Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8E0D28C0B22854F0210033DF7B0C636159312C11D1C742AFB3FD1FC378A8E760/0/323830313a3136353a323a3a2f34382d3532203d3e203238303031.roa
File: 323830313a3136353a323a3a2f34382d3532203d3e203238303031.roa (raw, json)
Hash identifier: OMOlTBUJzh6MKqVj24BMZYSUlCTRPO1ESrhxu2RFBTQ=
Subject key identifier: D6:7C:F8:DE:58:0A:8B:4D:F3:A5:6A:FC:B0:D6:46:75:C5:82:F0:DC
Certificate issuer: /CN=A709D75E0BD0199002C071D36971A09E6D5E5F48
Certificate serial: 479EC2B65DC131CCA9132C47050270E15A314FBF
Authority key identifier: A7:09:D7:5E:0B:D0:19:90:02:C0:71:D3:69:71:A0:9E:6D:5E:5F:48
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A709D75E0BD0199002C071D36971A09E6D5E5F48.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8E0D28C0B22854F0210033DF7B0C636159312C11D1C742AFB3FD1FC378A8E760/0/323830313a3136353a323a3a2f34382d3532203d3e203238303031.roa
Signing time: Tue 07 May 2024 13:40:00 +0000
ROA not before: Tue 07 May 2024 13:35:00 +0000
ROA not after: Tue 06 May 2025 13:40:00 +0000
asID: 28001
IP address blocks: 2801:165:2::/48 maxlen: 52
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:9e:c2:b6:5d:c1:31:cc:a9:13:2c:47:05:02:70:e1:5a:31:4f:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A709D75E0BD0199002C071D36971A09E6D5E5F48
Validity
Not Before: May 7 13:35:00 2024 GMT
Not After : May 6 13:40:00 2025 GMT
Subject: CN=D67CF8DE580A8B4DF3A56AFCB0D64675C582F0DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:93:10:3d:8b:b5:cf:b4:e1:6c:64:fa:a0:ae:
eb:b0:f9:a6:25:47:a7:66:7a:5d:fd:4c:69:b7:05:
77:06:49:17:0e:44:e7:56:e2:9a:8e:ff:eb:42:81:
1d:84:6a:61:04:98:87:ab:02:f2:7d:2b:97:db:9b:
5e:bc:43:83:8e:a1:76:29:c9:d8:38:7f:2e:1b:63:
b6:b3:0b:d7:eb:5f:40:01:2e:5b:eb:9c:b3:f7:d5:
d4:b7:a0:b2:f2:9b:23:47:bb:63:bf:3b:48:0f:26:
7f:73:7f:9a:5b:c3:61:7c:f0:0c:89:7f:1f:4b:97:
e9:8c:79:53:4f:4c:e3:0b:3b:f7:dd:ac:2b:89:75:
45:07:1c:b9:92:63:48:dc:34:7a:0f:07:0e:53:e3:
8b:d4:10:ee:c9:b8:41:b5:96:4c:d8:ad:44:b4:5b:
17:d5:29:50:3e:76:c1:e6:39:4c:9b:b7:28:ed:a2:
f8:a5:1a:b2:43:cd:1c:d5:34:57:08:1a:71:81:c7:
e7:12:78:53:57:ff:bb:a5:3f:9e:fd:e3:85:08:2b:
7b:3b:08:e9:01:db:bc:b2:a3:ec:43:3c:36:c3:78:
54:44:e2:d0:d1:e8:c0:8e:92:1e:65:b1:fb:48:f9:
6e:bb:66:06:94:b7:f7:0b:6a:ff:29:5f:3e:b8:6a:
b1:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:7C:F8:DE:58:0A:8B:4D:F3:A5:6A:FC:B0:D6:46:75:C5:82:F0:DC
X509v3 Authority Key Identifier:
keyid:A7:09:D7:5E:0B:D0:19:90:02:C0:71:D3:69:71:A0:9E:6D:5E:5F:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8E0D28C0B22854F0210033DF7B0C636159312C11D1C742AFB3FD1FC378A8E760/0/A709D75E0BD0199002C071D36971A09E6D5E5F48.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A709D75E0BD0199002C071D36971A09E6D5E5F48.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8E0D28C0B22854F0210033DF7B0C636159312C11D1C742AFB3FD1FC378A8E760/0/323830313a3136353a323a3a2f34382d3532203d3e203238303031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:165:2::/48
Signature Algorithm: sha256WithRSAEncryption
62:f2:13:ac:3b:7e:48:51:d8:70:e8:dc:bf:13:e9:7f:8a:20:
01:c8:68:c4:83:83:86:22:e9:34:ff:8c:b8:a3:f7:80:7d:0a:
1b:d1:13:c8:05:4a:f1:06:d9:42:e2:d2:38:da:55:fc:2d:7b:
e7:b6:26:61:6b:65:3c:b9:b9:46:57:cc:7e:8d:75:6f:5d:5d:
18:13:28:7c:0e:db:ba:46:0d:26:7f:ff:60:db:16:16:51:85:
e4:ef:43:8f:9e:ba:82:e9:e5:17:b8:7e:04:78:be:fa:f9:59:
8c:88:f0:ce:08:45:c7:c3:42:34:8a:09:ed:c5:93:58:c6:2b:
8d:d8:b2:88:d3:4d:62:d6:da:d5:67:47:d4:40:80:26:8e:14:
c1:1a:fc:fe:fd:c3:b7:96:02:96:9d:96:d4:97:fd:03:35:b2:
08:51:e2:9a:71:da:ae:f6:6d:2c:48:ba:7e:df:4b:10:43:95:
4a:64:90:79:49:88:35:53:03:29:8a:91:f2:23:e8:ea:1a:b9:
83:33:75:b0:35:7d:dc:a5:7b:0d:46:d4:2b:ce:45:95:11:e0:
d5:38:2c:f3:a2:00:db:00:c6:60:77:da:70:bd:1d:61:3b:e6:
ee:2a:2f:7b:07:f0:1a:e2:07:62:1b:68:22:f1:ac:6e:bb:e0:
6e:06:1f:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:55:09 2025 by rpki-client