Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B2A3B2D3D61DB4D94A49BF1CCEE1F83789EBDEBFCE2CEEF8F669A0A0AB44B839/0/323830333a393230303a3a2f33322d3438203d3e203136353932.roa
File: 323830333a393230303a3a2f33322d3438203d3e203136353932.roa (raw, json)
Hash identifier: 7BoO1ofBqwDxrxZ3M9DO2CWfqKfc8oaTiKQ1P+FJrKc=
Subject key identifier: DD:E7:47:8B:AF:DF:19:34:26:91:A5:56:90:FA:79:97:F3:28:66:81
Certificate issuer: /CN=3122D32EB17F7A44AF157ACD3FE6234CB2DFD01C
Certificate serial: 0E313D0B84E23A251EC815FABA482F02898FDC4D
Authority key identifier: 31:22:D3:2E:B1:7F:7A:44:AF:15:7A:CD:3F:E6:23:4C:B2:DF:D0:1C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3122D32EB17F7A44AF157ACD3FE6234CB2DFD01C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B2A3B2D3D61DB4D94A49BF1CCEE1F83789EBDEBFCE2CEEF8F669A0A0AB44B839/0/323830333a393230303a3a2f33322d3438203d3e203136353932.roa
Signing time: Tue 04 Feb 2025 18:02:02 +0000
ROA not before: Tue 04 Feb 2025 17:57:02 +0000
ROA not after: Tue 03 Feb 2026 18:02:02 +0000
asID: 16592
IP address blocks: 2803:9200::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0e:31:3d:0b:84:e2:3a:25:1e:c8:15:fa:ba:48:2f:02:89:8f:dc:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3122D32EB17F7A44AF157ACD3FE6234CB2DFD01C
Validity
Not Before: Feb 4 17:57:02 2025 GMT
Not After : Feb 3 18:02:02 2026 GMT
Subject: CN=DDE7478BAFDF19342691A55690FA7997F3286681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:17:5c:34:8b:ac:b4:32:d1:aa:89:0b:59:bd:
ec:ef:56:92:f2:f1:38:f1:21:e5:05:cc:4d:e1:f2:
de:1c:04:81:e6:ce:74:fb:48:a2:95:6b:cb:6c:4b:
84:dd:44:05:6a:bf:66:9d:df:79:01:99:d7:5e:40:
7c:18:fc:e5:b5:95:75:28:06:73:43:f5:76:80:a0:
8c:1f:99:b6:3a:d4:2c:22:3a:fc:a0:b6:dd:de:5b:
8a:a6:19:f6:e0:21:3d:01:a2:58:38:6e:35:2f:43:
70:a1:79:bb:0c:c8:01:7d:a4:3b:6e:8a:60:30:ca:
35:77:41:ee:f3:bc:dc:ad:2b:ee:38:5e:40:3b:01:
34:59:3f:6e:28:20:c2:a0:90:45:f8:44:94:db:e3:
d3:13:dd:94:e7:f0:94:23:3a:9e:42:c0:c8:78:96:
5c:c0:f0:fa:87:ed:b7:da:44:80:7e:3a:fc:5b:b8:
db:29:72:74:20:5e:fc:4f:af:5f:a4:17:cb:eb:e3:
ae:05:bb:f7:5b:69:f7:71:e7:d2:b8:00:7a:2a:05:
fc:a5:64:76:23:7f:a2:43:a1:40:da:55:61:f4:e4:
13:f7:cc:bf:95:1b:bd:3a:f7:29:88:d1:fa:2d:4c:
0b:4b:cf:48:51:bf:56:84:5e:be:fe:4a:37:bb:20:
f4:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:E7:47:8B:AF:DF:19:34:26:91:A5:56:90:FA:79:97:F3:28:66:81
X509v3 Authority Key Identifier:
keyid:31:22:D3:2E:B1:7F:7A:44:AF:15:7A:CD:3F:E6:23:4C:B2:DF:D0:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/B2A3B2D3D61DB4D94A49BF1CCEE1F83789EBDEBFCE2CEEF8F669A0A0AB44B839/0/3122D32EB17F7A44AF157ACD3FE6234CB2DFD01C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3122D32EB17F7A44AF157ACD3FE6234CB2DFD01C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B2A3B2D3D61DB4D94A49BF1CCEE1F83789EBDEBFCE2CEEF8F669A0A0AB44B839/0/323830333a393230303a3a2f33322d3438203d3e203136353932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:9200::/32
Signature Algorithm: sha256WithRSAEncryption
2f:5c:0a:7f:9b:e4:aa:5d:ae:8c:b7:43:87:1c:68:06:73:7f:
c6:dd:0b:9f:98:d2:40:40:5c:9e:4d:eb:d4:50:eb:56:ba:7f:
ea:bf:97:2f:e0:ce:b6:c7:9a:b2:16:72:1c:f0:28:89:ff:ae:
7e:e2:84:48:9c:f5:6b:49:c8:80:00:a4:0e:c1:14:2b:ad:f4:
d0:9e:9e:8f:64:60:f9:70:69:71:0c:b6:20:95:ec:34:40:43:
ca:af:e0:b1:b1:f3:3f:e6:3e:d3:42:81:95:60:2d:5d:b4:9e:
35:b5:f5:39:05:10:cd:89:dd:f6:15:7f:d8:cf:6b:76:a7:0a:
a4:dd:79:c4:c3:c8:38:c5:e2:23:10:8a:00:6c:4f:b6:87:f6:
d4:22:8b:d4:50:3a:d7:62:55:8a:19:a6:c5:73:95:29:18:35:
79:be:85:94:95:dd:37:d5:11:c7:6d:81:c1:15:be:cb:da:1e:
2a:d2:25:a6:0e:d6:8a:b3:a1:11:20:44:c6:44:46:0c:b3:74:
e4:2d:b4:db:e3:29:0b:17:c7:26:ef:6a:76:cd:de:90:91:3f:
e0:c8:d8:aa:46:80:33:21:6c:9f:24:6b:99:cf:96:de:dc:8b:
06:0d:64:d6:1f:a3:ff:b4:db:82:8d:f5:3f:82:ee:5b:60:c8:
b4:b1:f3:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 04:03:08 2025 by rpki-client