Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/776769DA9250AEE016ECE691EF523EA8B93D6CBFBE77577C339E491D8B8E2395/0/323830313a323a3a2f33322d3332203d3e203137313437.roa
File: 323830313a323a3a2f33322d3332203d3e203137313437.roa (raw, json)
Hash identifier: DFp7sWq9JToU3RwmGBI8KhAjlmnJ2y+DnHb3zeAUy+8=
Subject key identifier: 1E:1D:8E:D1:6E:97:4F:4B:F9:08:E7:78:F5:9B:48:D3:A8:45:6C:BC
Certificate issuer: /CN=D0B428B65F4DBA16E44F7C7412B71C126F71DC6B
Certificate serial: 057CE9B9DB74CFECE6724217EE71AECA95A84A86
Authority key identifier: D0:B4:28:B6:5F:4D:BA:16:E4:4F:7C:74:12:B7:1C:12:6F:71:DC:6B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D0B428B65F4DBA16E44F7C7412B71C126F71DC6B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/776769DA9250AEE016ECE691EF523EA8B93D6CBFBE77577C339E491D8B8E2395/0/323830313a323a3a2f33322d3332203d3e203137313437.roa
Signing time: Tue 04 Feb 2025 18:26:01 +0000
ROA not before: Tue 04 Feb 2025 18:21:01 +0000
ROA not after: Tue 03 Feb 2026 18:26:01 +0000
asID: 17147
IP address blocks: 2801:2::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:7c:e9:b9:db:74:cf:ec:e6:72:42:17:ee:71:ae:ca:95:a8:4a:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D0B428B65F4DBA16E44F7C7412B71C126F71DC6B
Validity
Not Before: Feb 4 18:21:01 2025 GMT
Not After : Feb 3 18:26:01 2026 GMT
Subject: CN=1E1D8ED16E974F4BF908E778F59B48D3A8456CBC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6f:08:04:ea:54:2d:b6:ae:d0:e3:88:29:a0:
98:95:20:81:77:11:57:b1:91:b4:6d:fd:35:39:9a:
73:4e:68:69:15:fa:cd:24:62:ae:3d:89:ec:8c:48:
0f:5f:ed:ca:34:f1:2c:f2:95:39:b4:a1:30:f6:0e:
d7:4d:92:0d:6f:cc:0e:c3:67:63:22:a5:f0:6c:29:
20:01:89:9f:2c:1f:90:c9:53:4d:c4:8b:ae:1b:41:
0b:5e:d5:bb:be:6f:ac:8e:78:2d:79:6d:bc:5d:ec:
b7:94:f9:32:2c:7e:ed:9e:1c:39:8c:9c:e8:c1:7e:
3a:83:30:2e:83:6a:1b:5e:78:fd:22:e1:70:40:ef:
98:98:90:82:e1:00:b5:fd:47:bc:ab:b9:78:36:a9:
1f:68:de:62:f3:53:0a:6b:44:88:dd:86:4c:a4:94:
bc:29:be:6f:85:c8:30:6c:4c:2b:e5:d1:f4:49:39:
c7:85:79:3e:df:d3:8e:69:ab:a9:9c:bb:67:d5:15:
af:6b:aa:09:9d:d7:d3:29:f2:c8:41:d4:9b:02:94:
f0:49:c5:c1:cf:73:66:44:cb:ce:72:f3:e7:44:4e:
1d:9f:9d:b0:0b:37:f0:ed:f8:9b:d9:09:40:2e:b8:
32:6f:3a:a4:e4:6c:54:ea:42:fc:c0:d1:ff:bd:5b:
4c:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:1D:8E:D1:6E:97:4F:4B:F9:08:E7:78:F5:9B:48:D3:A8:45:6C:BC
X509v3 Authority Key Identifier:
keyid:D0:B4:28:B6:5F:4D:BA:16:E4:4F:7C:74:12:B7:1C:12:6F:71:DC:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/776769DA9250AEE016ECE691EF523EA8B93D6CBFBE77577C339E491D8B8E2395/0/D0B428B65F4DBA16E44F7C7412B71C126F71DC6B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D0B428B65F4DBA16E44F7C7412B71C126F71DC6B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/776769DA9250AEE016ECE691EF523EA8B93D6CBFBE77577C339E491D8B8E2395/0/323830313a323a3a2f33322d3332203d3e203137313437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:2::/32
Signature Algorithm: sha256WithRSAEncryption
6a:ca:3e:25:ed:1d:11:0a:74:d0:b5:76:18:6d:f7:66:c7:3d:
11:d0:88:3a:03:da:0d:14:33:6e:9c:3d:de:f9:f0:7f:ed:bc:
2b:f5:70:20:d7:8e:f6:81:84:d3:aa:5e:74:be:73:fc:06:27:
6a:8b:ef:68:2f:65:5e:cf:dc:24:97:78:1c:bd:82:ec:c9:1b:
04:db:29:8c:18:cb:26:fe:aa:bb:d2:a7:5a:9d:29:44:67:8a:
1b:09:58:98:c1:95:1b:92:0c:93:82:ab:7b:f2:da:63:e2:95:
17:c3:c5:19:67:50:10:e0:b9:dc:54:42:3d:0a:50:6c:90:92:
45:8b:63:6b:a4:54:55:8e:e1:d2:8e:a2:cd:76:97:62:35:91:
93:14:df:21:a7:8d:ae:84:53:56:72:b2:c9:8b:b6:b8:32:b4:
2e:0c:db:17:ac:e9:50:d5:13:60:fc:39:18:4e:fd:24:59:23:
ca:ac:73:cd:63:1c:fe:8d:38:4d:a4:10:81:44:20:69:6a:ce:
76:8a:ef:bf:4b:7c:1b:b1:1c:cc:00:da:5a:47:5f:d4:8e:0c:
7f:e4:17:2b:45:82:2c:21:cb:b7:d6:3a:d0:e6:83:f7:a9:3b:
fd:cc:39:68:00:54:c6:1c:8f:f1:4b:65:38:13:0e:4e:c5:fe:
ac:ac:06:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:59:12 2025 by rpki-client