Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7092EE91DC7AB712FD761F0FC0451D652D116FADCBF0EF64D686E26A8F8B0A1C/0/323830333a626263303a3a2f33322d3438203d3e203532343638.roa
File: 323830333a626263303a3a2f33322d3438203d3e203532343638.roa (raw, json)
Hash identifier: TusCuxQs+CCMy22z958BaZjja63WF1YCOs4FE0saBPw=
Subject key identifier: 30:B1:3B:36:83:ED:95:D7:38:20:7D:2B:E5:04:C0:21:1C:B7:A2:EA
Certificate issuer: /CN=71C4B0679C5C21E2338B4C11642FC0BDAF007624
Certificate serial: 21F8A969FF24A492F1024F7AF517ADF3A354227D
Authority key identifier: 71:C4:B0:67:9C:5C:21:E2:33:8B:4C:11:64:2F:C0:BD:AF:00:76:24
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/71C4B0679C5C21E2338B4C11642FC0BDAF007624.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7092EE91DC7AB712FD761F0FC0451D652D116FADCBF0EF64D686E26A8F8B0A1C/0/323830333a626263303a3a2f33322d3438203d3e203532343638.roa
Signing time: Tue 04 Feb 2025 18:47:20 +0000
ROA not before: Tue 04 Feb 2025 18:42:20 +0000
ROA not after: Tue 03 Feb 2026 18:47:20 +0000
asID: 52468
IP address blocks: 2803:bbc0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:f8:a9:69:ff:24:a4:92:f1:02:4f:7a:f5:17:ad:f3:a3:54:22:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71C4B0679C5C21E2338B4C11642FC0BDAF007624
Validity
Not Before: Feb 4 18:42:20 2025 GMT
Not After : Feb 3 18:47:20 2026 GMT
Subject: CN=30B13B3683ED95D738207D2BE504C0211CB7A2EA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:0e:43:cf:16:bb:1d:27:e4:24:ef:24:98:69:
bf:29:06:05:4a:f2:07:49:92:00:4e:e5:a4:28:56:
38:3e:bc:df:a6:03:d6:3f:60:75:b2:8d:85:f3:39:
f9:8a:6b:15:df:b6:b8:9b:ae:da:29:1c:c1:3a:85:
29:f9:02:7b:c0:ee:90:38:6f:3d:78:1a:f6:9a:7b:
9a:27:2c:0f:19:73:bd:c9:3a:f7:45:ed:b7:d9:06:
b8:34:70:a8:cc:1a:83:d4:4c:3d:69:3a:3e:c8:85:
c8:8c:7d:9c:56:d4:77:8c:91:a1:22:a8:f7:c4:ad:
d1:4d:22:ad:e0:d1:bf:25:78:ee:10:cf:b4:9a:4c:
1a:9a:d8:58:7d:80:29:0e:17:c8:36:9a:8d:f7:65:
7e:8e:20:2e:f6:7f:75:22:af:b4:74:38:f2:2a:bd:
42:f8:80:8a:6a:b0:fa:03:08:0f:7c:95:81:8f:5d:
13:7b:f9:af:1e:4b:66:f7:ac:e9:70:86:5a:29:e8:
a9:4d:57:d9:b7:73:59:12:3e:9b:65:75:18:df:65:
d7:f0:d6:0e:13:aa:da:d9:2c:ad:83:b7:af:74:b8:
55:65:1a:58:78:80:70:d3:4c:60:15:da:42:f6:e8:
c7:ad:5a:ff:1f:20:f9:fa:f1:e8:b3:76:00:80:a6:
9e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:B1:3B:36:83:ED:95:D7:38:20:7D:2B:E5:04:C0:21:1C:B7:A2:EA
X509v3 Authority Key Identifier:
keyid:71:C4:B0:67:9C:5C:21:E2:33:8B:4C:11:64:2F:C0:BD:AF:00:76:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7092EE91DC7AB712FD761F0FC0451D652D116FADCBF0EF64D686E26A8F8B0A1C/0/71C4B0679C5C21E2338B4C11642FC0BDAF007624.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/71C4B0679C5C21E2338B4C11642FC0BDAF007624.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7092EE91DC7AB712FD761F0FC0451D652D116FADCBF0EF64D686E26A8F8B0A1C/0/323830333a626263303a3a2f33322d3438203d3e203532343638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:bbc0::/32
Signature Algorithm: sha256WithRSAEncryption
5c:e1:10:64:91:81:1d:5d:8e:36:c2:3c:61:11:a4:97:a1:b5:
47:83:5a:c8:9a:84:7e:cf:e8:60:87:1a:df:37:db:2d:87:e9:
15:ad:87:7f:a1:59:b9:19:21:02:41:16:a6:5a:43:48:b1:7a:
cd:a5:61:a9:df:47:fd:9e:8d:ab:af:6f:1e:54:95:49:98:ec:
20:3f:9e:7c:f7:50:fb:d6:e4:a6:d7:1e:c5:7b:be:99:85:3b:
c9:9e:cf:f3:9b:99:6d:76:7f:04:9d:55:fc:89:08:37:e6:ef:
99:f3:3e:81:eb:68:c2:35:10:96:43:2f:4d:f4:b3:d3:28:25:
d1:cc:27:ab:c6:ef:6e:11:9c:2b:40:bd:5a:c7:98:3d:66:f0:
f3:e4:1a:e1:3a:51:bd:24:2e:43:0b:4c:85:22:0b:c1:49:b4:
76:cb:6e:76:0e:fa:36:53:41:f6:b6:c7:a8:12:95:e6:60:9f:
31:9e:5e:a9:d0:d6:ea:a3:5e:21:57:0d:79:c9:f1:9b:40:44:
e4:e7:e5:2f:cb:b9:35:88:ab:72:06:ac:dd:0b:40:1b:14:04:
4d:ef:e5:d5:73:47:b4:28:77:50:b7:04:af:e9:ec:8e:d2:35:
95:e5:5c:59:db:9d:48:86:df:8b:52:2e:6d:a5:3f:71:fe:5d:
99:2a:e2:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:47:14 2025 by rpki-client