Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A27B7339A57F2A4D198BBD6C5D5F64CE1AF814B409354771A230A2F02198539F/0/323830333a646230303a3a2f33322d3438203d3e20323632323334.roa
File: 323830333a646230303a3a2f33322d3438203d3e20323632323334.roa (raw, json)
Hash identifier: IJALdVmNN1AgDpzEzbtEykGeHrj3Tgwn0yNVf0UL/aQ=
Subject key identifier: F4:95:E7:7B:37:CB:E3:80:3A:89:E3:D8:48:A3:41:E6:CA:5E:45:D6
Certificate issuer: /CN=220AE4263EC4510BDEEDA90B2E56F50C63919DF0
Certificate serial: 205187431BC7A16D7A533753D657D2681DE69F46
Authority key identifier: 22:0A:E4:26:3E:C4:51:0B:DE:ED:A9:0B:2E:56:F5:0C:63:91:9D:F0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/220AE4263EC4510BDEEDA90B2E56F50C63919DF0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A27B7339A57F2A4D198BBD6C5D5F64CE1AF814B409354771A230A2F02198539F/0/323830333a646230303a3a2f33322d3438203d3e20323632323334.roa
Signing time: Tue 04 Feb 2025 17:59:02 +0000
ROA not before: Tue 04 Feb 2025 17:54:02 +0000
ROA not after: Tue 03 Feb 2026 17:59:02 +0000
asID: 262234
IP address blocks: 2803:db00::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:51:87:43:1b:c7:a1:6d:7a:53:37:53:d6:57:d2:68:1d:e6:9f:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=220AE4263EC4510BDEEDA90B2E56F50C63919DF0
Validity
Not Before: Feb 4 17:54:02 2025 GMT
Not After : Feb 3 17:59:02 2026 GMT
Subject: CN=F495E77B37CBE3803A89E3D848A341E6CA5E45D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:88:ef:38:8f:81:47:03:07:be:fd:8d:dc:f1:
b3:0f:ea:8f:bf:64:83:12:91:e6:67:a2:f1:6e:37:
fd:9b:df:11:d6:db:b6:b3:79:50:18:5c:bd:78:57:
cc:6c:c0:76:9b:9f:d6:86:14:dc:43:64:4e:95:5d:
9f:bc:3c:51:4c:2f:f0:26:98:14:7f:6f:aa:1e:b6:
68:99:9f:83:b9:ac:5c:a3:e6:d4:35:3d:ab:03:51:
d3:57:0e:a7:e4:a5:9d:c7:80:0a:b7:69:b4:f2:c7:
34:4d:a1:6f:16:07:3e:56:39:64:fa:c6:9f:a7:d8:
ab:2d:18:0b:e8:94:e0:dc:49:4d:3e:7b:fc:3c:2c:
f6:d4:7b:17:f1:fe:e0:9a:42:5c:b6:4e:12:39:e5:
48:14:21:fa:ce:01:13:89:22:ab:2a:5e:80:94:1c:
51:1b:ae:f7:37:5d:d8:29:62:ae:9b:19:66:eb:85:
ce:12:b3:2f:00:df:b8:c5:bb:36:99:30:3c:91:db:
ee:1f:4f:65:2b:c9:ae:66:4e:9a:bd:6c:d4:2a:97:
03:8b:11:1a:cd:f0:58:bc:a1:bb:e8:21:4d:bb:72:
e4:3f:8c:b7:c6:83:0a:19:c0:06:1a:f3:62:31:a0:
94:b2:71:41:6b:da:d4:2c:2c:67:03:89:b9:c4:96:
76:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:95:E7:7B:37:CB:E3:80:3A:89:E3:D8:48:A3:41:E6:CA:5E:45:D6
X509v3 Authority Key Identifier:
keyid:22:0A:E4:26:3E:C4:51:0B:DE:ED:A9:0B:2E:56:F5:0C:63:91:9D:F0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A27B7339A57F2A4D198BBD6C5D5F64CE1AF814B409354771A230A2F02198539F/0/220AE4263EC4510BDEEDA90B2E56F50C63919DF0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/220AE4263EC4510BDEEDA90B2E56F50C63919DF0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A27B7339A57F2A4D198BBD6C5D5F64CE1AF814B409354771A230A2F02198539F/0/323830333a646230303a3a2f33322d3438203d3e20323632323334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:db00::/32
Signature Algorithm: sha256WithRSAEncryption
a9:c6:7e:23:8a:2e:47:11:0d:3d:47:82:c6:b2:6f:ee:a9:aa:
6b:7c:71:37:50:f1:10:3a:09:b9:e7:ff:9f:42:07:e5:0d:fa:
b5:c7:a8:d4:8b:83:43:f7:55:b7:24:48:c4:c8:4a:7f:5f:49:
0a:51:04:4e:8a:16:bc:ac:2f:e5:2e:d4:68:2f:48:eb:e7:53:
7f:05:4a:ce:56:fc:5e:9b:f9:2c:4d:a6:4c:65:b4:1e:aa:16:
3f:11:de:cd:74:7a:c5:2f:72:2c:f8:54:90:b0:09:d4:ef:44:
95:20:bf:17:b0:35:11:08:bc:49:45:17:75:3a:76:a8:27:38:
c4:c7:c2:f4:8b:bf:e2:fd:7a:a0:09:7d:39:14:50:84:31:17:
ac:d6:b0:5a:b9:f8:73:30:fe:69:43:43:8b:c6:e9:28:d9:79:
bc:c4:b8:56:40:fa:14:c5:86:43:09:4c:ad:76:0d:8f:f4:a0:
bb:b3:65:89:ee:20:0c:87:b8:f9:00:73:ab:14:aa:94:04:9f:
84:28:c1:35:04:d3:ce:14:00:d5:b7:60:2e:ed:59:d1:21:47:
37:f4:4b:39:eb:f2:77:4c:30:88:66:48:f3:3c:09:75:6c:a2:
4a:03:da:62:b6:d8:e5:9f:b4:a8:d7:5e:dc:d2:cc:9b:f0:d7:
1f:bd:62:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:19:20 2025 by rpki-client