Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/566149848928EB2A75AFD405A3B13A25A2BFF3EFB05D1AA8D0E7D869518DF8F8/0/323830333a366161303a3a2f33322d3332203d3e20323636383732.roa
File: 323830333a366161303a3a2f33322d3332203d3e20323636383732.roa (raw, json)
Hash identifier: yfj5YhODpvKAzxRM5HNROC59A7WY2mminG4NM5Qp0Yw=
Subject key identifier: 7B:11:1F:A4:9C:10:01:9D:E8:0F:87:B5:48:1A:AB:5E:15:5B:34:BA
Certificate issuer: /CN=900922D8B59AC326DD138FED51BC50D7590E1F0A
Certificate serial: 65D3FDCC8256D5831250F2C42F95B2557A9019B1
Authority key identifier: 90:09:22:D8:B5:9A:C3:26:DD:13:8F:ED:51:BC:50:D7:59:0E:1F:0A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/900922D8B59AC326DD138FED51BC50D7590E1F0A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/566149848928EB2A75AFD405A3B13A25A2BFF3EFB05D1AA8D0E7D869518DF8F8/0/323830333a366161303a3a2f33322d3332203d3e20323636383732.roa
Signing time: Tue 04 Feb 2025 18:38:12 +0000
ROA not before: Tue 04 Feb 2025 18:33:12 +0000
ROA not after: Tue 03 Feb 2026 18:38:12 +0000
asID: 266872
IP address blocks: 2803:6aa0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:d3:fd:cc:82:56:d5:83:12:50:f2:c4:2f:95:b2:55:7a:90:19:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=900922D8B59AC326DD138FED51BC50D7590E1F0A
Validity
Not Before: Feb 4 18:33:12 2025 GMT
Not After : Feb 3 18:38:12 2026 GMT
Subject: CN=7B111FA49C10019DE80F87B5481AAB5E155B34BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:2f:f4:44:95:18:9c:02:79:f9:85:0f:4c:4f:
f1:c6:25:1b:bd:50:3f:25:8d:b9:0d:e3:e5:32:59:
4a:a1:57:ca:d3:89:03:c0:5a:4a:79:47:94:1e:42:
c2:b3:ee:8d:e7:f7:ce:9d:50:ca:da:aa:b8:96:5f:
7d:43:e9:c9:ab:4f:6d:6a:d3:14:60:e8:1f:09:e2:
0d:8b:39:6a:fa:59:3e:82:e9:37:1c:a7:54:40:8f:
fd:56:60:d9:10:b7:13:77:e0:71:81:cf:6d:d6:ab:
c3:f6:53:37:ff:4e:3b:fb:3d:9c:60:1f:24:01:b7:
d2:89:4d:be:0d:ed:c8:9d:4d:9a:5d:37:c4:64:67:
3c:95:fa:0a:4f:ff:b9:c5:25:0d:18:59:c1:0f:c5:
ff:14:0a:f6:b7:ac:f4:78:1a:47:79:9d:40:3f:88:
63:0a:4f:b1:96:4c:fd:c8:da:f2:ee:1f:24:56:af:
22:5a:68:28:9f:56:fd:e7:31:59:2a:8b:2c:4d:9a:
6d:c3:77:5c:1a:9b:8c:13:84:8f:46:28:f6:30:d4:
c7:2e:f8:84:af:74:f3:5e:05:c7:62:ba:fa:2f:1a:
da:5b:2c:64:ce:91:00:2f:0b:cf:93:aa:4b:7e:2a:
7f:80:8d:92:62:87:df:52:54:3d:bd:d2:6e:e7:cc:
87:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:11:1F:A4:9C:10:01:9D:E8:0F:87:B5:48:1A:AB:5E:15:5B:34:BA
X509v3 Authority Key Identifier:
keyid:90:09:22:D8:B5:9A:C3:26:DD:13:8F:ED:51:BC:50:D7:59:0E:1F:0A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/566149848928EB2A75AFD405A3B13A25A2BFF3EFB05D1AA8D0E7D869518DF8F8/0/900922D8B59AC326DD138FED51BC50D7590E1F0A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/900922D8B59AC326DD138FED51BC50D7590E1F0A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/566149848928EB2A75AFD405A3B13A25A2BFF3EFB05D1AA8D0E7D869518DF8F8/0/323830333a366161303a3a2f33322d3332203d3e20323636383732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:6aa0::/32
Signature Algorithm: sha256WithRSAEncryption
27:f2:8f:84:ef:2e:b6:17:cf:9e:eb:b9:aa:7e:c2:88:bb:82:
00:94:46:66:22:76:31:d4:f4:e1:f8:6a:27:f7:e6:05:a4:10:
2b:c9:00:eb:01:b0:36:69:4b:43:2f:54:d9:ea:ae:d7:25:e2:
50:6f:68:cf:96:26:78:e2:5b:3a:52:9b:d3:66:32:03:5f:4a:
72:66:12:18:13:b2:28:e3:1c:e1:1b:cc:34:be:19:42:61:d5:
08:67:d9:da:fd:33:69:9b:4f:7f:49:2f:a3:4a:4f:97:eb:88:
a0:86:f7:0b:19:de:01:cd:84:68:d1:5a:7e:f3:2b:5a:d0:03:
93:0d:44:0f:e9:1a:0d:b0:a8:ac:47:36:16:5d:76:4a:13:35:
96:a0:20:d0:49:52:40:e4:bc:6c:00:47:20:f1:7b:44:5c:7a:
03:66:1b:4f:64:43:0b:0e:0e:aa:3b:d9:f5:c3:82:01:ec:b3:
ab:e7:94:9a:9e:f5:a1:17:55:d1:a1:40:b7:56:cd:bf:59:08:
3d:74:1d:1b:1d:cd:73:43:81:78:f0:28:83:c8:3e:d2:4f:cf:
d8:e9:16:cb:0f:95:cc:57:12:11:b8:3d:bf:6b:34:7e:ca:63:
b6:70:ed:97:e1:c2:e2:b2:d5:df:36:33:9e:b2:c0:19:b9:98:
a3:5d:23:24
-----BEGIN CERTIFICATE-----
MIIFvzCCBKegAwIBAgIUZdP9zIJW1YMSUPLEL5WyVXqQGbEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTAwOTIyRDhCNTlBQzMyNkREMTM4RkVENTFCQzUwRDc1
OTBFMUYwQTAeFw0yNTAyMDQxODMzMTJaFw0yNjAyMDMxODM4MTJaMDMxMTAvBgNV
BAMTKDdCMTExRkE0OUMxMDAxOURFODBGODdCNTQ4MUFBQjVFMTU1QjM0QkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjL/RElRicAnn5hQ9MT/HGJRu9
UD8ljbkN4+UyWUqhV8rTiQPAWkp5R5QeQsKz7o3n986dUMraqriWX31D6cmrT21q
0xRg6B8J4g2LOWr6WT6C6Tccp1RAj/1WYNkQtxN34HGBz23Wq8P2Uzf/Tjv7PZxg
HyQBt9KJTb4N7cidTZpdN8RkZzyV+gpP/7nFJQ0YWcEPxf8UCva3rPR4Gkd5nUA/
iGMKT7GWTP3I2vLuHyRWryJaaCifVv3nMVkqiyxNmm3Dd1wam4wThI9GKPYw1Mcu
+ISvdPNeBcdiuvovGtpbLGTOkQAvC8+Tqkt+Kn+AjZJih99SVD290m7nzIeVAgMB
AAGjggLJMIICxTAdBgNVHQ4EFgQUexEfpJwQAZ3oD4e1SBqrXhVbNLowHwYDVR0j
BBgwFoAUkAki2LWawybdE4/tUbxQ11kOHwowDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy81NjYxNDk4NDg5MjhFQjJBNzVBRkQ0MDVBM0IxM0EyNUEy
QkZGM0VGQjA1RDFBQThEMEU3RDg2OTUxOERGOEY4LzAvOTAwOTIyRDhCNTlBQzMy
NkREMTM4RkVENTFCQzUwRDc1OTBFMUYwQS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85MDA5MjJEOEI1OUFDMzI2REQx
MzhGRUQ1MUJDNTBENzU5MEUxRjBBLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNTY2MTQ5ODQ4OTI4RUIyQTc1QUZENDA1QTNCMTNBMjVBMkJGRjNFRkIw
NUQxQUE4RDBFN0Q4Njk1MThERjhGOC8wLzMyMzgzMDMzM2EzNjYxNjEzMDNhM2Ey
ZjMzMzIyZDMzMzIyMDNkM2UyMDMyMzYzNjM4MzczMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACgDaqAw
DQYJKoZIhvcNAQELBQADggEBACfyj4TvLrYXz57ruap+woi7ggCURmYidjHU9OH4
aif35gWkECvJAOsBsDZpS0MvVNnqrtcl4lBvaM+WJnjiWzpSm9NmMgNfSnJmEhgT
sijjHOEbzDS+GUJh1Qhn2dr9M2mbT39JL6NKT5friKCG9wsZ3gHNhGjRWn7zK1rQ
A5MNRA/pGg2wqKxHNhZddkoTNZagINBJUkDkvGwARyDxe0RcegNmG09kQwsODqo7
2fXDggHss6vnlJqe9aEXVdGhQLdWzb9ZCD10HRsdzXNDgXjwKIPIPtJPz9jpFssP
lcxXEhG4Pb9rNH7KY7Zw7ZfhwuKy1d82M56ywBm5mKNdIyQ=
-----END CERTIFICATE-----
Generated at Sun Apr 6 15:21:29 2025 by rpki-client