Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/323830333a613563303a383030303a3a2f33362d3336203d3e20323733303031.roa
File: 323830333a613563303a383030303a3a2f33362d3336203d3e20323733303031.roa (raw, json)
Hash identifier: mfLp/4l5Gerke5Unity77+fzKjVDYJODpFqSeXS5DzI=
Subject key identifier: 01:4C:CF:DE:E4:1F:6B:31:51:BB:09:92:15:AD:1A:F7:13:72:8C:0B
Certificate issuer: /CN=2F03E5143F966EB03984AA596151B47F0A7C38E2
Certificate serial: 340CCD8A244A5B72BED5F133ECB00E04BD1DC269
Authority key identifier: 2F:03:E5:14:3F:96:6E:B0:39:84:AA:59:61:51:B4:7F:0A:7C:38:E2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2F03E5143F966EB03984AA596151B47F0A7C38E2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/323830333a613563303a383030303a3a2f33362d3336203d3e20323733303031.roa
Signing time: Tue 04 Feb 2025 17:59:00 +0000
ROA not before: Tue 04 Feb 2025 17:54:00 +0000
ROA not after: Tue 03 Feb 2026 17:59:00 +0000
asID: 273001
IP address blocks: 2803:a5c0:8000::/36 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:0c:cd:8a:24:4a:5b:72:be:d5:f1:33:ec:b0:0e:04:bd:1d:c2:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F03E5143F966EB03984AA596151B47F0A7C38E2
Validity
Not Before: Feb 4 17:54:00 2025 GMT
Not After : Feb 3 17:59:00 2026 GMT
Subject: CN=014CCFDEE41F6B3151BB099215AD1AF713728C0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:43:20:74:fa:57:c1:b1:2b:00:e9:ed:f2:4c:
e0:9c:21:79:b2:92:e0:d7:e7:0d:47:6b:09:10:81:
a1:9f:b3:44:10:7b:be:be:38:8e:3f:44:93:e1:70:
98:3d:c6:ae:eb:5a:c1:7e:e1:ed:07:a2:28:d2:1a:
22:97:81:91:bd:85:20:1d:40:9e:0f:33:2b:50:c0:
cb:98:f1:d7:1c:fb:ea:32:42:be:88:f5:40:c5:79:
a8:49:a1:14:26:82:9f:22:6d:2a:1e:b1:71:b5:4b:
45:03:fd:85:5c:4b:b1:b4:18:dc:f0:1d:d4:92:a4:
b6:5c:e7:b7:a5:0e:1f:2f:02:27:7b:b1:59:5d:ca:
db:cf:40:b3:0a:bc:33:c6:01:7a:ae:55:6a:20:75:
ea:1d:f7:d0:16:11:66:5a:23:57:77:86:5e:30:fc:
49:44:07:1e:fe:74:72:23:83:dd:99:f2:23:fa:1a:
d7:50:55:62:da:12:a5:8a:08:55:23:19:41:28:70:
af:2d:b8:02:9e:7e:7a:bf:4f:9e:e1:0b:d6:16:b8:
e4:46:97:cc:09:96:43:cb:3b:d4:25:46:8f:82:24:
74:f5:76:10:d8:51:aa:56:bc:33:69:6b:59:ff:a8:
3f:c9:c8:9e:1d:5e:a8:13:79:a8:f7:b0:dd:0e:af:
8b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:4C:CF:DE:E4:1F:6B:31:51:BB:09:92:15:AD:1A:F7:13:72:8C:0B
X509v3 Authority Key Identifier:
keyid:2F:03:E5:14:3F:96:6E:B0:39:84:AA:59:61:51:B4:7F:0A:7C:38:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/2F03E5143F966EB03984AA596151B47F0A7C38E2.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2F03E5143F966EB03984AA596151B47F0A7C38E2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/323830333a613563303a383030303a3a2f33362d3336203d3e20323733303031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:a5c0:8000::/36
Signature Algorithm: sha256WithRSAEncryption
5e:2e:35:19:70:49:6a:b5:e1:a2:c6:00:42:7e:c8:4c:34:c2:
3c:4b:46:11:a2:f4:83:1c:51:63:4d:9a:a7:63:fa:4b:15:a6:
73:95:9a:57:ec:a5:80:3a:69:36:d1:e2:fc:e2:56:ad:52:aa:
80:48:1f:93:45:7f:31:55:96:7e:fd:81:d8:39:73:b4:72:8d:
ca:38:c1:86:63:7c:84:5f:3f:ba:f5:ab:59:de:6a:48:bf:9d:
9c:2d:32:44:4e:5c:78:4d:ca:a9:46:7a:42:5f:96:9d:2e:58:
85:57:64:56:bb:98:ef:81:83:0c:9a:d1:ef:c1:6c:66:39:39:
b5:d0:c4:4b:03:bc:41:af:db:76:8c:76:da:b6:2e:0f:79:96:
e7:0c:f7:b2:2a:f1:39:44:c3:49:60:57:bf:81:59:df:bd:30:
95:8b:f3:b3:e5:09:40:01:b6:8d:87:25:34:05:b6:4e:c7:8b:
21:73:58:50:e5:25:53:11:57:3c:90:e2:23:6e:a2:fa:0a:46:
13:bb:35:b7:66:6c:9b:70:b3:d5:b9:d6:a9:0a:53:1e:26:4b:
4a:04:d8:c7:ea:eb:9c:71:02:b0:ad:3a:4f:9f:0a:db:97:5e:
b2:64:c2:89:4e:f7:93:1e:aa:c8:4f:61:fc:3c:36:7c:76:a6:
8e:93:eb:c1
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Apr 6 03:05:28 2025 by rpki-client