Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A25E89F4F69E20A98D165507397EBBC5063527E2190D90A37E39F6982AC91AD7/0/323830303a3439303a343830303a3a2f34302d3430203d3e203237393531.roa
File: 323830303a3439303a343830303a3a2f34302d3430203d3e203237393531.roa (raw, json)
Hash identifier: DQWYP/cLFUT3uaf3uyzTAgstG9nmHguQgITIr3154Jg=
Subject key identifier: 9D:E0:81:9F:AD:78:C8:B7:83:B0:2E:E1:A1:95:7D:C2:A2:DF:31:6E
Certificate issuer: /CN=B5EDDA57DBA25BBD4052D6AE0DECF740EA27B57C
Certificate serial: 3B33BE7CF2CB76EB9CDF57BD1E5276337DF83022
Authority key identifier: B5:ED:DA:57:DB:A2:5B:BD:40:52:D6:AE:0D:EC:F7:40:EA:27:B5:7C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B5EDDA57DBA25BBD4052D6AE0DECF740EA27B57C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A25E89F4F69E20A98D165507397EBBC5063527E2190D90A37E39F6982AC91AD7/0/323830303a3439303a343830303a3a2f34302d3430203d3e203237393531.roa
Signing time: Tue 04 Feb 2025 19:56:53 +0000
ROA not before: Tue 04 Feb 2025 19:51:53 +0000
ROA not after: Tue 03 Feb 2026 19:56:53 +0000
asID: 27951
IP address blocks: 2800:490:4800::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:33:be:7c:f2:cb:76:eb:9c:df:57:bd:1e:52:76:33:7d:f8:30:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B5EDDA57DBA25BBD4052D6AE0DECF740EA27B57C
Validity
Not Before: Feb 4 19:51:53 2025 GMT
Not After : Feb 3 19:56:53 2026 GMT
Subject: CN=9DE0819FAD78C8B783B02EE1A1957DC2A2DF316E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3b:f5:0f:3e:7f:42:2a:49:2c:68:33:73:3e:
6c:e6:7a:b6:69:27:4f:1f:27:64:47:00:81:47:52:
d3:d2:d1:85:e3:ea:0e:fd:32:4f:eb:40:ac:9f:4a:
36:e4:d0:ba:8d:d4:4d:63:4a:23:fa:b6:d8:c2:dc:
63:41:b1:2a:19:a4:a8:20:8a:11:c9:e5:f1:54:49:
fc:12:c6:56:cb:26:55:08:04:c3:bd:c5:44:e6:9b:
85:5d:c9:ab:b1:78:86:eb:a9:de:bc:a8:fc:ba:53:
75:93:ba:ed:72:a2:5f:22:f0:71:6a:88:a2:9e:d4:
e3:bc:e3:cd:50:0a:5b:0e:8b:f3:3e:ec:20:d9:b4:
45:d3:f9:bd:b8:b1:97:b9:01:d4:f9:13:bd:96:18:
26:f7:55:e0:6a:d1:00:be:1e:ab:28:ce:c0:46:c4:
49:c8:a8:94:32:1a:65:46:e4:40:f6:60:f5:b7:c7:
7b:dd:7d:3f:9a:ae:4c:fd:47:e5:ae:b5:26:af:01:
10:1b:75:2c:f7:fb:f0:3c:68:8a:fb:d6:cd:04:5c:
ef:26:63:68:55:28:a2:32:81:ea:17:8b:8a:e4:a0:
a2:45:a3:3a:f7:b3:18:e9:0e:c3:b3:bc:e2:a7:6e:
c9:2e:8d:50:1d:bb:bc:78:9d:24:44:6c:27:87:ef:
c0:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:E0:81:9F:AD:78:C8:B7:83:B0:2E:E1:A1:95:7D:C2:A2:DF:31:6E
X509v3 Authority Key Identifier:
keyid:B5:ED:DA:57:DB:A2:5B:BD:40:52:D6:AE:0D:EC:F7:40:EA:27:B5:7C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A25E89F4F69E20A98D165507397EBBC5063527E2190D90A37E39F6982AC91AD7/0/B5EDDA57DBA25BBD4052D6AE0DECF740EA27B57C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B5EDDA57DBA25BBD4052D6AE0DECF740EA27B57C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A25E89F4F69E20A98D165507397EBBC5063527E2190D90A37E39F6982AC91AD7/0/323830303a3439303a343830303a3a2f34302d3430203d3e203237393531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2800:490:4800::/40
Signature Algorithm: sha256WithRSAEncryption
44:26:91:bd:bd:20:fe:5f:63:6c:57:36:cb:64:9b:b7:cf:a7:
82:98:e2:d8:31:c8:bb:7d:fa:8e:5a:30:19:10:78:18:76:16:
04:d9:23:72:70:b4:af:fb:40:39:b4:dc:52:b0:0a:01:b8:cb:
20:2f:14:f5:7d:97:f7:1b:8a:c0:d4:8c:eb:93:9e:f5:68:e6:
c7:41:32:1d:a7:79:92:ec:6f:de:e7:49:a0:cd:76:4b:2e:0d:
cb:87:0b:b0:83:75:ca:cd:79:14:b1:88:52:1b:f3:1c:23:25:
60:61:cb:ec:7e:1f:fb:a2:bd:51:71:49:e2:f0:fc:75:12:5b:
a2:8b:43:90:61:18:a4:cc:05:d2:6e:0e:54:7e:4f:5c:b9:65:
1b:a0:95:35:eb:be:95:70:57:93:d8:f1:a7:a5:bd:33:4c:49:
21:bd:70:e8:c6:45:16:d3:62:7e:b5:1c:c7:b2:10:28:89:64:
d3:d4:53:11:8a:cd:4e:40:3f:e2:52:27:16:6d:35:2e:c9:d6:
19:f6:4f:69:eb:d3:83:85:73:f6:72:ae:3e:5a:56:07:67:00:
12:68:07:78:c9:5e:39:c8:49:73:94:fa:e2:ee:17:f4:9f:7e:
e5:ae:0a:1a:d9:83:d9:4d:e5:ed:86:b0:31:bb:8e:17:79:40:
4a:21:92:68
-----BEGIN CERTIFICATE-----
MIIFxjCCBK6gAwIBAgIUOzO+fPLLduuc31e9HlJ2M334MCIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjVFRERBNTdEQkEyNUJCRDQwNTJENkFFMERFQ0Y3NDBF
QTI3QjU3QzAeFw0yNTAyMDQxOTUxNTNaFw0yNjAyMDMxOTU2NTNaMDMxMTAvBgNV
BAMTKDlERTA4MTlGQUQ3OEM4Qjc4M0IwMkVFMUExOTU3REMyQTJERjMxNkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6O/UPPn9CKkksaDNzPmzmerZp
J08fJ2RHAIFHUtPS0YXj6g79Mk/rQKyfSjbk0LqN1E1jSiP6ttjC3GNBsSoZpKgg
ihHJ5fFUSfwSxlbLJlUIBMO9xUTmm4VdyauxeIbrqd68qPy6U3WTuu1yol8i8HFq
iKKe1OO8481QClsOi/M+7CDZtEXT+b24sZe5AdT5E72WGCb3VeBq0QC+HqsozsBG
xEnIqJQyGmVG5ED2YPW3x3vdfT+arkz9R+WutSavARAbdSz3+/A8aIr71s0EXO8m
Y2hVKKIygeoXi4rkoKJFozr3sxjpDsOzvOKnbskujVAdu7x4nSREbCeH78DBAgMB
AAGjggLQMIICzDAdBgNVHQ4EFgQUneCBn614yLeDsC7hoZV9wqLfMW4wHwYDVR0j
BBgwFoAUte3aV9uiW71AUtauDez3QOontXwwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9BMjVFODlGNEY2OUUyMEE5OEQxNjU1MDczOTdFQkJDNTA2
MzUyN0UyMTkwRDkwQTM3RTM5RjY5ODJBQzkxQUQ3LzAvQjVFRERBNTdEQkEyNUJC
RDQwNTJENkFFMERFQ0Y3NDBFQTI3QjU3Qy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9CNUVEREE1N0RCQTI1QkJENDA1
MkQ2QUUwREVDRjc0MEVBMjdCNTdDLmNlcjCBzQYIKwYBBQUHAQsEgcAwgb0wgboG
CCsGAQUFBzALhoGtcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQTI1RTg5RjRGNjlFMjBBOThEMTY1NTA3Mzk3RUJCQzUwNjM1MjdFMjE5
MEQ5MEEzN0UzOUY2OTgyQUM5MUFENy8wLzMyMzgzMDMwM2EzNDM5MzAzYTM0Mzgz
MDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzIzNzM5MzUzMS5yb2EwGAYDVR0g
AQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMG
ACgABJBIMA0GCSqGSIb3DQEBCwUAA4IBAQBEJpG9vSD+X2NsVzbLZJu3z6eCmOLY
Mci7ffqOWjAZEHgYdhYE2SNycLSv+0A5tNxSsAoBuMsgLxT1fZf3G4rA1Izrk571
aObHQTIdp3mS7G/e50mgzXZLLg3Lhwuwg3XKzXkUsYhSG/McIyVgYcvsfh/7or1R
cUni8Px1Eluii0OQYRikzAXSbg5Ufk9cuWUboJU1676VcFeT2PGnpb0zTEkhvXDo
xkUW02J+tRzHshAoiWTT1FMRis1OQD/iUicWbTUuydYZ9k9p69ODhXP2cq4+WlYH
ZwASaAd4yV45yElzlPri7hf0n37lrgoa2YPZTeXthrAxu44XeUBKIZJo
-----END CERTIFICATE-----
Generated at Sat Apr 5 16:37:17 2025 by rpki-client