Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/748D698B243A0964A4ECEB7F9337590AF93C138D8656A80896B6E416B9B1FD9C/0/323830303a3961333a353030303a3a2f34302d3430203d3e203134353232.roa
File: 323830303a3961333a353030303a3a2f34302d3430203d3e203134353232.roa (raw, json)
Hash identifier: EYM9lZZM7ZG6HEkYxjEHW/L307uGhyBe7poGLdUgQFc=
Subject key identifier: 7A:21:05:CA:08:50:60:6C:1E:3E:6F:44:59:1F:6F:41:2B:6F:5E:6E
Certificate issuer: /CN=822F4455E9726CC3D6DCD4143A6D9F1773F8A36F
Certificate serial: 06485834CCF5F7EF74944C3E384BC56DC8E28896
Authority key identifier: 82:2F:44:55:E9:72:6C:C3:D6:DC:D4:14:3A:6D:9F:17:73:F8:A3:6F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/822F4455E9726CC3D6DCD4143A6D9F1773F8A36F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/748D698B243A0964A4ECEB7F9337590AF93C138D8656A80896B6E416B9B1FD9C/0/323830303a3961333a353030303a3a2f34302d3430203d3e203134353232.roa
Signing time: Tue 04 Feb 2025 20:08:47 +0000
ROA not before: Tue 04 Feb 2025 20:03:47 +0000
ROA not after: Tue 03 Feb 2026 20:08:47 +0000
asID: 14522
IP address blocks: 2800:9a3:5000::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:48:58:34:cc:f5:f7:ef:74:94:4c:3e:38:4b:c5:6d:c8:e2:88:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=822F4455E9726CC3D6DCD4143A6D9F1773F8A36F
Validity
Not Before: Feb 4 20:03:47 2025 GMT
Not After : Feb 3 20:08:47 2026 GMT
Subject: CN=7A2105CA0850606C1E3E6F44591F6F412B6F5E6E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:71:6e:f9:6b:38:3c:fb:e4:b9:91:67:6e:64:
20:bb:73:3f:0d:2a:a2:52:f7:86:e5:9b:03:aa:5d:
67:e2:73:ad:0f:94:b7:fc:6e:a8:30:6f:11:fc:d1:
ad:88:dc:6e:9b:66:fd:e2:78:90:33:df:fd:24:56:
86:4c:cb:d9:01:a5:40:a2:0a:a3:04:d0:c4:df:7a:
5a:0b:5c:41:ce:1a:78:a3:45:c3:09:a8:3e:46:a0:
d6:bb:77:b8:eb:a6:94:f8:d3:ce:f1:65:e1:3e:8f:
7c:c9:fe:96:c8:e9:00:1f:e5:21:2f:f0:35:e4:ce:
9b:ee:b7:fa:4e:8f:cd:7e:7e:1f:ff:da:82:22:69:
d4:79:10:e2:d0:f8:f5:48:cb:c4:72:fc:52:96:96:
e0:ba:b9:43:bc:db:f3:3d:ed:b0:f6:5c:95:be:e2:
e4:23:48:67:f9:d4:96:1e:9c:85:d8:bf:96:08:87:
c3:f1:13:82:07:74:6b:b4:3e:4e:3f:cf:64:b8:f0:
1f:f7:ec:44:ad:c6:4d:fa:2a:cc:f6:9a:dc:c4:6c:
43:cb:b7:17:33:4f:2f:38:4f:c2:90:9d:dc:ab:7f:
5d:28:ce:00:95:19:d9:33:d2:98:f7:6a:f4:e9:c4:
62:c4:55:15:b4:59:04:3b:f2:3e:aa:1c:90:0f:96:
b5:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:21:05:CA:08:50:60:6C:1E:3E:6F:44:59:1F:6F:41:2B:6F:5E:6E
X509v3 Authority Key Identifier:
keyid:82:2F:44:55:E9:72:6C:C3:D6:DC:D4:14:3A:6D:9F:17:73:F8:A3:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/748D698B243A0964A4ECEB7F9337590AF93C138D8656A80896B6E416B9B1FD9C/0/822F4455E9726CC3D6DCD4143A6D9F1773F8A36F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/822F4455E9726CC3D6DCD4143A6D9F1773F8A36F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/748D698B243A0964A4ECEB7F9337590AF93C138D8656A80896B6E416B9B1FD9C/0/323830303a3961333a353030303a3a2f34302d3430203d3e203134353232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2800:9a3:5000::/40
Signature Algorithm: sha256WithRSAEncryption
d3:15:d9:59:d5:ba:42:0c:31:c2:dd:97:18:86:08:40:2a:f2:
da:b7:79:14:1d:04:9a:88:9d:17:03:79:31:3d:a0:c3:1f:f2:
97:a5:84:eb:e2:cf:45:12:48:96:48:9e:93:18:41:ce:a6:12:
5a:d3:bd:91:96:31:2b:4e:99:31:b9:60:2a:71:37:dc:d5:a3:
9f:98:46:a9:d9:c0:09:80:72:db:5a:70:ea:b0:18:66:83:e2:
a9:58:3d:cf:f1:66:eb:85:8c:01:92:07:c6:20:e1:45:42:45:
14:9f:b3:35:fe:2e:cb:62:f0:b6:8b:bb:78:c8:b8:df:29:71:
af:cc:ea:4b:aa:92:bd:42:6a:85:cb:7e:fe:cf:c0:0d:03:13:
c3:bc:33:ec:60:ed:38:48:7a:ad:5a:68:95:78:55:43:cf:19:
40:96:78:27:70:39:f7:8b:e1:92:aa:70:11:3a:a5:68:51:fb:
8b:c6:8a:ac:ce:15:11:95:5d:f5:bd:48:eb:67:fd:74:36:70:
1a:ad:f3:ee:cb:69:80:bf:f7:20:30:2d:3b:ab:c9:f8:77:b7:
66:83:e1:90:53:0d:bb:23:77:12:8c:0d:4b:3c:8b:21:77:be:
51:75:3c:a5:fd:15:e5:6e:8e:09:4c:63:d3:60:fd:dd:e8:0b:
fd:bd:08:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:10:14 2025 by rpki-client