Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9B53C7950BBE656EF7F2EC865AA04CF91DC6A83A8DAB1AF2DAF457FB1F0DB562/0/323830363a3230323a3830303a3a2f33372d3337203d3e203238343538.roa
File: 323830363a3230323a3830303a3a2f33372d3337203d3e203238343538.roa (raw, json)
Hash identifier: IKhO5MfZpsH0lcbXC63AubrKa4WqI70hCoLrINzSS0g=
Subject key identifier: BD:83:BB:9D:2F:65:0D:44:50:96:81:8D:5D:E2:4A:CE:34:1C:6B:D5
Certificate issuer: /CN=ABF23E4AFAADE37425B619826C8E00E07EE26BEF
Certificate serial: 2AFE94F1F9B60CC999F166F74E8D9D9913FFFD38
Authority key identifier: AB:F2:3E:4A:FA:AD:E3:74:25:B6:19:82:6C:8E:00:E0:7E:E2:6B:EF
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/ABF23E4AFAADE37425B619826C8E00E07EE26BEF.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9B53C7950BBE656EF7F2EC865AA04CF91DC6A83A8DAB1AF2DAF457FB1F0DB562/0/323830363a3230323a3830303a3a2f33372d3337203d3e203238343538.roa
Signing time: Tue 04 Feb 2025 19:58:07 +0000
ROA not before: Tue 04 Feb 2025 19:53:07 +0000
ROA not after: Tue 03 Feb 2026 19:58:07 +0000
asID: 28458
IP address blocks: 2806:202:800::/37 maxlen: 37
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:fe:94:f1:f9:b6:0c:c9:99:f1:66:f7:4e:8d:9d:99:13:ff:fd:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABF23E4AFAADE37425B619826C8E00E07EE26BEF
Validity
Not Before: Feb 4 19:53:07 2025 GMT
Not After : Feb 3 19:58:07 2026 GMT
Subject: CN=BD83BB9D2F650D445096818D5DE24ACE341C6BD5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:10:9f:cd:8b:af:59:2c:08:b9:35:0c:b4:c5:
f0:d3:96:8f:00:31:38:35:58:71:e7:b8:05:9a:d4:
b2:fb:0f:9d:93:de:16:ab:ac:3a:c2:08:1f:b7:40:
88:70:ca:93:34:47:b7:ea:fe:9c:57:6c:ac:99:03:
4c:4c:8d:91:b4:9d:59:90:45:8d:ba:b5:d1:7a:0e:
17:bc:aa:b5:38:ef:4b:16:19:19:19:57:68:cf:54:
08:6e:34:28:00:ad:dd:3c:07:3e:6c:30:c6:a4:de:
cf:28:07:60:37:2f:fa:46:49:7d:7d:46:a2:a2:61:
9d:e1:9a:c8:a9:a9:44:9b:69:60:4c:9c:5b:6c:e9:
a8:b6:f0:ac:0e:6d:9f:e9:db:be:aa:8b:01:52:84:
db:77:c6:11:03:a0:3a:ae:0e:97:ac:b8:90:c7:ad:
f9:9d:69:a1:a6:16:81:e5:7f:43:39:cb:c0:23:77:
3b:57:da:42:c8:51:51:2d:b7:c9:64:4b:19:5e:99:
6b:60:a9:3e:ed:05:4c:72:80:e2:60:1b:b4:23:ac:
b8:c9:f8:50:90:b8:c4:59:44:ee:f5:89:eb:fa:32:
3e:17:87:51:68:ca:a9:02:f6:2a:53:b2:1d:e0:8b:
1a:bb:b0:e6:34:e3:60:32:bb:88:3d:09:c3:71:ac:
09:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:83:BB:9D:2F:65:0D:44:50:96:81:8D:5D:E2:4A:CE:34:1C:6B:D5
X509v3 Authority Key Identifier:
keyid:AB:F2:3E:4A:FA:AD:E3:74:25:B6:19:82:6C:8E:00:E0:7E:E2:6B:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9B53C7950BBE656EF7F2EC865AA04CF91DC6A83A8DAB1AF2DAF457FB1F0DB562/0/ABF23E4AFAADE37425B619826C8E00E07EE26BEF.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/ABF23E4AFAADE37425B619826C8E00E07EE26BEF.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9B53C7950BBE656EF7F2EC865AA04CF91DC6A83A8DAB1AF2DAF457FB1F0DB562/0/323830363a3230323a3830303a3a2f33372d3337203d3e203238343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2806:202:800::/37
Signature Algorithm: sha256WithRSAEncryption
97:82:4d:57:b7:f8:f2:ce:06:2c:88:15:5b:54:ae:35:99:7b:
b4:e2:95:dd:34:cd:fa:10:4f:c3:14:40:45:81:17:0a:75:66:
15:2c:24:b2:87:19:99:4f:4b:b9:67:9f:df:30:ca:dc:30:10:
50:e1:4f:46:48:e3:00:0f:10:cf:f7:5b:f5:dc:0c:17:77:8c:
e0:ff:d5:ee:9a:cd:39:de:e3:17:9c:f3:43:82:a2:77:bb:37:
a1:15:7c:21:3e:b6:bc:75:61:99:72:0b:3e:24:de:d7:9b:27:
8d:7c:7a:fd:5f:52:45:a2:da:88:68:eb:e7:76:99:59:8c:5d:
09:9c:24:80:31:b1:f2:fe:51:e3:2b:69:37:24:6e:18:b4:b2:
45:51:05:2d:2a:e6:c8:69:c6:34:ba:00:12:b1:14:9c:8c:60:
a9:16:1c:cb:57:f9:ec:ec:88:52:18:12:39:1d:36:c1:a2:08:
68:08:a0:f4:fe:fc:1d:6f:61:37:a2:ef:c6:b2:29:4d:03:91:
3c:ad:46:89:4b:c2:67:1f:23:2e:f2:13:dc:c1:27:ee:dd:69:
73:89:b3:48:50:dc:b9:58:48:b5:30:0b:9d:9b:61:de:0b:5b:
75:b2:23:e6:0b:f2:ca:11:8a:5b:68:40:81:24:9f:f3:d0:1c:
db:6e:f2:cc
-----BEGIN CERTIFICATE-----
MIIFxDCCBKygAwIBAgIUKv6U8fm2DMmZ8Wb3To2dmRP//TgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUJGMjNFNEFGQUFERTM3NDI1QjYxOTgyNkM4RTAwRTA3
RUUyNkJFRjAeFw0yNTAyMDQxOTUzMDdaFw0yNjAyMDMxOTU4MDdaMDMxMTAvBgNV
BAMTKEJEODNCQjlEMkY2NTBENDQ1MDk2ODE4RDVERTI0QUNFMzQxQzZCRDUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsEJ/Ni69ZLAi5NQy0xfDTlo8A
MTg1WHHnuAWa1LL7D52T3harrDrCCB+3QIhwypM0R7fq/pxXbKyZA0xMjZG0nVmQ
RY26tdF6Dhe8qrU470sWGRkZV2jPVAhuNCgArd08Bz5sMMak3s8oB2A3L/pGSX19
RqKiYZ3hmsipqUSbaWBMnFts6ai28KwObZ/p276qiwFShNt3xhEDoDquDpesuJDH
rfmdaaGmFoHlf0M5y8AjdztX2kLIUVEtt8lkSxlemWtgqT7tBUxygOJgG7QjrLjJ
+FCQuMRZRO71iev6Mj4Xh1FoyqkC9ipTsh3gixq7sOY042Ayu4g9CcNxrAlRAgMB
AAGjggLOMIICyjAdBgNVHQ4EFgQUvYO7nS9lDURQloGNXeJKzjQca9UwHwYDVR0j
BBgwFoAUq/I+Svqt43QlthmCbI4A4H7ia+8wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy85QjUzQzc5NTBCQkU2NTZFRjdGMkVDODY1QUEwNENGOTFE
QzZBODNBOERBQjFBRjJEQUY0NTdGQjFGMERCNTYyLzAvQUJGMjNFNEFGQUFERTM3
NDI1QjYxOTgyNkM4RTAwRTA3RUUyNkJFRi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9BQkYyM0U0QUZBQURFMzc0MjVC
NjE5ODI2QzhFMDBFMDdFRTI2QkVGLmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG
CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvOUI1M0M3OTUwQkJFNjU2RUY3RjJFQzg2NUFBMDRDRjkxREM2QTgzQThE
QUIxQUYyREFGNDU3RkIxRjBEQjU2Mi8wLzMyMzgzMDM2M2EzMjMwMzIzYTM4MzAz
MDNhM2EyZjMzMzcyZDMzMzcyMDNkM2UyMDMyMzgzNDM1Mzgucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgMo
BgICCDANBgkqhkiG9w0BAQsFAAOCAQEAl4JNV7f48s4GLIgVW1SuNZl7tOKV3TTN
+hBPwxRARYEXCnVmFSwksocZmU9LuWef3zDK3DAQUOFPRkjjAA8Qz/db9dwMF3eM
4P/V7prNOd7jF5zzQ4Kid7s3oRV8IT62vHVhmXILPiTe15snjXx6/V9SRaLaiGjr
53aZWYxdCZwkgDGx8v5R4ytpNyRuGLSyRVEFLSrmyGnGNLoAErEUnIxgqRYcy1f5
7OyIUhgSOR02waIIaAig9P78HW9hN6LvxrIpTQORPK1GiUvCZx8jLvIT3MEn7t1p
c4mzSFDcuVhItTALnZth3gtbdbIj5gvyyhGKW2hAgSSf89Ac227yzA==
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:06:19 2025 by rpki-client