Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1BD03842362FAEFBF288DCD0380BB080EF1C244FE30A23E48FDC62394E1F048D/0/323830333a346332303a3a2f33322d3332203d3e20323635383238.roa
File: 323830333a346332303a3a2f33322d3332203d3e20323635383238.roa (raw, json)
Hash identifier: HghHheH9VYqtI1XmybRzozeo81o2eZ4Q8jt9mPO6zlo=
Subject key identifier: CD:71:7A:3A:05:CE:29:F7:C5:43:4E:45:56:3B:1A:8D:25:E0:45:48
Certificate issuer: /CN=B9AB59A03A8D1B251F8F5C17B450A8C25F5636EE
Certificate serial: 5807F51396A58561BDC222893B688A471F31FB9C
Authority key identifier: B9:AB:59:A0:3A:8D:1B:25:1F:8F:5C:17:B4:50:A8:C2:5F:56:36:EE
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B9AB59A03A8D1B251F8F5C17B450A8C25F5636EE.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1BD03842362FAEFBF288DCD0380BB080EF1C244FE30A23E48FDC62394E1F048D/0/323830333a346332303a3a2f33322d3332203d3e20323635383238.roa
Signing time: Tue 04 Feb 2025 18:49:28 +0000
ROA not before: Tue 04 Feb 2025 18:44:28 +0000
ROA not after: Tue 03 Feb 2026 18:49:28 +0000
asID: 265828
IP address blocks: 2803:4c20::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:07:f5:13:96:a5:85:61:bd:c2:22:89:3b:68:8a:47:1f:31:fb:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B9AB59A03A8D1B251F8F5C17B450A8C25F5636EE
Validity
Not Before: Feb 4 18:44:28 2025 GMT
Not After : Feb 3 18:49:28 2026 GMT
Subject: CN=CD717A3A05CE29F7C5434E45563B1A8D25E04548
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:4d:b3:a0:b2:4b:04:60:85:e4:8d:f5:51:5f:
13:2c:9e:02:89:b0:8a:1e:05:85:48:78:49:41:c6:
20:01:2f:39:f0:48:cf:d2:36:75:90:8c:83:c9:15:
18:57:9c:d5:80:ed:85:98:44:64:90:0b:5d:d1:20:
3a:73:22:aa:1a:69:22:6d:3e:11:f1:fd:ba:7b:7d:
93:a8:e1:9d:b5:12:40:8d:64:98:58:d4:da:37:6d:
a5:4e:99:ba:cf:28:87:f3:75:eb:5e:fb:5f:3b:59:
b2:08:35:85:89:88:f7:da:5a:57:07:39:eb:a8:9c:
0a:bf:9f:59:5a:e1:16:54:47:fb:7e:e7:32:63:f0:
cd:20:49:09:b3:bb:29:d3:34:e3:59:75:95:56:24:
fc:b3:29:e5:14:c9:22:85:71:c4:c1:52:cc:98:e1:
90:82:05:75:0d:58:0f:e5:80:d3:d9:76:23:b3:0d:
9a:21:0d:4c:fc:c0:f4:65:da:91:00:f1:92:10:ac:
b2:b7:0d:11:28:dc:3c:71:99:ac:7c:bc:9e:67:ad:
3e:62:d6:8e:e7:62:fd:9f:07:58:3d:12:74:f1:e8:
3d:1a:46:76:82:fc:8b:98:5c:78:86:e2:86:9c:55:
52:84:b9:55:df:ee:d7:14:11:d8:f9:9f:62:5d:64:
e1:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:71:7A:3A:05:CE:29:F7:C5:43:4E:45:56:3B:1A:8D:25:E0:45:48
X509v3 Authority Key Identifier:
keyid:B9:AB:59:A0:3A:8D:1B:25:1F:8F:5C:17:B4:50:A8:C2:5F:56:36:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1BD03842362FAEFBF288DCD0380BB080EF1C244FE30A23E48FDC62394E1F048D/0/B9AB59A03A8D1B251F8F5C17B450A8C25F5636EE.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B9AB59A03A8D1B251F8F5C17B450A8C25F5636EE.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1BD03842362FAEFBF288DCD0380BB080EF1C244FE30A23E48FDC62394E1F048D/0/323830333a346332303a3a2f33322d3332203d3e20323635383238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:4c20::/32
Signature Algorithm: sha256WithRSAEncryption
2d:ea:85:e9:ac:87:f6:60:08:d9:b9:44:e8:4d:70:a6:07:ec:
c7:73:b7:f0:b8:61:3d:33:5d:cc:e2:cd:5a:a7:14:9e:e7:f6:
a9:b6:4c:23:bf:7d:cc:0e:2e:9e:0c:83:b2:a7:a9:6f:e4:af:
0c:36:00:5d:db:6e:77:56:fc:1a:98:29:87:74:7d:3f:df:8f:
94:be:8c:6f:8a:81:36:69:1e:61:37:49:12:17:2b:d5:ba:e5:
58:3b:b3:bc:a3:23:eb:fa:9c:ff:77:dc:52:fa:4a:c9:fe:16:
da:e7:dc:3f:4d:ad:63:15:3b:ad:33:6e:28:ea:08:bd:cb:c2:
35:d6:31:58:ff:aa:86:d8:30:f5:f4:a2:87:b3:b6:e2:c2:44:
50:8d:a5:eb:0e:e5:bb:7c:6e:79:a1:ea:35:6c:a1:a6:ee:14:
03:c7:3e:ac:c3:85:93:19:61:25:c5:00:cb:1d:26:8a:51:5f:
b3:2c:e9:ec:67:b5:76:8b:fa:ac:78:88:f2:2a:4c:95:b9:a5:
ed:4b:f8:0e:24:75:b1:54:a1:79:1c:94:93:f5:68:62:a5:77:
cf:b9:46:0f:f1:49:01:60:f1:9a:6b:5a:47:31:96:8b:0b:49:
8d:bf:b9:f8:26:96:c0:cf:97:f1:87:c9:e4:31:d1:fb:2c:8c:
fc:5d:87:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:04:45 2025 by rpki-client