Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/86E29DCDACD07543663499A1765AA71B7314EAF464FAF151852C907C4CF852A7/0/323830333a353239303a3a2f33322d3438203d3e20323732383634.roa
File: 323830333a353239303a3a2f33322d3438203d3e20323732383634.roa (raw, json)
Hash identifier: LtAj8DZRfgQDZ+es9ta1Vodq587+ZZP94JhlyqL+yC8=
Subject key identifier: EF:5A:03:95:2C:A2:E6:4A:27:1A:F1:07:D8:28:55:0A:11:CD:FD:E8
Certificate issuer: /CN=65C5F759AD83CD7CD2BF1A0CEC83E677929E7867
Certificate serial: 7F391AFE2C540AB9C333E320F690E04D13A13986
Authority key identifier: 65:C5:F7:59:AD:83:CD:7C:D2:BF:1A:0C:EC:83:E6:77:92:9E:78:67
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/65C5F759AD83CD7CD2BF1A0CEC83E677929E7867.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/86E29DCDACD07543663499A1765AA71B7314EAF464FAF151852C907C4CF852A7/0/323830333a353239303a3a2f33322d3438203d3e20323732383634.roa
Signing time: Tue 04 Feb 2025 18:22:31 +0000
ROA not before: Tue 04 Feb 2025 18:17:31 +0000
ROA not after: Tue 03 Feb 2026 18:22:31 +0000
asID: 272864
IP address blocks: 2803:5290::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:39:1a:fe:2c:54:0a:b9:c3:33:e3:20:f6:90:e0:4d:13:a1:39:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65C5F759AD83CD7CD2BF1A0CEC83E677929E7867
Validity
Not Before: Feb 4 18:17:31 2025 GMT
Not After : Feb 3 18:22:31 2026 GMT
Subject: CN=EF5A03952CA2E64A271AF107D828550A11CDFDE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3a:ce:a7:50:ee:49:84:02:07:e0:15:e0:81:
25:30:6c:7a:15:94:55:57:ce:d3:4b:96:6d:cf:d5:
59:0a:86:74:1d:8b:5e:50:be:b4:55:69:a8:0f:23:
4d:48:a8:b9:88:59:8f:3f:ea:59:88:90:61:21:f0:
3c:b9:27:16:d5:d2:21:f5:b8:05:c7:2e:93:2a:99:
a3:2e:54:04:a8:6a:8c:50:62:1c:cb:fd:5c:66:2c:
d2:8e:2f:e0:12:a7:29:ab:5d:77:58:e5:cb:44:0b:
04:94:c0:5d:61:a5:20:f7:00:de:02:06:aa:9d:e6:
5a:55:17:43:c6:e0:99:55:79:41:07:bf:d9:73:d7:
31:f0:a2:96:1a:c1:de:aa:db:19:2f:3d:b5:05:bf:
42:17:69:89:61:59:f1:a7:07:76:96:82:09:5c:ee:
cf:08:63:ca:e8:fa:ad:c5:af:49:31:57:97:8f:7b:
15:c2:2f:d0:de:60:06:ad:ce:38:f0:23:9c:c6:a8:
a2:5a:f8:4d:c8:ef:72:e8:4a:df:bf:78:db:d2:a8:
17:6d:2e:97:4c:a8:20:01:9a:f7:03:7f:bd:81:a7:
4e:a1:53:8a:d8:f0:62:fa:e2:ba:6a:a9:92:ab:1b:
92:02:8a:7b:2f:4d:08:6a:35:f1:af:99:ab:66:23:
fa:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:5A:03:95:2C:A2:E6:4A:27:1A:F1:07:D8:28:55:0A:11:CD:FD:E8
X509v3 Authority Key Identifier:
keyid:65:C5:F7:59:AD:83:CD:7C:D2:BF:1A:0C:EC:83:E6:77:92:9E:78:67
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/86E29DCDACD07543663499A1765AA71B7314EAF464FAF151852C907C4CF852A7/0/65C5F759AD83CD7CD2BF1A0CEC83E677929E7867.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/65C5F759AD83CD7CD2BF1A0CEC83E677929E7867.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/86E29DCDACD07543663499A1765AA71B7314EAF464FAF151852C907C4CF852A7/0/323830333a353239303a3a2f33322d3438203d3e20323732383634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:5290::/32
Signature Algorithm: sha256WithRSAEncryption
74:07:d4:3b:98:40:67:eb:69:1a:f1:a9:0e:fc:ce:87:3c:8d:
85:1e:3d:d7:03:88:33:d3:3c:4d:c7:9b:5f:9b:ec:6a:5e:0d:
70:22:3e:14:7c:35:a2:b1:14:60:8f:24:53:a3:1a:89:ac:90:
6a:e2:46:30:08:5e:34:00:f8:f1:90:79:d0:61:df:f5:b8:44:
46:0e:25:ad:e1:f0:44:b3:aa:3b:f5:2f:ab:d4:18:25:05:29:
74:6f:df:20:02:7b:dc:a0:84:4b:8c:de:d1:33:cf:a0:cc:a8:
61:6b:d2:0c:fc:1f:fd:31:bc:e1:15:62:2f:c5:bc:8b:84:02:
19:f3:b8:9e:b1:e8:8a:98:5f:55:c2:d0:51:a2:d6:e3:2e:98:
d6:f1:f9:e2:93:e0:0d:65:21:a7:23:59:b0:8a:bd:24:ba:f1:
04:e9:96:c9:b2:fb:6a:62:12:59:80:11:a4:f4:9d:bf:ac:97:
cb:61:0a:cf:38:a3:24:e3:93:91:24:6f:51:ac:30:55:a2:75:
95:e3:de:a6:7f:37:cb:07:77:e4:32:9e:5b:73:fc:de:5b:3d:
65:da:53:6a:ad:9d:04:84:99:f0:d1:bc:83:44:32:dd:29:c5:
4f:00:99:11:38:f6:ad:a6:29:9d:09:de:ba:58:c7:c4:69:ac:
65:a1:3e:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:27:28 2025 by rpki-client