Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/67236B4CCEFBC43821AA42D45D1AF2A3747087F6A0476701E6F0A871E1E15BBF/0/323830333a623065303a3a2f33322d3438203d3e20323639383632.roa
File: 323830333a623065303a3a2f33322d3438203d3e20323639383632.roa (raw, json)
Hash identifier: I2N2S15eCrxPK8ZGG8leaPNMimHmbDXazAxGYW9w1Nc=
Subject key identifier: C8:47:CC:EC:80:9A:C7:91:86:69:27:63:5B:47:31:66:75:61:17:91
Certificate issuer: /CN=B9661B0E7FC75ED767D18B56FC749BAED21FC195
Certificate serial: 650D393F02B11A414E32B64D19FC1CDA088A0AEC
Authority key identifier: B9:66:1B:0E:7F:C7:5E:D7:67:D1:8B:56:FC:74:9B:AE:D2:1F:C1:95
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B9661B0E7FC75ED767D18B56FC749BAED21FC195.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/67236B4CCEFBC43821AA42D45D1AF2A3747087F6A0476701E6F0A871E1E15BBF/0/323830333a623065303a3a2f33322d3438203d3e20323639383632.roa
Signing time: Tue 04 Feb 2025 18:13:21 +0000
ROA not before: Tue 04 Feb 2025 18:08:21 +0000
ROA not after: Tue 03 Feb 2026 18:13:21 +0000
asID: 269862
IP address blocks: 2803:b0e0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:0d:39:3f:02:b1:1a:41:4e:32:b6:4d:19:fc:1c:da:08:8a:0a:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B9661B0E7FC75ED767D18B56FC749BAED21FC195
Validity
Not Before: Feb 4 18:08:21 2025 GMT
Not After : Feb 3 18:13:21 2026 GMT
Subject: CN=C847CCEC809AC791866927635B47316675611791
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c2:66:e7:b6:3f:bb:01:45:43:06:5f:1e:48:
dc:85:70:95:16:f3:67:3f:98:11:86:1b:ec:ec:84:
69:06:6c:79:3e:aa:b4:0e:e9:c3:cd:fa:20:88:f1:
8d:ab:e0:65:f0:d5:d0:27:a6:c6:4d:b1:49:8f:01:
97:ef:26:13:2e:55:85:23:51:12:cf:18:ab:6b:27:
39:01:8e:fc:9d:b3:7d:9e:67:b9:69:0b:50:52:48:
a2:31:e6:15:0f:52:1a:c4:e1:97:50:d9:91:13:e6:
d7:ef:31:56:a1:aa:be:fd:23:2a:4b:cb:55:4a:47:
11:ef:0e:23:82:37:b9:85:f8:f8:02:9e:7d:3f:bc:
93:60:9a:15:f2:31:d4:6b:1c:6a:db:58:7c:65:71:
4b:06:41:dc:2f:d5:fe:18:15:ae:71:f9:89:92:aa:
3c:c9:40:74:67:fa:44:8b:b3:02:d7:18:44:06:62:
df:26:21:01:d9:76:a7:4a:92:54:6a:70:d7:ef:56:
50:b2:f6:2d:bc:3b:02:2c:34:1e:5a:e0:76:b1:34:
83:75:fb:56:13:3f:68:80:2e:e5:7e:58:b5:42:3b:
34:ce:02:96:34:81:cb:ef:41:0e:2d:05:ec:3f:0d:
51:80:5d:b6:f5:0b:c3:fd:10:e8:ce:f6:26:01:9a:
3d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:47:CC:EC:80:9A:C7:91:86:69:27:63:5B:47:31:66:75:61:17:91
X509v3 Authority Key Identifier:
keyid:B9:66:1B:0E:7F:C7:5E:D7:67:D1:8B:56:FC:74:9B:AE:D2:1F:C1:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/67236B4CCEFBC43821AA42D45D1AF2A3747087F6A0476701E6F0A871E1E15BBF/0/B9661B0E7FC75ED767D18B56FC749BAED21FC195.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B9661B0E7FC75ED767D18B56FC749BAED21FC195.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/67236B4CCEFBC43821AA42D45D1AF2A3747087F6A0476701E6F0A871E1E15BBF/0/323830333a623065303a3a2f33322d3438203d3e20323639383632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:b0e0::/32
Signature Algorithm: sha256WithRSAEncryption
6d:da:32:c7:ea:2e:2d:1f:39:b6:eb:72:1d:d7:ce:0b:0b:01:
47:c5:e6:39:55:b7:24:fb:36:5c:7b:a5:7e:2c:36:19:4e:51:
60:08:cf:36:bb:a2:97:77:7e:2f:cc:38:af:ad:c7:d8:a1:22:
8e:8c:24:f9:5a:ff:77:d9:f0:d3:19:db:82:9f:03:17:b2:c7:
bd:f6:ed:e4:59:8a:89:b6:8b:e0:ec:00:2f:06:8b:65:55:66:
02:c3:6c:5b:cc:8f:6b:38:c8:f2:1f:e0:25:9a:bb:ae:25:94:
bd:bf:11:92:20:cf:f4:7d:bd:2a:85:71:d9:99:b0:31:fa:03:
b9:d2:69:87:f4:49:79:6a:f8:9f:bc:4a:32:09:a0:76:a5:44:
3c:1f:09:28:88:12:57:62:84:19:52:38:a1:94:de:bf:80:c0:
6f:6f:db:b5:6e:bd:4a:fa:c4:03:10:72:a7:bc:26:b2:45:c0:
62:27:48:68:90:73:00:7b:0d:6b:dd:ea:cb:5e:f5:01:66:45:
ca:e6:af:2b:1d:6c:77:4b:d8:04:1a:ee:32:45:c1:a4:11:f0:
01:24:69:10:ac:38:ef:6d:89:60:15:2b:a7:79:3f:9d:24:49:
83:1d:5a:02:07:7f:39:a9:a2:3d:c8:e7:0d:13:53:e7:7b:67:
b7:05:78:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:57:42 2025 by rpki-client