Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AA65778EA2BA3F645381CFB03A90993513067039B2404F9272E8401B13C62151/0/323830313a303a3464303a3a2f34382d3438203d3e20313938393439.roa
File: 323830313a303a3464303a3a2f34382d3438203d3e20313938393439.roa (raw, json)
Hash identifier: gK/4dY9ZvpFbft95QUbDJw0dLWLTaDX6niJGBO1umRk=
Subject key identifier: 70:B8:36:D4:FD:45:9E:7F:90:A3:AE:9B:DB:DB:48:F4:68:2D:7A:BA
Certificate issuer: /CN=63DAFE7C6D072AD758B2EAA7C654C528C8DD256B
Certificate serial: 2B75F680C49A0BB2470A081C67C574B3C83B8DDE
Authority key identifier: 63:DA:FE:7C:6D:07:2A:D7:58:B2:EA:A7:C6:54:C5:28:C8:DD:25:6B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/63DAFE7C6D072AD758B2EAA7C654C528C8DD256B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AA65778EA2BA3F645381CFB03A90993513067039B2404F9272E8401B13C62151/0/323830313a303a3464303a3a2f34382d3438203d3e20313938393439.roa
Signing time: Tue 04 Feb 2025 18:53:49 +0000
ROA not before: Tue 04 Feb 2025 18:48:49 +0000
ROA not after: Tue 03 Feb 2026 18:53:49 +0000
asID: 198949
IP address blocks: 2801:0:4d0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:75:f6:80:c4:9a:0b:b2:47:0a:08:1c:67:c5:74:b3:c8:3b:8d:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63DAFE7C6D072AD758B2EAA7C654C528C8DD256B
Validity
Not Before: Feb 4 18:48:49 2025 GMT
Not After : Feb 3 18:53:49 2026 GMT
Subject: CN=70B836D4FD459E7F90A3AE9BDBDB48F4682D7ABA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:60:76:e6:39:4c:c7:05:f8:ff:95:55:1d:e7:
d0:90:25:ed:c8:1d:98:87:3f:bc:a5:25:20:d2:ed:
dc:de:5b:7e:8f:89:00:63:9a:07:5d:4a:8c:39:79:
32:64:7f:15:a6:e5:9a:b6:da:2a:78:5f:5a:d5:4f:
d1:bb:80:bb:dc:73:f4:2c:e6:3d:8a:09:17:64:a6:
27:37:a4:43:ba:ec:87:0c:6d:b2:66:55:9c:66:71:
b5:6b:4f:23:46:15:b6:39:81:3c:64:93:61:c7:64:
4d:8e:6a:b1:f3:0b:30:f6:74:32:de:a5:fc:0d:b6:
9e:09:11:20:9d:e0:5b:73:4e:af:48:ec:ff:f5:49:
62:01:56:78:f4:af:cf:9e:84:f3:e7:61:3e:33:07:
55:ae:71:9b:17:b7:08:88:51:e5:bb:a7:39:51:6f:
58:e8:81:4b:b0:66:32:81:cd:53:20:d7:fc:72:be:
9c:ae:06:4c:d2:bf:cf:de:6e:45:e7:21:a7:14:c2:
02:48:49:90:a8:17:6e:01:05:64:9f:19:6f:c9:fe:
23:cc:3e:71:ca:92:92:cc:f8:3c:f9:da:47:25:e7:
bc:f0:dc:65:a4:17:91:61:48:48:64:b6:7e:a5:d4:
f1:ef:a9:88:12:f2:4f:5d:5b:08:a1:93:6a:44:9c:
b1:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:B8:36:D4:FD:45:9E:7F:90:A3:AE:9B:DB:DB:48:F4:68:2D:7A:BA
X509v3 Authority Key Identifier:
keyid:63:DA:FE:7C:6D:07:2A:D7:58:B2:EA:A7:C6:54:C5:28:C8:DD:25:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/AA65778EA2BA3F645381CFB03A90993513067039B2404F9272E8401B13C62151/0/63DAFE7C6D072AD758B2EAA7C654C528C8DD256B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/63DAFE7C6D072AD758B2EAA7C654C528C8DD256B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AA65778EA2BA3F645381CFB03A90993513067039B2404F9272E8401B13C62151/0/323830313a303a3464303a3a2f34382d3438203d3e20313938393439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:0:4d0::/48
Signature Algorithm: sha256WithRSAEncryption
30:47:18:82:8b:1e:5e:76:e6:ca:b2:a9:7d:4b:18:e3:f5:fe:
95:1a:5b:ac:3c:01:51:bc:54:c6:07:ac:67:3a:b7:e4:35:0e:
40:18:a5:49:55:dd:b9:12:06:46:9a:f8:a9:40:63:5c:92:c5:
4d:ae:50:27:ce:55:35:b0:34:59:e3:0f:4a:13:66:25:f1:d3:
76:22:6c:37:d8:87:a5:4b:47:1e:d9:13:b8:2d:aa:f0:c6:d8:
b9:33:cb:2f:b0:a0:79:43:4b:80:22:72:a2:63:c0:d1:f9:a2:
43:e2:64:cc:ff:14:2a:bd:be:74:90:66:0d:08:9b:42:b7:7f:
66:6d:cf:b3:f9:3b:24:39:7a:0a:b8:e0:a5:9e:4a:32:8b:80:
13:96:fd:23:cd:2a:7b:5d:81:fd:59:44:74:fd:f6:b2:f6:b9:
9e:1f:b1:c2:29:34:73:38:87:7f:8c:3c:7b:b9:27:6e:c1:46:
33:0d:03:ce:b1:a5:2b:55:45:7d:fb:c7:af:4d:73:b8:92:46:
8c:f4:aa:6b:50:cd:43:4d:c7:e2:dd:be:0e:be:86:79:e4:ef:
32:ae:81:5a:a9:b4:da:07:d5:63:a5:d9:4c:74:73:45:a2:81:
6b:94:8f:3a:c9:4e:b4:ff:30:94:79:86:f0:3e:2b:1e:92:97:
42:64:26:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:59:09 2025 by rpki-client