Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/235BF1930CA7A013E41C8BAB60B937C8C10264303A2938BBF4BCC4B1F99CBB0C/0/323830333a616631303a3a2f33322d3332203d3e20323732313232.roa
File: 323830333a616631303a3a2f33322d3332203d3e20323732313232.roa (raw, json)
Hash identifier: vc8OTOt3siLEEkeHcBsWTWr4S72f3+sI9SPidoH5RF0=
Subject key identifier: CD:62:81:00:7D:92:5E:98:D3:25:92:27:91:F1:58:AB:AF:83:63:CF
Certificate issuer: /CN=864255909469F50CE15FE2F07B617FAAD2741BE0
Certificate serial: 7525BD156BDA9C058D420A3F855937DB4A617D2A
Authority key identifier: 86:42:55:90:94:69:F5:0C:E1:5F:E2:F0:7B:61:7F:AA:D2:74:1B:E0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/864255909469F50CE15FE2F07B617FAAD2741BE0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/235BF1930CA7A013E41C8BAB60B937C8C10264303A2938BBF4BCC4B1F99CBB0C/0/323830333a616631303a3a2f33322d3332203d3e20323732313232.roa
Signing time: Thu 13 Mar 2025 00:11:41 +0000
ROA not before: Thu 13 Mar 2025 00:06:41 +0000
ROA not after: Thu 12 Mar 2026 00:11:41 +0000
asID: 272122
IP address blocks: 2803:af10::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:25:bd:15:6b:da:9c:05:8d:42:0a:3f:85:59:37:db:4a:61:7d:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=864255909469F50CE15FE2F07B617FAAD2741BE0
Validity
Not Before: Mar 13 00:06:41 2025 GMT
Not After : Mar 12 00:11:41 2026 GMT
Subject: CN=CD6281007D925E98D325922791F158ABAF8363CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:28:dc:5f:11:29:53:e8:5e:a4:57:c1:b5:c3:
85:c5:29:5a:c8:61:49:b7:3c:95:3d:b4:be:0a:d6:
0a:f9:e4:f3:97:60:66:88:d2:fc:94:a9:29:28:04:
ef:e0:d0:74:db:79:d7:c1:a1:7b:cf:8e:6b:c8:4a:
4a:32:53:07:4b:fd:7c:28:eb:15:78:40:10:b5:4a:
29:cc:6c:0d:0b:20:bb:88:11:2f:7d:05:3b:4e:5d:
ce:00:26:0d:b3:01:49:dc:60:cb:69:76:ef:5c:e1:
ff:d7:99:d7:86:92:25:5f:84:1d:e7:93:80:51:fc:
cc:af:cf:26:80:d9:e4:73:b3:6b:7a:30:af:e4:32:
51:81:d5:c9:61:22:e8:cd:fe:3b:af:c9:9e:2a:c1:
40:7b:8f:d3:69:95:93:07:06:76:22:c3:f0:70:bd:
31:ab:c8:63:b0:18:53:10:ce:fc:b9:92:e6:5d:93:
46:bb:ca:05:cb:be:7d:bb:9f:1f:1b:5c:d6:7f:c2:
97:07:5a:db:1b:4e:7f:43:f5:c6:95:23:c6:8c:9e:
e8:bc:78:07:4f:b6:10:8b:7c:65:7e:49:c0:95:16:
62:c9:69:3c:8c:6b:59:f5:73:2b:35:8c:49:5d:12:
13:7f:2d:09:46:f2:a4:f5:fc:43:60:0f:f1:9e:94:
40:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:62:81:00:7D:92:5E:98:D3:25:92:27:91:F1:58:AB:AF:83:63:CF
X509v3 Authority Key Identifier:
keyid:86:42:55:90:94:69:F5:0C:E1:5F:E2:F0:7B:61:7F:AA:D2:74:1B:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/235BF1930CA7A013E41C8BAB60B937C8C10264303A2938BBF4BCC4B1F99CBB0C/0/864255909469F50CE15FE2F07B617FAAD2741BE0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/864255909469F50CE15FE2F07B617FAAD2741BE0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/235BF1930CA7A013E41C8BAB60B937C8C10264303A2938BBF4BCC4B1F99CBB0C/0/323830333a616631303a3a2f33322d3332203d3e20323732313232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:af10::/32
Signature Algorithm: sha256WithRSAEncryption
b9:f6:be:04:26:af:a9:24:6a:67:f4:fb:34:33:f4:74:8c:2c:
cf:e1:08:53:4c:04:a4:b2:50:33:81:11:ce:a3:79:9d:de:e2:
4f:ed:26:7f:27:93:6d:25:84:69:ea:51:28:fe:b6:64:e2:8c:
8b:78:86:4d:38:89:ab:23:b8:32:3e:66:bb:89:35:53:71:83:
0e:e2:ce:63:d5:09:58:10:37:1c:5a:bd:1e:c6:1e:50:09:fc:
fd:0d:92:f8:77:b9:15:78:de:e5:68:10:45:6d:85:18:bc:e8:
34:3b:c4:e0:fc:a7:16:8c:5d:bb:c3:ce:af:20:40:5e:ec:4e:
c8:89:27:80:2e:cc:18:0f:a6:99:83:13:8f:9b:87:d2:89:1b:
fe:0d:3b:f2:51:96:6f:d2:db:b2:d4:28:06:3b:56:1d:05:54:
dd:b4:33:32:d7:91:e3:47:cc:11:55:9f:44:a2:8a:ff:50:41:
25:8c:1c:a1:76:be:c3:b6:a7:56:c7:b3:5e:15:71:2c:10:57:
0d:68:e0:6a:0d:e3:02:8a:0b:56:36:d4:3d:a5:8f:6f:0a:85:
c2:98:f3:ce:92:8e:8e:70:4b:9d:f8:d2:1f:a1:f1:c9:cb:5f:
5e:b2:4d:c4:44:4b:4a:87:16:37:3c:4f:ac:85:97:70:2a:f8:
94:8f:d1:53
-----BEGIN CERTIFICATE-----
MIIFvzCCBKegAwIBAgIUdSW9FWvanAWNQgo/hVk320phfSowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODY0MjU1OTA5NDY5RjUwQ0UxNUZFMkYwN0I2MTdGQUFE
Mjc0MUJFMDAeFw0yNTAzMTMwMDA2NDFaFw0yNjAzMTIwMDExNDFaMDMxMTAvBgNV
BAMTKENENjI4MTAwN0Q5MjVFOThEMzI1OTIyNzkxRjE1OEFCQUY4MzYzQ0YwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2KNxfESlT6F6kV8G1w4XFKVrI
YUm3PJU9tL4K1gr55POXYGaI0vyUqSkoBO/g0HTbedfBoXvPjmvISkoyUwdL/Xwo
6xV4QBC1SinMbA0LILuIES99BTtOXc4AJg2zAUncYMtpdu9c4f/XmdeGkiVfhB3n
k4BR/MyvzyaA2eRzs2t6MK/kMlGB1clhIujN/juvyZ4qwUB7j9NplZMHBnYiw/Bw
vTGryGOwGFMQzvy5kuZdk0a7ygXLvn27nx8bXNZ/wpcHWtsbTn9D9caVI8aMnui8
eAdPthCLfGV+ScCVFmLJaTyMa1n1cys1jEldEhN/LQlG8qT1/ENgD/GelECNAgMB
AAGjggLJMIICxTAdBgNVHQ4EFgQUzWKBAH2SXpjTJZInkfFYq6+DY88wHwYDVR0j
BBgwFoAUhkJVkJRp9QzhX+Lwe2F/qtJ0G+AwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8yMzVCRjE5MzBDQTdBMDEzRTQxQzhCQUI2MEI5MzdDOEMx
MDI2NDMwM0EyOTM4QkJGNEJDQzRCMUY5OUNCQjBDLzAvODY0MjU1OTA5NDY5RjUw
Q0UxNUZFMkYwN0I2MTdGQUFEMjc0MUJFMC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84NjQyNTU5MDk0NjlGNTBDRTE1
RkUyRjA3QjYxN0ZBQUQyNzQxQkUwLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMjM1QkYxOTMwQ0E3QTAxM0U0MUM4QkFCNjBCOTM3QzhDMTAyNjQzMDNB
MjkzOEJCRjRCQ0M0QjFGOTlDQkIwQy8wLzMyMzgzMDMzM2E2MTY2MzEzMDNhM2Ey
ZjMzMzIyZDMzMzIyMDNkM2UyMDMyMzczMjMxMzIzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACgDrxAw
DQYJKoZIhvcNAQELBQADggEBALn2vgQmr6kkamf0+zQz9HSMLM/hCFNMBKSyUDOB
Ec6jeZ3e4k/tJn8nk20lhGnqUSj+tmTijIt4hk04iasjuDI+ZruJNVNxgw7izmPV
CVgQNxxavR7GHlAJ/P0Nkvh3uRV43uVoEEVthRi86DQ7xOD8pxaMXbvDzq8gQF7s
TsiJJ4AuzBgPppmDE4+bh9KJG/4NO/JRlm/S27LUKAY7Vh0FVN20MzLXkeNHzBFV
n0Siiv9QQSWMHKF2vsO2p1bHs14VcSwQVw1o4GoN4wKKC1Y21D2lj28KhcKY886S
jo5wS5340h+h8cnLX16yTcRES0qHFjc8T6yFl3Aq+JSP0VM=
-----END CERTIFICATE-----
Generated at Sun Apr 6 01:41:59 2025 by rpki-client