Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/323830303a6237303a31353a3a2f34382d3438203d3e20323632313931.roa
File: 323830303a6237303a31353a3a2f34382d3438203d3e20323632313931.roa (raw, json)
Hash identifier: S0wIaXuTSUp2qpXY5+zNq+1nHzSDaGQYrt7hXGlLvL0=
Subject key identifier: B7:B4:EF:41:4E:2D:D8:43:3B:6B:34:DF:17:61:DC:B0:62:8F:89:A8
Certificate issuer: /CN=85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD
Certificate serial: 355E5C9D05DB58A3BE94A8CD20B36642D554D29F
Authority key identifier: 85:D9:E7:D9:BE:EF:ED:0B:9E:18:8D:B7:E8:CC:3B:64:89:06:6D:CD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/323830303a6237303a31353a3a2f34382d3438203d3e20323632313931.roa
Signing time: Tue 04 Feb 2025 20:04:31 +0000
ROA not before: Tue 04 Feb 2025 19:59:31 +0000
ROA not after: Tue 03 Feb 2026 20:04:31 +0000
asID: 262191
IP address blocks: 2800:b70:15::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:5e:5c:9d:05:db:58:a3:be:94:a8:cd:20:b3:66:42:d5:54:d2:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD
Validity
Not Before: Feb 4 19:59:31 2025 GMT
Not After : Feb 3 20:04:31 2026 GMT
Subject: CN=B7B4EF414E2DD8433B6B34DF1761DCB0628F89A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:cc:cb:e2:c1:0a:e4:f3:c6:a5:e9:4e:5e:34:
1c:b9:4e:4e:3e:d0:72:1c:ba:66:a0:12:1a:ca:3f:
6c:12:82:b5:29:48:fe:9e:af:49:1f:b1:25:db:e0:
ec:ec:98:c2:c8:2d:b2:d1:cc:6c:93:22:34:dd:53:
74:51:7c:36:76:9b:95:c2:fc:32:86:1a:f6:c3:82:
9d:d7:d8:7a:f8:64:45:95:50:de:c0:e9:27:ca:44:
5b:31:46:2b:79:a7:b5:62:e9:06:e9:15:8e:68:d0:
40:6d:02:5b:e2:95:5c:38:3d:ca:18:06:4b:9d:17:
00:d1:78:25:c8:05:98:46:dd:fa:6a:c7:8b:c1:4a:
29:70:51:08:96:4d:28:1a:c4:4f:fb:4c:43:09:92:
57:00:d8:e4:15:72:09:59:14:81:ea:88:c2:ea:e5:
cc:a3:f4:02:2d:4f:97:00:90:8d:3c:ec:38:18:61:
ae:5d:9e:6e:5c:df:af:80:31:05:73:65:c6:db:25:
52:4c:ff:8d:65:71:4a:cb:8c:33:37:ee:e3:54:d9:
29:57:e9:56:a7:34:02:c5:57:29:63:fe:38:8a:88:
b1:c9:6c:b0:4f:c8:e5:03:20:13:ab:d0:ab:dd:24:
a3:43:d0:34:65:45:32:d1:d4:98:65:a4:17:ce:69:
06:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:B4:EF:41:4E:2D:D8:43:3B:6B:34:DF:17:61:DC:B0:62:8F:89:A8
X509v3 Authority Key Identifier:
keyid:85:D9:E7:D9:BE:EF:ED:0B:9E:18:8D:B7:E8:CC:3B:64:89:06:6D:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/323830303a6237303a31353a3a2f34382d3438203d3e20323632313931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2800:b70:15::/48
Signature Algorithm: sha256WithRSAEncryption
be:7f:0d:14:4f:6e:00:04:7f:30:2a:fa:7d:f4:e8:f5:9b:a4:
d4:10:99:7d:73:99:37:fd:77:09:9a:e8:b4:17:40:ea:0e:b9:
cf:6b:fd:23:cf:e0:9f:d4:62:a2:fe:a2:8d:6f:8d:5a:32:68:
51:ed:2e:84:b7:00:50:1d:8e:1e:93:c0:09:91:92:51:48:74:
36:12:8b:fc:a7:ab:4f:1b:ea:a2:30:44:e6:95:cc:00:e1:81:
28:c0:67:72:d4:5e:58:e2:a7:b5:62:69:bc:a6:0a:9c:9b:0d:
18:9b:cc:f8:f0:7f:fa:36:21:1a:ef:3f:ed:e7:22:80:d2:07:
d4:0c:6e:6a:79:08:b1:e5:89:f4:4d:6a:8b:b0:8f:33:ee:92:
7d:d2:21:9f:85:19:16:5f:ef:76:03:31:8a:75:31:92:6a:b0:
64:f5:45:91:53:d9:0c:ae:23:37:e5:7b:47:fc:66:7b:8f:04:
ea:2c:1f:17:a7:49:2c:41:f3:19:c1:e7:6c:60:32:76:5f:7f:
2f:87:ec:48:75:ec:cb:1d:43:6a:f2:ba:b2:89:87:00:e3:39:
c6:49:65:8a:2e:30:b4:ee:5a:ef:37:eb:60:10:aa:23:99:17:
fe:f8:e8:af:73:00:97:ed:a7:f7:9f:1d:b7:7e:38:5b:8b:80:
be:fa:d0:ca
-----BEGIN CERTIFICATE-----
MIIFxTCCBK2gAwIBAgIUNV5cnQXbWKO+lKjNILNmQtVU0p8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODVEOUU3RDlCRUVGRUQwQjlFMTg4REI3RThDQzNCNjQ4
OTA2NkRDRDAeFw0yNTAyMDQxOTU5MzFaFw0yNjAyMDMyMDA0MzFaMDMxMTAvBgNV
BAMTKEI3QjRFRjQxNEUyREQ4NDMzQjZCMzRERjE3NjFEQ0IwNjI4Rjg5QTgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwzMviwQrk88al6U5eNBy5Tk4+
0HIcumagEhrKP2wSgrUpSP6er0kfsSXb4OzsmMLILbLRzGyTIjTdU3RRfDZ2m5XC
/DKGGvbDgp3X2Hr4ZEWVUN7A6SfKRFsxRit5p7Vi6QbpFY5o0EBtAlvilVw4PcoY
BkudFwDReCXIBZhG3fpqx4vBSilwUQiWTSgaxE/7TEMJklcA2OQVcglZFIHqiMLq
5cyj9AItT5cAkI087DgYYa5dnm5c36+AMQVzZcbbJVJM/41lcUrLjDM37uNU2SlX
6VanNALFVylj/jiKiLHJbLBPyOUDIBOr0KvdJKND0DRlRTLR1JhlpBfOaQZLAgMB
AAGjggLPMIICyzAdBgNVHQ4EFgQUt7TvQU4t2EM7azTfF2HcsGKPiagwHwYDVR0j
BBgwFoAUhdnn2b7v7QueGI236Mw7ZIkGbc0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8xQUQ3MjYxQzdGRDFFNEVGRUNFQkU2RjM2MkZDRDBDNzU2
OTdFMDZCNDE0NzRCRUE4Q0FCQzcwNkY3OUVDRjNELzAvODVEOUU3RDlCRUVGRUQw
QjlFMTg4REI3RThDQzNCNjQ4OTA2NkRDRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84NUQ5RTdEOUJFRUZFRDBCOUUx
ODhEQjdFOENDM0I2NDg5MDY2RENELmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG
CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMUFENzI2MUM3RkQxRTRFRkVDRUJFNkYzNjJGQ0QwQzc1Njk3RTA2QjQx
NDc0QkVBOENBQkM3MDZGNzlFQ0YzRC8wLzMyMzgzMDMwM2E2MjM3MzAzYTMxMzUz
YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMjM2MzIzMTM5MzEucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAo
AAtwABUwDQYJKoZIhvcNAQELBQADggEBAL5/DRRPbgAEfzAq+n306PWbpNQQmX1z
mTf9dwma6LQXQOoOuc9r/SPP4J/UYqL+oo1vjVoyaFHtLoS3AFAdjh6TwAmRklFI
dDYSi/ynq08b6qIwROaVzADhgSjAZ3LUXljip7ViabymCpybDRibzPjwf/o2IRrv
P+3nIoDSB9QMbmp5CLHlifRNaouwjzPukn3SIZ+FGRZf73YDMYp1MZJqsGT1RZFT
2QyuIzfle0f8ZnuPBOosHxenSSxB8xnB52xgMnZffy+H7Eh17MsdQ2ryurKJhwDj
OcZJZYouMLTuWu8362AQqiOZF/746K9zAJftp/efHbd+OFuLgL760Mo=
-----END CERTIFICATE-----
Generated at Sun Apr 6 16:22:05 2025 by rpki-client