Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/11E6857B655846489B75F9B6F43F3E1DB7AE0D50839633E7274C8C14258F83CD/0/323830333a3963303a3a2f33322d3438203d3e20323635363935.roa
File: 323830333a3963303a3a2f33322d3438203d3e20323635363935.roa (raw, json)
Hash identifier: 7wYewWcGTAj2pf4Ar6eocPYA7pKleO0qRf9wLWQAReo=
Subject key identifier: 85:63:57:16:42:F0:62:97:80:C6:6D:96:8D:DD:3C:11:E8:DB:EE:6E
Certificate issuer: /CN=402D616A95846FF1E7CE80C99CDB443F6B8B9107
Certificate serial: 160E65AF1979CFEFD26E6BB32F964CA166D426AA
Authority key identifier: 40:2D:61:6A:95:84:6F:F1:E7:CE:80:C9:9C:DB:44:3F:6B:8B:91:07
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/402D616A95846FF1E7CE80C99CDB443F6B8B9107.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/11E6857B655846489B75F9B6F43F3E1DB7AE0D50839633E7274C8C14258F83CD/0/323830333a3963303a3a2f33322d3438203d3e20323635363935.roa
Signing time: Tue 04 Feb 2025 19:59:40 +0000
ROA not before: Tue 04 Feb 2025 19:54:40 +0000
ROA not after: Tue 03 Feb 2026 19:59:40 +0000
asID: 265695
IP address blocks: 2803:9c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:0e:65:af:19:79:cf:ef:d2:6e:6b:b3:2f:96:4c:a1:66:d4:26:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=402D616A95846FF1E7CE80C99CDB443F6B8B9107
Validity
Not Before: Feb 4 19:54:40 2025 GMT
Not After : Feb 3 19:59:40 2026 GMT
Subject: CN=8563571642F0629780C66D968DDD3C11E8DBEE6E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d4:92:06:f5:6c:f4:eb:77:2a:09:b8:f4:88:
00:ff:df:04:b9:26:e6:a5:03:62:ce:58:77:6c:6a:
bb:11:e7:a0:15:a2:4c:ee:91:d2:fe:6f:af:e6:8f:
00:39:41:74:0c:d0:34:60:47:91:2c:29:a9:53:09:
cd:92:6f:0e:02:29:df:8b:25:d0:c5:44:49:36:3c:
63:f5:6b:18:09:22:88:f7:12:c1:b1:31:ba:1a:3c:
84:4d:4e:00:97:3f:4f:e5:6d:7f:d6:cd:cb:02:2a:
8f:62:0f:f4:6c:a4:79:d7:1a:30:17:8d:c0:3f:cd:
2d:ee:81:32:7c:28:33:5e:05:eb:86:15:7a:8a:6c:
d3:e4:ed:49:b2:3c:f8:3c:c7:04:9a:23:fa:39:a6:
01:f3:9e:27:55:b2:56:15:90:47:dc:9c:d0:03:5f:
ca:96:da:c9:be:a9:af:f1:27:76:27:0e:f4:2a:8a:
0d:b9:de:2e:d8:3d:3d:45:46:d1:25:c1:af:8b:70:
89:7b:62:bc:f2:6f:c1:10:cb:11:1b:fe:98:c6:da:
59:d4:73:b0:a5:70:a3:8e:9a:4a:8c:e5:ec:08:bf:
44:ef:94:06:a5:4b:1d:8f:e8:c3:0f:36:c9:39:1a:
1c:2e:f4:9b:4f:7d:08:0f:8c:23:73:e3:28:d2:ad:
11:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:63:57:16:42:F0:62:97:80:C6:6D:96:8D:DD:3C:11:E8:DB:EE:6E
X509v3 Authority Key Identifier:
keyid:40:2D:61:6A:95:84:6F:F1:E7:CE:80:C9:9C:DB:44:3F:6B:8B:91:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/11E6857B655846489B75F9B6F43F3E1DB7AE0D50839633E7274C8C14258F83CD/0/402D616A95846FF1E7CE80C99CDB443F6B8B9107.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/402D616A95846FF1E7CE80C99CDB443F6B8B9107.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/11E6857B655846489B75F9B6F43F3E1DB7AE0D50839633E7274C8C14258F83CD/0/323830333a3963303a3a2f33322d3438203d3e20323635363935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:9c0::/32
Signature Algorithm: sha256WithRSAEncryption
4a:1f:f2:28:3a:1a:ab:c2:35:53:d6:8a:72:3b:fc:29:15:3b:
2f:d7:42:38:a2:b5:ad:ab:9f:c2:e0:cf:82:59:78:6b:1e:52:
e0:99:dd:52:c2:86:b8:99:3b:70:19:31:6e:8e:74:7e:a4:84:
f0:17:f0:18:35:10:9b:0a:7f:21:34:bc:ec:68:08:46:ca:5a:
77:04:df:62:9e:9d:cf:ae:b2:f6:0b:51:fe:0d:85:20:07:71:
fe:70:2b:9b:e8:50:26:2c:4d:fd:1e:8b:8f:69:1e:7f:26:bc:
5e:14:5f:e3:a8:2d:2d:ca:8c:0e:26:a5:3d:55:a5:38:cb:73:
3c:0f:5d:f0:6a:c8:09:78:e4:57:9f:d6:0f:f4:60:07:b0:e5:
51:73:11:df:da:69:3f:f2:a0:a9:48:1c:a1:a6:16:b5:5a:61:
d2:bc:5a:09:cf:0c:9f:83:df:2b:f3:e2:4b:d0:9c:0e:24:d0:
e8:22:01:38:be:86:bc:e7:76:10:96:40:45:03:e6:cc:3b:67:
5b:f9:df:12:3c:d2:67:6e:dd:96:90:fb:e0:90:ee:a9:fa:30:
73:f1:ae:0b:de:c9:28:1f:3a:90:1e:27:fb:93:0f:2d:57:0b:
3a:6d:18:2d:e1:f8:f9:d0:9f:69:78:32:c4:58:9a:0d:57:65:
72:89:d1:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:44:13 2025 by rpki-client