Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/25E66E6E20579163B502223B71B9DA3511AD417FEC7D054C5C9E8825E7DCD7EA/0/323830333a383931303a3a2f33322d3332203d3e203634313334.roa
File: 323830333a383931303a3a2f33322d3332203d3e203634313334.roa (raw, json)
Hash identifier: Ay2dwSLSThQtbymkbFomCfsh+Og10F1tQqjW/MFuzbY=
Subject key identifier: 81:E9:21:8D:9E:B9:C6:4F:70:66:F5:78:A8:06:6F:BB:7F:BD:FE:D8
Certificate issuer: /CN=5E04FF1D1502CAA08A7AD24783C2E137D6AFC709
Certificate serial: 688F5912C9C2131C0C386653B65E16B19786F229
Authority key identifier: 5E:04:FF:1D:15:02:CA:A0:8A:7A:D2:47:83:C2:E1:37:D6:AF:C7:09
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5E04FF1D1502CAA08A7AD24783C2E137D6AFC709.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/25E66E6E20579163B502223B71B9DA3511AD417FEC7D054C5C9E8825E7DCD7EA/0/323830333a383931303a3a2f33322d3332203d3e203634313334.roa
Signing time: Sat 25 Jan 2025 20:30:02 +0000
ROA not before: Sat 25 Jan 2025 20:25:02 +0000
ROA not after: Sat 24 Jan 2026 20:30:02 +0000
asID: 64134
IP address blocks: 2803:8910::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:8f:59:12:c9:c2:13:1c:0c:38:66:53:b6:5e:16:b1:97:86:f2:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5E04FF1D1502CAA08A7AD24783C2E137D6AFC709
Validity
Not Before: Jan 25 20:25:02 2025 GMT
Not After : Jan 24 20:30:02 2026 GMT
Subject: CN=81E9218D9EB9C64F7066F578A8066FBB7FBDFED8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:75:81:6a:52:3c:f2:61:70:39:b0:c2:ce:8c:
4f:86:90:4c:85:0d:cc:10:50:d2:fb:55:94:a9:fe:
f3:70:54:91:e5:47:3a:70:fc:5f:ba:81:db:b2:9c:
05:ed:f3:6c:09:4c:31:fe:80:f8:05:0f:06:ca:c4:
0e:09:8e:1b:1d:50:51:f0:48:8d:3d:12:a7:6d:73:
34:44:8a:8e:ba:eb:4c:6e:8d:51:4e:50:89:23:45:
cc:4f:b9:92:12:06:d3:cf:7c:78:e8:1d:cf:fc:31:
d1:4d:8a:06:23:27:97:6c:4d:05:d7:bf:1b:ec:00:
e3:c9:d4:8d:54:00:b7:2c:1a:04:e7:f2:94:b8:d5:
30:b6:71:2f:68:39:9b:cc:31:e2:7c:ee:e0:ad:7d:
57:b8:0f:27:50:db:e5:3b:7f:f6:a5:0c:95:b8:78:
56:20:89:c5:93:82:4f:a6:72:9d:06:e0:21:de:73:
90:8c:26:c8:2d:48:86:6a:15:45:fb:e7:a6:34:a4:
f2:ff:e4:2c:e4:5c:31:03:b4:b3:39:e9:f8:ed:56:
d7:a8:69:20:87:23:1a:32:ae:ec:81:4d:18:63:93:
31:13:59:2f:e9:a0:47:92:4d:c0:46:cc:86:ba:b8:
91:07:6c:65:2f:13:18:23:39:2d:9f:ff:fe:c7:93:
de:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:E9:21:8D:9E:B9:C6:4F:70:66:F5:78:A8:06:6F:BB:7F:BD:FE:D8
X509v3 Authority Key Identifier:
keyid:5E:04:FF:1D:15:02:CA:A0:8A:7A:D2:47:83:C2:E1:37:D6:AF:C7:09
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/25E66E6E20579163B502223B71B9DA3511AD417FEC7D054C5C9E8825E7DCD7EA/0/5E04FF1D1502CAA08A7AD24783C2E137D6AFC709.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5E04FF1D1502CAA08A7AD24783C2E137D6AFC709.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/25E66E6E20579163B502223B71B9DA3511AD417FEC7D054C5C9E8825E7DCD7EA/0/323830333a383931303a3a2f33322d3332203d3e203634313334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:8910::/32
Signature Algorithm: sha256WithRSAEncryption
74:26:84:81:61:89:7f:5c:a1:c4:1a:03:c2:19:7d:1e:ec:8e:
a5:df:75:13:51:6f:a8:e5:f4:26:5e:d1:7d:ac:80:95:7b:76:
6a:71:79:50:50:84:f5:2e:37:d0:d7:5a:74:4a:2b:ff:a0:2e:
e4:fc:c1:ff:ed:fe:ba:14:72:d0:aa:5b:4a:b3:40:f1:d0:a7:
92:12:96:ba:68:89:e7:0b:57:f0:e2:9c:6f:74:4d:4b:73:bb:
c6:5c:fc:b5:a7:f0:4f:48:6f:42:b5:16:2b:c4:6c:1b:ef:62:
7a:03:83:22:4b:cc:5d:13:29:e9:a5:77:30:1e:07:52:2f:4c:
61:8b:74:42:28:87:5e:0c:42:de:06:ba:16:72:e3:38:ff:54:
9d:a7:40:2e:56:cb:5d:27:35:a7:ce:0d:85:eb:a5:0b:d1:76:
18:ad:ad:95:3f:a8:75:eb:bb:03:96:e6:d8:0a:ee:1c:22:aa:
de:32:61:aa:dc:32:8c:c9:f0:9b:69:18:37:84:fe:ab:db:95:
a8:39:5f:cf:6a:f8:99:06:0a:dd:12:5f:18:a3:30:d5:f5:7b:
a6:59:64:28:83:0e:52:b7:bd:51:96:9d:a7:3a:6a:df:86:4d:
3b:b4:d7:d5:c8:18:fa:10:ce:55:38:78:97:30:10:82:04:2b:
0a:fd:df:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:10:09 2025 by rpki-client