Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/323830333a663038303a326332303a3a2f34332d3634203d3e203634313230.roa
File: 323830333a663038303a326332303a3a2f34332d3634203d3e203634313230.roa (raw, json)
Hash identifier: GiTBQmfWizvP+MkyyRk/42mlGeK8hIRRNOj+NqoveUw=
Subject key identifier: CB:21:BD:11:D7:C1:7C:69:73:70:32:38:A8:C9:23:D4:6F:D9:AD:58
Certificate issuer: /CN=D6017AACFB785EAB7EA56D24337CDCD724EAC2AD
Certificate serial: 040957E3016B5D9331E282D794C4A5DB1F0B768F
Authority key identifier: D6:01:7A:AC:FB:78:5E:AB:7E:A5:6D:24:33:7C:DC:D7:24:EA:C2:AD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/323830333a663038303a326332303a3a2f34332d3634203d3e203634313230.roa
Signing time: Tue 28 May 2024 02:40:02 +0000
ROA not before: Tue 28 May 2024 02:35:02 +0000
ROA not after: Tue 27 May 2025 02:40:02 +0000
asID: 64120
IP address blocks: 2803:f080:2c20::/43 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:09:57:e3:01:6b:5d:93:31:e2:82:d7:94:c4:a5:db:1f:0b:76:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D6017AACFB785EAB7EA56D24337CDCD724EAC2AD
Validity
Not Before: May 28 02:35:02 2024 GMT
Not After : May 27 02:40:02 2025 GMT
Subject: CN=CB21BD11D7C17C6973703238A8C923D46FD9AD58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5e:b9:26:a5:91:e7:c7:90:96:7c:2e:43:d5:
11:67:3a:1a:29:8e:84:96:cf:12:f7:0d:c3:68:37:
9d:d1:e4:06:96:71:d5:96:20:5c:c6:81:7d:ec:f8:
7b:34:d5:9a:4d:59:69:89:11:ed:32:a1:46:5d:9d:
00:b4:32:0e:35:aa:f2:51:22:9e:f6:76:4a:a4:e8:
6c:ad:c6:50:fd:68:c7:e7:71:fc:86:43:d5:04:bd:
07:fa:62:3a:2d:7a:c0:54:e8:6c:49:f1:ff:fa:95:
43:33:4b:56:9a:16:52:bd:46:02:28:20:c4:a4:7d:
48:05:b9:de:1c:ba:87:eb:21:10:d9:28:28:40:69:
be:20:e0:f4:df:22:01:c5:fc:5e:8d:02:2c:80:eb:
2c:f7:e7:f2:b3:ce:ac:83:e1:c6:47:0b:b7:05:08:
53:bf:56:c0:18:2b:c6:8f:18:aa:38:a1:c1:69:18:
13:f7:3c:18:f2:bd:00:06:37:2c:bf:a6:f7:53:80:
49:48:6e:20:91:a6:93:c8:15:c9:94:4c:d8:f5:04:
16:95:a1:0f:9f:b3:9b:d8:57:b9:03:e9:e5:f1:9f:
26:c3:06:9e:79:2d:57:0e:75:fd:82:50:b7:0b:f6:
5c:fe:48:ee:ef:aa:89:4e:35:a5:95:74:92:f0:af:
aa:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:21:BD:11:D7:C1:7C:69:73:70:32:38:A8:C9:23:D4:6F:D9:AD:58
X509v3 Authority Key Identifier:
keyid:D6:01:7A:AC:FB:78:5E:AB:7E:A5:6D:24:33:7C:DC:D7:24:EA:C2:AD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D6017AACFB785EAB7EA56D24337CDCD724EAC2AD.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AC21DFD96188FF031874093BEF78B7FC7E5E3CC40F23922D9CDE59CD11658C84/0/323830333a663038303a326332303a3a2f34332d3634203d3e203634313230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:f080:2c20::/43
Signature Algorithm: sha256WithRSAEncryption
6e:54:86:78:6c:25:7f:17:6c:b5:89:1f:a3:f8:fd:59:05:6b:
0c:a1:b0:e3:05:00:94:ff:8c:78:0c:a0:b0:af:f9:d2:90:aa:
f8:bd:bf:59:a2:e6:05:67:60:2f:7b:83:11:b7:eb:f9:d1:29:
91:2c:b1:be:5c:36:95:6e:fe:91:3c:6e:30:59:88:df:29:8d:
1d:88:16:93:5e:32:89:fc:10:44:96:cf:55:c1:ea:1a:b6:aa:
e1:2d:61:95:a4:a8:81:d2:b8:dc:ea:89:ef:68:2a:bf:1a:82:
eb:af:28:9d:60:f4:9b:20:38:3d:90:ab:c7:59:f8:52:14:f0:
b7:04:bb:d5:81:ec:e6:d0:cd:db:a3:38:c6:f6:71:0a:2d:84:
06:e5:94:1d:22:71:b0:7c:a3:9b:02:f5:8f:0b:9e:fa:88:0b:
a4:da:3b:f7:b5:49:31:84:18:e9:c6:fd:da:b1:88:28:d5:85:
2d:c6:9b:f7:dd:ba:d4:5b:cb:d5:11:f6:7a:50:7b:fa:64:49:
5d:ef:d1:57:63:11:fc:79:3d:e8:72:87:e4:d0:1a:d3:8e:17:
03:04:c9:e4:97:a4:f3:ae:7f:fe:fc:43:cc:d4:e7:81:2f:27:
9e:ef:fa:9f:3f:7e:19:d4:7f:54:e9:33:31:8a:1e:f3:24:04:
41:40:0f:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:57:29 2025 by rpki-client