Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/57399C513B63A8737275C1297B370904E04720997FE7F8D124D9B547CC3EDE7A/0/323830303a6131303a3a2f33322d3438203d3e203131303134.roa
File: 323830303a6131303a3a2f33322d3438203d3e203131303134.roa (raw, json)
Hash identifier: BQEn7XuGyj9ku4NsPU/PSxdtnwdDYFbrl2rCUVNFR5k=
Subject key identifier: C5:3C:8B:B5:62:8C:E1:28:11:52:97:8C:F9:68:8C:B8:68:79:79:CE
Certificate issuer: /CN=A36910F3C3995D7CCC06ADC2F152FFD4A168F24C
Certificate serial: 5B1ADEB7EFD61CBB0FC3F271483DEEFB8C56CCA2
Authority key identifier: A3:69:10:F3:C3:99:5D:7C:CC:06:AD:C2:F1:52:FF:D4:A1:68:F2:4C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A36910F3C3995D7CCC06ADC2F152FFD4A168F24C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/57399C513B63A8737275C1297B370904E04720997FE7F8D124D9B547CC3EDE7A/0/323830303a6131303a3a2f33322d3438203d3e203131303134.roa
Signing time: Tue 04 Feb 2025 18:24:59 +0000
ROA not before: Tue 04 Feb 2025 18:19:59 +0000
ROA not after: Tue 03 Feb 2026 18:24:59 +0000
asID: 11014
IP address blocks: 2800:a10::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:1a:de:b7:ef:d6:1c:bb:0f:c3:f2:71:48:3d:ee:fb:8c:56:cc:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A36910F3C3995D7CCC06ADC2F152FFD4A168F24C
Validity
Not Before: Feb 4 18:19:59 2025 GMT
Not After : Feb 3 18:24:59 2026 GMT
Subject: CN=C53C8BB5628CE1281152978CF9688CB8687979CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:d5:b2:a9:f3:22:fe:ce:9b:0b:bc:bf:b9:83:
4f:23:b3:34:06:d0:88:9f:92:f7:35:06:7d:d6:62:
6f:60:90:d6:48:8a:75:9b:8b:d5:39:1a:d2:c0:1e:
e3:66:b4:28:1e:91:c7:8b:56:94:8c:69:f2:fc:fe:
68:f6:42:7c:ba:1f:39:0f:ad:57:e8:1f:6c:f7:6d:
b6:9c:51:37:a1:20:bf:98:52:2a:78:21:5f:f3:59:
5b:b9:18:7d:13:16:61:70:f6:d3:f1:72:4d:47:71:
4a:89:dc:ea:7e:86:fd:6d:c8:d1:83:a6:68:f7:4c:
cb:0e:eb:f8:08:cb:da:0f:47:87:28:63:20:d3:c1:
cb:cb:a2:94:f9:25:07:2e:a5:8b:96:d6:67:bc:e6:
15:f2:bc:7e:1e:8e:eb:d3:c9:41:a9:fe:35:df:28:
e3:cb:82:70:d5:c3:6e:6f:b0:30:c9:d5:78:6b:1a:
e1:60:be:53:ed:87:01:a6:58:ac:92:98:42:25:94:
14:ec:33:d4:17:8b:82:31:7b:b4:97:5a:b0:8b:f6:
a4:9a:2c:fa:e5:d3:fe:63:98:f1:70:b8:c4:39:e3:
74:67:38:dc:a5:d2:67:bf:93:db:28:8f:1c:a5:a7:
86:e8:6d:69:8c:7b:0b:37:7f:fd:2a:9b:d5:0c:c9:
03:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:3C:8B:B5:62:8C:E1:28:11:52:97:8C:F9:68:8C:B8:68:79:79:CE
X509v3 Authority Key Identifier:
keyid:A3:69:10:F3:C3:99:5D:7C:CC:06:AD:C2:F1:52:FF:D4:A1:68:F2:4C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/57399C513B63A8737275C1297B370904E04720997FE7F8D124D9B547CC3EDE7A/0/A36910F3C3995D7CCC06ADC2F152FFD4A168F24C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A36910F3C3995D7CCC06ADC2F152FFD4A168F24C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/57399C513B63A8737275C1297B370904E04720997FE7F8D124D9B547CC3EDE7A/0/323830303a6131303a3a2f33322d3438203d3e203131303134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2800:a10::/32
Signature Algorithm: sha256WithRSAEncryption
8b:b1:d8:ed:df:93:43:37:c8:c0:26:de:96:51:af:e2:ed:aa:
74:e0:c3:c6:b0:d4:15:66:91:c9:34:07:18:40:5a:4f:6f:65:
d3:3a:e1:40:9e:24:f2:52:0e:8e:62:3e:8d:ac:c2:4d:75:1c:
bb:22:69:be:8d:5f:e4:c1:b3:62:af:e1:ad:c5:a1:2f:b3:6b:
bc:ee:68:58:1a:d5:00:29:c3:b6:83:9f:77:d6:7d:dc:06:00:
9a:46:97:a2:08:5f:75:aa:8a:11:4d:88:bc:ea:47:c4:e4:7c:
ca:8d:10:a7:88:6c:a6:7d:78:f8:72:31:b3:84:f3:09:ff:8d:
c0:c9:ed:79:8d:20:a0:74:94:3b:37:f0:db:50:04:ac:0f:2d:
8a:47:96:e9:cf:de:f0:8a:84:9c:63:bb:5a:85:ae:d3:39:71:
0f:69:7e:f8:b1:e7:3d:c4:2e:02:60:98:a8:26:f9:00:ae:b2:
88:52:66:c3:10:f5:c4:74:43:8d:e5:55:f4:27:b4:60:85:09:
0f:08:87:c2:8e:4f:4f:c3:a1:73:fe:e4:ac:d7:4b:b3:97:fe:
8b:17:be:e4:cf:78:f9:d5:35:db:eb:d2:4f:ac:cc:ac:58:3c:
1b:d8:f0:5f:a0:08:75:d5:84:1f:3f:1a:27:d6:de:b7:99:be:
5b:27:38:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:08:02 2025 by rpki-client