Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/30127BBDF1288CD0BA539012212C6F5AC05F1A32BDC9A82FAD01CF9435C1615C/0/323830313a31383a323830303a3a2f34382d3438203d3e20323639393633.roa
File: 323830313a31383a323830303a3a2f34382d3438203d3e20323639393633.roa (raw, json)
Hash identifier: iHmUij6tGAnaB8sGgGBn4Tc6WTxYiLVE8QxsUg/ECUk=
Subject key identifier: DA:C8:63:AB:D7:9F:59:C1:F8:CB:9C:0C:5E:C8:35:AF:E6:2F:08:D6
Certificate issuer: /CN=35DDCBBB8168CAB40A53D8B5D3F8CDF858D3A99C
Certificate serial: 54BD46B2DD9538D63D150B0F3EA7EDCF9596EEF4
Authority key identifier: 35:DD:CB:BB:81:68:CA:B4:0A:53:D8:B5:D3:F8:CD:F8:58:D3:A9:9C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/35DDCBBB8168CAB40A53D8B5D3F8CDF858D3A99C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/30127BBDF1288CD0BA539012212C6F5AC05F1A32BDC9A82FAD01CF9435C1615C/0/323830313a31383a323830303a3a2f34382d3438203d3e20323639393633.roa
Signing time: Tue 04 Feb 2025 20:06:39 +0000
ROA not before: Tue 04 Feb 2025 20:01:39 +0000
ROA not after: Tue 03 Feb 2026 20:06:39 +0000
asID: 269963
IP address blocks: 2801:18:2800::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:bd:46:b2:dd:95:38:d6:3d:15:0b:0f:3e:a7:ed:cf:95:96:ee:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35DDCBBB8168CAB40A53D8B5D3F8CDF858D3A99C
Validity
Not Before: Feb 4 20:01:39 2025 GMT
Not After : Feb 3 20:06:39 2026 GMT
Subject: CN=DAC863ABD79F59C1F8CB9C0C5EC835AFE62F08D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d4:72:3c:e7:64:33:56:4a:be:71:62:51:b0:
b8:c6:f7:bd:25:50:12:3b:33:5a:ff:ad:72:18:60:
47:fe:c7:2e:a5:fe:bb:57:47:65:22:0d:0e:68:5d:
a3:e5:d7:7d:df:ed:ca:59:60:b5:e7:82:7d:b6:b3:
cd:be:5e:7b:4e:83:b3:7e:80:1e:82:5f:f6:d3:b4:
e6:5e:f6:4d:6a:53:6d:b6:c9:2f:63:e0:b8:0b:40:
d1:6e:79:e0:c1:db:b1:f9:f9:a3:96:37:a5:28:98:
67:f9:73:33:1e:26:ec:13:bc:f1:7d:9f:ae:a1:a2:
38:4a:be:9b:74:1c:01:5f:e3:25:4d:2c:af:91:26:
a8:de:68:f3:ce:5b:42:e7:32:2b:37:53:9f:c4:30:
c1:6d:92:5f:54:5a:d9:7f:95:81:14:5a:f4:75:d6:
f9:47:c2:40:a5:ce:e7:7a:a4:74:cf:3c:4c:cf:af:
30:66:2d:b2:91:ee:9e:e4:ba:5a:15:75:e2:5e:ea:
f7:fa:f6:58:f9:1a:84:3e:fa:e8:13:48:5e:ce:f8:
a9:32:18:02:ac:fd:7f:95:df:a4:ad:71:3a:d5:b6:
a0:18:13:64:2e:6e:ab:d9:c7:23:1f:0d:98:1a:e9:
00:4b:a4:a3:6a:79:a1:83:c2:1c:a2:b4:3b:64:52:
a6:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:C8:63:AB:D7:9F:59:C1:F8:CB:9C:0C:5E:C8:35:AF:E6:2F:08:D6
X509v3 Authority Key Identifier:
keyid:35:DD:CB:BB:81:68:CA:B4:0A:53:D8:B5:D3:F8:CD:F8:58:D3:A9:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/30127BBDF1288CD0BA539012212C6F5AC05F1A32BDC9A82FAD01CF9435C1615C/0/35DDCBBB8168CAB40A53D8B5D3F8CDF858D3A99C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/35DDCBBB8168CAB40A53D8B5D3F8CDF858D3A99C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/30127BBDF1288CD0BA539012212C6F5AC05F1A32BDC9A82FAD01CF9435C1615C/0/323830313a31383a323830303a3a2f34382d3438203d3e20323639393633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:18:2800::/48
Signature Algorithm: sha256WithRSAEncryption
5a:9f:54:a5:3b:93:bd:99:17:ac:b4:01:c6:e9:ee:da:43:9a:
4a:7e:74:68:8b:56:37:f3:e2:78:06:24:ca:76:ed:c2:15:8c:
d1:0a:9c:45:89:33:ce:f9:8d:c3:b0:44:07:8b:a0:23:de:19:
9a:f1:e4:77:a1:d1:5c:8c:9f:78:ce:d7:46:8c:a3:9e:27:8b:
fc:58:9b:26:40:13:7d:24:40:58:23:a9:47:3d:c5:21:bd:4c:
6e:ee:40:9a:89:3c:d6:ad:46:75:cc:a0:35:ab:70:b1:f5:27:
fa:0e:db:e8:4b:70:30:57:75:8c:5e:ab:29:4b:e8:a5:48:21:
be:e1:75:d8:6e:4b:e0:57:eb:a5:6e:9e:9e:e4:0b:e0:8d:65:
85:b5:4a:9d:1a:c2:10:43:c1:09:c1:69:94:86:f9:80:76:31:
bb:ce:aa:10:3f:43:62:f3:ed:01:47:bb:29:be:55:a8:bb:6f:
76:83:c4:31:8f:9c:ba:82:ca:12:a4:85:5a:6a:be:5e:62:2f:
40:47:d6:66:bd:7a:63:7d:2b:40:df:36:0b:28:ce:3f:0e:15:
b8:09:57:a6:7f:31:10:75:bb:15:e3:65:20:1e:b8:96:f9:ff:
60:31:2c:06:0a:de:19:b7:2c:58:4a:95:da:94:96:10:64:0c:
f4:e6:18:0f
-----BEGIN CERTIFICATE-----
MIIFxzCCBK+gAwIBAgIUVL1Gst2VONY9FQsPPqftz5WW7vQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzVERENCQkI4MTY4Q0FCNDBBNTNEOEI1RDNGOENERjg1
OEQzQTk5QzAeFw0yNTAyMDQyMDAxMzlaFw0yNjAyMDMyMDA2MzlaMDMxMTAvBgNV
BAMTKERBQzg2M0FCRDc5RjU5QzFGOENCOUMwQzVFQzgzNUFGRTYyRjA4RDYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJ1HI852QzVkq+cWJRsLjG970l
UBI7M1r/rXIYYEf+xy6l/rtXR2UiDQ5oXaPl133f7cpZYLXngn22s82+XntOg7N+
gB6CX/bTtOZe9k1qU222yS9j4LgLQNFueeDB27H5+aOWN6UomGf5czMeJuwTvPF9
n66hojhKvpt0HAFf4yVNLK+RJqjeaPPOW0LnMis3U5/EMMFtkl9UWtl/lYEUWvR1
1vlHwkClzud6pHTPPEzPrzBmLbKR7p7kuloVdeJe6vf69lj5GoQ++ugTSF7O+Kky
GAKs/X+V36StcTrVtqAYE2QubqvZxyMfDZga6QBLpKNqeaGDwhyitDtkUqbXAgMB
AAGjggLRMIICzTAdBgNVHQ4EFgQU2shjq9efWcH4y5wMXsg1r+YvCNYwHwYDVR0j
BBgwFoAUNd3Lu4FoyrQKU9i10/jN+FjTqZwwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8zMDEyN0JCREYxMjg4Q0QwQkE1MzkwMTIyMTJDNkY1QUMw
NUYxQTMyQkRDOUE4MkZBRDAxQ0Y5NDM1QzE2MTVDLzAvMzVERENCQkI4MTY4Q0FC
NDBBNTNEOEI1RDNGOENERjg1OEQzQTk5Qy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8zNUREQ0JCQjgxNjhDQUI0MEE1
M0Q4QjVEM0Y4Q0RGODU4RDNBOTlDLmNlcjCBzQYIKwYBBQUHAQsEgcAwgb0wgboG
CCsGAQUFBzALhoGtcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMzAxMjdCQkRGMTI4OENEMEJBNTM5MDEyMjEyQzZGNUFDMDVGMUEzMkJE
QzlBODJGQUQwMUNGOTQzNUMxNjE1Qy8wLzMyMzgzMDMxM2EzMTM4M2EzMjM4MzAz
MDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzYzOTM5MzYzMy5yb2EwGAYDVR0g
AQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMH
ACgBABgoADANBgkqhkiG9w0BAQsFAAOCAQEAWp9UpTuTvZkXrLQBxunu2kOaSn50
aItWN/PieAYkynbtwhWM0QqcRYkzzvmNw7BEB4ugI94ZmvHkd6HRXIyfeM7XRoyj
nieL/FibJkATfSRAWCOpRz3FIb1Mbu5Amok81q1GdcygNatwsfUn+g7b6EtwMFd1
jF6rKUvopUghvuF12G5L4FfrpW6enuQL4I1lhbVKnRrCEEPBCcFplIb5gHYxu86q
ED9DYvPtAUe7Kb5VqLtvdoPEMY+cuoLKEqSFWmq+XmIvQEfWZr16Y30rQN82CyjO
Pw4VuAlXpn8xEHW7FeNlIB64lvn/YDEsBgreGbcsWEqV2pSWEGQM9OYYDw==
-----END CERTIFICATE-----
Generated at Sun Apr 6 04:00:14 2025 by rpki-client