45:57:c6:e5:
05:97:42:1b:cb:05:5c:d4:ad:8e:40:3b:dd:35:6b:6a:bd:a2:
48:16:81:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:00:21 2025 by rpki-client