Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/492C9AD07ED863FE3714CD242F151AF80FED91B1C83F27EFFF635EEE3FD9F327/0/323830333a663530303a3a2f33322d3332203d3e203630303232.roa
File: 323830333a663530303a3a2f33322d3332203d3e203630303232.roa (raw, json)
Hash identifier: GTuZHHz1/N+SvCFbfKTM1obXssigUm8sKpyFqV9a5rM=
Subject key identifier: 1D:8D:5A:AE:03:99:8E:F7:2E:7D:B6:74:A1:7F:1E:A4:BD:35:5B:5D
Certificate issuer: /CN=305D06C24AF1C29D223292689F4201FDBCC0C091
Certificate serial: 54C90EDF1F70147330CEB21B8AE5A934C8A8A360
Authority key identifier: 30:5D:06:C2:4A:F1:C2:9D:22:32:92:68:9F:42:01:FD:BC:C0:C0:91
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/305D06C24AF1C29D223292689F4201FDBCC0C091.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/492C9AD07ED863FE3714CD242F151AF80FED91B1C83F27EFFF635EEE3FD9F327/0/323830333a663530303a3a2f33322d3332203d3e203630303232.roa
Signing time: Tue 04 Feb 2025 20:00:15 +0000
ROA not before: Tue 04 Feb 2025 19:55:15 +0000
ROA not after: Tue 03 Feb 2026 20:00:15 +0000
asID: 60022
IP address blocks: 2803:f500::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:c9:0e:df:1f:70:14:73:30:ce:b2:1b:8a:e5:a9:34:c8:a8:a3:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=305D06C24AF1C29D223292689F4201FDBCC0C091
Validity
Not Before: Feb 4 19:55:15 2025 GMT
Not After : Feb 3 20:00:15 2026 GMT
Subject: CN=1D8D5AAE03998EF72E7DB674A17F1EA4BD355B5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:57:1f:ad:e7:40:7f:d9:e3:53:43:8c:2c:fa:
90:bd:4c:cf:d5:d5:e4:fa:01:15:59:d3:41:86:1f:
ad:3d:a0:7a:89:83:5a:6e:71:43:a8:d5:05:91:1f:
fb:c3:1c:e8:45:5f:e2:95:96:19:70:12:1e:b4:6f:
f5:be:51:27:1d:89:99:4a:f5:db:b3:7b:ab:5d:e7:
3e:46:84:75:6f:f6:14:04:5e:8b:82:43:f3:74:bf:
81:7e:76:f1:23:1f:5b:90:d8:c5:95:6c:16:30:54:
72:f0:a4:d9:d2:75:51:87:55:ff:90:74:f2:78:84:
71:53:75:72:08:e6:68:24:11:8e:88:05:f4:44:af:
88:ee:80:f0:e7:3d:85:22:27:48:0e:d3:21:44:3c:
e8:67:4b:50:a3:57:78:53:28:9a:5e:87:3f:81:94:
80:6f:ce:41:f3:14:ab:af:85:9f:75:4d:76:d7:53:
51:ee:bc:69:94:7b:7f:34:83:98:c9:19:67:93:62:
17:43:b7:de:e9:16:f2:cc:41:6d:50:92:7d:dd:a0:
16:f8:dd:50:e2:80:36:5f:56:44:63:a4:ba:65:36:
fa:3e:61:0a:ae:f8:73:ba:f0:e6:d8:47:b6:ac:c2:
3b:84:a3:4b:f8:85:17:d3:43:0a:c6:1f:63:37:06:
26:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:8D:5A:AE:03:99:8E:F7:2E:7D:B6:74:A1:7F:1E:A4:BD:35:5B:5D
X509v3 Authority Key Identifier:
keyid:30:5D:06:C2:4A:F1:C2:9D:22:32:92:68:9F:42:01:FD:BC:C0:C0:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/492C9AD07ED863FE3714CD242F151AF80FED91B1C83F27EFFF635EEE3FD9F327/0/305D06C24AF1C29D223292689F4201FDBCC0C091.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/305D06C24AF1C29D223292689F4201FDBCC0C091.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/492C9AD07ED863FE3714CD242F151AF80FED91B1C83F27EFFF635EEE3FD9F327/0/323830333a663530303a3a2f33322d3332203d3e203630303232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:f500::/32
Signature Algorithm: sha256WithRSAEncryption
27:04:cc:9b:eb:8a:13:3d:9c:b5:4c:56:de:62:d9:7b:1d:52:
2b:23:a6:28:3a:53:0a:50:9e:c3:66:b4:27:c2:da:f2:bf:3a:
ec:a4:23:4b:7c:f5:63:91:c7:5f:a7:34:e6:0c:7a:e2:d3:67:
61:6d:2a:29:fe:6e:67:7c:8c:ba:ef:17:d1:df:46:58:0e:80:
4e:e2:fd:b0:93:20:ee:5f:df:07:0f:66:e6:18:cb:22:be:ef:
d8:7c:a4:a9:11:66:ae:be:16:0b:c2:7e:a5:1c:aa:80:56:ef:
e6:42:66:f7:78:33:89:2c:b7:a9:28:bd:63:95:96:fc:52:90:
53:8f:9a:f8:ad:02:d1:59:1a:96:46:b0:45:ff:23:fe:cf:f9:
91:b6:92:7e:c8:13:ff:05:39:a4:79:b7:35:6e:37:73:ad:40:
86:20:6d:95:c1:10:02:5c:e8:f7:4a:2a:9c:1c:be:4d:68:fb:
7c:c5:34:8c:26:e4:18:a9:3f:8d:62:7a:29:84:bf:ee:d9:de:
e1:82:c5:0e:b7:38:6b:5e:5b:8d:8d:43:fd:fe:86:25:25:b3:
b1:cc:1f:22:38:60:be:3a:88:92:5f:53:33:f8:8a:45:7d:d9:
f8:91:2e:bd:5f:70:57:d7:b7:c0:5f:bf:5d:fa:75:52:db:2f:
ee:17:90:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:22:38 2025 by rpki-client