Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/493E05FBD6A91A2B3C82526B6436CA955938E08DE56045DC4BB6FC7D11AB872A/0/323830313a3138393a3a2f34342d3434203d3e20323732313533.roa
File: 323830313a3138393a3a2f34342d3434203d3e20323732313533.roa (raw, json)
Hash identifier: jfmI44Xy5cNtbpkmZO6M4AsUPfYxqnbDaewD8o7tAOQ=
Subject key identifier: 59:54:B9:DD:A2:29:52:A4:12:D3:48:01:84:24:39:B2:02:E7:A2:DA
Certificate issuer: /CN=BDFE2F793030C65A8091475B67EF5A8CC19F1953
Certificate serial: 61EAA99D176BCA5D02265DF9AFDFE4A534E0D45D
Authority key identifier: BD:FE:2F:79:30:30:C6:5A:80:91:47:5B:67:EF:5A:8C:C1:9F:19:53
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BDFE2F793030C65A8091475B67EF5A8CC19F1953.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/493E05FBD6A91A2B3C82526B6436CA955938E08DE56045DC4BB6FC7D11AB872A/0/323830313a3138393a3a2f34342d3434203d3e20323732313533.roa
Signing time: Tue 04 Feb 2025 18:49:46 +0000
ROA not before: Tue 04 Feb 2025 18:44:46 +0000
ROA not after: Tue 03 Feb 2026 18:49:46 +0000
asID: 272153
IP address blocks: 2801:189::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:ea:a9:9d:17:6b:ca:5d:02:26:5d:f9:af:df:e4:a5:34:e0:d4:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDFE2F793030C65A8091475B67EF5A8CC19F1953
Validity
Not Before: Feb 4 18:44:46 2025 GMT
Not After : Feb 3 18:49:46 2026 GMT
Subject: CN=5954B9DDA22952A412D34801842439B202E7A2DA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:a6:c1:01:4f:af:d8:73:22:e8:1a:97:66:e9:
f8:31:c5:fa:a8:35:fa:8d:f0:88:f8:de:0a:b9:b2:
51:03:47:d8:99:93:c8:91:06:ab:89:6a:49:a9:98:
39:01:dc:2b:ef:85:d8:8f:6f:45:4c:f2:d3:3c:d5:
a9:6e:f5:ae:03:2a:4f:d8:16:bf:93:d1:52:51:60:
dc:92:8f:e6:97:ad:68:48:90:35:0d:98:2a:78:c5:
29:43:b5:d6:d5:39:f2:04:90:10:50:ef:93:9b:6e:
25:b2:54:76:4d:b1:76:59:8b:b2:5c:26:a0:1a:97:
2e:c4:6c:69:6b:c2:de:f0:e8:77:16:fd:14:41:17:
79:31:a5:9d:ac:0e:32:99:6b:56:db:62:2f:39:15:
30:51:99:a6:ad:0c:bc:98:74:e0:98:c4:9d:ac:5e:
d9:50:58:49:4d:11:b4:c4:28:eb:1c:8f:f8:a6:fc:
2f:0c:d7:5a:89:13:eb:1d:3b:e0:c0:75:94:a3:37:
e3:af:9b:75:af:51:3c:ee:ec:aa:1a:58:06:91:e8:
6c:d5:b0:40:8d:59:b8:69:58:a7:e9:e0:4c:2c:95:
a7:f5:91:88:66:47:52:76:1b:be:5b:bd:0e:3e:cd:
5e:48:14:18:bf:63:d6:a8:b2:45:ce:3a:e6:5b:da:
6f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:54:B9:DD:A2:29:52:A4:12:D3:48:01:84:24:39:B2:02:E7:A2:DA
X509v3 Authority Key Identifier:
keyid:BD:FE:2F:79:30:30:C6:5A:80:91:47:5B:67:EF:5A:8C:C1:9F:19:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/493E05FBD6A91A2B3C82526B6436CA955938E08DE56045DC4BB6FC7D11AB872A/0/BDFE2F793030C65A8091475B67EF5A8CC19F1953.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BDFE2F793030C65A8091475B67EF5A8CC19F1953.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/493E05FBD6A91A2B3C82526B6436CA955938E08DE56045DC4BB6FC7D11AB872A/0/323830313a3138393a3a2f34342d3434203d3e20323732313533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:189::/44
Signature Algorithm: sha256WithRSAEncryption
95:b5:d1:9c:a7:9f:4f:52:a7:51:ac:d7:80:98:a3:95:62:75:
21:fc:69:5f:14:e1:15:3b:23:f4:c4:fe:8e:de:1b:ca:9d:bc:
70:6d:17:ec:22:9d:4a:bd:26:76:3b:41:8b:d9:19:60:2a:32:
e2:aa:23:52:ae:d5:e1:82:ce:e9:dd:a9:dd:a4:f1:49:d2:a1:
c9:1e:91:bc:02:4e:b3:1c:70:1b:b1:61:74:3b:90:00:94:64:
69:eb:ed:01:43:84:05:ac:37:54:8f:24:a0:0d:5a:fd:6a:6c:
96:c5:25:cd:d3:9c:8d:85:74:8e:35:be:55:26:c2:8b:20:10:
c0:7b:2d:a7:07:71:c1:7e:d6:8d:bb:15:e2:d5:2e:16:cf:04:
ac:a2:e1:88:de:f4:bc:40:de:31:02:b8:db:97:a3:43:72:00:
e1:a3:07:c8:f1:0f:0b:d6:19:41:a8:63:80:47:c7:51:e0:74:
96:f9:c9:db:c8:3a:79:39:cb:fb:85:12:b0:f2:e7:a4:fa:aa:
7b:6e:a7:24:d1:8b:e5:04:d2:a6:e5:d9:e4:05:8b:db:bb:a8:
03:61:56:81:8c:79:ed:01:9c:5a:2a:1a:0a:53:39:af:78:0a:
33:d2:26:5d:22:c7:0a:1e:91:a3:40:c6:c6:af:f6:69:98:83:
77:5e:fa:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 20:47:55 2025 by rpki-client