Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/84EB4C0B5FD3E1B1C92DF9F9438B730E58299D2AA11F20CBF95D845950F706BA/0/323830333a316338303a3a2f33322d3438203d3e203136393231.roa
File: 323830333a316338303a3a2f33322d3438203d3e203136393231.roa (raw, json)
Hash identifier: o64LLT61ynUf8RPQNqShE4Vxf87c1C3Qg486OAlLrrw=
Subject key identifier: 27:F7:4F:98:0D:87:38:96:91:94:33:AF:4C:88:E7:44:89:26:FF:B5
Certificate issuer: /CN=309F045D3E1DA21589D7AFA9D296AE24D33A09EE
Certificate serial: 4E8A7E119D7BDA570EA81B8541EA69E54A2C300A
Authority key identifier: 30:9F:04:5D:3E:1D:A2:15:89:D7:AF:A9:D2:96:AE:24:D3:3A:09:EE
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/309F045D3E1DA21589D7AFA9D296AE24D33A09EE.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/84EB4C0B5FD3E1B1C92DF9F9438B730E58299D2AA11F20CBF95D845950F706BA/0/323830333a316338303a3a2f33322d3438203d3e203136393231.roa
Signing time: Tue 04 Feb 2025 18:02:33 +0000
ROA not before: Tue 04 Feb 2025 17:57:33 +0000
ROA not after: Tue 03 Feb 2026 18:02:33 +0000
asID: 16921
IP address blocks: 2803:1c80::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:8a:7e:11:9d:7b:da:57:0e:a8:1b:85:41:ea:69:e5:4a:2c:30:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=309F045D3E1DA21589D7AFA9D296AE24D33A09EE
Validity
Not Before: Feb 4 17:57:33 2025 GMT
Not After : Feb 3 18:02:33 2026 GMT
Subject: CN=27F74F980D873896919433AF4C88E7448926FFB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:32:61:50:89:e4:9a:b1:a5:c7:3f:11:a0:d7:
65:db:6c:53:83:71:4e:81:3f:95:9b:eb:6d:b8:08:
7f:bc:82:0b:97:23:94:23:04:af:c3:89:8b:d4:a7:
03:ca:65:35:61:b7:d2:18:e4:8b:b1:91:b5:ff:03:
88:0f:6a:0f:47:b9:4e:10:c2:3f:28:a0:ff:24:b0:
4e:39:aa:f2:b7:67:69:90:63:84:f6:c0:7b:08:ee:
a9:f9:84:2c:c5:32:e6:dd:ae:a9:30:f1:f7:8c:fc:
b3:3c:a8:b5:eb:d7:80:c0:82:c9:eb:be:0c:e3:9f:
c6:04:1e:5d:74:69:61:5b:29:2f:70:53:63:64:47:
ad:b4:2f:1d:10:ff:84:a3:08:42:0d:2a:a2:fe:22:
40:8f:bd:30:8f:15:b0:f7:e9:7d:a2:1d:64:9f:ee:
04:c6:26:7d:c6:5e:86:cd:b4:51:5f:7d:02:32:df:
c9:ec:f2:53:4e:3d:ab:16:da:f4:64:41:30:7c:e5:
c7:83:db:0c:f9:5b:95:3b:d6:9b:14:7d:87:84:ce:
6c:38:62:52:c8:40:58:96:e7:7c:83:bb:1b:ad:59:
f4:43:d8:36:5e:d8:d2:3b:38:b5:b9:0f:a7:35:7a:
2b:b4:a3:6a:d7:b4:93:40:9e:dc:7d:4b:b9:2a:bc:
ce:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:F7:4F:98:0D:87:38:96:91:94:33:AF:4C:88:E7:44:89:26:FF:B5
X509v3 Authority Key Identifier:
keyid:30:9F:04:5D:3E:1D:A2:15:89:D7:AF:A9:D2:96:AE:24:D3:3A:09:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/84EB4C0B5FD3E1B1C92DF9F9438B730E58299D2AA11F20CBF95D845950F706BA/0/309F045D3E1DA21589D7AFA9D296AE24D33A09EE.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/309F045D3E1DA21589D7AFA9D296AE24D33A09EE.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/84EB4C0B5FD3E1B1C92DF9F9438B730E58299D2AA11F20CBF95D845950F706BA/0/323830333a316338303a3a2f33322d3438203d3e203136393231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:1c80::/32
Signature Algorithm: sha256WithRSAEncryption
bb:d9:8e:07:92:aa:d2:33:31:b5:6a:5d:b8:75:7d:75:42:fd:
02:49:bb:a0:bd:06:45:d0:13:00:81:62:fb:83:ef:ba:ad:08:
c2:a6:a3:2f:9d:c9:80:28:7e:ed:c2:15:f4:e8:c0:b6:4a:42:
ed:c7:6a:5c:06:7f:a4:05:47:82:a1:9c:13:41:29:5b:d0:34:
1f:77:2a:93:d0:e6:05:8c:35:b8:90:63:1b:5c:f9:00:9b:cf:
89:b4:1d:cd:41:e9:d2:7d:1a:16:80:ad:4a:9c:c1:3a:9a:1f:
fb:6b:d0:5b:2c:c5:82:4d:38:94:31:4a:c3:1a:68:8e:bc:14:
5d:2d:10:1d:a5:81:a0:c5:06:9c:3c:16:94:ba:c1:20:a6:a3:
64:dc:e8:ec:a0:1e:fc:79:0a:fa:a3:7f:5c:8f:c3:42:0d:a2:
6f:30:7d:e9:4b:9c:ad:dc:86:55:27:98:ef:02:2b:37:d3:01:
bb:df:7a:46:22:90:c5:5d:d4:76:d2:0b:e7:79:96:c1:bf:2c:
37:66:14:76:85:5c:77:dc:cd:71:14:8f:ee:36:24:ac:5e:ca:
22:fa:58:23:4d:34:de:50:a6:78:ba:8c:3a:2b:92:01:42:13:
a6:7a:25:e9:0b:c1:5a:a0:ec:b3:1b:cf:aa:8e:1b:9f:75:88:
83:92:62:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:17:14 2025 by rpki-client