Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4A3C65E01138A797CC1CD88B7B32A80F15642316087C29513D3DAC2B1117A368/0/323830333a623431303a3a2f33322d3332203d3e20323731383634.roa
File: 323830333a623431303a3a2f33322d3332203d3e20323731383634.roa (raw, json)
Hash identifier: Q2PshefDUXGnhMVo308cN4VQhDiScT++G8OK9eTiar4=
Subject key identifier: E1:AF:8C:12:9F:6D:9C:5F:59:5B:AE:54:E9:F1:D6:6F:64:7A:23:49
Certificate issuer: /CN=EA517D4BAAB85D3C8F5008F40BC48B21CBEA72B8
Certificate serial: 71F6348703E62750C13A618FEE79DF957336D3AE
Authority key identifier: EA:51:7D:4B:AA:B8:5D:3C:8F:50:08:F4:0B:C4:8B:21:CB:EA:72:B8
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EA517D4BAAB85D3C8F5008F40BC48B21CBEA72B8.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4A3C65E01138A797CC1CD88B7B32A80F15642316087C29513D3DAC2B1117A368/0/323830333a623431303a3a2f33322d3332203d3e20323731383634.roa
Signing time: Tue 04 Feb 2025 19:58:14 +0000
ROA not before: Tue 04 Feb 2025 19:53:14 +0000
ROA not after: Tue 03 Feb 2026 19:58:14 +0000
asID: 271864
IP address blocks: 2803:b410::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:f6:34:87:03:e6:27:50:c1:3a:61:8f:ee:79:df:95:73:36:d3:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EA517D4BAAB85D3C8F5008F40BC48B21CBEA72B8
Validity
Not Before: Feb 4 19:53:14 2025 GMT
Not After : Feb 3 19:58:14 2026 GMT
Subject: CN=E1AF8C129F6D9C5F595BAE54E9F1D66F647A2349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:24:1e:2e:d3:26:be:46:4f:3f:2c:9d:42:9f:
d1:17:3c:d7:78:49:98:de:4e:ff:08:c9:55:fe:d4:
c4:bc:91:d2:c5:80:6b:c3:70:9d:6b:d9:25:c4:03:
bf:c7:b4:e7:89:66:8d:40:b7:ff:21:ff:03:af:d1:
78:38:59:b7:61:92:98:0f:ca:14:ff:28:7e:39:d5:
a2:02:9a:b2:ca:71:f4:ce:ed:13:da:75:92:65:6f:
05:a0:cc:ea:07:92:c2:0e:af:80:07:dc:e9:1e:1d:
55:69:ff:43:41:4e:e0:05:fb:17:aa:c7:29:c0:a7:
f7:e6:90:5f:a2:fe:5a:1c:3d:c8:eb:ef:aa:c6:54:
54:9f:59:7c:64:1c:3a:7e:13:06:54:47:30:60:5f:
70:3a:45:7a:89:ed:b7:0a:04:2d:2a:06:aa:5f:88:
5a:63:51:d3:b3:53:71:a0:a0:51:59:ea:10:a6:07:
98:eb:93:02:84:12:d7:c8:4f:3e:4d:80:66:97:6c:
e6:af:37:79:b2:cf:af:4b:72:60:21:eb:e2:71:08:
75:7d:28:6b:6e:88:ba:a2:fd:55:15:92:a7:48:25:
f1:22:22:eb:8e:df:ff:75:66:59:d6:75:c0:8a:86:
8e:54:10:ed:23:6c:bf:2e:67:00:81:34:53:3e:fb:
e2:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:AF:8C:12:9F:6D:9C:5F:59:5B:AE:54:E9:F1:D6:6F:64:7A:23:49
X509v3 Authority Key Identifier:
keyid:EA:51:7D:4B:AA:B8:5D:3C:8F:50:08:F4:0B:C4:8B:21:CB:EA:72:B8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4A3C65E01138A797CC1CD88B7B32A80F15642316087C29513D3DAC2B1117A368/0/EA517D4BAAB85D3C8F5008F40BC48B21CBEA72B8.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EA517D4BAAB85D3C8F5008F40BC48B21CBEA72B8.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4A3C65E01138A797CC1CD88B7B32A80F15642316087C29513D3DAC2B1117A368/0/323830333a623431303a3a2f33322d3332203d3e20323731383634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:b410::/32
Signature Algorithm: sha256WithRSAEncryption
b0:e8:f1:a3:25:09:4b:f7:9d:6b:8d:bd:d8:d2:96:67:c1:af:
42:3f:55:5a:d2:ab:cb:10:f4:3f:d7:9e:3b:05:66:a0:13:22:
73:30:91:2f:22:57:2f:3a:62:2c:53:1c:b1:79:a7:5b:a7:51:
68:e5:28:a1:aa:8d:d0:40:5f:18:20:5f:f5:a6:08:8d:b1:c8:
cb:b8:b4:06:1d:0b:e8:59:bb:8a:cc:22:fd:5e:fe:8c:4f:d9:
33:f6:da:19:7d:73:67:a5:46:d5:d3:20:53:ba:d4:3e:2a:40:
61:a8:af:4f:c9:a5:8e:d2:3e:91:31:c6:a0:9a:06:37:56:2c:
8f:13:f9:c9:d7:14:d6:fe:b6:af:e4:d3:28:62:57:9a:38:e2:
91:71:b3:67:17:b2:7f:0c:07:cd:b1:db:f1:4b:73:43:c8:eb:
fe:88:43:e1:c9:3f:c6:90:ce:e9:5a:b0:91:a6:0d:a8:4e:a2:
20:80:2e:7b:26:23:b1:4e:72:9b:d4:6b:f6:26:e5:0d:b8:44:
ed:e3:b9:55:e2:d2:e1:7c:fb:94:15:47:57:fc:65:61:91:fa:
43:cd:b7:d3:09:0c:76:c6:4f:c3:cd:f6:e5:a9:3e:c5:02:20:
9b:2f:69:70:ab:5f:03:a8:16:15:a0:ad:51:63:3d:73:0a:3b:
2f:5a:ab:7f
-----BEGIN CERTIFICATE-----
MIIFvzCCBKegAwIBAgIUcfY0hwPmJ1DBOmGP7nnflXM2064wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRUE1MTdENEJBQUI4NUQzQzhGNTAwOEY0MEJDNDhCMjFD
QkVBNzJCODAeFw0yNTAyMDQxOTUzMTRaFw0yNjAyMDMxOTU4MTRaMDMxMTAvBgNV
BAMTKEUxQUY4QzEyOUY2RDlDNUY1OTVCQUU1NEU5RjFENjZGNjQ3QTIzNDkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsJB4u0ya+Rk8/LJ1Cn9EXPNd4
SZjeTv8IyVX+1MS8kdLFgGvDcJ1r2SXEA7/HtOeJZo1At/8h/wOv0Xg4WbdhkpgP
yhT/KH451aICmrLKcfTO7RPadZJlbwWgzOoHksIOr4AH3OkeHVVp/0NBTuAF+xeq
xynAp/fmkF+i/locPcjr76rGVFSfWXxkHDp+EwZURzBgX3A6RXqJ7bcKBC0qBqpf
iFpjUdOzU3GgoFFZ6hCmB5jrkwKEEtfITz5NgGaXbOavN3myz69LcmAh6+JxCHV9
KGtuiLqi/VUVkqdIJfEiIuuO3/91ZlnWdcCKho5UEO0jbL8uZwCBNFM+++LDAgMB
AAGjggLJMIICxTAdBgNVHQ4EFgQU4a+MEp9tnF9ZW65U6fHWb2R6I0kwHwYDVR0j
BBgwFoAU6lF9S6q4XTyPUAj0C8SLIcvqcrgwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy80QTNDNjVFMDExMzhBNzk3Q0MxQ0Q4OEI3QjMyQTgwRjE1
NjQyMzE2MDg3QzI5NTEzRDNEQUMyQjExMTdBMzY4LzAvRUE1MTdENEJBQUI4NUQz
QzhGNTAwOEY0MEJDNDhCMjFDQkVBNzJCOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9FQTUxN0Q0QkFBQjg1RDNDOEY1
MDA4RjQwQkM0OEIyMUNCRUE3MkI4LmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNEEzQzY1RTAxMTM4QTc5N0NDMUNEODhCN0IzMkE4MEYxNTY0MjMxNjA4
N0MyOTUxM0QzREFDMkIxMTE3QTM2OC8wLzMyMzgzMDMzM2E2MjM0MzEzMDNhM2Ey
ZjMzMzIyZDMzMzIyMDNkM2UyMDMyMzczMTM4MzYzNC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACgDtBAw
DQYJKoZIhvcNAQELBQADggEBALDo8aMlCUv3nWuNvdjSlmfBr0I/VVrSq8sQ9D/X
njsFZqATInMwkS8iVy86YixTHLF5p1unUWjlKKGqjdBAXxggX/WmCI2xyMu4tAYd
C+hZu4rMIv1e/oxP2TP22hl9c2elRtXTIFO61D4qQGGor0/JpY7SPpExxqCaBjdW
LI8T+cnXFNb+tq/k0yhiV5o44pFxs2cXsn8MB82x2/FLc0PI6/6IQ+HJP8aQzula
sJGmDahOoiCALnsmI7FOcpvUa/Ym5Q24RO3juVXi0uF8+5QVR1f8ZWGR+kPNt9MJ
DHbGT8PN9uWpPsUCIJsvaXCrXwOoFhWgrVFjPXMKOy9aq38=
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:27:16 2025 by rpki-client