Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/323830333a613563303a363030303a3a2f33362d3336203d3e20323733303031.roa
File: 323830333a613563303a363030303a3a2f33362d3336203d3e20323733303031.roa (raw, json)
Hash identifier: uAPZMXlo4JSu7BByAZgQ2jXCt25+I9jJ+vw7DkuIp68=
Subject key identifier: 82:BB:F1:A3:B7:A1:B8:1D:47:52:82:4C:43:54:24:0A:72:66:83:28
Certificate issuer: /CN=2F03E5143F966EB03984AA596151B47F0A7C38E2
Certificate serial: 4D2D8FB1584AC79F15D0121D3B0F688B714D9134
Authority key identifier: 2F:03:E5:14:3F:96:6E:B0:39:84:AA:59:61:51:B4:7F:0A:7C:38:E2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2F03E5143F966EB03984AA596151B47F0A7C38E2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/323830333a613563303a363030303a3a2f33362d3336203d3e20323733303031.roa
Signing time: Tue 04 Feb 2025 17:59:00 +0000
ROA not before: Tue 04 Feb 2025 17:54:00 +0000
ROA not after: Tue 03 Feb 2026 17:59:00 +0000
asID: 273001
IP address blocks: 2803:a5c0:6000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:2d:8f:b1:58:4a:c7:9f:15:d0:12:1d:3b:0f:68:8b:71:4d:91:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F03E5143F966EB03984AA596151B47F0A7C38E2
Validity
Not Before: Feb 4 17:54:00 2025 GMT
Not After : Feb 3 17:59:00 2026 GMT
Subject: CN=82BBF1A3B7A1B81D4752824C4354240A72668328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:70:f7:d9:c8:75:57:96:f9:39:99:01:3d:cd:
d6:72:86:e2:9c:fc:13:b2:00:f9:77:45:ec:ab:c1:
97:17:e6:67:66:0a:36:71:49:28:6d:2f:29:fe:e5:
fb:d6:84:a2:d7:da:33:d5:74:7e:0a:5a:ad:e4:4a:
ed:37:21:bf:44:b9:7c:1e:34:54:d8:4e:38:b3:97:
17:14:2d:e3:87:ee:37:ac:e2:73:15:06:3d:0f:51:
37:65:c4:bc:05:47:62:e0:9b:33:c4:66:8f:82:78:
2c:d5:8a:7f:4d:a6:90:12:7a:c7:8c:7d:a3:94:e3:
0e:bd:34:7e:3d:e1:24:95:6c:ff:e4:b1:83:79:3a:
eb:17:0d:e1:1e:81:2e:9e:af:96:4a:b1:b4:dd:a0:
20:0c:81:32:fc:0f:cb:18:da:a9:d0:8d:c9:52:5e:
43:64:c7:be:65:41:0f:57:7d:9e:c2:ae:db:65:5b:
44:b4:44:21:f5:40:72:94:f2:f1:0e:e6:2b:6f:f3:
4f:11:38:49:ba:03:ec:ab:1c:23:67:47:e6:ea:3e:
72:55:a4:08:33:42:7d:de:5e:52:fa:df:dd:98:05:
00:1c:cd:4a:31:7e:95:e3:18:fc:1f:23:4e:7d:71:
06:2e:c3:bc:92:0b:75:da:35:75:f7:4c:d0:48:37:
a1:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:BB:F1:A3:B7:A1:B8:1D:47:52:82:4C:43:54:24:0A:72:66:83:28
X509v3 Authority Key Identifier:
keyid:2F:03:E5:14:3F:96:6E:B0:39:84:AA:59:61:51:B4:7F:0A:7C:38:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/2F03E5143F966EB03984AA596151B47F0A7C38E2.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2F03E5143F966EB03984AA596151B47F0A7C38E2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/323830333a613563303a363030303a3a2f33362d3336203d3e20323733303031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:a5c0:6000::/36
Signature Algorithm: sha256WithRSAEncryption
55:79:00:f2:98:e3:dd:27:34:74:c7:11:49:f8:22:1f:79:25:
f7:2e:16:59:b2:f0:9a:32:c5:63:02:0f:c0:e4:4a:5c:94:38:
0b:e8:06:5b:85:fc:cd:60:20:8e:c6:d5:d9:98:14:1b:e3:c9:
e4:1e:dd:37:d4:a5:5d:d9:6b:94:eb:d0:c2:3f:a5:16:85:44:
26:e2:0e:fb:23:75:1d:83:c5:84:04:39:af:c5:87:4c:a4:50:
2c:96:42:00:f7:93:28:12:fc:cf:ae:85:7d:83:3c:ee:a4:ef:
57:b9:3f:50:b5:3b:df:f6:3f:06:4c:77:26:e9:6a:38:5e:b7:
3d:95:0e:73:51:69:2d:6e:c6:82:61:2c:4c:63:54:78:32:71:
ec:f0:0b:49:fe:41:1d:37:64:00:37:37:e6:e9:35:68:6a:33:
60:1c:aa:72:6e:9b:ba:ea:68:4c:f2:3c:93:00:59:e9:9e:ca:
fe:d4:92:50:ae:17:76:13:7e:e3:cc:f6:81:d6:45:d6:f4:9e:
9e:d4:3f:ed:87:b8:2a:3d:94:5f:db:b9:94:8d:d0:c9:84:e7:
c4:37:f4:22:70:4e:68:7e:63:88:9f:00:54:38:64:09:fe:30:
7d:5c:88:68:9c:bf:8a:b5:c5:ea:f1:a8:57:cd:44:c7:4c:39:
75:a8:0f:59
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Apr 6 04:06:17 2025 by rpki-client