Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/20ED4C07EB66687B0212C55332D0FBD17640C89F4A8F6096C769FAD8B819EBFE/0/323830313a3135343a3a2f34322d3432203d3e203138373437.roa
File: 323830313a3135343a3a2f34322d3432203d3e203138373437.roa (raw, json)
Hash identifier: PCe48n/hNN6nUgDj6uZfWAC5wPAGIGxQXjZBm4H+CKw=
Subject key identifier: 91:3E:B1:89:20:E3:DD:AB:C6:8D:89:80:B4:B4:7C:4F:FA:6E:74:A2
Certificate issuer: /CN=AA7189C75E9BFCB41A376AF33303F62E809AD1DF
Certificate serial: 31E9796AC2BE8B1CF8EAD4C79AAB8F14FBA9266E
Authority key identifier: AA:71:89:C7:5E:9B:FC:B4:1A:37:6A:F3:33:03:F6:2E:80:9A:D1:DF
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AA7189C75E9BFCB41A376AF33303F62E809AD1DF.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/20ED4C07EB66687B0212C55332D0FBD17640C89F4A8F6096C769FAD8B819EBFE/0/323830313a3135343a3a2f34322d3432203d3e203138373437.roa
Signing time: Fri 01 Nov 2024 16:10:00 +0000
ROA not before: Fri 01 Nov 2024 16:05:00 +0000
ROA not after: Fri 31 Oct 2025 16:10:00 +0000
asID: 18747
IP address blocks: 2801:154::/42 maxlen: 42
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:e9:79:6a:c2:be:8b:1c:f8:ea:d4:c7:9a:ab:8f:14:fb:a9:26:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AA7189C75E9BFCB41A376AF33303F62E809AD1DF
Validity
Not Before: Nov 1 16:05:00 2024 GMT
Not After : Oct 31 16:10:00 2025 GMT
Subject: CN=913EB18920E3DDABC68D8980B4B47C4FFA6E74A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:72:42:a3:1f:d3:66:d8:a9:6a:4c:5b:8e:60:
2a:2d:04:8f:a6:f8:cb:99:7c:9e:07:64:0b:4e:31:
0c:a3:e6:7a:d7:e4:7d:c2:c1:92:dd:3f:ef:89:92:
c2:1b:2a:3e:df:24:c0:0a:26:2d:0a:a1:42:3d:7d:
87:25:e9:29:0c:77:9e:29:27:fc:26:58:ee:ff:63:
ee:b6:9b:87:f8:70:c8:37:04:a8:6e:23:55:4c:24:
8f:c6:ba:4e:14:81:9b:17:1c:35:7d:f0:b9:39:88:
8a:80:f0:e3:4a:87:a8:5a:ac:5b:1a:b7:92:7d:82:
0b:e6:4f:d5:63:e0:8b:26:99:2a:5a:ec:9c:50:6f:
0a:48:4a:63:a5:cd:32:c5:9b:05:67:db:4a:bf:f8:
6c:e7:e6:ff:27:c9:7a:d3:ae:ce:61:02:3f:e8:94:
f8:1f:61:0d:29:17:4e:a7:6b:8a:3e:e5:af:6e:60:
03:c8:d0:5a:06:32:a9:0b:c8:fd:21:ba:ce:51:a0:
86:2f:a3:d4:5e:8e:82:f1:86:74:98:81:32:d6:af:
66:9e:5e:6e:74:ba:34:a5:2c:12:60:6e:c2:03:14:
31:b8:0c:67:5b:f8:fe:18:24:ff:0e:78:39:66:f5:
e4:ec:0f:45:37:ae:84:69:0f:cd:b9:18:22:b4:19:
03:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:3E:B1:89:20:E3:DD:AB:C6:8D:89:80:B4:B4:7C:4F:FA:6E:74:A2
X509v3 Authority Key Identifier:
keyid:AA:71:89:C7:5E:9B:FC:B4:1A:37:6A:F3:33:03:F6:2E:80:9A:D1:DF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/20ED4C07EB66687B0212C55332D0FBD17640C89F4A8F6096C769FAD8B819EBFE/0/AA7189C75E9BFCB41A376AF33303F62E809AD1DF.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AA7189C75E9BFCB41A376AF33303F62E809AD1DF.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/20ED4C07EB66687B0212C55332D0FBD17640C89F4A8F6096C769FAD8B819EBFE/0/323830313a3135343a3a2f34322d3432203d3e203138373437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:154::/42
Signature Algorithm: sha256WithRSAEncryption
95:43:98:57:ca:86:5a:e7:3a:61:7e:ff:65:39:60:15:7f:88:
f9:a7:8f:20:8c:11:8f:f7:3f:ee:5f:6f:94:d8:5c:44:86:84:
fe:2c:4e:8b:59:7a:ad:45:fd:da:0a:24:55:1e:c7:60:fc:bc:
57:56:08:e4:36:9b:c7:c1:b2:85:d9:dc:f8:e0:a3:5a:a2:b2:
09:ef:75:d8:37:60:19:71:f3:be:c8:69:5d:7b:35:5d:76:9d:
b0:92:84:a0:7c:e0:51:c3:d9:e3:77:70:73:83:61:55:98:21:
fb:e2:5b:2f:f1:d8:a3:f2:2f:62:23:dc:8c:44:3a:68:12:39:
0f:b7:56:47:73:00:3c:28:bc:dd:a1:3d:95:7e:a3:4c:87:b4:
ab:2b:ec:15:0a:1d:1d:5d:b2:e9:30:ad:00:8d:a8:ab:d7:57:
a5:d1:30:43:a4:bf:be:78:41:01:75:4e:0b:81:f7:ba:5b:91:
db:f2:bd:93:f0:a2:64:d7:f1:45:b4:7e:a7:f7:39:0d:39:20:
26:bd:8d:0d:a0:25:3a:f5:22:ab:20:15:1f:9a:1d:ae:a1:56:
86:89:90:ef:99:64:db:cb:8f:c1:85:14:9d:ed:c2:f6:78:a4:
91:09:b6:af:18:ef:25:59:e2:75:b2:8a:5f:6c:e1:c1:e3:16:
52:b2:b4:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:42:29 2025 by rpki-client