Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6757B96FC28689744CDD5F4FD90EF3A662357CDA0F0B1C4E67C08E6080E07B0C/0/323830313a3136653a32303a3a2f34352d3438203d3e203139343239.roa
File: 323830313a3136653a32303a3a2f34352d3438203d3e203139343239.roa (raw, json)
Hash identifier: aKm7OsI4iou1IFMZXtgp3zThQHZzleDQymdW6cDkkZA=
Subject key identifier: E3:4D:C5:43:65:11:62:9D:C4:7A:A5:25:A7:B3:C2:E1:BA:AD:45:18
Certificate issuer: /CN=3586923A64D379B800F409C58F0A64C540687D97
Certificate serial: 6553F5C309CDD72F79485BC12356D80FACE57DDE
Authority key identifier: 35:86:92:3A:64:D3:79:B8:00:F4:09:C5:8F:0A:64:C5:40:68:7D:97
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3586923A64D379B800F409C58F0A64C540687D97.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/6757B96FC28689744CDD5F4FD90EF3A662357CDA0F0B1C4E67C08E6080E07B0C/0/323830313a3136653a32303a3a2f34352d3438203d3e203139343239.roa
Signing time: Tue 04 Feb 2025 18:48:29 +0000
ROA not before: Tue 04 Feb 2025 18:43:29 +0000
ROA not after: Tue 03 Feb 2026 18:48:29 +0000
asID: 19429
IP address blocks: 2801:16e:20::/45 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:53:f5:c3:09:cd:d7:2f:79:48:5b:c1:23:56:d8:0f:ac:e5:7d:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3586923A64D379B800F409C58F0A64C540687D97
Validity
Not Before: Feb 4 18:43:29 2025 GMT
Not After : Feb 3 18:48:29 2026 GMT
Subject: CN=E34DC5436511629DC47AA525A7B3C2E1BAAD4518
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:68:64:f3:31:fc:42:0f:78:37:55:5a:64:c3:
ea:a0:ce:f1:64:5a:75:9e:a1:f1:52:b3:c2:b1:a3:
82:63:a9:f9:20:75:25:11:ab:c5:3b:79:50:0c:51:
c6:72:d8:6f:49:67:27:57:a6:e8:fb:45:27:7a:ad:
cd:9f:38:e1:19:40:cc:21:73:df:1c:2c:b7:f6:0e:
5e:b6:3b:8c:84:15:9e:0b:df:43:bd:f9:93:1d:65:
c3:82:1e:55:1d:05:82:ae:b5:c4:8c:4b:b1:4b:2e:
c8:dc:4e:46:34:15:0a:f4:19:55:a5:4c:1a:c6:37:
81:70:51:0e:31:b1:ca:df:38:3e:81:02:e1:b2:46:
ed:0e:a2:96:4d:83:e6:87:21:dc:dc:3c:ab:9a:48:
60:95:a1:2d:7c:d5:b5:53:a9:20:c5:a9:17:fc:68:
3e:6e:dd:0d:5d:e1:03:81:fb:5d:9d:16:d1:2d:84:
31:90:7d:33:3d:48:00:ca:e7:f1:99:b3:c1:ed:76:
80:18:d1:1e:91:bd:55:9e:72:7c:df:7d:6c:db:b1:
83:b4:74:df:95:29:5b:9f:69:fa:ce:68:4a:32:9d:
60:b5:b5:5b:dc:ef:c9:cf:2c:13:0c:82:ac:dc:d4:
92:db:66:49:ae:3c:2b:6f:34:ad:34:bd:b8:59:3a:
fd:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:4D:C5:43:65:11:62:9D:C4:7A:A5:25:A7:B3:C2:E1:BA:AD:45:18
X509v3 Authority Key Identifier:
keyid:35:86:92:3A:64:D3:79:B8:00:F4:09:C5:8F:0A:64:C5:40:68:7D:97
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/6757B96FC28689744CDD5F4FD90EF3A662357CDA0F0B1C4E67C08E6080E07B0C/0/3586923A64D379B800F409C58F0A64C540687D97.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3586923A64D379B800F409C58F0A64C540687D97.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6757B96FC28689744CDD5F4FD90EF3A662357CDA0F0B1C4E67C08E6080E07B0C/0/323830313a3136653a32303a3a2f34352d3438203d3e203139343239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:16e:20::/45
Signature Algorithm: sha256WithRSAEncryption
7b:7b:f7:23:2a:32:3c:6a:53:9d:3a:13:17:fa:87:2d:e8:bb:
da:70:e2:76:c2:ea:7f:db:ff:c3:ef:34:45:77:83:ae:a4:05:
a7:08:db:10:e2:1e:98:2a:21:cd:41:d0:ee:01:09:9c:7c:42:
e3:d7:ec:03:5c:07:fb:d7:77:a3:7e:33:9c:2f:98:74:0e:8a:
0c:f9:37:9e:3d:3a:f5:87:00:a1:17:de:95:3e:01:ae:48:27:
7c:68:94:a4:96:6b:f5:ad:46:2f:fa:9d:02:93:16:c0:02:6c:
ff:8f:e6:2e:f6:be:ca:b1:14:0c:3c:7d:09:6c:d8:14:5f:7c:
50:16:2d:4b:e7:58:ea:b5:4d:0f:a6:73:33:fd:fe:75:06:28:
ef:e3:57:4e:85:e5:c5:9a:6c:ca:a9:40:a4:89:55:c2:9a:a9:
87:df:b0:e4:3c:b9:15:ae:2f:cf:0f:bf:63:20:ab:c1:2c:3b:
c2:fc:04:b2:35:7d:b3:af:01:5d:b2:82:55:45:98:b4:76:55:
86:83:eb:ed:03:f0:f6:2e:19:9c:9b:5d:f4:7d:8e:45:c6:bd:
c3:39:00:77:7f:62:53:7e:98:38:58:20:be:44:ef:ef:66:65:
db:f1:6e:c5:b3:18:46:a2:a7:ff:0c:2e:70:e5:38:f9:93:ea:
c4:ad:d3:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:04:52 2025 by rpki-client