Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5009A1F4D1BC0FFE06B8723CCF13FD2C791404B29F46C2D766D42350059DEBD8/0/323830333a383332303a3a2f33322d3332203d3e20323636373133.roa
File: 323830333a383332303a3a2f33322d3332203d3e20323636373133.roa (raw, json)
Hash identifier: g6DNKjZekU2uDpQLAA16qySYRWAhC+pOHrCuJlds2qw=
Subject key identifier: DB:08:57:C8:60:3B:F1:DB:72:A9:33:D2:08:83:0A:48:97:32:D9:50
Certificate issuer: /CN=2DF8BA98EB214BEAAB30C1BFDED185EE2A0F869E
Certificate serial: 570903223235C65E37EA539DC356B38B06D95497
Authority key identifier: 2D:F8:BA:98:EB:21:4B:EA:AB:30:C1:BF:DE:D1:85:EE:2A:0F:86:9E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2DF8BA98EB214BEAAB30C1BFDED185EE2A0F869E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5009A1F4D1BC0FFE06B8723CCF13FD2C791404B29F46C2D766D42350059DEBD8/0/323830333a383332303a3a2f33322d3332203d3e20323636373133.roa
Signing time: Tue 04 Feb 2025 18:16:57 +0000
ROA not before: Tue 04 Feb 2025 18:11:57 +0000
ROA not after: Tue 03 Feb 2026 18:16:57 +0000
asID: 266713
IP address blocks: 2803:8320::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:09:03:22:32:35:c6:5e:37:ea:53:9d:c3:56:b3:8b:06:d9:54:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DF8BA98EB214BEAAB30C1BFDED185EE2A0F869E
Validity
Not Before: Feb 4 18:11:57 2025 GMT
Not After : Feb 3 18:16:57 2026 GMT
Subject: CN=DB0857C8603BF1DB72A933D208830A489732D950
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:86:d2:ea:2a:cf:cc:71:ab:55:4c:ee:b0:9d:
cc:d9:78:0b:45:bd:c0:0b:e8:0d:dc:87:80:c2:74:
c3:5c:92:a0:40:65:46:42:c3:bd:76:a5:4c:4d:f2:
4e:7b:41:b1:d3:01:ad:92:98:88:47:6b:49:39:0e:
50:73:2c:a1:bb:54:46:f1:55:7a:4f:27:7b:ee:99:
ce:da:f1:d5:3e:c3:69:f3:e3:7c:c3:67:f8:cf:58:
5c:8f:ff:69:ab:d2:6b:67:7c:e5:89:85:25:dc:ad:
f3:b4:d7:3c:81:d0:0b:f1:98:f6:96:5e:2b:08:02:
c3:a3:23:68:42:f8:aa:b4:b6:d3:88:c1:a1:ba:6c:
d9:80:8a:0b:10:39:3d:47:bf:34:10:81:63:83:c5:
a8:f1:c0:16:cd:55:91:12:55:5c:c6:00:45:87:83:
4a:44:dd:d0:10:93:40:b6:3e:db:e1:f3:2d:ff:d1:
d4:c3:be:8f:d4:68:7b:7e:9a:6a:ca:8a:f5:93:5b:
ce:f2:64:d2:d8:1e:45:5e:69:16:1f:88:28:43:76:
66:16:1b:93:bf:1c:ff:e2:ae:27:97:73:a6:31:46:
6e:bf:57:65:70:9a:55:9c:4f:29:7a:5e:27:57:6a:
ef:8c:d1:cc:d1:67:c4:8d:eb:2d:f4:55:d6:c5:5a:
0f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:08:57:C8:60:3B:F1:DB:72:A9:33:D2:08:83:0A:48:97:32:D9:50
X509v3 Authority Key Identifier:
keyid:2D:F8:BA:98:EB:21:4B:EA:AB:30:C1:BF:DE:D1:85:EE:2A:0F:86:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5009A1F4D1BC0FFE06B8723CCF13FD2C791404B29F46C2D766D42350059DEBD8/0/2DF8BA98EB214BEAAB30C1BFDED185EE2A0F869E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2DF8BA98EB214BEAAB30C1BFDED185EE2A0F869E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5009A1F4D1BC0FFE06B8723CCF13FD2C791404B29F46C2D766D42350059DEBD8/0/323830333a383332303a3a2f33322d3332203d3e20323636373133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:8320::/32
Signature Algorithm: sha256WithRSAEncryption
3c:7e:bb:95:b6:54:5a:5d:00:b9:24:ee:20:34:a0:46:f6:84:
9f:3a:04:9c:f3:34:99:da:e5:8e:6c:9a:5b:4e:a4:7b:17:ee:
51:25:7a:15:09:2e:92:71:9b:c2:6c:f7:18:e4:75:eb:a8:de:
52:18:ff:ac:b6:4b:6d:1f:f7:3f:a5:c2:08:3f:59:4b:bc:9a:
e9:89:19:06:83:3e:64:7a:05:3e:d2:d5:33:f6:a1:5a:ef:a4:
9f:64:19:5c:32:40:92:ae:85:7c:36:87:8d:d1:fd:9d:0a:36:
36:cc:93:84:d2:2f:d9:30:9d:49:ac:37:2b:b7:0a:5a:d8:ff:
1a:75:3e:d6:a4:47:97:33:84:59:b8:c9:6e:ce:ff:c0:7d:f7:
c8:cb:74:08:f8:f1:74:4c:2c:97:f8:ef:f6:a3:f0:c4:26:c0:
5f:74:26:94:a0:bf:64:67:b4:b6:b9:73:d4:8e:09:63:99:63:
a4:82:2a:bd:04:d3:a4:18:3c:b2:e5:fa:7d:fc:cf:bd:55:20:
9a:e0:62:da:04:fe:6a:e4:a9:31:64:b8:db:e8:a1:8e:21:15:
39:23:79:ce:43:cb:24:fd:96:7c:62:e9:85:df:f2:fa:6c:d4:
04:53:38:db:03:d7:bf:34:0f:7f:4a:b3:4d:8f:30:0f:f6:55:
d8:ed:dc:31
-----BEGIN CERTIFICATE-----
MIIFvzCCBKegAwIBAgIUVwkDIjI1xl436lOdw1aziwbZVJcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMkRGOEJBOThFQjIxNEJFQUFCMzBDMUJGREVEMTg1RUUy
QTBGODY5RTAeFw0yNTAyMDQxODExNTdaFw0yNjAyMDMxODE2NTdaMDMxMTAvBgNV
BAMTKERCMDg1N0M4NjAzQkYxREI3MkE5MzNEMjA4ODMwQTQ4OTczMkQ5NTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2htLqKs/McatVTO6wnczZeAtF
vcAL6A3ch4DCdMNckqBAZUZCw712pUxN8k57QbHTAa2SmIhHa0k5DlBzLKG7VEbx
VXpPJ3vumc7a8dU+w2nz43zDZ/jPWFyP/2mr0mtnfOWJhSXcrfO01zyB0AvxmPaW
XisIAsOjI2hC+Kq0ttOIwaG6bNmAigsQOT1HvzQQgWODxajxwBbNVZESVVzGAEWH
g0pE3dAQk0C2Ptvh8y3/0dTDvo/UaHt+mmrKivWTW87yZNLYHkVeaRYfiChDdmYW
G5O/HP/irieXc6YxRm6/V2VwmlWcTyl6XidXau+M0czRZ8SN6y30VdbFWg85AgMB
AAGjggLJMIICxTAdBgNVHQ4EFgQU2whXyGA78dtyqTPSCIMKSJcy2VAwHwYDVR0j
BBgwFoAULfi6mOshS+qrMMG/3tGF7ioPhp4wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy81MDA5QTFGNEQxQkMwRkZFMDZCODcyM0NDRjEzRkQyQzc5
MTQwNEIyOUY0NkMyRDc2NkQ0MjM1MDA1OURFQkQ4LzAvMkRGOEJBOThFQjIxNEJF
QUFCMzBDMUJGREVEMTg1RUUyQTBGODY5RS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yREY4QkE5OEVCMjE0QkVBQUIz
MEMxQkZERUQxODVFRTJBMEY4NjlFLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNTAwOUExRjREMUJDMEZGRTA2Qjg3MjNDQ0YxM0ZEMkM3OTE0MDRCMjlG
NDZDMkQ3NjZENDIzNTAwNTlERUJEOC8wLzMyMzgzMDMzM2EzODMzMzIzMDNhM2Ey
ZjMzMzIyZDMzMzIyMDNkM2UyMDMyMzYzNjM3MzEzMy5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACgDgyAw
DQYJKoZIhvcNAQELBQADggEBADx+u5W2VFpdALkk7iA0oEb2hJ86BJzzNJna5Y5s
mltOpHsX7lElehUJLpJxm8Js9xjkdeuo3lIY/6y2S20f9z+lwgg/WUu8mumJGQaD
PmR6BT7S1TP2oVrvpJ9kGVwyQJKuhXw2h43R/Z0KNjbMk4TSL9kwnUmsNyu3ClrY
/xp1PtakR5czhFm4yW7O/8B998jLdAj48XRMLJf47/aj8MQmwF90JpSgv2RntLa5
c9SOCWOZY6SCKr0E06QYPLLl+n38z71VIJrgYtoE/mrkqTFkuNvooY4hFTkjec5D
yyT9lnxi6YXf8vps1ARTONsD1780D39Ks02PMA/2Vdjt3DE=
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:54:00 2025 by rpki-client