Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7067F50E2EB49A8426610765229BE99830AE3B7DBF1C0BE09AF42A129ED3F8FE/0/323830333a373230303a3a2f33322d3634203d3e203237363936.roa
File: 323830333a373230303a3a2f33322d3634203d3e203237363936.roa (raw, json)
Hash identifier: CM9YcPGkbbcbDThGmP+AVbcLIEFCFz9vQpRrkqusB8Q=
Subject key identifier: 68:3F:A4:B5:35:80:20:27:46:F4:3F:6F:2C:49:84:8F:57:F3:D2:C2
Certificate issuer: /CN=995577D85E32451D9695955CFACF83EA0CB6F2A8
Certificate serial: 6ABB7AE75EA6EC53CEC81FC6CD52F804584125E2
Authority key identifier: 99:55:77:D8:5E:32:45:1D:96:95:95:5C:FA:CF:83:EA:0C:B6:F2:A8
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/995577D85E32451D9695955CFACF83EA0CB6F2A8.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7067F50E2EB49A8426610765229BE99830AE3B7DBF1C0BE09AF42A129ED3F8FE/0/323830333a373230303a3a2f33322d3634203d3e203237363936.roa
Signing time: Tue 04 Feb 2025 18:29:14 +0000
ROA not before: Tue 04 Feb 2025 18:24:14 +0000
ROA not after: Tue 03 Feb 2026 18:29:14 +0000
asID: 27696
IP address blocks: 2803:7200::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:bb:7a:e7:5e:a6:ec:53:ce:c8:1f:c6:cd:52:f8:04:58:41:25:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=995577D85E32451D9695955CFACF83EA0CB6F2A8
Validity
Not Before: Feb 4 18:24:14 2025 GMT
Not After : Feb 3 18:29:14 2026 GMT
Subject: CN=683FA4B53580202746F43F6F2C49848F57F3D2C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c2:e1:88:40:7d:ec:39:b5:30:d5:2c:7e:57:
ca:c1:82:01:10:e8:58:42:49:97:bf:61:ad:01:10:
49:d8:a0:bf:e3:2a:bb:63:de:d0:0e:98:bc:91:29:
36:7a:94:71:7d:9a:ee:3b:ad:d1:e7:f0:03:98:8f:
b8:a1:a7:10:9d:5a:c6:d2:02:07:70:76:7c:d2:f5:
02:ba:a6:e5:f2:95:fd:3e:7c:2d:28:52:9f:e6:76:
90:92:21:bc:d6:cd:cf:62:5d:dc:52:6c:86:f8:57:
20:e1:1f:f0:6e:1c:1b:d1:4f:77:10:34:8d:7b:73:
48:13:b4:77:5d:5b:11:1a:c5:09:73:f4:de:c6:54:
85:a9:4c:ea:97:86:a1:00:65:7b:0d:24:95:ac:96:
5c:6d:bc:58:eb:97:74:75:48:46:8a:e3:cd:bc:96:
45:5c:19:48:25:a6:b3:e6:df:a9:d2:cf:79:b1:ac:
44:ff:0c:f1:af:4b:6b:7b:9c:e1:45:43:a0:c3:53:
72:03:1c:8c:2c:45:35:5e:4c:cb:b5:22:92:69:c0:
d4:05:cf:11:25:0d:cc:9e:13:4a:db:88:85:49:96:
05:00:50:ed:5f:69:23:b3:d7:0b:a5:81:32:aa:55:
7b:65:f1:4a:16:af:04:8c:77:1d:75:b3:53:97:b5:
2c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:3F:A4:B5:35:80:20:27:46:F4:3F:6F:2C:49:84:8F:57:F3:D2:C2
X509v3 Authority Key Identifier:
keyid:99:55:77:D8:5E:32:45:1D:96:95:95:5C:FA:CF:83:EA:0C:B6:F2:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7067F50E2EB49A8426610765229BE99830AE3B7DBF1C0BE09AF42A129ED3F8FE/0/995577D85E32451D9695955CFACF83EA0CB6F2A8.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/995577D85E32451D9695955CFACF83EA0CB6F2A8.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7067F50E2EB49A8426610765229BE99830AE3B7DBF1C0BE09AF42A129ED3F8FE/0/323830333a373230303a3a2f33322d3634203d3e203237363936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:7200::/32
Signature Algorithm: sha256WithRSAEncryption
ae:d3:35:e8:28:6c:6e:ad:22:ea:93:6a:49:be:6b:a5:5d:34:
ff:0d:e2:3a:61:73:31:fb:78:d4:2b:60:78:e7:87:d4:b6:a2:
ec:82:3e:b0:45:d4:aa:4d:31:b0:93:c7:66:df:36:5f:e3:6c:
6f:59:54:1c:37:0a:c9:71:cb:56:01:14:c3:7d:42:3f:8a:4f:
dc:f6:e6:9e:0c:0a:4c:dc:af:32:1a:a5:2e:76:c0:bc:a9:85:
db:34:98:91:4e:4b:dc:a9:39:4b:58:3b:2c:fc:80:1d:43:26:
23:21:ec:ef:c6:aa:e7:65:a2:ec:34:56:6c:dc:a1:ad:9f:e4:
c7:5d:66:75:01:76:3b:1d:22:d3:6f:22:b3:1c:d4:93:2f:41:
9c:ad:71:63:35:ca:9b:c0:53:49:15:a9:24:c4:b8:47:be:8c:
f0:fb:79:59:ff:ef:74:e9:e2:8d:75:26:d6:fb:6d:b2:d7:93:
9d:4a:4a:90:54:03:bc:de:90:54:19:de:62:fb:e4:49:10:d8:
02:00:92:df:98:f6:05:fb:67:8c:b8:87:e0:5a:b2:d8:cf:37:
36:45:12:cc:71:62:ae:6a:6c:55:59:dc:f0:57:69:55:3e:c3:
97:ff:32:c3:55:28:bc:07:e5:f5:49:cd:a5:e3:72:ac:dc:9c:
12:5f:6d:2e
-----BEGIN CERTIFICATE-----
MIIFvTCCBKWgAwIBAgIUart6516m7FPOyB/GzVL4BFhBJeIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTk1NTc3RDg1RTMyNDUxRDk2OTU5NTVDRkFDRjgzRUEw
Q0I2RjJBODAeFw0yNTAyMDQxODI0MTRaFw0yNjAyMDMxODI5MTRaMDMxMTAvBgNV
BAMTKDY4M0ZBNEI1MzU4MDIwMjc0NkY0M0Y2RjJDNDk4NDhGNTdGM0QyQzIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdwuGIQH3sObUw1Sx+V8rBggEQ
6FhCSZe/Ya0BEEnYoL/jKrtj3tAOmLyRKTZ6lHF9mu47rdHn8AOYj7ihpxCdWsbS
AgdwdnzS9QK6puXylf0+fC0oUp/mdpCSIbzWzc9iXdxSbIb4VyDhH/BuHBvRT3cQ
NI17c0gTtHddWxEaxQlz9N7GVIWpTOqXhqEAZXsNJJWsllxtvFjrl3R1SEaK4828
lkVcGUglprPm36nSz3mxrET/DPGvS2t7nOFFQ6DDU3IDHIwsRTVeTMu1IpJpwNQF
zxElDcyeE0rbiIVJlgUAUO1faSOz1wulgTKqVXtl8UoWrwSMdx11s1OXtSzFAgMB
AAGjggLHMIICwzAdBgNVHQ4EFgQUaD+ktTWAICdG9D9vLEmEj1fz0sIwHwYDVR0j
BBgwFoAUmVV32F4yRR2WlZVc+s+D6gy28qgwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy83MDY3RjUwRTJFQjQ5QTg0MjY2MTA3NjUyMjlCRTk5ODMw
QUUzQjdEQkYxQzBCRTA5QUY0MkExMjlFRDNGOEZFLzAvOTk1NTc3RDg1RTMyNDUx
RDk2OTU5NTVDRkFDRjgzRUEwQ0I2RjJBOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85OTU1NzdEODVFMzI0NTFEOTY5
NTk1NUNGQUNGODNFQTBDQjZGMkE4LmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNzA2N0Y1MEUyRUI0OUE4NDI2NjEwNzY1MjI5QkU5OTgzMEFFM0I3REJG
MUMwQkUwOUFGNDJBMTI5RUQzRjhGRS8wLzMyMzgzMDMzM2EzNzMyMzAzMDNhM2Ey
ZjMzMzIyZDM2MzQyMDNkM2UyMDMyMzczNjM5MzYucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAoA3IAMA0G
CSqGSIb3DQEBCwUAA4IBAQCu0zXoKGxurSLqk2pJvmulXTT/DeI6YXMx+3jUK2B4
54fUtqLsgj6wRdSqTTGwk8dm3zZf42xvWVQcNwrJcctWARTDfUI/ik/c9uaeDApM
3K8yGqUudsC8qYXbNJiRTkvcqTlLWDss/IAdQyYjIezvxqrnZaLsNFZs3KGtn+TH
XWZ1AXY7HSLTbyKzHNSTL0GcrXFjNcqbwFNJFakkxLhHvozw+3lZ/+906eKNdSbW
+22y15OdSkqQVAO83pBUGd5i++RJENgCAJLfmPYF+2eMuIfgWrLYzzc2RRLMcWKu
amxVWdzwV2lVPsOX/zLDVSi8B+X1Sc2l43Ks3JwSX20u
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:12:54 2025 by rpki-client