Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AC8A462074B98D3F9638821F9060DECDE1637FCAB7B5FCD6A69D9450167A2798/0/323830303a3266303a3a2f33322d3438203d3e203237363638.roa
File: 323830303a3266303a3a2f33322d3438203d3e203237363638.roa (raw, json)
Hash identifier: PKnlG8sjiSJ/Mv2cR9aTD7kM4h3kT82nWtzUp3yWvGU=
Subject key identifier: 95:E4:FC:11:36:01:6C:05:5F:F9:0F:B8:68:22:06:82:86:7E:CA:2B
Certificate issuer: /CN=61672627CE7E727EFF60A56D0A466F15315B7FD0
Certificate serial: 5A95BDC028973F70A3F772B1EC14213D7C9CF870
Authority key identifier: 61:67:26:27:CE:7E:72:7E:FF:60:A5:6D:0A:46:6F:15:31:5B:7F:D0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/61672627CE7E727EFF60A56D0A466F15315B7FD0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AC8A462074B98D3F9638821F9060DECDE1637FCAB7B5FCD6A69D9450167A2798/0/323830303a3266303a3a2f33322d3438203d3e203237363638.roa
Signing time: Tue 04 Feb 2025 19:57:43 +0000
ROA not before: Tue 04 Feb 2025 19:52:43 +0000
ROA not after: Tue 03 Feb 2026 19:57:43 +0000
asID: 27668
IP address blocks: 2800:2f0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:95:bd:c0:28:97:3f:70:a3:f7:72:b1:ec:14:21:3d:7c:9c:f8:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61672627CE7E727EFF60A56D0A466F15315B7FD0
Validity
Not Before: Feb 4 19:52:43 2025 GMT
Not After : Feb 3 19:57:43 2026 GMT
Subject: CN=95E4FC1136016C055FF90FB868220682867ECA2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:37:90:6b:46:6d:d3:4d:68:97:4a:d3:bc:d2:
e5:67:91:7d:61:5c:05:dd:9c:cd:5a:90:dc:a2:33:
47:7c:20:77:c2:09:f4:ee:d9:04:0b:b2:cf:79:92:
2c:5e:31:c5:f4:6e:fa:c8:7d:9f:48:7f:0e:1d:2c:
f0:6c:66:da:43:7c:09:1d:3d:95:0c:b0:a9:45:9c:
5f:d9:6c:aa:94:7c:49:59:db:fe:be:7f:67:d5:84:
19:25:9d:b8:88:2e:1b:c2:23:91:62:c0:31:15:5e:
2c:bb:36:b2:95:27:fe:4b:88:3f:58:3b:e8:60:a5:
0b:09:4d:d8:71:a5:86:f4:e9:6f:3f:3b:ba:a4:80:
80:af:b8:93:cd:ef:db:c6:a6:84:94:79:a0:08:66:
b3:e7:f7:ef:21:6d:ba:56:e9:4b:ce:50:db:43:e8:
fd:08:b1:42:f3:15:7c:1d:c2:ed:4a:f7:6d:98:b9:
aa:3d:c2:98:fd:ad:99:c3:c4:80:2e:85:25:88:07:
c0:86:15:35:81:49:8f:8b:b9:7b:62:02:4c:c3:7f:
fc:4a:4d:9e:a6:14:a3:17:de:67:02:4c:18:54:f0:
d1:36:04:24:63:09:dc:d0:38:2b:ca:26:ea:fb:36:
e1:18:bb:2e:f4:f0:5b:a2:a1:c5:55:ee:74:ef:22:
fb:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:E4:FC:11:36:01:6C:05:5F:F9:0F:B8:68:22:06:82:86:7E:CA:2B
X509v3 Authority Key Identifier:
keyid:61:67:26:27:CE:7E:72:7E:FF:60:A5:6D:0A:46:6F:15:31:5B:7F:D0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/AC8A462074B98D3F9638821F9060DECDE1637FCAB7B5FCD6A69D9450167A2798/0/61672627CE7E727EFF60A56D0A466F15315B7FD0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/61672627CE7E727EFF60A56D0A466F15315B7FD0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AC8A462074B98D3F9638821F9060DECDE1637FCAB7B5FCD6A69D9450167A2798/0/323830303a3266303a3a2f33322d3438203d3e203237363638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2800:2f0::/32
Signature Algorithm: sha256WithRSAEncryption
14:f4:c7:b4:3d:22:11:55:aa:0d:e1:d8:1d:45:fd:82:a1:3f:
c4:1a:32:cd:c6:c3:21:dc:60:d5:51:bf:5b:f6:db:ba:78:ed:
bf:d7:a2:68:dd:11:c1:ce:33:ea:16:c4:b8:6f:f3:f2:ba:dd:
53:0a:1f:22:61:cb:b6:cf:3e:62:d9:c1:19:53:c2:60:42:c2:
fe:e6:c4:72:69:36:7e:1e:37:5e:d5:5b:58:75:d5:c4:d9:70:
78:69:e1:c4:0e:07:c0:73:a2:2d:7c:cb:dc:4b:2a:ec:f2:58:
6c:95:04:b9:97:8a:b6:e3:b6:8a:67:1f:a6:16:71:2e:8c:58:
66:52:22:1b:c2:8d:ef:ac:6c:d2:1e:55:79:16:9a:f9:77:0d:
43:dc:1b:25:6a:49:2a:01:fb:fe:ae:e8:30:60:92:8c:d7:94:
48:f5:0c:9c:09:45:65:44:66:11:03:4f:30:98:5a:69:32:64:
55:c5:43:c9:b7:bc:f2:65:59:e5:c3:e4:b0:fc:cf:85:a1:81:
36:d9:54:ac:85:a2:4e:5f:51:a4:69:bd:87:0f:4a:db:b9:ae:
ab:64:d4:8f:fe:f0:18:f9:9d:6c:0b:b3:23:c9:80:38:70:10:
80:d4:07:7c:d4:84:97:a1:07:8e:90:47:d4:b9:77:d7:dc:72:
51:22:03:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:49:59 2025 by rpki-client