Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/42498B319994FB1CF99A565ABB24FD6553D4F33B43752C3238258B8AE49AE09B/0/323830333a646265303a3a2f33362d3438203d3e20323731383137.roa
File: 323830333a646265303a3a2f33362d3438203d3e20323731383137.roa (raw, json)
Hash identifier: b2Fayh51r3Tow/7pZO+ef8zqo4JG4lSyAzBYhmF/KPs=
Subject key identifier: C7:E5:D5:07:E1:56:89:D2:7F:A2:AC:F4:FB:E2:14:E3:45:70:4A:86
Certificate issuer: /CN=4F552B32D5F869D8DBEF844D9523A2A5FBA57968
Certificate serial: 0CDF4E57BEA065EA291B64012C1C469FABF9BF51
Authority key identifier: 4F:55:2B:32:D5:F8:69:D8:DB:EF:84:4D:95:23:A2:A5:FB:A5:79:68
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4F552B32D5F869D8DBEF844D9523A2A5FBA57968.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/42498B319994FB1CF99A565ABB24FD6553D4F33B43752C3238258B8AE49AE09B/0/323830333a646265303a3a2f33362d3438203d3e20323731383137.roa
Signing time: Tue 04 Feb 2025 20:05:00 +0000
ROA not before: Tue 04 Feb 2025 20:00:00 +0000
ROA not after: Tue 03 Feb 2026 20:05:00 +0000
asID: 271817
IP address blocks: 2803:dbe0::/36 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:df:4e:57:be:a0:65:ea:29:1b:64:01:2c:1c:46:9f:ab:f9:bf:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4F552B32D5F869D8DBEF844D9523A2A5FBA57968
Validity
Not Before: Feb 4 20:00:00 2025 GMT
Not After : Feb 3 20:05:00 2026 GMT
Subject: CN=C7E5D507E15689D27FA2ACF4FBE214E345704A86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:63:1d:4f:ab:6a:d3:05:58:38:9b:25:f8:1a:
54:10:8f:84:f5:38:32:dc:22:74:4d:c9:12:12:29:
78:e7:53:0a:a6:e8:ac:7e:10:f3:65:7e:3d:92:0b:
92:c0:8e:a7:37:e9:7d:ab:a4:f2:f6:55:0d:cd:ad:
b9:ce:4a:95:f5:01:d6:a4:f3:6b:44:b6:c1:66:22:
6c:41:ee:12:ce:d9:13:22:2c:ae:7e:80:71:e6:07:
bf:f9:b8:9b:2c:4f:58:75:a5:c4:ed:40:a8:16:8a:
43:57:b6:ad:93:32:b1:f5:39:28:c6:13:c1:f0:8c:
81:ac:45:a3:f0:5f:72:c6:7b:e4:48:e3:1c:ba:4e:
db:a2:9b:c6:34:8e:36:bf:a7:11:dd:d6:10:50:72:
4a:54:a4:67:c3:69:f1:f6:2d:db:6d:fc:e7:68:43:
f3:da:2e:97:e2:5a:54:5a:06:31:93:d8:bb:ae:e5:
d7:61:db:e3:34:a1:eb:0b:d8:22:2b:30:8e:b7:24:
ce:c8:2b:ac:b9:c3:51:ae:ef:df:c0:f4:c9:67:96:
04:44:3b:43:30:e5:66:3a:bd:56:65:2b:98:2d:f1:
f3:30:1c:e8:21:5b:62:42:69:dc:04:8e:7e:74:a9:
21:7c:74:6d:91:d7:db:89:59:fd:dc:82:a1:0d:be:
39:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:E5:D5:07:E1:56:89:D2:7F:A2:AC:F4:FB:E2:14:E3:45:70:4A:86
X509v3 Authority Key Identifier:
keyid:4F:55:2B:32:D5:F8:69:D8:DB:EF:84:4D:95:23:A2:A5:FB:A5:79:68
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/42498B319994FB1CF99A565ABB24FD6553D4F33B43752C3238258B8AE49AE09B/0/4F552B32D5F869D8DBEF844D9523A2A5FBA57968.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4F552B32D5F869D8DBEF844D9523A2A5FBA57968.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/42498B319994FB1CF99A565ABB24FD6553D4F33B43752C3238258B8AE49AE09B/0/323830333a646265303a3a2f33362d3438203d3e20323731383137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:dbe0::/36
Signature Algorithm: sha256WithRSAEncryption
25:1e:24:8c:90:75:76:d3:58:80:40:7e:87:d5:73:48:df:5e:
22:e1:e4:f6:98:ea:14:12:2b:5b:73:1a:18:3a:a7:b3:cd:20:
2e:ae:18:d4:a3:d2:26:81:c7:d1:29:92:58:b7:0e:7e:ec:5e:
4e:a9:1b:b1:26:10:57:9c:23:02:ef:c6:e6:ca:85:c2:0b:91:
96:92:b4:2b:d5:34:67:eb:5a:d5:0e:46:d4:4a:ad:28:88:af:
b6:17:65:b6:6f:39:86:d7:e1:30:77:7c:d2:f7:cf:01:53:90:
f5:75:14:ff:69:b1:0d:1c:6f:c8:6b:ca:4a:94:72:3f:6b:67:
52:3b:02:bf:b3:18:81:a9:62:1f:94:fa:47:73:8a:a5:c7:16:
90:28:fe:ae:b3:ae:30:4c:30:34:d1:19:56:cf:96:80:c3:bb:
5f:2f:d9:e9:5b:d2:d2:52:51:02:e8:54:6a:6b:ef:36:5e:4e:
d4:8a:58:a2:1f:d9:74:4e:c9:97:11:cd:7d:ee:64:8a:e3:23:
0d:66:bc:7d:71:59:07:30:b5:b6:8c:f4:87:00:85:8a:c4:f6:
01:c7:1a:9e:1f:85:ad:a6:b2:71:e5:4e:00:92:e8:cf:a8:ac:
c5:d3:41:7f:d2:a4:d6:a5:a4:32:ca:16:9c:99:84:2e:8d:5b:
60:ae:9f:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:59:56 2025 by rpki-client