Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9A5944611FDF2B2CCAD036390658D37A8CC89EED4D1E36DD6EAA5B4272384D81/0/323830333a383638303a3a2f33322d3438203d3e203532343635.roa
File: 323830333a383638303a3a2f33322d3438203d3e203532343635.roa (raw, json)
Hash identifier: mN2OVkmONi5Rq26/F5FdA0u7k5y5lHSv5GOaqZd5/20=
Subject key identifier: F2:65:BF:48:48:FE:87:0B:15:A8:D0:7B:DC:94:77:37:BF:08:A6:05
Certificate issuer: /CN=653BCCC8DAB0459A5D23BCB1437938AC615D5023
Certificate serial: 65B112093811E4AAFE61A9BE35806A5A34E2C468
Authority key identifier: 65:3B:CC:C8:DA:B0:45:9A:5D:23:BC:B1:43:79:38:AC:61:5D:50:23
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/653BCCC8DAB0459A5D23BCB1437938AC615D5023.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9A5944611FDF2B2CCAD036390658D37A8CC89EED4D1E36DD6EAA5B4272384D81/0/323830333a383638303a3a2f33322d3438203d3e203532343635.roa
Signing time: Tue 04 Feb 2025 20:00:31 +0000
ROA not before: Tue 04 Feb 2025 19:55:31 +0000
ROA not after: Tue 03 Feb 2026 20:00:31 +0000
asID: 52465
IP address blocks: 2803:8680::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:b1:12:09:38:11:e4:aa:fe:61:a9:be:35:80:6a:5a:34:e2:c4:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=653BCCC8DAB0459A5D23BCB1437938AC615D5023
Validity
Not Before: Feb 4 19:55:31 2025 GMT
Not After : Feb 3 20:00:31 2026 GMT
Subject: CN=F265BF4848FE870B15A8D07BDC947737BF08A605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d3:42:10:45:3a:f0:a7:f3:87:fc:2b:89:8b:
60:81:bc:42:7f:1e:2c:1f:93:a6:a2:54:9d:70:af:
21:d5:09:01:1f:9b:95:10:39:5d:c3:b0:95:df:a1:
2d:b3:f2:96:12:54:c3:3a:0e:11:9b:31:ec:95:d2:
d2:a1:f6:d8:a9:ca:4c:fb:e7:ee:24:00:e4:eb:b2:
96:d6:45:99:1f:96:4d:d8:3f:24:ba:39:d9:4e:2c:
5c:0a:b4:0b:f4:a5:03:7e:f1:3a:54:8c:d6:a7:c8:
ad:f8:c6:29:9e:56:49:eb:ba:f1:96:63:b9:d4:82:
76:e2:45:e8:65:cc:f6:4f:9b:a0:34:35:4c:d3:a3:
e3:90:26:f1:43:a7:9b:e6:f7:92:26:9e:25:c2:cf:
48:14:e3:fa:12:71:a2:57:4b:91:2f:0d:04:87:e6:
2c:d4:87:23:82:7e:2e:88:a8:d2:56:c4:43:b7:94:
03:ac:11:ba:98:74:2c:be:87:cf:42:9f:5b:be:a2:
45:e5:56:84:4a:d6:06:eb:cf:c1:83:37:f4:27:69:
47:05:6f:4f:28:16:0a:29:7a:66:d1:9e:44:74:91:
dd:22:a5:84:9a:11:54:72:2c:6b:6f:9a:29:8b:5d:
b6:80:07:91:ef:0a:9b:62:03:6d:d7:07:38:5d:f6:
e6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:65:BF:48:48:FE:87:0B:15:A8:D0:7B:DC:94:77:37:BF:08:A6:05
X509v3 Authority Key Identifier:
keyid:65:3B:CC:C8:DA:B0:45:9A:5D:23:BC:B1:43:79:38:AC:61:5D:50:23
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9A5944611FDF2B2CCAD036390658D37A8CC89EED4D1E36DD6EAA5B4272384D81/0/653BCCC8DAB0459A5D23BCB1437938AC615D5023.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/653BCCC8DAB0459A5D23BCB1437938AC615D5023.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9A5944611FDF2B2CCAD036390658D37A8CC89EED4D1E36DD6EAA5B4272384D81/0/323830333a383638303a3a2f33322d3438203d3e203532343635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:8680::/32
Signature Algorithm: sha256WithRSAEncryption
09:f2:8a:16:34:18:94:24:db:f8:d4:61:95:ca:6c:a7:c9:0d:
de:2f:21:b3:d3:8b:48:63:90:3a:8e:49:1c:a5:af:de:df:2e:
f3:a8:4d:59:bd:10:46:02:8f:a9:a1:81:19:ba:67:97:7a:50:
77:12:9e:83:5d:e4:6f:92:76:5d:1c:01:dc:45:a4:84:af:0a:
2a:2e:9a:4e:1e:42:54:fa:ce:6e:a6:6b:5c:75:e4:92:9b:f1:
80:74:77:f8:6c:71:cb:3d:8c:ff:58:e2:3c:4b:8a:39:9f:c6:
c3:bb:00:ce:e2:f3:6d:e9:c0:2b:19:9a:3e:e7:b1:7c:27:42:
af:5f:01:9f:9b:6f:0e:55:f3:fd:94:06:ce:f9:93:29:0e:22:
ca:f8:2c:b5:e1:ea:70:83:9b:b4:a7:43:4e:05:65:d5:a1:40:
92:b7:a5:c5:52:79:a2:30:c9:0e:84:ec:d0:93:e7:93:cc:3d:
87:3a:e8:8d:f4:7c:42:be:72:98:a1:75:1e:97:22:e3:c0:ef:
7e:12:5d:c6:e5:7d:80:15:62:69:8f:ba:69:28:7d:6e:62:1c:
18:b5:7e:30:e9:cf:cd:61:62:c2:1f:02:df:91:c7:3a:d4:b4:
74:1c:b1:2c:08:cd:ef:d4:55:11:3b:92:65:10:ce:19:a3:5c:
8b:c3:09:13
-----BEGIN CERTIFICATE-----
MIIFvTCCBKWgAwIBAgIUZbESCTgR5Kr+Yam+NYBqWjTixGgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjUzQkNDQzhEQUIwNDU5QTVEMjNCQ0IxNDM3OTM4QUM2
MTVENTAyMzAeFw0yNTAyMDQxOTU1MzFaFw0yNjAyMDMyMDAwMzFaMDMxMTAvBgNV
BAMTKEYyNjVCRjQ4NDhGRTg3MEIxNUE4RDA3QkRDOTQ3NzM3QkYwOEE2MDUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP00IQRTrwp/OH/CuJi2CBvEJ/
Hiwfk6aiVJ1wryHVCQEfm5UQOV3DsJXfoS2z8pYSVMM6DhGbMeyV0tKh9tipykz7
5+4kAOTrspbWRZkflk3YPyS6OdlOLFwKtAv0pQN+8TpUjNanyK34ximeVknruvGW
Y7nUgnbiRehlzPZPm6A0NUzTo+OQJvFDp5vm95ImniXCz0gU4/oScaJXS5EvDQSH
5izUhyOCfi6IqNJWxEO3lAOsEbqYdCy+h89Cn1u+okXlVoRK1gbrz8GDN/QnaUcF
b08oFgopembRnkR0kd0ipYSaEVRyLGtvmimLXbaAB5HvCptiA23XBzhd9uZnAgMB
AAGjggLHMIICwzAdBgNVHQ4EFgQU8mW/SEj+hwsVqNB73JR3N78IpgUwHwYDVR0j
BBgwFoAUZTvMyNqwRZpdI7yxQ3k4rGFdUCMwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy85QTU5NDQ2MTFGREYyQjJDQ0FEMDM2MzkwNjU4RDM3QThD
Qzg5RUVENEQxRTM2REQ2RUFBNUI0MjcyMzg0RDgxLzAvNjUzQkNDQzhEQUIwNDU5
QTVEMjNCQ0IxNDM3OTM4QUM2MTVENTAyMy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC82NTNCQ0NDOERBQjA0NTlBNUQy
M0JDQjE0Mzc5MzhBQzYxNUQ1MDIzLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvOUE1OTQ0NjExRkRGMkIyQ0NBRDAzNjM5MDY1OEQzN0E4Q0M4OUVFRDRE
MUUzNkRENkVBQTVCNDI3MjM4NEQ4MS8wLzMyMzgzMDMzM2EzODM2MzgzMDNhM2Ey
ZjMzMzIyZDM0MzgyMDNkM2UyMDM1MzIzNDM2MzUucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAoA4aAMA0G
CSqGSIb3DQEBCwUAA4IBAQAJ8ooWNBiUJNv41GGVymynyQ3eLyGz04tIY5A6jkkc
pa/e3y7zqE1ZvRBGAo+poYEZumeXelB3Ep6DXeRvknZdHAHcRaSErwoqLppOHkJU
+s5upmtcdeSSm/GAdHf4bHHLPYz/WOI8S4o5n8bDuwDO4vNt6cArGZo+57F8J0Kv
XwGfm28OVfP9lAbO+ZMpDiLK+Cy14epwg5u0p0NOBWXVoUCSt6XFUnmiMMkOhOzQ
k+eTzD2HOuiN9HxCvnKYoXUelyLjwO9+El3G5X2AFWJpj7ppKH1uYhwYtX4w6c/N
YWLCHwLfkcc61LR0HLEsCM3v1FURO5JlEM4Zo1yLwwkT
-----END CERTIFICATE-----
Generated at Sun Apr 6 01:49:41 2025 by rpki-client