Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/275131D75BC9A376FBF268E772B63AFE59E5840462274299D9B8EC0BDF4E2423/0/323830313a3135363a3a2f34382d3438203d3e203133343839.roa
File: 323830313a3135363a3a2f34382d3438203d3e203133343839.roa (raw, json)
Hash identifier: fdM+eNUJm+xLipZNdwmnhA5TbEunxVLxhLLTw/xm/NM=
Subject key identifier: D5:A5:DC:EB:05:4A:80:EF:B1:80:98:05:FC:ED:2C:9C:B7:DE:F3:4A
Certificate issuer: /CN=5A22E8DFEB4EE951814038D09288B96F1FD446EB
Certificate serial: 1D112D94806F9C62521B5B4A3B48D5E772F7A566
Authority key identifier: 5A:22:E8:DF:EB:4E:E9:51:81:40:38:D0:92:88:B9:6F:1F:D4:46:EB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5A22E8DFEB4EE951814038D09288B96F1FD446EB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/275131D75BC9A376FBF268E772B63AFE59E5840462274299D9B8EC0BDF4E2423/0/323830313a3135363a3a2f34382d3438203d3e203133343839.roa
Signing time: Tue 04 Feb 2025 19:59:09 +0000
ROA not before: Tue 04 Feb 2025 19:54:09 +0000
ROA not after: Tue 03 Feb 2026 19:59:09 +0000
asID: 13489
IP address blocks: 2801:156::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:11:2d:94:80:6f:9c:62:52:1b:5b:4a:3b:48:d5:e7:72:f7:a5:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5A22E8DFEB4EE951814038D09288B96F1FD446EB
Validity
Not Before: Feb 4 19:54:09 2025 GMT
Not After : Feb 3 19:59:09 2026 GMT
Subject: CN=D5A5DCEB054A80EFB1809805FCED2C9CB7DEF34A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:47:e0:1a:6c:dc:ae:d1:86:c4:4b:36:8f:eb:
07:65:dc:e9:5c:ef:d2:63:b2:f2:d5:a3:7e:e8:e5:
00:d1:fc:3b:9c:82:e3:b7:67:31:4c:2a:91:5d:5a:
f7:f7:94:bf:b9:93:f8:e8:14:1c:b1:10:cc:00:82:
a1:38:6a:a1:5f:1c:97:6f:60:e8:ef:ac:1b:1b:39:
58:a3:59:c4:34:dd:10:08:27:9e:60:c5:88:a4:7c:
b3:e1:4d:44:7c:fc:93:0b:29:eb:0d:f5:3f:00:aa:
24:8e:99:61:08:c7:27:39:5a:7e:6b:d9:67:7c:c2:
eb:da:73:a2:c7:1e:e0:99:ee:d1:5a:8b:d1:0f:1d:
71:d6:83:e1:d3:91:28:69:e4:cf:e2:5e:5c:d2:33:
9c:e2:4f:dc:78:16:88:d2:cd:20:c6:27:e2:40:9b:
19:f9:a3:0c:ff:76:72:3e:3d:cb:6f:44:55:f9:21:
cf:a0:eb:be:e1:1d:21:4f:83:de:46:10:bf:57:33:
08:9c:63:dc:07:fb:d8:cc:fe:e0:c4:3e:34:11:c6:
8a:c9:40:ac:c5:5a:4a:1e:f3:fe:88:d4:30:83:ca:
8e:f2:94:56:f6:70:11:4f:73:9e:55:fa:71:df:d9:
f6:8f:fc:35:00:03:5e:f5:52:07:c1:f0:21:3a:27:
ad:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:A5:DC:EB:05:4A:80:EF:B1:80:98:05:FC:ED:2C:9C:B7:DE:F3:4A
X509v3 Authority Key Identifier:
keyid:5A:22:E8:DF:EB:4E:E9:51:81:40:38:D0:92:88:B9:6F:1F:D4:46:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/275131D75BC9A376FBF268E772B63AFE59E5840462274299D9B8EC0BDF4E2423/0/5A22E8DFEB4EE951814038D09288B96F1FD446EB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5A22E8DFEB4EE951814038D09288B96F1FD446EB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/275131D75BC9A376FBF268E772B63AFE59E5840462274299D9B8EC0BDF4E2423/0/323830313a3135363a3a2f34382d3438203d3e203133343839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:156::/48
Signature Algorithm: sha256WithRSAEncryption
46:67:65:f1:b2:82:00:8d:33:26:01:13:30:11:be:73:1a:c4:
88:bc:57:53:0c:d8:a0:c0:21:8a:69:42:32:ff:ae:cb:29:e2:
48:24:53:10:dd:e8:53:a1:98:b2:44:16:be:56:5f:0f:53:03:
24:ab:20:ef:94:14:b0:ba:a2:5d:c6:41:0f:c5:10:4b:cf:00:
12:88:d2:b1:f0:49:e9:2a:ed:13:b9:1b:e0:97:64:3b:61:81:
de:f4:1f:fd:d3:45:5f:5e:40:7a:a4:e6:2d:ff:bf:d2:e6:4d:
d9:ce:19:91:8e:49:4c:fa:1e:75:09:8a:ce:09:0f:4e:ca:f2:
19:e7:d3:33:9b:0b:fa:2a:16:3f:bc:df:b3:c9:9f:d3:36:36:
a8:20:56:e0:e9:5b:7b:bb:53:19:3c:5f:e8:7d:f4:50:6f:d2:
d4:73:c2:5c:c9:5d:84:df:e3:49:b8:4d:e2:81:f2:56:03:8b:
fd:1b:06:7a:2d:c8:c5:fe:da:44:08:b9:6d:1e:58:9d:77:d7:
e7:14:ca:fa:8c:af:cc:5f:fd:61:3c:08:53:3f:d5:77:d7:f0:
a8:14:d5:57:67:d7:11:33:d2:c1:ff:1c:68:ba:78:b4:f3:01:
8b:3b:a0:c0:a4:7e:a0:4b:34:0c:b6:62:a5:91:b7:39:04:25:
bb:77:70:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:19:26 2025 by rpki-client