Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2B6B23E958EA87B8EC36E5ED1B86D10E0113F67B0F375C95CCC5470EE3D12022/0/323830333a616130303a3a2f33322d3332203d3e203237363539.roa
File: 323830333a616130303a3a2f33322d3332203d3e203237363539.roa (raw, json)
Hash identifier: s54UUkcWq3SEPoCwOPKQ1DUGDxjbXT6NXdiYuqWAFNQ=
Subject key identifier: 01:55:0A:DA:90:7F:0B:F3:C7:20:08:0A:A7:AA:EB:D8:57:6E:5E:39
Certificate issuer: /CN=8D2583CCB91894057397D5D0034AC586BBE52555
Certificate serial: 4324509A26ABEDBD0328EC3FCDC3A095CC492711
Authority key identifier: 8D:25:83:CC:B9:18:94:05:73:97:D5:D0:03:4A:C5:86:BB:E5:25:55
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D2583CCB91894057397D5D0034AC586BBE52555.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2B6B23E958EA87B8EC36E5ED1B86D10E0113F67B0F375C95CCC5470EE3D12022/0/323830333a616130303a3a2f33322d3332203d3e203237363539.roa
Signing time: Tue 04 Feb 2025 18:20:35 +0000
ROA not before: Tue 04 Feb 2025 18:15:35 +0000
ROA not after: Tue 03 Feb 2026 18:20:35 +0000
asID: 27659
IP address blocks: 2803:aa00::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:24:50:9a:26:ab:ed:bd:03:28:ec:3f:cd:c3:a0:95:cc:49:27:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8D2583CCB91894057397D5D0034AC586BBE52555
Validity
Not Before: Feb 4 18:15:35 2025 GMT
Not After : Feb 3 18:20:35 2026 GMT
Subject: CN=01550ADA907F0BF3C720080AA7AAEBD8576E5E39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:74:f4:d3:81:5d:4f:ae:72:ec:ad:0f:bf:6f:
f2:14:16:d3:6c:e0:dc:17:d5:e9:cc:ca:da:07:04:
53:d3:f8:84:53:62:a0:c1:1e:fe:76:18:7b:ba:d7:
b8:90:1b:e2:6e:6f:6f:24:ab:2a:06:32:58:08:d8:
28:e5:18:8d:f0:07:d4:fc:a0:83:19:ca:fb:6a:70:
9b:48:e4:6e:0b:af:05:0c:41:1d:0a:13:98:cd:88:
06:09:d5:6b:92:eb:94:b7:86:4a:15:f2:7f:5f:47:
dc:3c:a2:50:50:60:18:c0:47:f7:d8:26:76:42:56:
1b:28:a1:27:55:45:ce:97:27:e1:12:99:09:8f:67:
82:04:54:ea:b8:4c:b9:ea:4e:f1:32:74:40:72:1f:
eb:b8:eb:79:d2:3e:10:a7:8f:fa:9a:80:c8:ff:68:
71:61:fe:71:73:78:f0:c1:60:36:98:e0:47:39:89:
89:d7:22:6d:27:0f:89:18:b4:c7:59:b5:f2:41:dd:
c9:10:c0:2b:03:db:67:96:67:55:71:08:49:1a:1d:
6b:c9:b2:15:f5:a7:41:2e:cf:1e:5c:1a:f7:f6:5d:
3e:e4:a1:ee:ac:74:3b:52:59:cc:8e:5a:b6:62:56:
4e:6c:f7:63:b3:38:ef:92:24:91:80:52:33:a9:a8:
02:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:55:0A:DA:90:7F:0B:F3:C7:20:08:0A:A7:AA:EB:D8:57:6E:5E:39
X509v3 Authority Key Identifier:
keyid:8D:25:83:CC:B9:18:94:05:73:97:D5:D0:03:4A:C5:86:BB:E5:25:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2B6B23E958EA87B8EC36E5ED1B86D10E0113F67B0F375C95CCC5470EE3D12022/0/8D2583CCB91894057397D5D0034AC586BBE52555.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D2583CCB91894057397D5D0034AC586BBE52555.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2B6B23E958EA87B8EC36E5ED1B86D10E0113F67B0F375C95CCC5470EE3D12022/0/323830333a616130303a3a2f33322d3332203d3e203237363539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:aa00::/32
Signature Algorithm: sha256WithRSAEncryption
67:29:10:c1:34:6d:b6:03:0f:ad:1a:84:1e:33:77:11:7a:8e:
ce:df:20:55:6e:db:11:07:ac:85:da:d9:c8:59:aa:7b:22:30:
2e:e2:b4:7c:8a:74:16:b2:b2:0e:81:ab:4d:12:98:27:b4:85:
32:51:e8:08:f5:22:b0:4d:67:ea:99:90:71:99:ea:a3:47:bc:
6d:45:b9:99:56:93:56:c2:57:f3:e7:38:25:b7:78:97:00:8e:
ca:78:f7:ce:73:41:77:46:fa:63:d2:c7:c2:e4:e5:90:01:00:
bf:4e:cd:7f:7d:bc:03:f8:7c:52:a1:d5:fe:7a:40:70:32:c5:
17:ae:b4:08:67:e4:a2:6c:0e:2e:24:94:33:cf:0a:9a:af:77:
4b:40:ef:c0:63:b9:36:51:3f:a5:56:be:b4:2f:6a:15:aa:e5:
4c:e3:40:1b:08:2d:45:98:84:e8:20:cc:62:df:b6:08:b9:6f:
18:23:5b:bc:73:46:8e:9e:0f:8e:3f:50:0d:18:b5:ca:2c:05:
67:9d:51:cb:c1:3b:c2:90:be:34:ef:ec:7c:21:3e:51:6d:34:
cd:0f:14:fb:15:91:cb:4a:7c:23:89:b2:d2:73:c9:22:84:2d:
a1:5f:f6:c1:cc:c7:66:c7:02:87:b0:27:4c:e4:2c:a1:e0:18:
1e:ff:e4:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:55:49 2025 by rpki-client