Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B21ED114DBD6098C28EA9DFC33E0FB1ACDACB410C91D725A1C2295B439A9FC3C/0/323830313a31323a653830303a3a2f34382d3438203d3e20323731383835.roa
File: 323830313a31323a653830303a3a2f34382d3438203d3e20323731383835.roa (raw, json)
Hash identifier: ehKjQ37txh23E0VUOn87XdDHbgue7WMTP7mdcs99HW8=
Subject key identifier: A9:8A:A6:97:3C:80:0F:FE:36:65:61:DA:98:D7:F7:9B:70:DA:4B:6B
Certificate issuer: /CN=AADC68CACCD7A12B6A019949E964F33953EF7228
Certificate serial: 4148F56CF08101595C927B2098BCAE6A0277A703
Authority key identifier: AA:DC:68:CA:CC:D7:A1:2B:6A:01:99:49:E9:64:F3:39:53:EF:72:28
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AADC68CACCD7A12B6A019949E964F33953EF7228.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B21ED114DBD6098C28EA9DFC33E0FB1ACDACB410C91D725A1C2295B439A9FC3C/0/323830313a31323a653830303a3a2f34382d3438203d3e20323731383835.roa
Signing time: Tue 04 Feb 2025 18:32:07 +0000
ROA not before: Tue 04 Feb 2025 18:27:07 +0000
ROA not after: Tue 03 Feb 2026 18:32:07 +0000
asID: 271885
IP address blocks: 2801:12:e800::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:48:f5:6c:f0:81:01:59:5c:92:7b:20:98:bc:ae:6a:02:77:a7:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AADC68CACCD7A12B6A019949E964F33953EF7228
Validity
Not Before: Feb 4 18:27:07 2025 GMT
Not After : Feb 3 18:32:07 2026 GMT
Subject: CN=A98AA6973C800FFE366561DA98D7F79B70DA4B6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:44:a8:b0:f2:14:e7:55:1a:cc:ca:7d:b1:0f:
7b:de:56:ea:04:e9:76:3f:a7:c8:03:a8:ef:66:97:
8d:56:03:20:a2:a5:cd:9a:0f:27:01:ac:cb:21:3b:
aa:7f:a6:c0:09:9f:e5:b0:b4:c6:42:c7:53:a6:31:
c8:ec:9d:db:d6:00:ee:5b:8e:7d:4e:c8:99:be:14:
82:40:13:11:9e:5d:3a:13:3d:77:0d:95:42:3b:d4:
34:11:52:57:5a:39:69:ed:81:b0:1f:2e:e1:f2:b0:
eb:b9:15:9b:ee:53:a4:44:07:45:c0:56:8e:d6:4a:
25:aa:de:58:85:65:9b:d6:da:44:76:28:cc:09:ea:
e2:f0:d5:78:8d:66:6a:4f:d1:f1:41:59:2a:18:8c:
14:02:65:7b:09:a0:a0:16:33:ec:53:f0:1f:e1:c8:
20:31:12:18:01:0f:ef:08:77:d8:fa:65:9f:1a:e8:
d6:50:11:e1:8d:e9:89:93:7e:10:ba:bd:c0:20:d7:
a4:7d:6e:23:ee:39:2d:07:93:7e:ba:ed:11:fe:fd:
4f:b2:d1:bf:e0:93:a2:fe:b9:04:f3:4a:b1:ea:e5:
91:52:e3:2d:9d:cb:a7:8a:9e:65:25:45:ee:c3:f4:
99:02:1c:1b:4f:91:40:5f:47:ce:94:33:31:f4:1f:
05:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:8A:A6:97:3C:80:0F:FE:36:65:61:DA:98:D7:F7:9B:70:DA:4B:6B
X509v3 Authority Key Identifier:
keyid:AA:DC:68:CA:CC:D7:A1:2B:6A:01:99:49:E9:64:F3:39:53:EF:72:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/B21ED114DBD6098C28EA9DFC33E0FB1ACDACB410C91D725A1C2295B439A9FC3C/0/AADC68CACCD7A12B6A019949E964F33953EF7228.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AADC68CACCD7A12B6A019949E964F33953EF7228.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B21ED114DBD6098C28EA9DFC33E0FB1ACDACB410C91D725A1C2295B439A9FC3C/0/323830313a31323a653830303a3a2f34382d3438203d3e20323731383835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:12:e800::/48
Signature Algorithm: sha256WithRSAEncryption
00:81:a4:62:88:aa:36:53:02:3c:27:1d:36:1e:c6:9f:eb:20:
39:88:bf:f5:5c:45:41:35:d8:86:40:57:3f:7a:a9:a4:77:15:
35:7e:94:e7:25:3b:97:17:66:8b:de:6e:ef:40:a7:82:f2:6c:
d8:8c:bf:a0:e5:6b:61:d6:fe:98:c1:70:1e:9c:45:0e:58:61:
0b:22:d7:26:c6:81:f0:39:f4:a4:a0:59:8c:94:e3:d5:cb:bd:
45:0e:fb:d9:53:0f:4d:54:46:bf:a2:08:27:f3:fd:d0:b6:cc:
92:fa:53:de:d3:4a:a8:31:19:a8:63:bf:2a:fc:66:45:cf:90:
50:90:2c:f7:9e:5b:6b:20:d4:30:13:9f:38:9a:75:2e:53:fb:
54:69:c0:14:0f:51:60:7f:8b:b8:a0:0b:d9:b1:f8:b3:24:fb:
68:00:88:65:8b:bc:4e:ab:7f:8c:25:ac:0e:69:43:0b:76:f3:
65:87:eb:cd:0a:39:14:fe:fa:f8:bb:dc:f3:cd:07:d0:42:c7:
2e:e8:f8:db:9b:ee:36:9c:24:d6:17:f7:62:bb:23:2a:c0:16:
df:6a:4e:cb:e7:74:dc:a5:42:d7:56:39:19:32:df:8d:c7:4b:
46:00:7a:ad:26:a6:cc:c6:9f:a2:40:21:f2:70:12:b8:77:9c:
6d:b0:dc:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:14:13 2025 by rpki-client