Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/323830303a6237303a3630313a3a2f34382d3438203d3e20323632313931.roa
File: 323830303a6237303a3630313a3a2f34382d3438203d3e20323632313931.roa (raw, json)
Hash identifier: mwsnQ4YApxXlNtnLt8Ix4nSJPmG1LztKMFNNTWP0P18=
Subject key identifier: FE:F5:9C:F9:A0:AB:4D:3C:7F:B3:26:0E:96:24:74:E4:F3:23:25:AF
Certificate issuer: /CN=85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD
Certificate serial: 3EB15D4D16AFE733BB5C47F89B9FA25654BD9785
Authority key identifier: 85:D9:E7:D9:BE:EF:ED:0B:9E:18:8D:B7:E8:CC:3B:64:89:06:6D:CD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/323830303a6237303a3630313a3a2f34382d3438203d3e20323632313931.roa
Signing time: Tue 04 Feb 2025 20:04:44 +0000
ROA not before: Tue 04 Feb 2025 19:59:44 +0000
ROA not after: Tue 03 Feb 2026 20:04:44 +0000
asID: 262191
IP address blocks: 2800:b70:601::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:b1:5d:4d:16:af:e7:33:bb:5c:47:f8:9b:9f:a2:56:54:bd:97:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD
Validity
Not Before: Feb 4 19:59:44 2025 GMT
Not After : Feb 3 20:04:44 2026 GMT
Subject: CN=FEF59CF9A0AB4D3C7FB3260E962474E4F32325AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:be:15:7a:05:f4:31:74:ee:1b:2b:58:8f:10:
6d:59:6d:99:82:cb:eb:5d:b5:53:7c:dd:ec:c9:1b:
90:c5:bd:1e:59:49:7f:55:3e:33:15:8f:7a:66:60:
a0:04:c2:a2:9e:cd:d2:6a:7c:0c:40:b6:7b:24:e6:
13:04:90:c2:4d:77:32:d6:cd:e6:0d:56:e6:b7:0a:
dc:32:05:84:6f:99:5e:d9:c5:a2:6a:a7:9b:ca:9b:
79:00:09:a9:fd:1f:52:c9:17:75:2c:84:e2:61:cb:
13:bc:d6:0a:b5:a6:6f:55:04:75:ab:73:0c:19:7c:
18:ef:71:5e:7d:29:fc:90:01:30:2d:3f:c2:12:0a:
25:e3:ab:89:16:fa:16:2f:14:3d:ec:92:0d:dd:6f:
44:78:db:51:d1:a9:13:1b:eb:75:9b:5d:f6:cd:e9:
a7:8d:8d:1b:5e:61:54:85:6d:b7:66:aa:aa:1d:e6:
75:cd:b1:15:63:08:86:e1:06:8d:33:71:2b:fc:a2:
88:07:c1:37:f6:33:2a:98:6e:3f:07:41:b9:20:57:
d1:06:4d:a3:da:8a:9e:c3:5f:77:e0:76:fd:27:b3:
92:ca:50:24:50:e8:bd:ad:51:81:82:41:b3:3f:f5:
1b:e3:a5:36:4f:0e:e3:5c:44:bd:e8:9d:f5:d8:e4:
fb:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:F5:9C:F9:A0:AB:4D:3C:7F:B3:26:0E:96:24:74:E4:F3:23:25:AF
X509v3 Authority Key Identifier:
keyid:85:D9:E7:D9:BE:EF:ED:0B:9E:18:8D:B7:E8:CC:3B:64:89:06:6D:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85D9E7D9BEEFED0B9E188DB7E8CC3B6489066DCD.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1AD7261C7FD1E4EFECEBE6F362FCD0C75697E06B41474BEA8CABC706F79ECF3D/0/323830303a6237303a3630313a3a2f34382d3438203d3e20323632313931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2800:b70:601::/48
Signature Algorithm: sha256WithRSAEncryption
4a:e9:9e:a3:73:90:27:04:db:3b:88:e7:3e:b7:98:6c:b7:4b:
9b:4a:d3:c1:94:f5:33:71:9d:f2:6a:27:a2:1a:e3:b1:28:4f:
46:7c:97:13:9e:74:a6:85:34:2c:b8:85:0f:cd:a4:20:59:2f:
34:fe:a5:9f:b5:38:ba:4f:89:f5:aa:2a:a6:08:28:cd:d6:12:
d5:2d:39:ea:8d:d5:be:d4:c9:1b:b7:e2:3b:04:e3:a2:0d:e8:
25:d6:ce:c1:34:41:53:13:ec:b9:b8:00:73:ce:a4:bf:71:b0:
dd:f8:02:7f:ee:15:20:d5:03:f0:0b:87:15:b5:53:48:1a:02:
34:e9:db:6b:fb:a8:fc:d7:a1:fe:69:33:32:07:c8:d4:16:bd:
ce:0a:2f:ef:32:69:ea:0a:18:92:b9:60:47:ac:db:de:89:8e:
f9:eb:0a:af:4c:35:dd:09:90:74:fe:85:32:78:d7:44:66:95:
05:98:45:f4:b6:2d:a2:3f:48:66:50:f2:ce:30:59:6b:0e:aa:
01:8f:02:3f:da:95:46:76:85:3a:89:45:de:cd:16:27:3d:49:
01:eb:04:f1:1c:c0:43:ca:36:65:80:26:46:d7:71:99:89:6a:
9b:3a:b1:a2:ef:52:e7:a0:4a:27:c3:e7:64:78:1c:c4:b3:d9:
9a:83:90:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 12:51:55 2025 by rpki-client