Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4BA37A459F293C30036216BB44FE99FC147CD8BFFDE2FF3C5E67537287481E60/0/323830313a3162393a3a2f34382d3438203d3e20323732393532.roa
File: 323830313a3162393a3a2f34382d3438203d3e20323732393532.roa (raw, json)
Hash identifier: y0g82nwyrT1fIvLdvmkvgrZNnUhuYQwF2CdGWLpEIzo=
Subject key identifier: 68:CC:EF:3E:06:5A:22:E3:E6:EF:B4:D4:F6:8D:BF:8D:4D:AC:13:6D
Certificate issuer: /CN=721723EE6C96BAE63225C18652977F8E404DBD28
Certificate serial: 65F75B432DD4309C372F4DFDDC973CFF19300C27
Authority key identifier: 72:17:23:EE:6C:96:BA:E6:32:25:C1:86:52:97:7F:8E:40:4D:BD:28
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/721723EE6C96BAE63225C18652977F8E404DBD28.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4BA37A459F293C30036216BB44FE99FC147CD8BFFDE2FF3C5E67537287481E60/0/323830313a3162393a3a2f34382d3438203d3e20323732393532.roa
Signing time: Tue 04 Feb 2025 18:13:48 +0000
ROA not before: Tue 04 Feb 2025 18:08:48 +0000
ROA not after: Tue 03 Feb 2026 18:13:48 +0000
asID: 272952
IP address blocks: 2801:1b9::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:f7:5b:43:2d:d4:30:9c:37:2f:4d:fd:dc:97:3c:ff:19:30:0c:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=721723EE6C96BAE63225C18652977F8E404DBD28
Validity
Not Before: Feb 4 18:08:48 2025 GMT
Not After : Feb 3 18:13:48 2026 GMT
Subject: CN=68CCEF3E065A22E3E6EFB4D4F68DBF8D4DAC136D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:7a:47:f0:e2:80:a7:31:61:a5:da:70:33:d8:
d9:83:c8:d8:89:e2:cb:31:7c:94:b6:d3:2f:48:df:
b4:70:d8:74:38:a6:5f:07:ff:93:2e:fc:50:3f:d9:
41:cc:2e:cb:77:cc:20:92:5b:fd:0f:99:f2:f1:48:
d0:db:5d:3c:8b:c6:75:54:64:47:6a:8f:c6:91:7e:
ff:3a:ad:fa:bf:58:89:71:75:c4:64:a9:d9:d3:e1:
b2:49:ae:f0:93:00:df:44:47:bf:dd:c1:cf:54:7b:
2b:eb:39:24:78:9a:f1:37:25:b8:52:40:60:57:34:
f5:77:1e:1d:b1:88:41:d0:f6:ed:8b:95:6a:9f:78:
7d:1f:81:59:c1:c1:b1:28:fd:ac:c8:73:b6:7f:1f:
7b:de:ed:29:34:b6:89:ee:44:8a:30:ce:88:55:56:
e5:7c:f1:53:48:ee:bb:29:2f:41:37:ac:61:1c:c9:
c2:c7:bb:f4:42:29:95:5f:3b:06:07:ea:b6:d7:22:
0e:aa:96:1c:cc:87:d6:3e:65:fb:cc:12:02:cb:af:
54:f5:3a:6f:48:69:04:e5:34:ae:27:5d:d9:74:86:
9b:77:f1:a0:39:3f:31:cf:13:5b:05:cb:73:39:5e:
06:8e:cc:17:a3:fa:97:4e:82:b8:d8:3f:c5:67:5d:
bb:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:CC:EF:3E:06:5A:22:E3:E6:EF:B4:D4:F6:8D:BF:8D:4D:AC:13:6D
X509v3 Authority Key Identifier:
keyid:72:17:23:EE:6C:96:BA:E6:32:25:C1:86:52:97:7F:8E:40:4D:BD:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4BA37A459F293C30036216BB44FE99FC147CD8BFFDE2FF3C5E67537287481E60/0/721723EE6C96BAE63225C18652977F8E404DBD28.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/721723EE6C96BAE63225C18652977F8E404DBD28.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4BA37A459F293C30036216BB44FE99FC147CD8BFFDE2FF3C5E67537287481E60/0/323830313a3162393a3a2f34382d3438203d3e20323732393532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:1b9::/48
Signature Algorithm: sha256WithRSAEncryption
8e:c4:fc:a3:4f:06:96:28:47:b3:a6:93:9a:fb:b7:ac:d7:cc:
15:40:da:89:01:08:b4:06:c1:59:49:0b:be:0f:2c:61:8b:e2:
57:52:e6:68:02:3b:c6:b7:7e:39:6f:bb:1c:bd:66:da:20:bc:
ef:42:93:71:84:ac:a6:1a:61:0d:f6:43:a4:8f:92:3e:d8:d8:
5c:bb:e2:ea:31:ee:f8:7b:99:d5:37:a6:b0:e0:41:83:17:45:
ed:26:86:2b:98:c2:33:74:22:a4:68:a9:ad:19:32:3c:df:c6:
ae:dd:4f:27:e7:4d:25:fa:0d:06:21:72:91:20:52:7d:57:9a:
07:ce:f6:e6:17:d9:a2:48:8a:f0:de:57:a9:d8:05:ff:df:02:
77:b0:51:51:b1:6f:1e:f3:c1:50:05:c3:ec:53:a9:60:d7:4b:
72:ad:30:5e:bd:62:92:c6:88:b9:2e:12:a0:f6:01:9c:94:7c:
f3:f7:07:b6:bf:44:4e:cf:7b:70:73:f8:df:ab:82:77:41:41:
aa:a2:b4:d2:89:4b:61:09:a7:2a:6a:25:92:2f:10:34:4c:ba:
2a:32:14:9f:a4:d6:0e:3e:aa:bd:8f:1b:53:df:d6:9d:d9:4a:
40:99:f6:f7:4b:47:2a:54:5b:76:45:3b:48:da:a6:24:aa:90:
8c:cf:17:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:11:53 2025 by rpki-client