Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/20C91421EB59CC1900F7BE84330CC85C275017D06EEF777E35FCF3871FD8AD7D/0/323830313a3166363a3a2f34382d3438203d3e203134303830.roa
File: 323830313a3166363a3a2f34382d3438203d3e203134303830.roa (raw, json)
Hash identifier: RdGN6b8kH7Y4BIv8c3iX8iQN/ag+NOWlt2kwNJ9K604=
Subject key identifier: FD:68:97:3B:57:8E:88:FC:A8:82:73:E1:E6:4E:35:3A:31:04:2F:6D
Certificate issuer: /CN=AC8A4C476174CCE15922EC3E0D5B614ABFAC19B0
Certificate serial: 0AEAE2EBB6488B6CA9ECDB8F77F019744E011142
Authority key identifier: AC:8A:4C:47:61:74:CC:E1:59:22:EC:3E:0D:5B:61:4A:BF:AC:19:B0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AC8A4C476174CCE15922EC3E0D5B614ABFAC19B0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/20C91421EB59CC1900F7BE84330CC85C275017D06EEF777E35FCF3871FD8AD7D/0/323830313a3166363a3a2f34382d3438203d3e203134303830.roa
Signing time: Tue 04 Feb 2025 20:01:28 +0000
ROA not before: Tue 04 Feb 2025 19:56:28 +0000
ROA not after: Tue 03 Feb 2026 20:01:28 +0000
asID: 14080
IP address blocks: 2801:1f6::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:ea:e2:eb:b6:48:8b:6c:a9:ec:db:8f:77:f0:19:74:4e:01:11:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC8A4C476174CCE15922EC3E0D5B614ABFAC19B0
Validity
Not Before: Feb 4 19:56:28 2025 GMT
Not After : Feb 3 20:01:28 2026 GMT
Subject: CN=FD68973B578E88FCA88273E1E64E353A31042F6D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:e5:54:a4:8f:4c:1a:b8:f3:9e:9b:4d:d5:06:
36:cd:7e:66:cc:83:20:fe:e1:ca:aa:cb:e7:59:98:
bc:28:4a:b4:e8:8b:87:ee:0d:5d:a6:82:94:ed:f4:
1d:69:b2:ac:03:ec:39:71:08:89:b2:53:a5:d6:bc:
c7:15:43:81:d1:17:1c:5f:c8:13:f4:63:b4:e8:ac:
bd:42:d8:b5:e0:0f:c3:51:84:2f:75:10:90:7d:20:
7b:60:cd:92:52:71:44:e5:2f:12:b9:b2:aa:d4:a6:
48:a4:6d:ee:fc:b3:18:43:36:4b:7d:63:31:e1:a7:
00:55:38:91:9d:1c:b5:ca:41:91:74:8c:60:7d:06:
48:1e:52:db:b6:e7:bf:de:a4:3b:0d:58:13:e5:12:
8c:2f:12:8a:22:29:5f:11:cb:bb:b9:83:c5:d9:ea:
da:9f:38:a1:89:88:ba:13:2f:e4:19:59:60:26:7e:
29:bd:74:bf:5a:e6:66:44:81:9c:b3:76:39:70:b2:
41:66:a7:8e:1d:f3:2f:cd:98:b1:18:f2:03:3e:16:
cb:1d:15:e9:0d:d2:cd:f9:56:c5:ad:cc:3f:8b:5b:
10:c5:3a:62:21:05:ef:a3:7a:a4:26:3c:c2:99:18:
31:14:ce:b4:42:b8:14:c9:71:cf:a1:c3:55:07:55:
13:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:68:97:3B:57:8E:88:FC:A8:82:73:E1:E6:4E:35:3A:31:04:2F:6D
X509v3 Authority Key Identifier:
keyid:AC:8A:4C:47:61:74:CC:E1:59:22:EC:3E:0D:5B:61:4A:BF:AC:19:B0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/20C91421EB59CC1900F7BE84330CC85C275017D06EEF777E35FCF3871FD8AD7D/0/AC8A4C476174CCE15922EC3E0D5B614ABFAC19B0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AC8A4C476174CCE15922EC3E0D5B614ABFAC19B0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/20C91421EB59CC1900F7BE84330CC85C275017D06EEF777E35FCF3871FD8AD7D/0/323830313a3166363a3a2f34382d3438203d3e203134303830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:1f6::/48
Signature Algorithm: sha256WithRSAEncryption
b7:c8:fd:25:80:72:97:1e:08:cc:24:88:0c:18:78:11:e9:8a:
6b:74:67:17:a4:5e:80:2e:c7:7a:4c:3c:42:bc:1a:84:37:0d:
b8:69:57:d7:15:3e:1b:22:cf:12:46:15:c0:3e:0d:c1:80:5a:
85:aa:de:80:d8:12:6b:fd:ec:20:38:e7:09:1f:02:11:c7:27:
8a:8d:1a:f7:cb:55:31:35:04:94:cd:10:50:1d:50:99:56:a5:
9c:89:c6:6a:7a:cb:f7:4e:77:90:3a:1b:13:1f:77:49:d3:04:
a4:a3:ca:e2:be:fd:71:5f:70:3b:42:a0:54:b3:20:51:5b:d1:
91:03:be:88:2d:71:11:5a:4e:cd:83:6e:4d:69:79:4e:58:8f:
26:36:7c:32:13:72:cb:67:ce:1a:b6:84:96:ff:00:f5:0d:c8:
28:72:89:7b:81:21:52:a4:1d:cc:f6:b0:17:4a:41:07:88:12:
35:c7:05:24:1f:62:e1:7d:ed:13:9e:8c:44:2e:f2:2c:6a:2d:
13:2c:6f:f9:f6:a1:60:36:ca:ab:99:ea:35:06:e4:18:06:24:
b2:d5:1a:80:9a:a4:42:5e:49:fa:44:29:9c:80:f7:54:a6:1f:
a1:95:0e:cf:47:ad:1c:8e:de:51:46:ce:fe:72:69:5a:b4:29:
31:41:f0:f9
-----BEGIN CERTIFICATE-----
MIIFvTCCBKWgAwIBAgIUCuri67ZIi2yp7NuPd/AZdE4BEUIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUM4QTRDNDc2MTc0Q0NFMTU5MjJFQzNFMEQ1QjYxNEFC
RkFDMTlCMDAeFw0yNTAyMDQxOTU2MjhaFw0yNjAyMDMyMDAxMjhaMDMxMTAvBgNV
BAMTKEZENjg5NzNCNTc4RTg4RkNBODgyNzNFMUU2NEUzNTNBMzEwNDJGNkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQ5VSkj0wauPOem03VBjbNfmbM
gyD+4cqqy+dZmLwoSrToi4fuDV2mgpTt9B1psqwD7DlxCImyU6XWvMcVQ4HRFxxf
yBP0Y7TorL1C2LXgD8NRhC91EJB9IHtgzZJScUTlLxK5sqrUpkikbe78sxhDNkt9
YzHhpwBVOJGdHLXKQZF0jGB9BkgeUtu257/epDsNWBPlEowvEooiKV8Ry7u5g8XZ
6tqfOKGJiLoTL+QZWWAmfim9dL9a5mZEgZyzdjlwskFmp44d8y/NmLEY8gM+Fssd
FekN0s35VsWtzD+LWxDFOmIhBe+jeqQmPMKZGDEUzrRCuBTJcc+hw1UHVRO1AgMB
AAGjggLHMIICwzAdBgNVHQ4EFgQU/WiXO1eOiPyognPh5k41OjEEL20wHwYDVR0j
BBgwFoAUrIpMR2F0zOFZIuw+DVthSr+sGbAwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8yMEM5MTQyMUVCNTlDQzE5MDBGN0JFODQzMzBDQzg1QzI3
NTAxN0QwNkVFRjc3N0UzNUZDRjM4NzFGRDhBRDdELzAvQUM4QTRDNDc2MTc0Q0NF
MTU5MjJFQzNFMEQ1QjYxNEFCRkFDMTlCMC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9BQzhBNEM0NzYxNzRDQ0UxNTky
MkVDM0UwRDVCNjE0QUJGQUMxOUIwLmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG
CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMjBDOTE0MjFFQjU5Q0MxOTAwRjdCRTg0MzMwQ0M4NUMyNzUwMTdEMDZF
RUY3NzdFMzVGQ0YzODcxRkQ4QUQ3RC8wLzMyMzgzMDMxM2EzMTY2MzYzYTNhMmYz
NDM4MmQzNDM4MjAzZDNlMjAzMTM0MzAzODMwLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKAEB9gAAMA0G
CSqGSIb3DQEBCwUAA4IBAQC3yP0lgHKXHgjMJIgMGHgR6YprdGcXpF6ALsd6TDxC
vBqENw24aVfXFT4bIs8SRhXAPg3BgFqFqt6A2BJr/ewgOOcJHwIRxyeKjRr3y1Ux
NQSUzRBQHVCZVqWcicZqesv3TneQOhsTH3dJ0wSko8rivv1xX3A7QqBUsyBRW9GR
A76ILXERWk7Ng25NaXlOWI8mNnwyE3LLZ84atoSW/wD1Dcgocol7gSFSpB3M9rAX
SkEHiBI1xwUkH2Lhfe0TnoxELvIsai0TLG/59qFgNsqrmeo1BuQYBiSy1RqAmqRC
Xkn6RCmcgPdUph+hlQ7PR60cjt5RRs7+cmlatCkxQfD5
-----END CERTIFICATE-----
Generated at Sun Apr 6 00:38:23 2025 by rpki-client