Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2780D2BD7F6D2F137999F69B00097CA965EE96A7DCD9F62E5AD59CD74E5757A9/0/323830313a3164363a3a2f34302d3430203d3e20323731383333.roa
File: 323830313a3164363a3a2f34302d3430203d3e20323731383333.roa (raw, json)
Hash identifier: s3YYxGoSewZ7di8q17FV99YUoH578YfPTPFxAlhhHKs=
Subject key identifier: 87:C8:90:31:13:C8:2D:ED:21:B2:3C:40:D6:25:64:C5:23:85:FF:33
Certificate issuer: /CN=4A648B9AA824EEB55A850CA3644D1FABA947AC35
Certificate serial: 437C1B78EC45CA92C53A02511CC250B9DEBA9352
Authority key identifier: 4A:64:8B:9A:A8:24:EE:B5:5A:85:0C:A3:64:4D:1F:AB:A9:47:AC:35
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4A648B9AA824EEB55A850CA3644D1FABA947AC35.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2780D2BD7F6D2F137999F69B00097CA965EE96A7DCD9F62E5AD59CD74E5757A9/0/323830313a3164363a3a2f34302d3430203d3e20323731383333.roa
Signing time: Tue 04 Feb 2025 18:50:11 +0000
ROA not before: Tue 04 Feb 2025 18:45:11 +0000
ROA not after: Tue 03 Feb 2026 18:50:11 +0000
asID: 271833
IP address blocks: 2801:1d6::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:7c:1b:78:ec:45:ca:92:c5:3a:02:51:1c:c2:50:b9:de:ba:93:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4A648B9AA824EEB55A850CA3644D1FABA947AC35
Validity
Not Before: Feb 4 18:45:11 2025 GMT
Not After : Feb 3 18:50:11 2026 GMT
Subject: CN=87C8903113C82DED21B23C40D62564C52385FF33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:52:3e:d0:f1:ac:27:73:5a:b6:e6:e9:91:e4:
a0:f4:e0:b9:27:84:60:89:14:41:11:86:b2:de:f9:
81:67:27:d8:9c:42:5a:4c:1e:b3:f1:c2:e1:c5:bb:
cb:59:e1:b4:44:89:cf:60:08:18:60:0b:3e:c0:1d:
2d:68:f4:4b:23:21:1c:b4:6a:90:19:f9:ac:13:5d:
0d:a8:46:a9:0a:a8:bc:75:a3:94:e1:b3:fd:a6:34:
3a:1b:81:eb:87:3e:07:2b:49:94:33:99:4b:84:96:
7a:d3:1d:77:c0:27:0b:27:e2:6e:fa:47:8a:95:0d:
90:dc:b5:73:94:6a:87:2d:d5:2b:b2:8b:a7:f5:8a:
b8:b1:81:31:94:14:43:59:f6:65:a9:a8:a8:ad:b5:
c3:bb:55:dc:6b:dc:de:ff:b5:70:a2:2f:6f:87:4f:
50:00:14:e7:fc:0b:6d:6f:6c:af:26:8a:ca:4c:32:
1b:30:00:49:a4:97:a4:49:ad:8d:70:cc:8f:f3:18:
f5:a4:4a:91:01:a9:f9:fd:42:39:02:d5:79:4f:58:
29:8f:ca:8e:5f:3b:55:3b:31:26:8e:1f:42:39:36:
23:fa:fc:ba:ae:1d:e5:63:43:c1:0e:f6:58:9a:20:
36:83:2b:e5:f2:2e:5f:3e:3d:29:c3:79:53:ef:71:
f6:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:C8:90:31:13:C8:2D:ED:21:B2:3C:40:D6:25:64:C5:23:85:FF:33
X509v3 Authority Key Identifier:
keyid:4A:64:8B:9A:A8:24:EE:B5:5A:85:0C:A3:64:4D:1F:AB:A9:47:AC:35
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2780D2BD7F6D2F137999F69B00097CA965EE96A7DCD9F62E5AD59CD74E5757A9/0/4A648B9AA824EEB55A850CA3644D1FABA947AC35.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4A648B9AA824EEB55A850CA3644D1FABA947AC35.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2780D2BD7F6D2F137999F69B00097CA965EE96A7DCD9F62E5AD59CD74E5757A9/0/323830313a3164363a3a2f34302d3430203d3e20323731383333.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:1d6::/40
Signature Algorithm: sha256WithRSAEncryption
67:6a:75:9c:2d:d5:dd:62:29:ad:4e:a7:58:dc:ca:8a:d3:08:
9a:24:9e:13:7c:dc:84:ab:43:f7:41:d4:a6:64:66:d7:80:f8:
2f:d3:e2:f7:44:ad:6e:16:74:07:83:d6:56:50:8d:a1:02:60:
79:80:33:00:ec:3c:9e:32:e0:9c:e6:5f:d2:25:b7:2b:ea:f2:
3f:22:79:65:c8:ee:04:43:ac:e3:ea:89:c9:29:f5:9a:09:43:
f6:9b:29:bb:05:c0:63:10:23:ef:cb:ed:01:e5:52:f3:71:56:
1b:62:74:28:0d:63:bc:04:2e:05:64:fb:0f:29:c5:51:6a:d3:
c3:a5:38:a6:4d:d0:f2:26:ca:94:4a:e3:27:be:2b:a9:8e:58:
9c:db:b1:2a:f1:c9:e1:12:50:0e:83:8a:f7:ef:be:c2:cb:61:
cb:13:23:1e:54:fd:a2:4b:07:12:85:dc:ae:a7:e4:bd:01:cb:
97:4a:9b:ef:3f:42:6a:86:6c:57:27:92:35:a9:4d:7b:f5:d8:
c3:51:5d:8a:4c:2e:07:f9:ba:7b:a1:cd:51:80:0a:38:9e:52:
8d:ae:4b:bb:29:78:da:ba:03:7c:44:8d:6c:30:9a:19:cc:07:
6b:57:c4:d8:79:07:c4:ed:cf:cf:74:87:72:1d:7a:ec:fb:e0:
f9:d7:e2:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:48:28 2025 by rpki-client