Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/33CBD823A5E6A44B211094A157D298ADC4B9DFAFC39B05343297EFD40C5076FC/0/323830313a303a3331303a3a2f34382d3438203d3e20323632323338.roa
File: 323830313a303a3331303a3a2f34382d3438203d3e20323632323338.roa (raw, json)
Hash identifier: BG7uP5ZpYPElGFwYBjwJHYhl9menyk39pNruzJ1aixs=
Subject key identifier: EA:A1:0D:AA:40:FB:8F:73:36:71:64:32:3C:DB:58:E1:F5:D4:83:2D
Certificate issuer: /CN=2D00DE6856A46670E74CBC3380A84B75A4BD982C
Certificate serial: 2974A76522A40605AE4DB37C33DCA2885414867A
Authority key identifier: 2D:00:DE:68:56:A4:66:70:E7:4C:BC:33:80:A8:4B:75:A4:BD:98:2C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D00DE6856A46670E74CBC3380A84B75A4BD982C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/33CBD823A5E6A44B211094A157D298ADC4B9DFAFC39B05343297EFD40C5076FC/0/323830313a303a3331303a3a2f34382d3438203d3e20323632323338.roa
Signing time: Tue 04 Feb 2025 18:01:42 +0000
ROA not before: Tue 04 Feb 2025 17:56:42 +0000
ROA not after: Tue 03 Feb 2026 18:01:42 +0000
asID: 262238
IP address blocks: 2801:0:310::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:74:a7:65:22:a4:06:05:ae:4d:b3:7c:33:dc:a2:88:54:14:86:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D00DE6856A46670E74CBC3380A84B75A4BD982C
Validity
Not Before: Feb 4 17:56:42 2025 GMT
Not After : Feb 3 18:01:42 2026 GMT
Subject: CN=EAA10DAA40FB8F73367164323CDB58E1F5D4832D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ad:10:01:d4:f1:53:24:a9:8b:db:d0:f4:d0:
f7:1f:92:78:7d:f0:be:2b:fb:94:b1:d5:5d:81:6f:
69:f4:c9:be:48:38:15:9c:3a:d6:b5:63:ce:9c:90:
29:14:b9:a7:0a:26:e7:a9:cd:8b:03:00:4b:0a:4e:
38:cc:c0:55:3c:a1:f8:e7:50:7b:6f:e0:aa:44:5e:
68:90:4a:6f:e5:a0:05:bc:77:9b:59:5a:64:30:77:
65:9a:9e:45:f0:ab:70:36:d9:20:31:3c:9c:3f:3b:
2e:91:52:34:0d:42:55:d3:c4:4b:5a:70:74:4d:a2:
95:09:39:65:95:9b:f9:0c:a0:1f:ca:f7:00:5d:24:
12:c3:91:28:5f:6f:53:25:9b:66:ef:7d:1d:87:63:
8a:a8:7e:2c:ec:bb:17:1d:9a:1d:88:fc:f2:bf:ad:
f9:4a:74:28:a4:f3:81:d3:17:75:6e:e1:ae:d4:a2:
4e:e5:89:87:e2:46:4a:d2:eb:88:f3:66:d5:66:a2:
59:28:05:4d:fe:04:03:b5:9f:df:45:7a:6f:73:4d:
8f:15:bf:f5:df:3b:54:0f:36:98:eb:7b:5c:9c:db:
e8:5f:de:6c:20:6b:eb:fa:a2:e4:48:20:a3:f6:22:
65:9c:11:45:23:3e:cc:0d:39:74:2c:66:d5:ec:62:
a0:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:A1:0D:AA:40:FB:8F:73:36:71:64:32:3C:DB:58:E1:F5:D4:83:2D
X509v3 Authority Key Identifier:
keyid:2D:00:DE:68:56:A4:66:70:E7:4C:BC:33:80:A8:4B:75:A4:BD:98:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/33CBD823A5E6A44B211094A157D298ADC4B9DFAFC39B05343297EFD40C5076FC/0/2D00DE6856A46670E74CBC3380A84B75A4BD982C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D00DE6856A46670E74CBC3380A84B75A4BD982C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/33CBD823A5E6A44B211094A157D298ADC4B9DFAFC39B05343297EFD40C5076FC/0/323830313a303a3331303a3a2f34382d3438203d3e20323632323338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:0:310::/48
Signature Algorithm: sha256WithRSAEncryption
ad:1b:c6:c9:e3:67:88:f2:15:51:f5:7b:32:be:d7:da:df:89:
4d:4c:ea:7d:06:5a:ec:00:d3:21:35:84:ed:cc:40:8c:a0:1c:
b4:b5:e1:17:ba:f8:3c:be:0e:96:b3:bc:c5:2f:50:14:ab:0d:
b6:a5:b0:e5:ba:51:49:b3:b6:95:4b:0c:e5:9f:2a:07:b8:53:
25:df:84:a7:f2:cb:be:71:8e:c3:b0:ef:0b:c7:31:d8:66:52:
21:93:87:52:4a:5b:2c:b8:30:6b:ab:be:71:41:5a:b5:89:c9:
de:5d:0b:c2:b5:ee:4c:88:ad:5d:2b:51:28:da:00:5c:55:5f:
06:18:d3:7c:71:0c:2b:14:19:d0:c2:13:05:57:7b:59:4d:9f:
06:86:dd:26:9b:7d:84:11:82:c5:0d:6e:c4:18:8a:cd:e0:d4:
76:ef:47:4a:43:37:ad:d5:70:a3:1e:bd:6c:89:b4:ba:7b:5f:
94:1d:41:7f:f4:64:89:16:d3:14:91:74:8d:87:68:ea:5c:70:
ea:70:1f:f2:41:de:46:3c:be:a7:95:6d:81:08:86:d6:d5:97:
55:8c:f9:02:4d:db:95:22:36:6a:cf:1d:5a:f5:5a:af:f2:de:
80:6d:82:35:e2:c2:f4:15:53:19:e7:b1:28:7e:59:b8:95:98:
b2:66:4c:6f
-----BEGIN CERTIFICATE-----
MIIFwzCCBKugAwIBAgIUKXSnZSKkBgWuTbN8M9yiiFQUhnowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMkQwMERFNjg1NkE0NjY3MEU3NENCQzMzODBBODRCNzVB
NEJEOTgyQzAeFw0yNTAyMDQxNzU2NDJaFw0yNjAyMDMxODAxNDJaMDMxMTAvBgNV
BAMTKEVBQTEwREFBNDBGQjhGNzMzNjcxNjQzMjNDREI1OEUxRjVENDgzMkQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8rRAB1PFTJKmL29D00Pcfknh9
8L4r+5Sx1V2Bb2n0yb5IOBWcOta1Y86ckCkUuacKJuepzYsDAEsKTjjMwFU8ofjn
UHtv4KpEXmiQSm/loAW8d5tZWmQwd2WankXwq3A22SAxPJw/Oy6RUjQNQlXTxEta
cHRNopUJOWWVm/kMoB/K9wBdJBLDkShfb1Mlm2bvfR2HY4qofizsuxcdmh2I/PK/
rflKdCik84HTF3Vu4a7Uok7liYfiRkrS64jzZtVmolkoBU3+BAO1n99Fem9zTY8V
v/XfO1QPNpjre1yc2+hf3mwga+v6ouRIIKP2ImWcEUUjPswNOXQsZtXsYqBdAgMB
AAGjggLNMIICyTAdBgNVHQ4EFgQU6qENqkD7j3M2cWQyPNtY4fXUgy0wHwYDVR0j
BBgwFoAULQDeaFakZnDnTLwzgKhLdaS9mCwwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8zM0NCRDgyM0E1RTZBNDRCMjExMDk0QTE1N0QyOThBREM0
QjlERkFGQzM5QjA1MzQzMjk3RUZENDBDNTA3NkZDLzAvMkQwMERFNjg1NkE0NjY3
MEU3NENCQzMzODBBODRCNzVBNEJEOTgyQy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yRDAwREU2ODU2QTQ2NjcwRTc0
Q0JDMzM4MEE4NEI3NUE0QkQ5ODJDLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMzNDQkQ4MjNBNUU2QTQ0QjIxMTA5NEExNTdEMjk4QURDNEI5REZBRkMz
OUIwNTM0MzI5N0VGRDQwQzUwNzZGQy8wLzMyMzgzMDMxM2EzMDNhMzMzMTMwM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzIzNjMyMzIzMzM4LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKAEA
AAMQMA0GCSqGSIb3DQEBCwUAA4IBAQCtG8bJ42eI8hVR9Xsyvtfa34lNTOp9Blrs
ANMhNYTtzECMoBy0teEXuvg8vg6Ws7zFL1AUqw22pbDlulFJs7aVSwzlnyoHuFMl
34Sn8su+cY7DsO8LxzHYZlIhk4dSSlssuDBrq75xQVq1icneXQvCte5MiK1dK1Eo
2gBcVV8GGNN8cQwrFBnQwhMFV3tZTZ8Ght0mm32EEYLFDW7EGIrN4NR270dKQzet
1XCjHr1sibS6e1+UHUF/9GSJFtMUkXSNh2jqXHDqcB/yQd5GPL6nlW2BCIbW1ZdV
jPkCTduVIjZqzx1a9Vqv8t6AbYI14sL0FVMZ57Eoflm4lZiyZkxv
-----END CERTIFICATE-----
Generated at Sun Apr 6 16:38:22 2025 by rpki-client