Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/35EA57EDCFB8D3C555B7B09D2E5D658E6D2412BC89F1BC7A54777FDC15C93873/0/323830333a343538303a3a2f33322d3438203d3e203532343638.roa
File: 323830333a343538303a3a2f33322d3438203d3e203532343638.roa (raw, json)
Hash identifier: /6K+xrx79hp+Vsg2PT5w28Bi9veUajpIvFLG9fMYIcg=
Subject key identifier: 2B:60:CF:D1:C6:6C:90:03:17:00:BF:FD:B3:DE:C1:FF:1D:A8:52:E6
Certificate issuer: /CN=CEC9A488D079AEE7FE0B21664A1A4AEE1C899FDC
Certificate serial: 3D7A9D6A4BFDD7CC19E70DFE320B1AE197956B55
Authority key identifier: CE:C9:A4:88:D0:79:AE:E7:FE:0B:21:66:4A:1A:4A:EE:1C:89:9F:DC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CEC9A488D079AEE7FE0B21664A1A4AEE1C899FDC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/35EA57EDCFB8D3C555B7B09D2E5D658E6D2412BC89F1BC7A54777FDC15C93873/0/323830333a343538303a3a2f33322d3438203d3e203532343638.roa
Signing time: Tue 04 Feb 2025 18:33:43 +0000
ROA not before: Tue 04 Feb 2025 18:28:43 +0000
ROA not after: Tue 03 Feb 2026 18:33:43 +0000
asID: 52468
IP address blocks: 2803:4580::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:7a:9d:6a:4b:fd:d7:cc:19:e7:0d:fe:32:0b:1a:e1:97:95:6b:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CEC9A488D079AEE7FE0B21664A1A4AEE1C899FDC
Validity
Not Before: Feb 4 18:28:43 2025 GMT
Not After : Feb 3 18:33:43 2026 GMT
Subject: CN=2B60CFD1C66C90031700BFFDB3DEC1FF1DA852E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:80:34:df:b0:99:0c:59:32:15:52:9d:ed:fd:
ac:d9:44:52:1f:79:20:c8:25:81:10:a1:c3:5b:82:
33:73:18:6a:69:0e:1d:ed:27:42:ce:26:aa:26:63:
19:59:48:0e:0c:5c:c0:87:d4:2e:de:c0:4f:4d:a8:
12:50:86:28:f8:74:d9:06:a8:f9:20:87:71:3e:16:
bb:19:16:62:72:ae:9a:8f:b7:40:1a:99:66:ee:a2:
1a:6f:f5:ea:43:e6:57:a3:6d:7d:d2:51:4b:04:ea:
67:fb:b8:d7:a2:61:92:e5:36:b7:ea:52:d3:c7:64:
68:41:dd:79:5a:bb:c2:28:d2:2e:d9:35:ba:b2:48:
19:fc:13:62:d3:78:bd:ae:4e:29:55:2c:bd:54:a4:
c9:85:c1:db:49:41:9a:d2:54:50:a8:4e:8f:88:cd:
2e:b2:c1:bc:41:7c:a8:de:10:7d:78:bf:1d:96:a4:
6f:f2:fa:f8:5b:56:f0:68:fd:c1:f1:f8:28:63:41:
fc:c2:7a:90:95:ff:d5:72:3d:36:b4:fe:46:27:9d:
81:7e:e5:03:36:fc:23:bd:72:fd:c4:41:f1:ad:bf:
60:75:46:e5:e8:4f:52:a7:f9:10:b3:82:87:ff:56:
89:6e:f1:37:21:02:a4:e9:7e:4b:ac:df:7e:5a:df:
7a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:60:CF:D1:C6:6C:90:03:17:00:BF:FD:B3:DE:C1:FF:1D:A8:52:E6
X509v3 Authority Key Identifier:
keyid:CE:C9:A4:88:D0:79:AE:E7:FE:0B:21:66:4A:1A:4A:EE:1C:89:9F:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/35EA57EDCFB8D3C555B7B09D2E5D658E6D2412BC89F1BC7A54777FDC15C93873/0/CEC9A488D079AEE7FE0B21664A1A4AEE1C899FDC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CEC9A488D079AEE7FE0B21664A1A4AEE1C899FDC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/35EA57EDCFB8D3C555B7B09D2E5D658E6D2412BC89F1BC7A54777FDC15C93873/0/323830333a343538303a3a2f33322d3438203d3e203532343638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:4580::/32
Signature Algorithm: sha256WithRSAEncryption
45:09:0c:a2:cf:ef:a2:f5:b9:42:0a:5d:8c:c3:73:50:1a:36:
4a:00:3d:79:13:50:40:48:e6:82:e7:92:41:d6:5f:e4:6b:bf:
ec:1f:13:ea:16:2f:f5:9a:2c:5e:ff:0f:2a:8d:35:c3:73:f9:
b6:ab:f0:38:0b:4d:0c:5d:52:03:b9:ee:0b:42:d7:a3:e8:f6:
36:29:6f:5c:34:63:63:ba:4a:8e:1f:ee:68:32:40:66:61:28:
40:57:7f:35:a6:e9:32:0d:e7:d8:7b:45:19:69:1d:2e:df:1c:
10:26:c3:d9:23:a0:1a:6c:b6:eb:ee:e5:cd:8b:50:ba:0f:f4:
19:08:58:bb:6f:09:8d:77:9d:68:aa:cf:a0:60:10:74:ff:1b:
a2:5d:f7:44:0d:f7:c3:04:25:74:e3:eb:1c:dc:79:6c:cf:6a:
fd:c6:b9:e6:62:56:87:6e:bf:93:c8:6b:0d:bc:94:67:dd:6d:
0e:d7:d0:66:92:01:35:d0:c4:af:8a:20:cf:8f:d5:9b:ff:3f:
f8:5e:3e:4c:64:3d:2c:25:3d:70:f6:db:f5:ee:ed:ba:23:63:
d8:76:1b:22:0d:5a:e1:2f:51:a6:3f:ed:2a:ed:2d:e0:7b:6e:
c5:63:d0:43:c4:cb:42:a7:d3:d4:f5:e4:56:30:9b:45:31:5c:
fd:8d:95:a0
-----BEGIN CERTIFICATE-----
MIIFvTCCBKWgAwIBAgIUPXqdakv918wZ5w3+Mgsa4ZeVa1UwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQ0VDOUE0ODhEMDc5QUVFN0ZFMEIyMTY2NEExQTRBRUUx
Qzg5OUZEQzAeFw0yNTAyMDQxODI4NDNaFw0yNjAyMDMxODMzNDNaMDMxMTAvBgNV
BAMTKDJCNjBDRkQxQzY2QzkwMDMxNzAwQkZGREIzREVDMUZGMURBODUyRTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkgDTfsJkMWTIVUp3t/azZRFIf
eSDIJYEQocNbgjNzGGppDh3tJ0LOJqomYxlZSA4MXMCH1C7ewE9NqBJQhij4dNkG
qPkgh3E+FrsZFmJyrpqPt0AamWbuohpv9epD5lejbX3SUUsE6mf7uNeiYZLlNrfq
UtPHZGhB3Xlau8Io0i7ZNbqySBn8E2LTeL2uTilVLL1UpMmFwdtJQZrSVFCoTo+I
zS6ywbxBfKjeEH14vx2WpG/y+vhbVvBo/cHx+ChjQfzCepCV/9VyPTa0/kYnnYF+
5QM2/CO9cv3EQfGtv2B1RuXoT1Kn+RCzgof/Volu8TchAqTpfkus335a33qdAgMB
AAGjggLHMIICwzAdBgNVHQ4EFgQUK2DP0cZskAMXAL/9s97B/x2oUuYwHwYDVR0j
BBgwFoAUzsmkiNB5ruf+CyFmShpK7hyJn9wwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8zNUVBNTdFRENGQjhEM0M1NTVCN0IwOUQyRTVENjU4RTZE
MjQxMkJDODlGMUJDN0E1NDc3N0ZEQzE1QzkzODczLzAvQ0VDOUE0ODhEMDc5QUVF
N0ZFMEIyMTY2NEExQTRBRUUxQzg5OUZEQy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DRUM5QTQ4OEQwNzlBRUU3RkUw
QjIxNjY0QTFBNEFFRTFDODk5RkRDLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMzVFQTU3RURDRkI4RDNDNTU1QjdCMDlEMkU1RDY1OEU2RDI0MTJCQzg5
RjFCQzdBNTQ3NzdGREMxNUM5Mzg3My8wLzMyMzgzMDMzM2EzNDM1MzgzMDNhM2Ey
ZjMzMzIyZDM0MzgyMDNkM2UyMDM1MzIzNDM2Mzgucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAoA0WAMA0G
CSqGSIb3DQEBCwUAA4IBAQBFCQyiz++i9blCCl2Mw3NQGjZKAD15E1BASOaC55JB
1l/ka7/sHxPqFi/1mixe/w8qjTXDc/m2q/A4C00MXVIDue4LQtej6PY2KW9cNGNj
ukqOH+5oMkBmYShAV381pukyDefYe0UZaR0u3xwQJsPZI6AabLbr7uXNi1C6D/QZ
CFi7bwmNd51oqs+gYBB0/xuiXfdEDffDBCV04+sc3Hlsz2r9xrnmYlaHbr+TyGsN
vJRn3W0O19BmkgE10MSviiDPj9Wb/z/4Xj5MZD0sJT1w9tv17u26I2PYdhsiDVrh
L1GmP+0q7S3ge27FY9BDxMtCp9PU9eRWMJtFMVz9jZWg
-----END CERTIFICATE-----
Generated at Sat Apr 5 16:36:52 2025 by rpki-client