Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/323830303a3132303a3a2f33322d3438203d3e203237383433.roa
File: 323830303a3132303a3a2f33322d3438203d3e203237383433.roa (raw, json)
Hash identifier: 2URGeeoEjxzOBRaLrzhAwnUaEAZTwdEoimPqRsvdhZo=
Subject key identifier: 54:B6:D5:A1:B0:D3:23:03:74:21:75:76:EC:43:0B:7F:DC:E6:D3:55
Certificate issuer: /CN=9F08D38D4571C09A83B45ACFD10AEB7826CE8F84
Certificate serial: 761DB04019BFA7E446872C91E3FBA04DA79BD27A
Authority key identifier: 9F:08:D3:8D:45:71:C0:9A:83:B4:5A:CF:D1:0A:EB:78:26:CE:8F:84
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/323830303a3132303a3a2f33322d3438203d3e203237383433.roa
Signing time: Tue 04 Feb 2025 18:06:10 +0000
ROA not before: Tue 04 Feb 2025 18:01:10 +0000
ROA not after: Tue 03 Feb 2026 18:06:10 +0000
asID: 27843
IP address blocks: 2800:120::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:1d:b0:40:19:bf:a7:e4:46:87:2c:91:e3:fb:a0:4d:a7:9b:d2:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9F08D38D4571C09A83B45ACFD10AEB7826CE8F84
Validity
Not Before: Feb 4 18:01:10 2025 GMT
Not After : Feb 3 18:06:10 2026 GMT
Subject: CN=54B6D5A1B0D3230374217576EC430B7FDCE6D355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d1:27:dd:8b:a2:5a:e9:bc:8d:51:36:a4:c0:
d9:c7:b2:5a:b5:e2:66:bb:76:8c:02:0b:8f:05:48:
90:a0:68:99:e7:1a:07:a9:c8:eb:ed:dd:b2:d4:46:
8f:61:60:da:45:ac:3b:21:c0:fa:cb:8f:fd:9b:2c:
3d:bc:33:ed:9d:ea:12:f0:cc:8b:55:c0:d6:24:2a:
14:e7:2a:c9:b5:6b:92:d6:a9:2d:d3:57:16:a9:84:
b6:56:37:8d:4c:0f:0b:34:56:fc:c0:3c:31:ff:76:
94:2b:ae:1c:1a:ea:25:6c:18:91:ad:02:b0:8b:af:
84:84:5b:1a:4c:67:9e:f3:d1:b8:31:ef:76:3a:ad:
52:a4:7a:34:8c:8e:6b:00:ba:0a:2e:46:b0:e7:2a:
55:b8:a6:83:a5:5c:40:39:1a:03:35:fe:6d:8a:27:
44:da:8d:19:ed:59:c2:99:72:98:69:68:f0:e9:79:
a6:9a:5e:df:3c:3b:94:48:af:d4:f7:5c:6e:eb:12:
7f:a3:59:de:f1:a9:0a:32:d5:68:e0:1e:68:68:d9:
f0:87:91:7d:c0:2c:f6:8d:65:d5:43:b3:83:18:64:
18:fa:47:d6:c4:1f:bd:7c:0e:24:07:42:d9:29:51:
b6:84:ee:99:ad:24:a9:b8:3c:37:3b:6d:e9:ce:17:
28:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:B6:D5:A1:B0:D3:23:03:74:21:75:76:EC:43:0B:7F:DC:E6:D3:55
X509v3 Authority Key Identifier:
keyid:9F:08:D3:8D:45:71:C0:9A:83:B4:5A:CF:D1:0A:EB:78:26:CE:8F:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/323830303a3132303a3a2f33322d3438203d3e203237383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2800:120::/32
Signature Algorithm: sha256WithRSAEncryption
20:07:98:12:b8:31:7d:b2:e0:de:dd:96:3e:be:3d:d6:bb:e0:
60:6c:08:5d:cf:5d:66:41:69:5f:fe:93:db:51:2d:46:44:b2:
8d:60:64:43:27:b5:f8:0b:87:d3:76:4a:21:76:f0:ec:bd:8d:
41:67:a2:fc:b6:6c:c5:81:2a:5d:bd:2a:c7:ff:f1:16:68:05:
49:f2:f2:bc:eb:a0:fe:d8:8b:b5:df:4e:6f:48:29:2c:2e:f7:
b2:2b:35:7f:59:ba:ad:02:6b:8c:58:dc:67:2b:74:d4:b4:c6:
de:61:a3:f6:3e:66:7f:6b:36:2f:6e:bf:ac:ed:9e:b3:1f:48:
8f:1a:28:e6:3a:f4:ba:99:7f:7a:9b:3f:f9:5e:3c:88:88:13:
7f:27:30:87:71:43:8b:df:87:c8:05:7d:22:7f:75:c5:54:eb:
f3:87:95:e0:03:d3:e8:a0:1f:10:8b:d0:97:37:d7:61:ec:14:
11:54:59:6b:39:4b:8c:3b:ab:d2:d4:42:a3:1b:db:9f:a1:9e:
6f:55:10:3c:51:48:c8:86:0c:ed:41:4d:bf:f5:27:2a:f0:58:
a6:ce:d2:f3:83:2a:41:6d:8c:9b:d3:6c:1d:af:d1:4c:ec:e0:
4f:ef:50:05:4d:4b:0f:de:de:21:f4:bc:c2:69:bd:6b:6b:a1:
e1:2d:b8:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:37:09 2025 by rpki-client