Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8E0D28C0B22854F0210033DF7B0C636159312C11D1C742AFB3FD1FC378A8E760/0/323830313a3136353a313a3a2f34382d3438203d3e203238303031.roa
File: 323830313a3136353a313a3a2f34382d3438203d3e203238303031.roa (raw, json)
Hash identifier: K3ZXhFt2u7Ka95huwPGvu/SzOqGMEIW6HOX52zYNOKQ=
Subject key identifier: F1:AB:7B:C0:18:7E:50:F0:44:57:71:43:7D:F9:56:8E:99:04:6F:F8
Certificate issuer: /CN=A709D75E0BD0199002C071D36971A09E6D5E5F48
Certificate serial: 5EAA3C32B2729B1755FD895213693C4FA91A6027
Authority key identifier: A7:09:D7:5E:0B:D0:19:90:02:C0:71:D3:69:71:A0:9E:6D:5E:5F:48
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A709D75E0BD0199002C071D36971A09E6D5E5F48.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8E0D28C0B22854F0210033DF7B0C636159312C11D1C742AFB3FD1FC378A8E760/0/323830313a3136353a313a3a2f34382d3438203d3e203238303031.roa
Signing time: Sat 08 Mar 2025 23:11:33 +0000
ROA not before: Sat 08 Mar 2025 23:06:33 +0000
ROA not after: Sat 07 Mar 2026 23:11:33 +0000
asID: 28001
IP address blocks: 2801:165:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:aa:3c:32:b2:72:9b:17:55:fd:89:52:13:69:3c:4f:a9:1a:60:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A709D75E0BD0199002C071D36971A09E6D5E5F48
Validity
Not Before: Mar 8 23:06:33 2025 GMT
Not After : Mar 7 23:11:33 2026 GMT
Subject: CN=F1AB7BC0187E50F0445771437DF9568E99046FF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4a:97:b5:85:f3:aa:81:f6:84:76:cf:c7:4f:
87:55:1f:9f:9f:96:d3:45:c5:a0:f3:a3:10:e9:0f:
a0:49:07:54:9e:eb:50:05:fc:72:cc:c5:92:53:83:
46:23:fb:16:68:9a:60:b1:97:50:e5:b2:97:67:d0:
8b:77:4d:02:02:6d:d9:83:fc:fe:ab:ae:d4:03:1e:
bb:e7:ae:db:24:2d:18:d5:bf:ca:ff:88:28:82:32:
37:ca:92:c5:70:0c:e3:c9:9c:51:b4:88:4b:ec:20:
97:aa:61:37:49:83:b3:9b:11:67:56:0b:dc:38:d0:
e0:93:44:0f:ba:67:3f:cb:5a:a9:d3:86:d4:84:6c:
1d:dd:d0:30:37:57:19:f9:f7:d4:8a:18:94:b9:b0:
0a:1c:c2:81:31:7a:57:4c:99:94:9f:d7:f8:31:fc:
fd:53:7e:b4:29:2c:05:4e:f0:27:e3:df:f9:03:c6:
cd:0b:af:46:02:be:32:00:d7:49:c8:bc:98:a5:ca:
9d:60:4b:8f:9a:37:89:8b:33:90:d2:b8:20:8a:f6:
f8:2b:ea:65:2c:25:b7:1b:b0:1f:76:dd:fc:8f:c8:
16:2f:6c:9f:2e:38:27:32:54:1b:94:7b:ea:66:3e:
41:bb:d1:68:97:6e:de:95:63:52:05:4a:95:d5:9d:
a4:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:AB:7B:C0:18:7E:50:F0:44:57:71:43:7D:F9:56:8E:99:04:6F:F8
X509v3 Authority Key Identifier:
keyid:A7:09:D7:5E:0B:D0:19:90:02:C0:71:D3:69:71:A0:9E:6D:5E:5F:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8E0D28C0B22854F0210033DF7B0C636159312C11D1C742AFB3FD1FC378A8E760/0/A709D75E0BD0199002C071D36971A09E6D5E5F48.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A709D75E0BD0199002C071D36971A09E6D5E5F48.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8E0D28C0B22854F0210033DF7B0C636159312C11D1C742AFB3FD1FC378A8E760/0/323830313a3136353a313a3a2f34382d3438203d3e203238303031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:165:1::/48
Signature Algorithm: sha256WithRSAEncryption
24:7d:ac:f4:d2:6a:4f:3d:2e:d3:7e:70:84:5f:aa:96:41:df:
81:3f:fb:4a:e2:83:bc:b9:19:8c:63:bb:de:a2:1a:c6:1a:ff:
0f:ff:10:38:33:d4:63:ff:dd:05:b8:e1:23:df:7c:65:29:77:
fb:99:b5:aa:f3:b0:31:10:4a:92:cf:d8:6f:46:cd:83:b0:21:
e9:10:2b:fd:6b:97:1b:b6:c1:b4:24:1f:f1:f7:95:1b:54:91:
4c:24:55:02:60:17:a6:05:48:db:ec:ca:ba:50:66:01:63:31:
83:dd:3f:12:f9:3b:ef:98:9e:f6:64:da:73:9b:eb:aa:78:e7:
3d:96:cd:69:fe:c5:6b:c1:2f:ad:00:ad:30:1a:2c:f5:a4:0f:
16:20:40:a4:01:04:d6:b7:fd:7e:3b:dd:90:df:b9:30:fe:8f:
7a:18:cd:b1:cf:05:2e:01:76:79:d7:d1:0a:31:df:09:99:d1:
87:3f:3b:95:e0:9e:59:01:50:ba:27:dd:ab:36:a4:01:d6:9a:
81:f2:2a:ba:bc:b9:74:63:91:e4:d8:8e:bf:ac:62:10:0e:06:
bc:0a:dd:17:19:f2:97:8d:52:93:07:dc:2c:dd:3e:95:fb:de:
6e:ec:50:e3:8e:bc:49:fa:a7:6f:6a:f7:92:e6:8e:6b:44:78:
53:f4:33:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:55:06 2025 by rpki-client