Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B10D7998608B8722D3EEF5EC2506DBF6D37F6B518401ACD29D699E267664D724/0/323830333a333965303a3a2f33322d3332203d3e20323730303233.roa
File: 323830333a333965303a3a2f33322d3332203d3e20323730303233.roa (raw, json)
Hash identifier: kDwoqVuw+Fd7OHJYwRgR+bdI7WpHTakn7wLxp0D3gbw=
Subject key identifier: 91:D6:0F:FB:74:A4:26:26:95:F5:AE:83:25:A0:E8:35:02:E6:CA:66
Certificate issuer: /CN=5F5B1971F99DD1FD781D649403114BF5C0CDE9D3
Certificate serial: 5B59BD9220B7DA2CB51B945EFEE3A1BFD5D5AF31
Authority key identifier: 5F:5B:19:71:F9:9D:D1:FD:78:1D:64:94:03:11:4B:F5:C0:CD:E9:D3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5F5B1971F99DD1FD781D649403114BF5C0CDE9D3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B10D7998608B8722D3EEF5EC2506DBF6D37F6B518401ACD29D699E267664D724/0/323830333a333965303a3a2f33322d3332203d3e20323730303233.roa
Signing time: Thu 23 May 2024 21:05:00 +0000
ROA not before: Thu 23 May 2024 21:00:00 +0000
ROA not after: Thu 22 May 2025 21:05:00 +0000
asID: 270023
IP address blocks: 2803:39e0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:59:bd:92:20:b7:da:2c:b5:1b:94:5e:fe:e3:a1:bf:d5:d5:af:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5F5B1971F99DD1FD781D649403114BF5C0CDE9D3
Validity
Not Before: May 23 21:00:00 2024 GMT
Not After : May 22 21:05:00 2025 GMT
Subject: CN=91D60FFB74A4262695F5AE8325A0E83502E6CA66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2a:f7:ef:f7:ea:e8:8d:f6:fc:54:21:12:bf:
8e:a2:12:a0:fb:32:e3:0b:2d:95:6b:ab:bf:53:24:
ed:c8:b7:14:a1:e3:d2:a5:82:7d:c9:7c:9f:ba:7e:
a3:7e:4c:3c:a3:36:08:39:6c:92:88:58:3a:d4:c2:
42:c2:da:c7:88:a6:d1:f7:76:13:53:3f:3f:4f:2c:
21:ee:2a:4b:43:5d:b5:2b:2c:c1:94:71:65:7e:12:
42:99:4a:ad:89:d6:4d:36:19:ad:a4:77:30:d5:d2:
a3:de:aa:cc:ed:f4:e8:ed:e9:5c:c9:90:40:c3:85:
ef:25:69:cb:99:da:0a:2d:3c:2e:24:79:a1:d0:3a:
69:76:4d:d8:b9:44:b3:76:c3:55:5b:14:86:14:50:
d9:70:a3:76:3d:b3:c6:a7:e9:83:4f:86:a2:f6:84:
48:da:30:7c:27:b2:2c:60:c7:de:2b:56:46:a3:df:
84:bc:55:7d:9e:79:8e:b9:f2:20:fb:99:36:8b:4c:
23:93:6f:c9:94:98:04:7e:cb:dd:e3:d5:ad:02:c5:
0e:27:98:3b:c1:31:2d:45:66:2c:0e:7f:d7:da:a1:
2e:4c:ec:8e:08:7e:82:3f:6f:42:d1:5a:73:ca:bf:
68:64:c8:a0:e3:e9:a9:88:02:cc:58:57:11:84:6e:
8c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:D6:0F:FB:74:A4:26:26:95:F5:AE:83:25:A0:E8:35:02:E6:CA:66
X509v3 Authority Key Identifier:
keyid:5F:5B:19:71:F9:9D:D1:FD:78:1D:64:94:03:11:4B:F5:C0:CD:E9:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/B10D7998608B8722D3EEF5EC2506DBF6D37F6B518401ACD29D699E267664D724/0/5F5B1971F99DD1FD781D649403114BF5C0CDE9D3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5F5B1971F99DD1FD781D649403114BF5C0CDE9D3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B10D7998608B8722D3EEF5EC2506DBF6D37F6B518401ACD29D699E267664D724/0/323830333a333965303a3a2f33322d3332203d3e20323730303233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:39e0::/32
Signature Algorithm: sha256WithRSAEncryption
2d:a3:9a:63:94:06:50:ac:37:e4:1a:86:6c:15:8d:a8:da:43:
f8:85:87:fe:19:94:d2:cd:7a:a1:39:42:58:6a:31:37:13:f3:
8b:3d:26:2c:2a:c5:55:bc:66:f9:2c:6e:60:5f:ed:11:c5:1e:
00:b9:bb:2f:ad:72:b6:ca:3b:16:9f:c3:40:e9:c0:fc:ab:8d:
bd:0c:fd:49:da:bb:67:4f:15:91:06:4c:b1:2c:90:ca:af:6d:
43:9d:cb:c8:fb:03:ef:fb:fe:8a:dd:75:39:73:d8:3a:1f:6b:
7d:96:b7:e6:c6:38:00:83:a4:fa:c5:4f:a8:97:1e:a8:84:2f:
e5:92:c7:ff:7f:53:50:4f:4b:1a:10:fd:53:e3:b6:2b:b1:d0:
39:da:e0:b5:3f:29:62:e6:2d:c9:fb:f5:87:d2:38:a1:cf:e5:
94:70:c1:c4:32:af:8f:dc:11:d7:ae:ea:7c:09:b5:38:7b:a6:
07:99:c3:f4:e4:74:58:ba:dc:84:7c:b6:fa:3b:ac:9e:3d:9c:
e8:46:e5:c8:8f:f6:26:eb:51:77:8d:4a:44:7a:c4:6a:7f:a8:
2e:79:7b:ac:f8:7d:0e:d2:2f:dc:b3:3c:75:b5:d7:a4:11:ea:
af:d2:7c:7a:1d:21:79:a4:32:a6:4c:df:6b:99:87:53:ea:24:
52:27:88:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:59:22 2025 by rpki-client