Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/43D4FF27DFCF4A5EEC5E4CE140231E33157DB51122C105CE1AB5AD6E34DB4332/0/323830363a3333323a3a2f33322d3438203d3e20323635353738.roa
File: 323830363a3333323a3a2f33322d3438203d3e20323635353738.roa (raw, json)
Hash identifier: dVsNOyPKu6XffJQutRoMAelX/LHC5UntUohEGpULlLM=
Subject key identifier: 4A:BD:C4:C3:08:13:14:0E:0E:4D:1C:23:34:35:30:11:A4:AE:96:58
Certificate issuer: /CN=FA40F4074261959953C6B11359AE13D2C4B837D3
Certificate serial: 5C1602BAAAEAF7A4B5E037CD78828519B0DDDA74
Authority key identifier: FA:40:F4:07:42:61:95:99:53:C6:B1:13:59:AE:13:D2:C4:B8:37:D3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FA40F4074261959953C6B11359AE13D2C4B837D3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/43D4FF27DFCF4A5EEC5E4CE140231E33157DB51122C105CE1AB5AD6E34DB4332/0/323830363a3333323a3a2f33322d3438203d3e20323635353738.roa
Signing time: Tue 04 Feb 2025 20:02:33 +0000
ROA not before: Tue 04 Feb 2025 19:57:33 +0000
ROA not after: Tue 03 Feb 2026 20:02:33 +0000
asID: 265578
IP address blocks: 2806:332::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:16:02:ba:aa:ea:f7:a4:b5:e0:37:cd:78:82:85:19:b0:dd:da:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FA40F4074261959953C6B11359AE13D2C4B837D3
Validity
Not Before: Feb 4 19:57:33 2025 GMT
Not After : Feb 3 20:02:33 2026 GMT
Subject: CN=4ABDC4C30813140E0E4D1C2334353011A4AE9658
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:0c:35:99:ff:57:79:9c:5f:28:66:50:f8:32:
ef:e3:b1:bd:41:e9:f2:8a:ae:86:3b:c5:65:fc:33:
5e:20:98:09:6d:09:97:45:03:cf:6d:d5:27:27:ce:
3d:92:ed:8e:6e:48:23:59:c1:06:70:cb:81:80:c5:
68:d2:20:4c:f8:18:92:db:0e:49:d8:99:50:5f:21:
b3:bf:10:1a:28:c9:ce:5d:21:ba:b8:2b:2a:b8:44:
95:44:8c:a2:db:dd:6f:29:3e:56:d2:73:c1:80:ec:
c7:41:09:00:cb:fa:ab:c9:10:46:89:2d:61:4c:55:
1a:93:07:f0:9e:74:e4:c5:86:6c:64:ee:c0:3a:4b:
17:4d:9b:56:eb:07:bc:36:89:91:7e:73:79:35:00:
c5:e6:53:83:13:f8:df:81:31:59:a6:d1:6b:20:2a:
57:ce:88:17:0d:64:96:c3:04:19:3c:5c:7d:3f:9f:
07:6d:35:2a:2a:17:9f:db:1e:b8:24:c8:cc:ff:37:
11:01:ee:6b:81:65:6e:f8:7a:b1:fe:aa:82:8b:09:
0a:f3:0c:83:88:dc:9b:b4:05:15:d6:92:f2:07:bc:
08:b8:2e:f5:db:90:a0:a4:fe:5a:a0:c5:0e:08:a2:
2f:bf:23:cd:a9:77:b6:ec:fb:10:36:1d:d0:92:ba:
e4:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:BD:C4:C3:08:13:14:0E:0E:4D:1C:23:34:35:30:11:A4:AE:96:58
X509v3 Authority Key Identifier:
keyid:FA:40:F4:07:42:61:95:99:53:C6:B1:13:59:AE:13:D2:C4:B8:37:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/43D4FF27DFCF4A5EEC5E4CE140231E33157DB51122C105CE1AB5AD6E34DB4332/0/FA40F4074261959953C6B11359AE13D2C4B837D3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FA40F4074261959953C6B11359AE13D2C4B837D3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/43D4FF27DFCF4A5EEC5E4CE140231E33157DB51122C105CE1AB5AD6E34DB4332/0/323830363a3333323a3a2f33322d3438203d3e20323635353738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2806:332::/32
Signature Algorithm: sha256WithRSAEncryption
2c:33:3d:ac:05:db:71:f0:18:07:53:00:a3:8c:75:6e:f7:6a:
69:d5:97:06:66:04:8a:0d:ee:b7:59:d4:52:78:31:36:2e:f8:
9c:d1:42:f2:be:70:bc:34:9d:60:16:5d:08:56:65:bd:5c:fb:
01:3a:3a:78:82:e3:04:71:d3:d2:99:56:d7:3f:aa:25:f5:16:
3e:d1:e2:90:c4:8b:c8:a9:98:b4:40:e6:1b:13:c9:bb:fa:0a:
6e:4d:66:39:11:9f:83:ed:32:02:f3:e1:7d:77:46:7c:a3:f0:
08:24:43:12:d3:41:77:80:04:a2:2d:47:f7:c9:84:f1:ed:4b:
29:c8:74:1e:11:78:7b:b7:d8:aa:18:7d:69:c5:53:af:da:a8:
6b:45:c4:96:a1:f8:48:d2:1a:fd:8f:0f:1f:cb:a0:8a:73:2f:
c3:45:95:35:3c:ad:83:30:5b:f2:6a:50:c0:34:76:41:26:b9:
5e:c8:fe:f3:69:18:4d:e1:75:6d:d6:f7:3b:37:22:bc:21:10:
fd:66:79:e3:fb:99:0f:5f:09:42:d5:4f:d7:7f:93:8e:1d:a7:
0a:72:0a:6c:00:a1:4c:e4:be:4c:ce:42:51:e4:e9:bf:95:2a:
09:7b:dd:c9:1d:40:3b:6d:f1:55:36:e1:f9:8e:45:d8:ca:b8:
9e:96:1a:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:58:31 2025 by rpki-client