Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4DF3799E9FC491DB3AFE70B5EC6AC722EF341769438D04AD580EFCD76A8D03F2/0/323830313a3161393a313a3a2f34382d3438203d3e203133343839.roa
File: 323830313a3161393a313a3a2f34382d3438203d3e203133343839.roa (raw, json)
Hash identifier: PDG1rxd0xSpA7YJfDLKobi7Tz7Q2e5GwLEKlvtcynNc=
Subject key identifier: E1:4E:CC:1A:6A:1D:E6:8B:23:B7:03:A8:16:79:E0:63:55:E8:F8:4A
Certificate issuer: /CN=BDDC3BF7FCA3B086A7E32760A12D6D60036CC131
Certificate serial: 3285DB8C59E186BC1DBAD51FBAAD9382817F2E55
Authority key identifier: BD:DC:3B:F7:FC:A3:B0:86:A7:E3:27:60:A1:2D:6D:60:03:6C:C1:31
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BDDC3BF7FCA3B086A7E32760A12D6D60036CC131.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4DF3799E9FC491DB3AFE70B5EC6AC722EF341769438D04AD580EFCD76A8D03F2/0/323830313a3161393a313a3a2f34382d3438203d3e203133343839.roa
Signing time: Tue 04 Feb 2025 18:40:39 +0000
ROA not before: Tue 04 Feb 2025 18:35:39 +0000
ROA not after: Tue 03 Feb 2026 18:40:39 +0000
asID: 13489
IP address blocks: 2801:1a9:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:85:db:8c:59:e1:86:bc:1d:ba:d5:1f:ba:ad:93:82:81:7f:2e:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDDC3BF7FCA3B086A7E32760A12D6D60036CC131
Validity
Not Before: Feb 4 18:35:39 2025 GMT
Not After : Feb 3 18:40:39 2026 GMT
Subject: CN=E14ECC1A6A1DE68B23B703A81679E06355E8F84A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ea:f7:83:63:0a:28:15:a8:cc:7f:d5:ff:fb:
9e:47:3d:0b:cd:97:6d:d4:b7:cb:1e:3a:4c:3c:00:
10:17:e0:2c:8d:d7:5a:34:19:ac:63:0e:b2:ec:8d:
36:37:15:ff:b4:7b:50:92:f7:90:74:5e:d5:ff:0b:
9c:15:2b:b7:f2:f6:50:5a:e2:ed:4e:c6:ad:d4:cc:
6d:26:21:f6:40:05:e5:b4:8d:a2:b2:86:7f:65:ea:
62:d8:36:b5:ca:b1:3a:46:bb:ae:f4:4b:a9:69:1a:
e8:b3:0a:fe:e7:9f:03:d5:63:47:8d:ce:68:c2:cd:
53:f4:62:cb:f0:36:83:5a:67:04:cf:21:2f:a0:33:
08:f1:23:9e:42:d5:43:4d:b0:18:52:49:75:14:27:
e9:ab:f3:48:56:74:a8:22:c5:d1:4c:86:c8:ab:35:
a8:a1:de:16:d2:7a:bd:df:1c:da:64:12:11:1b:1d:
34:a0:14:9f:7b:e3:b1:b6:df:c0:10:99:be:55:94:
8d:f0:03:8c:d2:ed:62:cf:49:cf:72:d4:91:bb:d2:
b5:91:4f:82:69:44:0d:76:ed:0f:2c:b7:7f:ca:44:
2b:08:f1:e0:31:9b:62:cc:43:f0:24:b0:2b:12:53:
26:10:ca:51:95:12:a6:ad:92:e2:6d:08:41:4c:6e:
d6:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:4E:CC:1A:6A:1D:E6:8B:23:B7:03:A8:16:79:E0:63:55:E8:F8:4A
X509v3 Authority Key Identifier:
keyid:BD:DC:3B:F7:FC:A3:B0:86:A7:E3:27:60:A1:2D:6D:60:03:6C:C1:31
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4DF3799E9FC491DB3AFE70B5EC6AC722EF341769438D04AD580EFCD76A8D03F2/0/BDDC3BF7FCA3B086A7E32760A12D6D60036CC131.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BDDC3BF7FCA3B086A7E32760A12D6D60036CC131.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4DF3799E9FC491DB3AFE70B5EC6AC722EF341769438D04AD580EFCD76A8D03F2/0/323830313a3161393a313a3a2f34382d3438203d3e203133343839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:1a9:1::/48
Signature Algorithm: sha256WithRSAEncryption
20:90:f1:28:92:2c:bc:78:47:5a:2e:bb:61:01:d0:c3:54:e3:
9d:a7:ac:8f:e0:63:ec:80:8b:36:6d:e3:e4:8b:d1:13:94:1d:
b9:8e:6e:0d:47:c5:95:c6:b5:36:aa:ea:05:f1:9d:82:a4:19:
c2:82:2d:5e:83:07:a0:ed:41:55:95:49:fa:d1:f8:aa:d0:61:
19:da:e1:e3:5f:c7:75:58:7a:bb:af:04:97:b5:27:89:7d:9a:
24:dc:fd:df:8b:cd:89:d3:84:89:10:f1:93:ce:ef:54:7a:f4:
95:ee:60:ee:81:34:a3:9c:6b:85:96:63:67:e7:0d:ce:38:a9:
64:95:c9:af:a0:3d:48:92:e1:06:78:22:0c:84:0c:37:33:fa:
89:21:4f:3d:ca:e3:db:43:81:3b:50:29:f9:ec:70:d2:24:d6:
1b:3e:0d:19:be:b2:df:8f:49:58:9e:b9:b1:93:7f:41:fc:38:
cf:99:00:c7:62:c6:0c:9c:39:8b:c0:7b:01:71:e5:7c:e6:29:
ac:85:52:21:10:76:80:60:1a:c5:35:a1:ec:ca:eb:4a:dd:e2:
2c:e5:4d:60:71:32:bb:65:b0:2d:5c:c2:26:11:fd:3e:aa:8f:
0b:88:27:d0:f2:06:c1:d8:1e:ae:9a:51:17:0b:b6:8f:3e:59:
b1:50:96:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:17:18 2025 by rpki-client