Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1AB3C11BF40253F9055107CF2AFC1F49E577BDB491CFD7B8A48F802FC5883B5D/0/323830333a633036303a3a2f33322d3332203d3e203631343531.roa
File: 323830333a633036303a3a2f33322d3332203d3e203631343531.roa (raw, json)
Hash identifier: y+kZpxvB2vqV6FoA3lmooqJCJtir3RHk1ikwbeAOmdU=
Subject key identifier: AF:D8:77:4C:01:37:6B:CC:F6:46:8A:A7:0B:A0:8A:AB:A9:59:76:04
Certificate issuer: /CN=2D420DA52C4FED64C64081F978E8485CD8161A81
Certificate serial: 4A88BB91C2CDE7DE26E1AC631E351ACF90EF6ED1
Authority key identifier: 2D:42:0D:A5:2C:4F:ED:64:C6:40:81:F9:78:E8:48:5C:D8:16:1A:81
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D420DA52C4FED64C64081F978E8485CD8161A81.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1AB3C11BF40253F9055107CF2AFC1F49E577BDB491CFD7B8A48F802FC5883B5D/0/323830333a633036303a3a2f33322d3332203d3e203631343531.roa
Signing time: Tue 04 Feb 2025 18:41:11 +0000
ROA not before: Tue 04 Feb 2025 18:36:11 +0000
ROA not after: Tue 03 Feb 2026 18:41:11 +0000
asID: 61451
IP address blocks: 2803:c060::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:88:bb:91:c2:cd:e7:de:26:e1:ac:63:1e:35:1a:cf:90:ef:6e:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D420DA52C4FED64C64081F978E8485CD8161A81
Validity
Not Before: Feb 4 18:36:11 2025 GMT
Not After : Feb 3 18:41:11 2026 GMT
Subject: CN=AFD8774C01376BCCF6468AA70BA08AABA9597604
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d2:4c:13:e1:f4:88:36:48:70:98:f4:9f:29:
95:30:d3:e6:61:91:7b:6d:4f:ba:93:86:21:7c:46:
df:fe:eb:e9:35:5c:e0:63:84:55:fe:0f:ce:07:46:
23:d2:2d:ef:49:4a:3b:aa:5b:77:12:bc:de:55:dd:
02:66:14:35:8e:5b:e5:e5:c4:99:00:4b:ad:e0:65:
29:03:55:5f:cb:4e:a1:70:f5:29:3b:da:44:fa:d9:
c3:d8:cd:28:6f:f0:84:51:fd:62:8b:64:cb:42:94:
c3:15:f3:76:75:33:84:d7:ff:9d:71:af:88:1c:d9:
c6:6f:8c:94:17:2f:6b:21:1e:2d:fb:dc:43:eb:25:
39:d2:2d:03:0c:90:61:af:cf:5b:64:c0:68:56:43:
74:aa:b3:78:dc:f0:38:e8:37:2e:0d:2d:3e:47:ee:
8a:be:e3:f3:b9:b4:4f:3c:18:57:2c:5d:1d:a1:39:
b9:61:7c:77:ae:1a:36:7d:86:7f:b6:15:f1:d7:33:
7a:a2:0f:88:c1:91:ff:33:97:41:9a:cb:94:1f:77:
3c:bf:6c:ce:be:80:74:ed:d6:9a:7a:48:bc:0c:c9:
33:14:b1:0f:f6:95:ce:f4:9f:19:53:bd:3c:4e:20:
ab:92:64:15:b7:d6:11:4b:7e:ba:50:db:26:58:11:
8b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:D8:77:4C:01:37:6B:CC:F6:46:8A:A7:0B:A0:8A:AB:A9:59:76:04
X509v3 Authority Key Identifier:
keyid:2D:42:0D:A5:2C:4F:ED:64:C6:40:81:F9:78:E8:48:5C:D8:16:1A:81
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1AB3C11BF40253F9055107CF2AFC1F49E577BDB491CFD7B8A48F802FC5883B5D/0/2D420DA52C4FED64C64081F978E8485CD8161A81.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D420DA52C4FED64C64081F978E8485CD8161A81.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1AB3C11BF40253F9055107CF2AFC1F49E577BDB491CFD7B8A48F802FC5883B5D/0/323830333a633036303a3a2f33322d3332203d3e203631343531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:c060::/32
Signature Algorithm: sha256WithRSAEncryption
42:66:8d:88:d9:e5:14:e8:db:a6:5f:c9:39:89:e0:d6:fb:eb:
5d:1b:bf:11:25:26:a3:1e:1e:24:7f:eb:0f:3d:20:50:f2:85:
47:13:f5:14:14:b6:dc:60:d3:23:8a:34:4c:11:c2:32:1d:99:
bf:cc:2b:fe:0d:5e:2a:46:1a:8e:f9:c8:92:4d:70:2a:2e:27:
13:4a:0d:67:5d:a4:fd:7e:57:71:0c:59:a6:c1:e4:b7:cf:b3:
55:1a:44:84:c3:3c:62:fc:8e:4c:7c:19:c7:69:eb:31:87:1d:
c1:68:34:2e:f4:f4:c8:dc:f2:f2:c4:4b:65:b3:49:f9:5e:c7:
9f:8b:e9:49:01:fc:60:49:3f:34:48:c7:0b:ac:27:7b:f7:52:
c0:9b:92:2c:aa:34:c9:ab:1d:3c:8e:5c:ba:79:8f:a3:bd:5b:
94:d9:e0:61:ce:e3:97:d1:52:3e:d4:8f:7a:91:a8:97:0c:dc:
5e:12:c0:01:41:88:59:bb:51:07:d0:d7:fe:7a:b9:03:31:ca:
7f:7a:85:2a:ec:81:77:c2:b4:02:39:8a:9c:67:0b:89:10:c3:
0c:0f:60:46:c2:54:1c:04:02:88:55:e6:c8:6f:90:6a:d0:b2:
7e:11:6b:73:47:1d:48:04:9a:65:66:c3:30:31:a4:97:c0:b5:
9b:9f:af:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:19:57 2025 by rpki-client