Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/748D698B243A0964A4ECEB7F9337590AF93C138D8656A80896B6E416B9B1FD9C/0/323830303a3961373a3a2f33362d3430203d3e203134353232.roa
File: 323830303a3961373a3a2f33362d3430203d3e203134353232.roa (raw, json)
Hash identifier: mMqfWzyVcDhU76ja0BB2O/tvMuJUKuINzGSZpT61bcY=
Subject key identifier: B0:78:5D:F2:85:F9:AA:11:88:C1:45:EA:25:17:86:AB:71:22:42:88
Certificate issuer: /CN=822F4455E9726CC3D6DCD4143A6D9F1773F8A36F
Certificate serial: 4ED8CDB173B0A9CF56A183C0644AB991751F5111
Authority key identifier: 82:2F:44:55:E9:72:6C:C3:D6:DC:D4:14:3A:6D:9F:17:73:F8:A3:6F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/822F4455E9726CC3D6DCD4143A6D9F1773F8A36F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/748D698B243A0964A4ECEB7F9337590AF93C138D8656A80896B6E416B9B1FD9C/0/323830303a3961373a3a2f33362d3430203d3e203134353232.roa
Signing time: Tue 04 Feb 2025 20:08:40 +0000
ROA not before: Tue 04 Feb 2025 20:03:40 +0000
ROA not after: Tue 03 Feb 2026 20:08:40 +0000
asID: 14522
IP address blocks: 2800:9a7::/36 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:d8:cd:b1:73:b0:a9:cf:56:a1:83:c0:64:4a:b9:91:75:1f:51:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=822F4455E9726CC3D6DCD4143A6D9F1773F8A36F
Validity
Not Before: Feb 4 20:03:40 2025 GMT
Not After : Feb 3 20:08:40 2026 GMT
Subject: CN=B0785DF285F9AA1188C145EA251786AB71224288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7b:1d:a9:fa:cf:20:55:88:79:93:0c:da:a9:
b5:28:85:4f:5e:22:eb:ae:42:43:9c:f6:82:67:78:
f4:4d:20:08:e8:1c:4b:bf:58:de:f0:59:cd:c6:09:
d6:52:22:35:f9:5e:af:30:1c:a5:6e:64:46:16:b0:
fd:e9:a7:ea:84:9e:ae:a0:ec:8c:c7:a5:73:32:45:
ee:23:e7:c6:b3:04:0d:f5:ac:3f:f6:d9:39:2d:95:
a1:c0:08:ed:a0:a8:bd:e7:61:19:da:2f:cd:0e:dc:
5d:7b:88:0f:7e:76:84:33:95:b5:87:b7:a4:ec:fe:
70:1c:81:bb:eb:7d:f7:87:1b:4a:a5:7c:32:f6:bf:
77:e1:0b:76:56:81:6c:00:ae:76:d0:2f:22:54:8e:
12:96:b9:14:24:81:2c:c8:90:2d:0e:20:92:f1:49:
4b:72:e8:42:6b:8e:4a:b6:83:4d:fd:70:e4:e0:30:
bc:9a:09:07:a0:18:e6:43:0c:8a:76:99:8e:a0:8a:
3f:f6:40:09:4f:02:1b:b6:a3:a3:e1:88:33:e6:ac:
28:df:3e:3c:a1:94:0d:03:12:08:e5:de:bf:64:5f:
8d:19:dd:f1:a0:80:0c:c6:fc:1d:c5:4d:39:fa:7a:
6f:28:93:29:f2:90:eb:36:5a:c8:2d:92:19:e1:43:
9d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:78:5D:F2:85:F9:AA:11:88:C1:45:EA:25:17:86:AB:71:22:42:88
X509v3 Authority Key Identifier:
keyid:82:2F:44:55:E9:72:6C:C3:D6:DC:D4:14:3A:6D:9F:17:73:F8:A3:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/748D698B243A0964A4ECEB7F9337590AF93C138D8656A80896B6E416B9B1FD9C/0/822F4455E9726CC3D6DCD4143A6D9F1773F8A36F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/822F4455E9726CC3D6DCD4143A6D9F1773F8A36F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/748D698B243A0964A4ECEB7F9337590AF93C138D8656A80896B6E416B9B1FD9C/0/323830303a3961373a3a2f33362d3430203d3e203134353232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2800:9a7::/36
Signature Algorithm: sha256WithRSAEncryption
7e:47:87:41:22:68:f8:ba:19:eb:ed:5b:4c:f6:00:2a:19:7a:
95:63:ac:5d:64:59:80:1a:f2:4b:c6:9f:f1:56:05:c9:89:fa:
b4:06:bd:00:11:6c:fc:7b:00:b4:11:68:2b:1c:54:b6:5d:ba:
23:cb:18:0c:91:00:2d:18:04:d7:2a:fe:3a:44:7f:44:2d:3d:
b5:da:ba:f5:18:0a:bc:c6:95:39:e0:58:be:52:7d:1a:86:a0:
40:7a:ac:73:c5:6c:ef:28:c6:e7:eb:28:54:90:a8:4b:99:d3:
a5:4f:a8:c8:de:db:3e:d3:c9:f5:83:27:ef:bc:aa:d9:40:4e:
ae:88:ab:9f:fd:f9:2b:e7:37:39:33:9c:50:d6:44:66:52:6b:
f2:b0:77:a4:c1:23:e3:ea:10:32:b1:d3:63:57:9d:19:48:14:
10:e2:66:fe:be:75:94:42:af:5d:8e:e2:92:96:8c:5b:cc:9b:
25:7e:05:73:3b:71:75:c2:f8:0e:d4:58:83:af:72:b7:11:c0:
d5:ec:75:65:df:41:25:39:02:0e:f3:7f:f5:e6:3f:58:84:c8:
39:76:9e:53:a6:78:65:8a:d3:36:a2:c3:ca:e4:4d:cd:14:92:
65:7f:2e:c8:6f:e2:9e:92:b0:38:89:cd:7e:8c:54:39:e0:08:
52:eb:6c:70
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIUTtjNsXOwqc9WoYPAZEq5kXUfUREwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODIyRjQ0NTVFOTcyNkNDM0Q2RENENDE0M0E2RDlGMTc3
M0Y4QTM2RjAeFw0yNTAyMDQyMDAzNDBaFw0yNjAyMDMyMDA4NDBaMDMxMTAvBgNV
BAMTKEIwNzg1REYyODVGOUFBMTE4OEMxNDVFQTI1MTc4NkFCNzEyMjQyODgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvex2p+s8gVYh5kwzaqbUohU9e
IuuuQkOc9oJnePRNIAjoHEu/WN7wWc3GCdZSIjX5Xq8wHKVuZEYWsP3pp+qEnq6g
7IzHpXMyRe4j58azBA31rD/22TktlaHACO2gqL3nYRnaL80O3F17iA9+doQzlbWH
t6Ts/nAcgbvrffeHG0qlfDL2v3fhC3ZWgWwArnbQLyJUjhKWuRQkgSzIkC0OIJLx
SUty6EJrjkq2g039cOTgMLyaCQegGOZDDIp2mY6gij/2QAlPAhu2o6PhiDPmrCjf
PjyhlA0DEgjl3r9kX40Z3fGggAzG/B3FTTn6em8okynykOs2WsgtkhnhQ51bAgMB
AAGjggLGMIICwjAdBgNVHQ4EFgQUsHhd8oX5qhGIwUXqJReGq3EiQogwHwYDVR0j
BBgwFoAUgi9EVelybMPW3NQUOm2fF3P4o28wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy83NDhENjk4QjI0M0EwOTY0QTRFQ0VCN0Y5MzM3NTkwQUY5
M0MxMzhEODY1NkE4MDg5NkI2RTQxNkI5QjFGRDlDLzAvODIyRjQ0NTVFOTcyNkND
M0Q2RENENDE0M0E2RDlGMTc3M0Y4QTM2Ri5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84MjJGNDQ1NUU5NzI2Q0MzRDZE
Q0Q0MTQzQTZEOUYxNzczRjhBMzZGLmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG
CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNzQ4RDY5OEIyNDNBMDk2NEE0RUNFQjdGOTMzNzU5MEFGOTNDMTM4RDg2
NTZBODA4OTZCNkU0MTZCOUIxRkQ5Qy8wLzMyMzgzMDMwM2EzOTYxMzczYTNhMmYz
MzM2MmQzNDMwMjAzZDNlMjAzMTM0MzUzMjMyLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYEKAAJpwAwDQYJ
KoZIhvcNAQELBQADggEBAH5Hh0EiaPi6GevtW0z2ACoZepVjrF1kWYAa8kvGn/FW
BcmJ+rQGvQARbPx7ALQRaCscVLZduiPLGAyRAC0YBNcq/jpEf0QtPbXauvUYCrzG
lTngWL5SfRqGoEB6rHPFbO8oxufrKFSQqEuZ06VPqMje2z7TyfWDJ++8qtlATq6I
q5/9+SvnNzkznFDWRGZSa/Kwd6TBI+PqEDKx02NXnRlIFBDiZv6+dZRCr12O4pKW
jFvMmyV+BXM7cXXC+A7UWIOvcrcRwNXsdWXfQSU5Ag7zf/XmP1iEyDl2nlOmeGWK
0zaiw8rkTc0UkmV/Lshv4p6SsDiJzX6MVDngCFLrbHA=
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:14:33 2025 by rpki-client