Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/11E6857B655846489B75F9B6F43F3E1DB7AE0D50839633E7274C8C14258F83CD/0/323830333a3963303a3a2f34302d3438203d3e20323037303336.roa
File: 323830333a3963303a3a2f34302d3438203d3e20323037303336.roa (raw, json)
Hash identifier: QoRysAPbDhFJfMwwzoq9/fHrGlBy9D3BN8nteb8Iga0=
Subject key identifier: 07:3A:DE:B7:58:4F:CB:D0:A6:C1:35:56:88:49:0F:22:CC:36:AE:FA
Certificate issuer: /CN=402D616A95846FF1E7CE80C99CDB443F6B8B9107
Certificate serial: 57228F8D3C98953FC910B7995DA837E84F0F6ABC
Authority key identifier: 40:2D:61:6A:95:84:6F:F1:E7:CE:80:C9:9C:DB:44:3F:6B:8B:91:07
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/402D616A95846FF1E7CE80C99CDB443F6B8B9107.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/11E6857B655846489B75F9B6F43F3E1DB7AE0D50839633E7274C8C14258F83CD/0/323830333a3963303a3a2f34302d3438203d3e20323037303336.roa
Signing time: Tue 04 Feb 2025 19:59:40 +0000
ROA not before: Tue 04 Feb 2025 19:54:40 +0000
ROA not after: Tue 03 Feb 2026 19:59:40 +0000
asID: 207036
IP address blocks: 2803:9c0::/40 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:22:8f:8d:3c:98:95:3f:c9:10:b7:99:5d:a8:37:e8:4f:0f:6a:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=402D616A95846FF1E7CE80C99CDB443F6B8B9107
Validity
Not Before: Feb 4 19:54:40 2025 GMT
Not After : Feb 3 19:59:40 2026 GMT
Subject: CN=073ADEB7584FCBD0A6C1355688490F22CC36AEFA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9d:87:f7:34:9a:2d:35:c3:7c:09:c9:9d:ac:
73:0e:b3:bb:39:65:ac:2b:a2:56:d2:d3:73:1e:9e:
f1:d3:47:40:7e:5f:40:97:6f:81:a8:d2:df:c3:c1:
8f:c9:e4:2b:7d:4c:bd:3b:7b:1c:93:c7:b1:59:52:
bc:a8:3b:33:44:c8:18:49:e9:8a:14:c7:cd:aa:b4:
b5:17:7a:1e:ac:7f:f3:53:f9:0e:14:5e:49:48:8f:
1a:49:40:df:13:3e:20:b3:47:b5:99:da:e7:72:9a:
e6:91:cb:c8:21:81:95:17:d8:ad:8e:b4:9f:4a:0a:
93:c1:66:00:2e:68:45:98:c2:03:6f:8f:de:c7:34:
6e:cf:d3:5b:f4:fc:71:26:22:a7:ba:27:32:f7:9d:
26:ad:23:32:da:05:b9:64:07:3f:2e:dc:86:42:94:
08:f9:d2:b7:0e:a0:8a:b3:13:f0:b9:2b:60:3a:9f:
6f:79:20:ed:a2:38:25:a6:8a:fb:73:7c:f1:fb:bb:
51:56:be:a8:74:a7:55:84:15:e8:96:ef:29:ce:69:
fa:6a:c3:04:83:a0:d3:69:1a:27:86:2e:41:54:75:
9a:47:e3:41:16:4f:36:fe:a4:a3:6a:83:43:89:ca:
48:a5:2f:df:98:07:6e:45:0d:50:c1:05:8f:73:cb:
cf:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:3A:DE:B7:58:4F:CB:D0:A6:C1:35:56:88:49:0F:22:CC:36:AE:FA
X509v3 Authority Key Identifier:
keyid:40:2D:61:6A:95:84:6F:F1:E7:CE:80:C9:9C:DB:44:3F:6B:8B:91:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/11E6857B655846489B75F9B6F43F3E1DB7AE0D50839633E7274C8C14258F83CD/0/402D616A95846FF1E7CE80C99CDB443F6B8B9107.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/402D616A95846FF1E7CE80C99CDB443F6B8B9107.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/11E6857B655846489B75F9B6F43F3E1DB7AE0D50839633E7274C8C14258F83CD/0/323830333a3963303a3a2f34302d3438203d3e20323037303336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:9c0::/40
Signature Algorithm: sha256WithRSAEncryption
35:68:53:c9:01:bc:f1:f9:d4:27:da:75:9c:45:75:8e:19:04:
ff:5b:ee:f9:88:7d:cd:73:0b:e5:34:bb:1e:a7:1b:7b:33:49:
71:9e:df:c4:8d:3b:5c:bd:c0:de:f9:4f:11:d1:24:72:55:92:
58:28:f4:c4:e5:fa:9e:c4:ac:32:0d:d2:70:39:f4:d4:77:91:
0e:f1:de:22:0c:fe:2e:78:6a:bb:a5:ea:bb:e4:7d:0f:52:81:
b9:0b:09:09:27:c3:be:59:d8:39:73:42:59:bb:d4:aa:32:3e:
38:ae:d2:de:04:39:a5:ce:4f:43:1d:f6:1e:27:43:67:46:eb:
54:f2:d7:e2:00:95:ea:d6:33:03:13:7e:d0:5b:f1:3b:82:05:
39:1c:30:3a:01:81:e5:cd:82:8d:38:91:cb:22:9d:7c:70:40:
a2:1c:63:87:d8:86:6e:30:3e:47:2d:ff:6e:20:7e:28:0a:a0:
30:e3:1b:d1:18:e9:74:3e:f2:66:26:24:c6:93:5a:cc:33:ea:
24:08:92:b2:d4:f6:65:2a:d4:84:9e:93:30:ca:af:5d:f8:c3:
e9:bf:7b:0d:01:6c:05:6d:a4:0d:28:31:4c:42:b1:8c:d1:7f:
81:88:3b:d5:eb:bd:5f:9c:ba:6e:b5:cd:d2:75:b8:c6:3a:ac:
aa:9e:dc:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 03:05:02 2025 by rpki-client