Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3FA771377A3530818881DC2226705A58B195BD6EC03510382117E92EE961D3A9/0/323830363a3330633a3a2f33322d3332203d3e203238343431.roa
File: 323830363a3330633a3a2f33322d3332203d3e203238343431.roa (raw, json)
Hash identifier: vIOhJjECWzttZKOV+dVCoi9TcFOasaJL+FAuiQqhZoY=
Subject key identifier: B5:48:32:C9:26:6E:77:5D:CE:99:0A:6C:0D:E9:A6:D0:0C:9A:1E:B9
Certificate issuer: /CN=291BF264E3DFBE29A5D52AE24CE1243DF6F398C2
Certificate serial: 6F1618ACB1D43A6E4D25D3B6FB80A05A0FC3DB56
Authority key identifier: 29:1B:F2:64:E3:DF:BE:29:A5:D5:2A:E2:4C:E1:24:3D:F6:F3:98:C2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/291BF264E3DFBE29A5D52AE24CE1243DF6F398C2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3FA771377A3530818881DC2226705A58B195BD6EC03510382117E92EE961D3A9/0/323830363a3330633a3a2f33322d3332203d3e203238343431.roa
Signing time: Tue 04 Feb 2025 18:45:42 +0000
ROA not before: Tue 04 Feb 2025 18:40:42 +0000
ROA not after: Tue 03 Feb 2026 18:45:42 +0000
asID: 28441
IP address blocks: 2806:30c::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:16:18:ac:b1:d4:3a:6e:4d:25:d3:b6:fb:80:a0:5a:0f:c3:db:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=291BF264E3DFBE29A5D52AE24CE1243DF6F398C2
Validity
Not Before: Feb 4 18:40:42 2025 GMT
Not After : Feb 3 18:45:42 2026 GMT
Subject: CN=B54832C9266E775DCE990A6C0DE9A6D00C9A1EB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:cc:07:36:30:a7:22:86:4f:91:00:cc:fa:69:
cc:55:74:1d:f4:30:9e:32:8e:e4:25:47:f1:4f:03:
14:5e:46:b2:92:c0:bb:78:c4:ff:b8:a1:a7:3f:26:
7c:b8:b1:90:9c:27:0c:03:ab:64:c1:34:d4:5b:f0:
fa:a4:4e:ed:ea:9d:9b:38:0e:b1:df:4a:14:39:e2:
1f:e2:69:bd:a1:ec:0e:e0:1b:dc:42:0f:8c:ac:30:
d1:3d:fe:a4:f4:b6:c9:3e:ae:59:b4:5c:be:ad:d0:
40:a2:90:ce:7a:36:7e:8b:d9:37:a3:93:1d:9a:a4:
5b:84:47:b5:13:69:4c:b6:60:09:e9:7d:91:0c:62:
94:62:09:cf:af:b6:68:56:44:14:9b:4c:72:4b:c9:
83:f3:b6:ff:49:43:ee:db:f5:50:45:8b:44:42:84:
43:26:59:58:c2:79:cd:e7:52:19:53:e4:67:a9:96:
d6:48:53:85:f7:77:97:14:6e:94:cf:02:51:aa:b6:
91:6e:fb:71:4c:9b:ec:fe:58:70:42:29:f9:1d:63:
f3:9d:11:b7:70:c5:b1:12:4e:75:f2:2c:38:bc:78:
be:9f:9f:bc:c7:90:6d:1e:14:b2:83:29:e1:ff:a9:
ef:8f:59:8a:5e:46:e6:8b:df:71:b7:ca:0f:ef:4a:
59:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:48:32:C9:26:6E:77:5D:CE:99:0A:6C:0D:E9:A6:D0:0C:9A:1E:B9
X509v3 Authority Key Identifier:
keyid:29:1B:F2:64:E3:DF:BE:29:A5:D5:2A:E2:4C:E1:24:3D:F6:F3:98:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3FA771377A3530818881DC2226705A58B195BD6EC03510382117E92EE961D3A9/0/291BF264E3DFBE29A5D52AE24CE1243DF6F398C2.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/291BF264E3DFBE29A5D52AE24CE1243DF6F398C2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3FA771377A3530818881DC2226705A58B195BD6EC03510382117E92EE961D3A9/0/323830363a3330633a3a2f33322d3332203d3e203238343431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2806:30c::/32
Signature Algorithm: sha256WithRSAEncryption
93:86:07:5e:a8:e0:a3:80:7d:93:84:41:54:cc:f7:91:29:8e:
36:d4:43:4c:6c:f8:a3:f1:66:0a:8d:2d:7e:ad:19:30:e7:f4:
d9:49:cd:1e:27:bf:8d:6f:f8:61:95:e2:4f:a3:cd:87:27:58:
32:8f:af:e4:3e:62:b9:74:61:1f:b6:53:30:e0:ea:2d:3a:27:
bf:17:7c:2a:d2:eb:e1:2a:a4:3e:fa:40:5f:71:30:f9:74:fb:
fb:72:cb:dc:48:93:3c:f7:55:68:94:ce:73:02:ac:96:8a:b6:
07:3c:39:9a:00:8f:f6:b1:07:c8:40:19:6d:25:ec:41:aa:3b:
bb:f8:f4:cf:46:81:e5:1d:40:21:8c:79:86:b5:05:be:2d:b1:
d6:59:6f:c0:99:23:06:9f:63:82:3d:4f:79:d3:1e:8e:cd:39:
e2:ba:ae:75:4d:d1:84:31:55:d4:6b:e4:04:af:e2:7b:0f:36:
0c:1e:b9:3f:38:62:2d:99:73:31:5c:97:49:d0:80:4f:0b:81:
4c:7b:1b:04:9c:c3:7e:f4:e2:fb:31:72:72:bd:e9:27:f1:9d:
8a:ec:4c:0a:43:b1:4e:49:1b:cb:f9:83:7f:77:27:d6:ad:43:
3d:0c:be:29:5d:a4:51:93:3b:2b:c4:8e:94:6a:92:6a:ea:7d:
dd:96:18:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:57:48 2025 by rpki-client