Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/685A8A8C5FF1C0108DD37782678E510CF98541D9627870C6D3FC413CB70BF3C9/0/323830333a313836303a3a2f33322d3438203d3e20323637383233.roa
File: 323830333a313836303a3a2f33322d3438203d3e20323637383233.roa (raw, json)
Hash identifier: v10XC0iedkPQD2QGgHpOqr4twJ7kTAZ0q9pBueYqk44=
Subject key identifier: 19:9B:6D:D1:AA:46:A2:F1:89:FD:D7:04:C9:8D:A7:3C:AE:3A:7F:2C
Certificate issuer: /CN=CC09DFFD6BD84B6171B7627FBCF1287DAC4DC9E9
Certificate serial: 02D889E9730A10129F7A0AF39FA2BD41F57D04AA
Authority key identifier: CC:09:DF:FD:6B:D8:4B:61:71:B7:62:7F:BC:F1:28:7D:AC:4D:C9:E9
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CC09DFFD6BD84B6171B7627FBCF1287DAC4DC9E9.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/685A8A8C5FF1C0108DD37782678E510CF98541D9627870C6D3FC413CB70BF3C9/0/323830333a313836303a3a2f33322d3438203d3e20323637383233.roa
Signing time: Tue 04 Feb 2025 18:22:10 +0000
ROA not before: Tue 04 Feb 2025 18:17:10 +0000
ROA not after: Tue 03 Feb 2026 18:22:10 +0000
asID: 267823
IP address blocks: 2803:1860::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:d8:89:e9:73:0a:10:12:9f:7a:0a:f3:9f:a2:bd:41:f5:7d:04:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CC09DFFD6BD84B6171B7627FBCF1287DAC4DC9E9
Validity
Not Before: Feb 4 18:17:10 2025 GMT
Not After : Feb 3 18:22:10 2026 GMT
Subject: CN=199B6DD1AA46A2F189FDD704C98DA73CAE3A7F2C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:59:49:6a:4d:47:e2:b9:f9:1c:51:5c:0e:a6:
6f:3b:d0:20:29:cb:5a:78:ea:fb:c9:08:ab:f9:6e:
43:47:57:db:fa:9f:04:11:d2:82:76:ef:95:9b:88:
04:2c:20:77:ea:e1:98:2f:5c:ae:78:49:e9:99:23:
cc:d1:33:f9:3f:b3:52:a4:d3:2e:fb:82:2f:82:99:
ec:ca:6d:aa:57:91:30:36:70:2b:ca:46:de:52:27:
86:84:44:2d:b0:1e:98:7e:89:d2:de:97:66:a3:dd:
c9:53:0c:e1:6f:0e:cf:f4:39:d9:c0:08:34:8c:76:
79:ed:1e:45:95:0e:31:ea:e1:e2:56:b6:d6:3c:14:
3d:f0:58:9d:74:7e:37:3b:dd:30:d9:0c:de:b3:2c:
ef:fa:e2:cb:25:37:b8:cb:c0:e8:40:5d:5e:3e:64:
2a:f4:fe:bd:6a:dd:ba:65:1c:cd:8d:b7:40:50:13:
ed:19:27:a3:1d:79:7a:d4:d4:06:41:4f:83:8d:f2:
46:eb:0a:57:02:4e:5b:b5:6e:ea:71:3d:c1:60:17:
7d:b6:f2:05:3c:9c:10:b9:87:a4:a5:34:84:af:34:
12:98:6d:c3:51:80:73:bd:75:81:37:62:55:dd:54:
b0:0b:8a:3a:5d:33:c9:40:dc:e2:ce:cc:36:a3:d7:
24:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:9B:6D:D1:AA:46:A2:F1:89:FD:D7:04:C9:8D:A7:3C:AE:3A:7F:2C
X509v3 Authority Key Identifier:
keyid:CC:09:DF:FD:6B:D8:4B:61:71:B7:62:7F:BC:F1:28:7D:AC:4D:C9:E9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/685A8A8C5FF1C0108DD37782678E510CF98541D9627870C6D3FC413CB70BF3C9/0/CC09DFFD6BD84B6171B7627FBCF1287DAC4DC9E9.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CC09DFFD6BD84B6171B7627FBCF1287DAC4DC9E9.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/685A8A8C5FF1C0108DD37782678E510CF98541D9627870C6D3FC413CB70BF3C9/0/323830333a313836303a3a2f33322d3438203d3e20323637383233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:1860::/32
Signature Algorithm: sha256WithRSAEncryption
91:0e:3d:40:86:21:dc:19:5c:8d:a5:59:f4:42:25:8c:18:49:
0f:57:76:9d:f4:12:59:a9:55:73:96:53:ab:4f:bc:60:ce:a9:
3b:a7:35:90:78:99:36:5d:c3:f3:41:3d:37:95:9e:40:5a:1c:
75:c7:1e:4d:e3:61:fd:59:a6:93:7a:a2:25:a5:08:8d:f4:e5:
4c:a5:c1:4b:9e:d9:a9:de:d8:60:3d:a9:c3:84:e5:1c:41:ce:
3b:56:ba:33:c1:d9:d3:c1:84:05:1a:93:b5:80:ea:2c:57:a7:
1f:b9:54:46:66:af:0b:4c:de:24:07:bb:1e:83:13:7d:36:af:
38:9f:c9:84:5f:c2:2c:12:ef:79:1b:25:2f:28:45:8c:ca:ca:
97:a9:9e:1e:c1:b6:30:95:c8:09:3d:d0:03:70:2b:26:d5:6f:
cc:85:38:6f:cf:67:28:fc:37:00:20:2b:ec:a2:f7:1a:57:b8:
65:6e:ca:69:ef:ca:f0:2e:e8:57:56:00:97:75:53:6c:28:be:
f3:ca:8e:51:b2:61:6f:56:db:6b:eb:92:b1:27:c0:b0:be:12:
8b:c2:27:71:8f:91:c0:fe:c5:30:bc:5a:c7:fa:d5:08:da:7f:
d1:cd:32:9e:f2:3b:bb:c2:a5:d0:07:34:6a:8c:87:89:bf:9b:
da:25:51:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 19:59:03 2025 by rpki-client