Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9072CC7AC9935A96AECDC3B156F0BE285AC0D2F3E2B26466F87D7C39639FE7C9/0/323830333a363930303a3631363a3a2f34372d3438203d3e203532343233.roa
File: 323830333a363930303a3631363a3a2f34372d3438203d3e203532343233.roa (raw, json)
Hash identifier: VtOdpqtxcTmTFKzAjqZzVMKcpt9VahCei60v8ybRLao=
Subject key identifier: 21:E9:7B:6F:C9:63:AA:ED:A6:E4:33:4C:55:A9:96:8C:F2:16:CA:3F
Certificate issuer: /CN=522A19041F7AD8D0B4F97D6DDAFC99C2590276AB
Certificate serial: 7E76A0238B1EA70962A06DDB4A11BF1A84DD6DA4
Authority key identifier: 52:2A:19:04:1F:7A:D8:D0:B4:F9:7D:6D:DA:FC:99:C2:59:02:76:AB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/522A19041F7AD8D0B4F97D6DDAFC99C2590276AB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9072CC7AC9935A96AECDC3B156F0BE285AC0D2F3E2B26466F87D7C39639FE7C9/0/323830333a363930303a3631363a3a2f34372d3438203d3e203532343233.roa
Signing time: Tue 04 Feb 2025 18:20:43 +0000
ROA not before: Tue 04 Feb 2025 18:15:43 +0000
ROA not after: Tue 03 Feb 2026 18:20:43 +0000
asID: 52423
IP address blocks: 2803:6900:616::/47 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:76:a0:23:8b:1e:a7:09:62:a0:6d:db:4a:11:bf:1a:84:dd:6d:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=522A19041F7AD8D0B4F97D6DDAFC99C2590276AB
Validity
Not Before: Feb 4 18:15:43 2025 GMT
Not After : Feb 3 18:20:43 2026 GMT
Subject: CN=21E97B6FC963AAEDA6E4334C55A9968CF216CA3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:91:e9:25:e3:d7:e9:86:5a:ac:f9:b4:ad:b8:
b9:da:d1:f2:c0:d4:ac:bc:91:f5:ec:1f:ef:c9:9c:
5c:ba:50:92:68:70:1c:f6:da:17:79:80:35:04:d6:
d4:d0:88:3d:df:39:26:3a:16:b0:08:1a:7a:81:ae:
46:89:60:80:66:e3:6a:24:c4:87:9a:1f:fa:f7:fa:
7f:04:f1:b6:37:9a:3d:d7:aa:89:fc:92:b2:ea:44:
20:b5:b3:44:cc:f4:48:ac:c0:22:a4:06:64:2b:6c:
c9:8c:44:3d:98:30:64:de:59:45:8a:62:a8:4e:94:
d3:16:6a:cd:dd:75:cd:e6:1f:35:41:c9:30:0e:90:
49:c9:f5:d9:08:46:bc:d3:a9:77:27:00:c8:37:04:
6e:9f:cd:6d:7c:dc:62:0b:91:f2:2b:e4:7a:93:6e:
58:72:94:a1:f6:53:a8:73:19:ae:af:76:2b:aa:e9:
e3:10:2b:28:aa:85:b2:fb:aa:ad:71:1b:ec:09:df:
b7:fa:2d:66:af:a2:f9:3f:da:6b:a9:64:2e:58:f7:
9a:aa:46:7d:da:75:28:35:25:5b:c9:c1:7e:a7:7b:
48:77:3a:25:a6:56:46:a8:73:f4:fb:b2:c3:f3:93:
50:d6:44:35:74:90:93:a6:bb:99:04:bd:67:cd:e3:
8b:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:E9:7B:6F:C9:63:AA:ED:A6:E4:33:4C:55:A9:96:8C:F2:16:CA:3F
X509v3 Authority Key Identifier:
keyid:52:2A:19:04:1F:7A:D8:D0:B4:F9:7D:6D:DA:FC:99:C2:59:02:76:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9072CC7AC9935A96AECDC3B156F0BE285AC0D2F3E2B26466F87D7C39639FE7C9/0/522A19041F7AD8D0B4F97D6DDAFC99C2590276AB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/522A19041F7AD8D0B4F97D6DDAFC99C2590276AB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9072CC7AC9935A96AECDC3B156F0BE285AC0D2F3E2B26466F87D7C39639FE7C9/0/323830333a363930303a3631363a3a2f34372d3438203d3e203532343233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:6900:616::/47
Signature Algorithm: sha256WithRSAEncryption
10:b0:f9:43:df:a5:59:cc:4c:af:4d:01:b1:7e:33:8e:7f:11:
c9:f6:3d:8b:06:5b:f2:4b:5b:e2:fa:75:ae:97:6f:68:04:a0:
d3:94:a5:a6:42:92:51:50:90:17:dd:d2:ab:3c:e5:c9:37:6e:
2f:c2:9a:09:41:22:3b:20:76:ca:42:28:90:8d:70:20:db:2b:
34:5f:3c:a4:cc:db:90:c4:bb:38:96:60:1c:c7:be:06:71:7c:
b6:26:f2:eb:66:a4:02:bf:35:b2:6b:0e:71:1c:e0:43:5a:30:
73:2c:4f:83:bf:a1:fe:a6:84:57:59:b1:f9:fe:70:0e:25:b5:
54:a8:b3:0b:78:0d:18:92:f2:c1:35:5f:1f:28:8d:b6:e8:89:
6d:40:20:33:e5:a7:58:e1:95:51:9a:fa:80:df:ee:92:e7:68:
a3:63:09:f8:65:9a:eb:c1:5f:4e:10:1f:64:aa:70:f9:0b:6a:
99:34:b9:3a:48:ac:1c:1c:b3:dc:ce:f8:49:38:dd:2e:f8:64:
62:af:85:3a:95:ac:37:94:41:53:68:25:b1:96:6a:26:e9:b2:
ff:89:0e:c6:ca:13:ce:a6:49:f4:f2:24:7c:1d:b4:78:c2:44:
41:06:39:c5:23:c3:77:25:ca:d0:83:31:32:73:b3:35:a8:d6:
34:95:8a:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:55:09 2025 by rpki-client