Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A25E89F4F69E20A98D165507397EBBC5063527E2190D90A37E39F6982AC91AD7/0/323830303a3439303a3a2f33322d3430203d3e203237393531.roa
File: 323830303a3439303a3a2f33322d3430203d3e203237393531.roa (raw, json)
Hash identifier: o0Ga3FXdsQEcFdLzCoxCU2PMOex/7+pJnPgKkoC1cqc=
Subject key identifier: 94:AF:3A:2A:14:D7:DB:46:28:7A:29:6D:D0:71:CF:43:39:15:2B:2C
Certificate issuer: /CN=B5EDDA57DBA25BBD4052D6AE0DECF740EA27B57C
Certificate serial: 34EF047AABC2922B1812356474EAB1AD67707E7D
Authority key identifier: B5:ED:DA:57:DB:A2:5B:BD:40:52:D6:AE:0D:EC:F7:40:EA:27:B5:7C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B5EDDA57DBA25BBD4052D6AE0DECF740EA27B57C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A25E89F4F69E20A98D165507397EBBC5063527E2190D90A37E39F6982AC91AD7/0/323830303a3439303a3a2f33322d3430203d3e203237393531.roa
Signing time: Tue 04 Feb 2025 19:56:53 +0000
ROA not before: Tue 04 Feb 2025 19:51:53 +0000
ROA not after: Tue 03 Feb 2026 19:56:53 +0000
asID: 27951
IP address blocks: 2800:490::/32 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:ef:04:7a:ab:c2:92:2b:18:12:35:64:74:ea:b1:ad:67:70:7e:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B5EDDA57DBA25BBD4052D6AE0DECF740EA27B57C
Validity
Not Before: Feb 4 19:51:53 2025 GMT
Not After : Feb 3 19:56:53 2026 GMT
Subject: CN=94AF3A2A14D7DB46287A296DD071CF4339152B2C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c5:f2:ac:cb:32:7c:6d:0e:7b:ed:61:3b:30:
ef:92:36:6e:a6:1c:74:78:a7:3a:df:8e:6c:f8:19:
b7:94:b6:c4:28:a8:5e:98:25:f7:b6:e2:c4:2f:5a:
59:0b:cb:fa:2b:ba:89:b2:8d:ba:44:35:70:7b:cf:
c7:5f:fe:7e:20:91:78:29:62:e9:b1:1e:43:fc:51:
54:7e:ae:83:0e:8d:f6:e8:05:7a:d6:47:7a:75:aa:
4f:bf:9f:0d:b5:c6:d3:17:ce:97:33:3b:a4:ba:24:
a4:2b:8f:f4:9b:1e:6e:c9:e4:b1:cd:32:9a:4d:a0:
e0:ec:91:a3:df:91:9b:87:f4:34:b3:2c:fe:1d:d6:
d8:24:f7:12:74:b2:b7:a0:5f:2e:1e:12:b0:a7:00:
cd:af:a1:18:32:94:eb:6c:5f:74:f0:45:22:e7:26:
8d:fb:f7:34:d9:91:e1:07:a4:07:6b:02:a3:09:34:
9b:88:a0:3a:62:ce:9b:31:19:9d:e2:42:91:8d:30:
d9:ed:a4:d1:0c:1d:18:19:65:f8:4b:3b:eb:d5:ff:
90:22:81:65:af:a1:52:0c:4c:d8:df:4a:28:ac:56:
37:b0:92:fb:0a:dc:63:7c:5d:eb:dc:36:d9:73:ef:
65:c7:3a:00:57:dc:60:21:7e:3f:d3:1a:9b:0c:cf:
c8:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:AF:3A:2A:14:D7:DB:46:28:7A:29:6D:D0:71:CF:43:39:15:2B:2C
X509v3 Authority Key Identifier:
keyid:B5:ED:DA:57:DB:A2:5B:BD:40:52:D6:AE:0D:EC:F7:40:EA:27:B5:7C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A25E89F4F69E20A98D165507397EBBC5063527E2190D90A37E39F6982AC91AD7/0/B5EDDA57DBA25BBD4052D6AE0DECF740EA27B57C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B5EDDA57DBA25BBD4052D6AE0DECF740EA27B57C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A25E89F4F69E20A98D165507397EBBC5063527E2190D90A37E39F6982AC91AD7/0/323830303a3439303a3a2f33322d3430203d3e203237393531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2800:490::/32
Signature Algorithm: sha256WithRSAEncryption
c4:10:5c:c0:39:27:b9:46:50:cd:78:e9:87:8c:41:a1:e3:ed:
26:62:75:cf:34:d2:76:4f:96:c3:76:e7:34:b8:f0:32:4c:80:
56:27:98:79:22:f8:5b:0a:b1:ac:44:3a:56:13:42:58:de:2a:
98:3e:67:a9:52:d8:8e:3a:c6:64:cd:4f:f6:84:8f:30:19:51:
42:91:a4:97:b9:d1:6e:89:98:e4:c6:75:1d:dc:b0:cf:de:5d:
60:5f:82:ab:78:d3:58:8f:65:0c:d8:8f:06:f3:a7:58:92:ce:
a0:d8:43:6b:8a:cb:2d:a6:cb:3b:68:6a:97:e3:2e:18:d0:61:
5a:ee:5a:60:86:d6:6d:b6:05:83:21:82:7a:a3:a9:44:5f:08:
0c:59:af:bb:2d:ae:7e:d7:5b:e2:9e:c0:b4:3f:21:06:71:c9:
67:46:62:8a:a8:7a:f2:e2:ca:51:16:3d:2b:b8:2d:01:c3:33:
8a:f2:c4:85:66:c4:7a:87:b0:49:02:84:08:82:40:35:a3:b4:
2e:24:17:f9:de:38:91:38:81:11:e4:e1:f9:3f:4f:f7:00:b3:
9e:6f:4f:cc:7c:18:5d:7f:77:e0:df:31:93:b9:73:77:94:1e:
3e:7f:14:ef:e8:84:79:34:17:fb:4a:9d:bd:a5:45:f8:95:28:
aa:ea:00:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:35:19 2025 by rpki-client