Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5AC33D4AC844439D945F2FA9F7BB78F06468E22C8BF5834A568CC00049AC3A7B/0/323830313a3162383a3a2f34342d3438203d3e203238303031.roa
File: 323830313a3162383a3a2f34342d3438203d3e203238303031.roa (raw, json)
Hash identifier: o4Jyd/00F+IAvlssIv5iO4P7nAB/OcuP2u1wEBMcQYo=
Subject key identifier: D1:7F:DA:73:F8:FF:25:6F:B1:55:DE:CA:F0:3B:1F:F7:77:9E:75:EC
Certificate issuer: /CN=1F56B9011AE8C9ADDD96803DECE1D1F9306D81DE
Certificate serial: 4BF519FEC5B78C1154917FD3403B8A135892D679
Authority key identifier: 1F:56:B9:01:1A:E8:C9:AD:DD:96:80:3D:EC:E1:D1:F9:30:6D:81:DE
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1F56B9011AE8C9ADDD96803DECE1D1F9306D81DE.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5AC33D4AC844439D945F2FA9F7BB78F06468E22C8BF5834A568CC00049AC3A7B/0/323830313a3162383a3a2f34342d3438203d3e203238303031.roa
Signing time: Tue 04 Feb 2025 18:19:37 +0000
ROA not before: Tue 04 Feb 2025 18:14:37 +0000
ROA not after: Tue 03 Feb 2026 18:19:37 +0000
asID: 28001
IP address blocks: 2801:1b8::/44 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:f5:19:fe:c5:b7:8c:11:54:91:7f:d3:40:3b:8a:13:58:92:d6:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F56B9011AE8C9ADDD96803DECE1D1F9306D81DE
Validity
Not Before: Feb 4 18:14:37 2025 GMT
Not After : Feb 3 18:19:37 2026 GMT
Subject: CN=D17FDA73F8FF256FB155DECAF03B1FF7779E75EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d9:28:b6:61:e8:60:a9:1e:12:5d:ab:ac:a0:
18:ea:4e:d1:6f:3f:42:9c:8f:9f:ec:65:e5:c6:78:
7f:58:ce:47:ef:d4:69:b4:dc:41:3a:2f:0a:2a:24:
2d:17:b0:3c:cb:22:ef:04:1e:29:b3:80:4b:47:76:
ec:cd:ed:10:f2:e8:89:ce:66:1b:2a:e0:0f:c9:4b:
88:8f:57:e5:be:11:cc:c2:31:79:c9:cf:80:24:e1:
2a:9f:61:15:4a:3c:bb:90:b1:c0:a6:d3:4e:ca:ca:
aa:27:01:cd:06:9a:6b:a4:67:c4:39:aa:7f:d7:fe:
b0:3c:c9:6c:ce:06:96:7a:29:cd:18:ca:0c:2a:db:
2c:36:75:bf:2c:3c:51:6a:8d:3f:ee:1a:7c:4d:b6:
de:37:60:4a:fd:e4:c6:d1:23:d5:f5:f3:46:b9:51:
92:e1:b0:b4:97:fd:ea:fa:51:af:17:f2:4c:8d:60:
82:1e:b8:0d:21:87:71:ac:d1:00:81:ed:ea:6f:8c:
21:65:fa:ef:03:1e:3a:09:8e:e4:8d:0c:47:f2:3d:
52:ec:42:05:bb:a1:a1:34:6d:e3:f4:a3:6d:a7:f1:
82:8c:84:47:8b:b8:d5:38:7c:e4:cb:a3:7e:65:ed:
d1:d4:47:6b:fe:dd:26:5f:38:7f:c5:6a:56:92:a4:
0e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:7F:DA:73:F8:FF:25:6F:B1:55:DE:CA:F0:3B:1F:F7:77:9E:75:EC
X509v3 Authority Key Identifier:
keyid:1F:56:B9:01:1A:E8:C9:AD:DD:96:80:3D:EC:E1:D1:F9:30:6D:81:DE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5AC33D4AC844439D945F2FA9F7BB78F06468E22C8BF5834A568CC00049AC3A7B/0/1F56B9011AE8C9ADDD96803DECE1D1F9306D81DE.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1F56B9011AE8C9ADDD96803DECE1D1F9306D81DE.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5AC33D4AC844439D945F2FA9F7BB78F06468E22C8BF5834A568CC00049AC3A7B/0/323830313a3162383a3a2f34342d3438203d3e203238303031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:1b8::/44
Signature Algorithm: sha256WithRSAEncryption
d8:69:b5:e2:3f:16:b7:30:ed:4d:fa:b3:86:1d:2f:98:07:71:
8c:85:71:2e:04:de:1b:dc:dc:da:20:d9:f6:b7:b4:96:55:b1:
b2:3a:c2:a1:11:bb:de:0e:44:57:56:c5:c9:d9:d4:44:2f:d1:
82:3b:dd:31:21:8d:eb:2b:7f:dc:02:62:83:2a:d2:b7:0b:12:
a6:2d:d5:8c:3f:a1:84:07:68:05:3e:3a:19:6c:b2:68:57:f2:
ea:9f:b8:d0:06:d0:7d:d8:59:b3:bb:f6:b3:cf:b9:ff:86:af:
21:eb:bb:bf:d1:b5:b9:f5:4f:3a:44:1a:1a:12:ea:36:ac:42:
fe:88:f6:2d:8f:bf:b1:43:80:4e:99:7f:ab:7f:da:d9:31:06:
a3:ae:a4:98:e5:ce:47:aa:3b:53:01:12:0d:aa:66:66:d7:15:
97:65:67:31:74:9c:72:8f:ae:42:8e:b9:e5:99:dd:d4:95:8e:
9e:63:6f:c2:2a:83:9f:07:b5:3c:c4:02:b4:98:d5:29:5f:80:
33:56:0e:6d:74:a0:d0:26:f3:23:d7:6b:4f:f0:06:2b:46:8a:
19:a6:c3:2a:f4:c7:89:20:7d:b3:e4:71:03:8a:d4:7d:aa:33:
f1:69:ea:a0:51:54:a1:96:f7:55:09:cc:aa:c5:35:c5:6d:f1:
21:18:6c:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:54:04 2025 by rpki-client