Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/71F989F8C5FF9E9E126C5F90FEF9F95A13F2F7E810F68D0E441664BE3FA9C024/0/323830313a3165303a3a2f34372d3437203d3e203237383735.roa
File: 323830313a3165303a3a2f34372d3437203d3e203237383735.roa (raw, json)
Hash identifier: BMuD1DT5Fd/m1U0pFhd6s8F9zzExTXbpgeDxEp3Jqes=
Subject key identifier: 9E:C7:E2:86:5D:1F:FE:50:4B:64:BC:F4:32:37:3D:D2:2D:AF:7C:2F
Certificate issuer: /CN=D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC
Certificate serial: 1A176A14B7958335D1BAD6133E92F0DFB9A34F30
Authority key identifier: D0:53:F7:D4:2F:C9:FD:03:55:6A:9F:3D:2A:F9:E3:D2:22:1B:AD:FC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/71F989F8C5FF9E9E126C5F90FEF9F95A13F2F7E810F68D0E441664BE3FA9C024/0/323830313a3165303a3a2f34372d3437203d3e203237383735.roa
Signing time: Tue 04 Feb 2025 18:05:26 +0000
ROA not before: Tue 04 Feb 2025 18:00:26 +0000
ROA not after: Tue 03 Feb 2026 18:05:26 +0000
asID: 27875
IP address blocks: 2801:1e0::/47 maxlen: 47
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:17:6a:14:b7:95:83:35:d1:ba:d6:13:3e:92:f0:df:b9:a3:4f:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC
Validity
Not Before: Feb 4 18:00:26 2025 GMT
Not After : Feb 3 18:05:26 2026 GMT
Subject: CN=9EC7E2865D1FFE504B64BCF432373DD22DAF7C2F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e6:fb:dc:98:3a:7b:3b:3f:d9:f3:49:31:8b:
76:be:44:91:eb:43:09:e4:05:3e:a7:04:82:33:8e:
8f:bd:f7:1d:77:e5:6a:11:4b:bb:a4:0d:47:db:be:
d6:07:17:ab:d0:f1:cb:7b:32:f1:9f:73:31:6b:9e:
ca:bd:da:e5:df:0a:c2:39:ab:e1:83:bd:7e:b3:28:
0f:a3:4e:37:9f:ed:7f:ae:a6:4f:ac:fd:4c:d4:cd:
2d:56:ce:72:fe:c9:af:e6:b8:9b:98:cc:01:61:f3:
42:22:4b:23:df:23:93:a1:dc:09:23:b9:af:09:a1:
16:ac:46:36:5b:36:bf:e5:91:11:ac:b4:67:8a:8a:
e9:0c:05:ad:ce:db:df:66:f0:62:8f:01:d6:ff:4a:
bf:09:60:37:44:e6:35:6b:40:7f:83:fa:a4:97:8e:
2d:ff:d6:f2:a8:e4:32:da:61:54:06:dc:1a:61:3d:
d4:5e:ec:21:4e:80:f1:ad:8c:fb:28:2d:ce:f8:55:
19:25:65:f3:03:03:ca:28:ba:56:a8:a1:82:2b:49:
3b:89:1b:5d:f8:46:06:5e:cf:c2:57:ec:02:5d:01:
d6:5f:4a:30:c0:68:a3:0d:7d:3b:05:58:f6:ec:be:
23:5e:31:1e:a8:d7:0a:1e:ef:1e:ac:47:66:9e:4b:
f5:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:C7:E2:86:5D:1F:FE:50:4B:64:BC:F4:32:37:3D:D2:2D:AF:7C:2F
X509v3 Authority Key Identifier:
keyid:D0:53:F7:D4:2F:C9:FD:03:55:6A:9F:3D:2A:F9:E3:D2:22:1B:AD:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/71F989F8C5FF9E9E126C5F90FEF9F95A13F2F7E810F68D0E441664BE3FA9C024/0/D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D053F7D42FC9FD03556A9F3D2AF9E3D2221BADFC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/71F989F8C5FF9E9E126C5F90FEF9F95A13F2F7E810F68D0E441664BE3FA9C024/0/323830313a3165303a3a2f34372d3437203d3e203237383735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:1e0::/47
Signature Algorithm: sha256WithRSAEncryption
c2:38:98:ca:19:d9:2b:14:57:d9:9a:fd:49:e7:9f:0e:73:d4:
f2:01:90:a7:53:c0:da:fc:27:a4:9d:4c:67:d0:ba:91:0c:1a:
d9:87:d6:3a:14:8e:6b:51:24:78:4c:b5:23:fc:88:4c:08:ff:
f7:39:a9:f1:72:b5:c1:95:d2:e5:df:20:3b:64:de:a1:ff:e2:
26:b2:9a:5e:1d:6e:33:b2:39:6e:c2:14:dc:7e:a4:0f:89:49:
46:76:24:f7:a4:55:10:ca:14:42:40:b3:39:db:b1:71:19:e9:
aa:44:44:d9:bc:fd:51:93:db:fd:f5:de:c8:8f:23:50:e1:37:
ca:42:1f:42:eb:c5:e1:79:bb:93:85:39:0b:39:ea:fd:ec:bd:
7a:4c:ef:f7:a1:73:2f:bd:8a:13:40:be:8d:45:2d:b6:6a:fe:
d5:a7:9c:b9:f9:7c:5c:b7:8b:72:9b:4d:50:45:72:89:01:01:
92:4e:1e:78:35:db:7a:5e:b0:65:0d:7b:40:51:e0:0b:84:66:
9e:a2:e0:55:01:29:4c:81:3a:f8:4a:92:c5:fd:d7:7a:20:d0:
70:bb:71:0a:a4:a3:37:a8:9e:22:27:8f:5c:f3:0e:fa:d3:ec:
0e:18:cf:b2:51:2a:a9:bf:21:9b:00:49:3a:2b:57:b3:d1:3c:
cb:e7:2b:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:27:33 2025 by rpki-client