Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4F7D93F31A55DB6BC0A37009DE4C2A9F646532B9B13F57318539716493300469/0/323830333a356530303a3a2f33322d3438203d3e20323637373635.roa
File: 323830333a356530303a3a2f33322d3438203d3e20323637373635.roa (raw, json)
Hash identifier: cd7PZ9dfmvSFKygdNoVCHiMFY72jOvsZrO31KCXJMJE=
Subject key identifier: 3B:B4:DB:24:BB:82:34:A2:4F:E9:A2:52:42:53:D4:52:B8:18:A7:7E
Certificate issuer: /CN=A420AC4C72DA7B64E98421B8B94378106902CB9F
Certificate serial: 6B9D58B34827D1D1094683DBBE4C07DA281854F5
Authority key identifier: A4:20:AC:4C:72:DA:7B:64:E9:84:21:B8:B9:43:78:10:69:02:CB:9F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A420AC4C72DA7B64E98421B8B94378106902CB9F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4F7D93F31A55DB6BC0A37009DE4C2A9F646532B9B13F57318539716493300469/0/323830333a356530303a3a2f33322d3438203d3e20323637373635.roa
Signing time: Tue 04 Feb 2025 18:30:30 +0000
ROA not before: Tue 04 Feb 2025 18:25:30 +0000
ROA not after: Tue 03 Feb 2026 18:30:30 +0000
asID: 267765
IP address blocks: 2803:5e00::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:9d:58:b3:48:27:d1:d1:09:46:83:db:be:4c:07:da:28:18:54:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A420AC4C72DA7B64E98421B8B94378106902CB9F
Validity
Not Before: Feb 4 18:25:30 2025 GMT
Not After : Feb 3 18:30:30 2026 GMT
Subject: CN=3BB4DB24BB8234A24FE9A2524253D452B818A77E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:df:4d:94:a2:dc:35:99:65:d1:39:1f:74:c0:
8a:3e:cf:27:1a:ec:ab:e9:ad:73:be:5f:f7:12:21:
1b:a7:41:db:fb:d6:26:f2:94:a0:77:05:2d:ea:8d:
d1:f6:d6:f7:2f:bf:f3:91:cc:70:97:62:d7:0f:9b:
82:6d:52:3b:c8:cf:a7:d2:a2:74:10:67:86:5e:50:
40:bd:34:60:30:45:19:a3:7e:14:55:2b:bc:48:6a:
42:f8:c4:ff:14:97:6e:04:f7:ae:26:f0:0e:67:c0:
90:0e:a3:0a:51:f2:1f:6f:fa:43:1d:4c:44:fb:96:
3d:db:77:49:d8:29:a1:80:31:19:55:7c:a4:00:61:
7c:51:d7:95:fe:8e:64:8f:a0:d4:0c:7d:1b:60:13:
78:e9:10:8a:85:82:8a:35:05:f3:50:71:07:21:e1:
c6:6a:07:25:8a:9e:75:6a:15:59:f5:d3:ae:8d:59:
e4:64:24:6e:81:01:22:31:9e:91:01:84:63:d7:53:
58:0b:52:f5:c6:91:9b:5b:a3:9a:20:6c:41:af:6c:
7c:01:09:3f:b3:26:78:51:65:0f:9e:28:96:18:cf:
03:fd:fa:21:61:a7:a8:5d:21:5a:2f:5a:8c:4f:97:
e6:e2:8b:09:10:cb:28:a1:5d:2c:ec:4e:30:77:5f:
50:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:B4:DB:24:BB:82:34:A2:4F:E9:A2:52:42:53:D4:52:B8:18:A7:7E
X509v3 Authority Key Identifier:
keyid:A4:20:AC:4C:72:DA:7B:64:E9:84:21:B8:B9:43:78:10:69:02:CB:9F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4F7D93F31A55DB6BC0A37009DE4C2A9F646532B9B13F57318539716493300469/0/A420AC4C72DA7B64E98421B8B94378106902CB9F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A420AC4C72DA7B64E98421B8B94378106902CB9F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4F7D93F31A55DB6BC0A37009DE4C2A9F646532B9B13F57318539716493300469/0/323830333a356530303a3a2f33322d3438203d3e20323637373635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:5e00::/32
Signature Algorithm: sha256WithRSAEncryption
8f:91:82:a4:2f:25:2f:4f:df:3b:57:0f:05:be:e9:06:b9:52:
48:43:a7:a9:49:14:6d:58:8b:da:f3:b8:47:7e:26:a5:25:1d:
da:e1:ef:54:db:e8:0f:0a:68:cc:a3:03:96:76:55:6f:3c:e0:
d8:b9:e6:7c:8d:b9:b2:e0:b2:f9:ee:db:7b:c7:e9:1b:69:6d:
c4:84:3f:dd:eb:e9:05:01:8d:b9:a7:15:2f:2b:48:ee:de:14:
83:30:c8:cc:ff:32:79:ab:5c:3b:51:fd:a3:54:c9:8c:ab:7d:
49:c9:5a:bc:c0:f2:f4:95:66:dd:89:8b:45:d9:ab:55:2f:1e:
99:48:bc:de:a6:b3:d9:dc:aa:c7:1c:b9:2a:06:05:41:79:1b:
98:56:05:67:c6:53:59:f4:cb:18:e1:69:03:6d:8d:ac:ea:8b:
e7:b9:ca:5d:cf:d2:30:7e:0f:3c:0c:37:08:82:0f:7c:ed:d7:
76:5c:5b:9b:2e:f0:25:7d:66:49:73:9a:81:4c:1b:5f:10:07:
72:f3:fe:f3:95:7c:94:8d:24:c0:b1:98:7c:01:1c:8b:d1:f3:
d5:66:12:3d:70:cc:bd:04:75:a8:5a:6d:0a:c5:df:6a:83:76:
c8:9b:e4:34:2b:62:3b:58:8f:72:78:f2:5d:29:63:5f:df:2e:
6d:22:fa:9d
-----BEGIN CERTIFICATE-----
MIIFvzCCBKegAwIBAgIUa51Ys0gn0dEJRoPbvkwH2igYVPUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQTQyMEFDNEM3MkRBN0I2NEU5ODQyMUI4Qjk0Mzc4MTA2
OTAyQ0I5RjAeFw0yNTAyMDQxODI1MzBaFw0yNjAyMDMxODMwMzBaMDMxMTAvBgNV
BAMTKDNCQjREQjI0QkI4MjM0QTI0RkU5QTI1MjQyNTNENDUyQjgxOEE3N0UwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCV302Uotw1mWXROR90wIo+zyca
7KvprXO+X/cSIRunQdv71ibylKB3BS3qjdH21vcvv/ORzHCXYtcPm4JtUjvIz6fS
onQQZ4ZeUEC9NGAwRRmjfhRVK7xIakL4xP8Ul24E964m8A5nwJAOowpR8h9v+kMd
TET7lj3bd0nYKaGAMRlVfKQAYXxR15X+jmSPoNQMfRtgE3jpEIqFgoo1BfNQcQch
4cZqByWKnnVqFVn1066NWeRkJG6BASIxnpEBhGPXU1gLUvXGkZtbo5ogbEGvbHwB
CT+zJnhRZQ+eKJYYzwP9+iFhp6hdIVovWoxPl+biiwkQyyihXSzsTjB3X1DlAgMB
AAGjggLJMIICxTAdBgNVHQ4EFgQUO7TbJLuCNKJP6aJSQlPUUrgYp34wHwYDVR0j
BBgwFoAUpCCsTHLae2TphCG4uUN4EGkCy58wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy80RjdEOTNGMzFBNTVEQjZCQzBBMzcwMDlERTRDMkE5RjY0
NjUzMkI5QjEzRjU3MzE4NTM5NzE2NDkzMzAwNDY5LzAvQTQyMEFDNEM3MkRBN0I2
NEU5ODQyMUI4Qjk0Mzc4MTA2OTAyQ0I5Ri5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9BNDIwQUM0QzcyREE3QjY0RTk4
NDIxQjhCOTQzNzgxMDY5MDJDQjlGLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNEY3RDkzRjMxQTU1REI2QkMwQTM3MDA5REU0QzJBOUY2NDY1MzJCOUIx
M0Y1NzMxODUzOTcxNjQ5MzMwMDQ2OS8wLzMyMzgzMDMzM2EzNTY1MzAzMDNhM2Ey
ZjMzMzIyZDM0MzgyMDNkM2UyMDMyMzYzNzM3MzYzNS5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACgDXgAw
DQYJKoZIhvcNAQELBQADggEBAI+RgqQvJS9P3ztXDwW+6Qa5UkhDp6lJFG1Yi9rz
uEd+JqUlHdrh71Tb6A8KaMyjA5Z2VW884Ni55nyNubLgsvnu23vH6RtpbcSEP93r
6QUBjbmnFS8rSO7eFIMwyMz/MnmrXDtR/aNUyYyrfUnJWrzA8vSVZt2Ji0XZq1Uv
HplIvN6ms9ncqsccuSoGBUF5G5hWBWfGU1n0yxjhaQNtjazqi+e5yl3P0jB+DzwM
NwiCD3zt13ZcW5su8CV9ZklzmoFMG18QB3Lz/vOVfJSNJMCxmHwBHIvR89VmEj1w
zL0EdahabQrF32qDdsib5DQrYjtYj3J48l0pY1/fLm0i+p0=
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:13:44 2025 by rpki-client