Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/898276802C14B282B554709EBDDF534A09D21F320B5FD9A10C38F6938D72692B/0/323830313a31323a333830303a3a2f34382d3438203d3e203133343839.roa
File: 323830313a31323a333830303a3a2f34382d3438203d3e203133343839.roa (raw, json)
Hash identifier: Ftbepo9Yx5+RY/05BtTD/u6v6vuM9X7QpbjMqW19dgs=
Subject key identifier: 39:42:F6:AF:F0:0A:0E:0B:4C:D8:C1:1D:C4:FF:A9:32:FA:FF:70:DF
Certificate issuer: /CN=4BB93FA8750F0B8E09230B086A9A6B07CF265C53
Certificate serial: 545F68991BAD1806B96D2B7A431586C69CA21B23
Authority key identifier: 4B:B9:3F:A8:75:0F:0B:8E:09:23:0B:08:6A:9A:6B:07:CF:26:5C:53
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4BB93FA8750F0B8E09230B086A9A6B07CF265C53.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/898276802C14B282B554709EBDDF534A09D21F320B5FD9A10C38F6938D72692B/0/323830313a31323a333830303a3a2f34382d3438203d3e203133343839.roa
Signing time: Tue 04 Feb 2025 18:36:45 +0000
ROA not before: Tue 04 Feb 2025 18:31:45 +0000
ROA not after: Tue 03 Feb 2026 18:36:45 +0000
asID: 13489
IP address blocks: 2801:12:3800::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:5f:68:99:1b:ad:18:06:b9:6d:2b:7a:43:15:86:c6:9c:a2:1b:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4BB93FA8750F0B8E09230B086A9A6B07CF265C53
Validity
Not Before: Feb 4 18:31:45 2025 GMT
Not After : Feb 3 18:36:45 2026 GMT
Subject: CN=3942F6AFF00A0E0B4CD8C11DC4FFA932FAFF70DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2a:a8:21:0b:51:f0:25:d8:21:c4:01:1e:80:
b9:74:95:36:7c:07:a7:72:4c:9b:6c:21:94:11:6e:
25:fe:15:46:1f:5b:3f:03:09:9c:f7:dc:c4:3c:ec:
95:94:f7:13:5c:20:d0:01:ce:e5:96:06:c6:f9:6c:
11:04:33:eb:04:bf:40:e8:ee:37:75:92:a5:26:bb:
11:61:6c:d8:4b:b4:49:00:14:99:4c:8a:20:a0:b0:
27:24:99:e2:12:3a:b2:36:f1:db:55:f8:77:ae:db:
be:f5:2b:69:e1:7a:dd:9f:9e:5a:b8:90:91:6b:b4:
36:23:b6:32:00:c4:48:77:c4:18:d0:3e:73:d7:d2:
5b:9e:18:08:e3:0c:1c:8f:20:a5:5c:50:2e:47:5b:
5f:38:ee:6a:d9:3f:17:79:97:76:af:ae:c2:ab:f8:
f3:4d:17:5d:68:e6:71:32:ad:48:df:86:f0:a6:1f:
b9:26:c7:c7:f8:31:7a:e6:f0:09:a3:5b:9f:d6:42:
81:56:f8:49:43:9e:25:06:0e:33:ad:1c:80:03:2d:
2c:10:b2:79:74:72:b9:d9:10:fa:ef:c3:57:6c:13:
2f:83:e1:0d:aa:b3:9b:09:5f:5a:71:58:5f:0f:06:
70:b5:a4:ba:26:f7:0f:5a:9c:25:18:41:fe:98:66:
76:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:42:F6:AF:F0:0A:0E:0B:4C:D8:C1:1D:C4:FF:A9:32:FA:FF:70:DF
X509v3 Authority Key Identifier:
keyid:4B:B9:3F:A8:75:0F:0B:8E:09:23:0B:08:6A:9A:6B:07:CF:26:5C:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/898276802C14B282B554709EBDDF534A09D21F320B5FD9A10C38F6938D72692B/0/4BB93FA8750F0B8E09230B086A9A6B07CF265C53.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4BB93FA8750F0B8E09230B086A9A6B07CF265C53.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/898276802C14B282B554709EBDDF534A09D21F320B5FD9A10C38F6938D72692B/0/323830313a31323a333830303a3a2f34382d3438203d3e203133343839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:12:3800::/48
Signature Algorithm: sha256WithRSAEncryption
c4:d3:2b:a3:6d:d8:4b:5f:74:6f:2c:22:2a:31:e6:39:4b:51:
8e:7f:02:ae:6d:05:dd:54:7d:77:93:15:e0:5e:6b:42:ed:6a:
ae:22:70:45:8d:5e:3b:db:89:c2:ee:92:d7:e8:65:5d:d6:1a:
64:06:bb:4e:b3:23:71:20:a1:22:de:00:3d:2b:4e:d8:1f:4c:
e5:37:ce:b5:61:ea:b0:fc:1a:d0:fc:cf:ba:07:0a:38:2e:03:
25:d8:d1:e1:f4:80:ae:12:0c:03:77:a6:74:43:91:ab:1d:e3:
44:06:18:26:ba:8a:94:3d:28:75:ff:54:da:7b:a1:54:4b:fb:
5e:da:77:1f:4f:55:88:45:62:c1:19:b6:b3:ea:51:d3:71:d6:
a3:2c:86:51:8a:35:b8:03:45:17:df:5b:0e:aa:a4:13:ce:fa:
99:33:ee:10:74:70:e7:a4:20:29:7d:4a:dc:06:cf:5e:f7:b5:
6c:28:74:34:a4:d0:8a:c5:93:cd:46:1a:b6:83:4f:6f:20:56:
a9:f6:ad:1d:7f:0f:67:3d:5f:a0:0f:cd:8a:96:35:58:26:fd:
67:01:e5:1d:ed:ca:8b:aa:d7:06:d9:5b:86:2a:97:37:0a:c0:
77:6b:68:dd:98:6c:a3:d8:2f:be:63:99:75:ff:24:d1:5d:9f:
46:03:76:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:52:08 2025 by rpki-client