Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3281FF68D110D44B9E6761515810E862925448FA8B0A0E4AD2950EED298CD8C5/0/323830333a316463303a3a2f33322d3536203d3e203230323037.roa
File: 323830333a316463303a3a2f33322d3536203d3e203230323037.roa (raw, json)
Hash identifier: vTjZZ8J+iTrV/+/DkxxS3lto/e5nWCUnb3emNbSfvYg=
Subject key identifier: 1F:D9:9A:59:A4:5A:CE:52:87:D7:A5:6D:97:2A:DA:0A:88:21:C9:1B
Certificate issuer: /CN=C2F520684E5695147DFD40A812A269883EC7E43C
Certificate serial: 28E70D17875370DA8ACC789C85677806C2E6A0DA
Authority key identifier: C2:F5:20:68:4E:56:95:14:7D:FD:40:A8:12:A2:69:88:3E:C7:E4:3C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2F520684E5695147DFD40A812A269883EC7E43C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3281FF68D110D44B9E6761515810E862925448FA8B0A0E4AD2950EED298CD8C5/0/323830333a316463303a3a2f33322d3536203d3e203230323037.roa
Signing time: Tue 04 Feb 2025 18:05:31 +0000
ROA not before: Tue 04 Feb 2025 18:00:31 +0000
ROA not after: Tue 03 Feb 2026 18:05:31 +0000
asID: 20207
IP address blocks: 2803:1dc0::/32 maxlen: 56
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:e7:0d:17:87:53:70:da:8a:cc:78:9c:85:67:78:06:c2:e6:a0:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2F520684E5695147DFD40A812A269883EC7E43C
Validity
Not Before: Feb 4 18:00:31 2025 GMT
Not After : Feb 3 18:05:31 2026 GMT
Subject: CN=1FD99A59A45ACE5287D7A56D972ADA0A8821C91B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c3:b4:de:26:2d:7c:f6:7d:fe:e4:12:b5:35:
f5:92:78:a1:de:2b:2d:2f:2d:5c:9e:fe:a8:19:10:
22:97:9b:c4:1a:a6:9f:32:84:88:8c:5f:ec:33:6f:
c6:07:d9:4c:09:3f:43:5c:df:a6:32:15:89:9b:43:
8a:9c:86:2e:75:f9:1e:ec:d2:2c:7b:5c:17:cf:8c:
22:eb:d2:25:18:2a:71:45:fd:b8:91:ae:fc:e1:79:
8f:1e:99:13:8b:60:7b:65:bd:97:20:a2:c6:8c:30:
cd:25:c1:3d:a6:f1:02:f0:f8:90:b6:4f:e4:24:85:
36:92:eb:42:b7:5d:11:4f:fa:3b:ed:bc:4a:41:1b:
a6:85:de:2e:e1:5f:85:0d:ec:86:15:c1:4f:e2:14:
8e:c9:e5:ec:d3:cf:65:78:9e:de:f1:bd:b7:71:f9:
13:5e:72:22:b2:74:80:31:6d:00:62:6c:fc:14:be:
e4:bb:d5:21:2a:9b:2d:4c:c5:c4:b7:cf:9a:b9:b9:
11:61:58:40:c6:96:b6:b7:ab:72:c2:a2:5c:f5:a1:
0b:71:85:62:39:69:72:69:79:9a:61:12:9d:f5:8c:
e0:ed:12:70:46:6e:3d:14:11:a0:7f:e5:89:ce:de:
4e:ac:fd:17:b9:89:34:66:9a:a5:fd:49:24:e7:44:
a3:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:D9:9A:59:A4:5A:CE:52:87:D7:A5:6D:97:2A:DA:0A:88:21:C9:1B
X509v3 Authority Key Identifier:
keyid:C2:F5:20:68:4E:56:95:14:7D:FD:40:A8:12:A2:69:88:3E:C7:E4:3C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3281FF68D110D44B9E6761515810E862925448FA8B0A0E4AD2950EED298CD8C5/0/C2F520684E5695147DFD40A812A269883EC7E43C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2F520684E5695147DFD40A812A269883EC7E43C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3281FF68D110D44B9E6761515810E862925448FA8B0A0E4AD2950EED298CD8C5/0/323830333a316463303a3a2f33322d3536203d3e203230323037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:1dc0::/32
Signature Algorithm: sha256WithRSAEncryption
52:01:c7:24:3b:f0:af:02:f9:c7:af:c5:5a:20:a6:c7:2e:f9:
c0:c7:b7:44:ad:1f:fc:af:18:93:31:42:84:6c:66:0c:77:00:
f6:86:ae:b3:82:01:6b:af:02:c3:9f:0f:61:3d:26:e3:71:3c:
0f:93:16:1b:c5:ef:91:95:c0:61:e8:6b:f5:18:86:a1:b3:9f:
91:69:28:f5:94:87:3d:e3:77:dd:2d:b8:18:13:bd:bb:b8:af:
3d:9c:81:8f:bc:a3:92:da:92:e6:21:3a:d9:78:c7:26:59:69:
b7:e7:a2:36:cf:01:f1:25:c4:9f:ac:bd:b0:81:d4:b6:4a:13:
bb:19:00:df:6e:bb:a0:3b:ff:50:99:00:02:9f:56:5e:7a:ac:
8c:2c:7c:76:f7:c1:25:d5:38:ed:48:c1:7d:0f:54:0e:6d:b1:
b8:ce:16:5e:56:75:bf:74:e7:c0:8e:3a:9b:91:d1:74:d6:64:
55:a7:b5:1c:ab:bf:a1:62:e4:40:ed:69:71:ac:c8:40:ec:4f:
43:62:0b:fb:d3:62:4e:d3:97:35:e3:08:fe:e0:fb:71:27:6e:
04:d1:62:ce:db:26:d7:6e:c7:2c:ed:71:e5:00:bb:c7:cd:ed:
3a:6a:c0:a0:e2:dc:5d:c0:d9:85:26:7e:1c:01:60:b5:7f:3d:
e8:34:10:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:25:48 2025 by rpki-client