Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B39F5795B5CC3D5EBF32109ECEE4D926FE5FC4173B1D5D1672EA16AA1F859666/0/323830313a63343a32363a313a3a2f36342d313238203d3e20323635353834.roa
File: 323830313a63343a32363a313a3a2f36342d313238203d3e20323635353834.roa (raw, json)
Hash identifier: /eclf0+Fyz5hXt60qKkWvsxuIY+0ZeZs7Qt9pUEY+z0=
Subject key identifier: 46:5A:DE:15:54:B2:B9:A5:2F:3E:F5:E6:5A:3A:B8:9F:BC:3C:FC:B9
Certificate issuer: /CN=CD0B4D24BCD10878701F4C262615351929118638
Certificate serial: 5BD82310C5F5E4775A64AFC18672C2B5B298C5E7
Authority key identifier: CD:0B:4D:24:BC:D1:08:78:70:1F:4C:26:26:15:35:19:29:11:86:38
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CD0B4D24BCD10878701F4C262615351929118638.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B39F5795B5CC3D5EBF32109ECEE4D926FE5FC4173B1D5D1672EA16AA1F859666/0/323830313a63343a32363a313a3a2f36342d313238203d3e20323635353834.roa
Signing time: Tue 04 Feb 2025 18:43:01 +0000
ROA not before: Tue 04 Feb 2025 18:38:01 +0000
ROA not after: Tue 03 Feb 2026 18:43:01 +0000
asID: 265584
IP address blocks: 2801:c4:26:1::/64 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:d8:23:10:c5:f5:e4:77:5a:64:af:c1:86:72:c2:b5:b2:98:c5:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CD0B4D24BCD10878701F4C262615351929118638
Validity
Not Before: Feb 4 18:38:01 2025 GMT
Not After : Feb 3 18:43:01 2026 GMT
Subject: CN=465ADE1554B2B9A52F3EF5E65A3AB89FBC3CFCB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e2:a5:e4:e7:a3:bc:92:1b:77:13:18:84:dd:
f1:46:da:ea:60:62:87:43:72:62:65:bd:ce:43:58:
1a:6f:ec:ce:99:98:3f:50:36:10:3b:4e:0c:ed:dc:
c8:29:f1:ad:9f:c9:e0:eb:5b:45:13:05:54:85:9c:
90:08:84:f5:d7:b5:f2:64:85:a5:40:22:f1:8d:7f:
c1:e9:8d:78:a2:5a:cc:cb:72:d5:5f:42:6a:0b:aa:
98:4d:c3:ea:5b:5b:01:5f:f7:f1:9d:80:37:38:6a:
73:ef:34:fc:df:79:28:d8:80:3c:46:c5:06:52:0c:
c0:11:53:12:57:5a:05:21:ce:b3:84:5c:4b:25:ac:
98:16:ca:86:98:5f:2a:f4:4a:03:1c:5e:86:24:aa:
b1:a3:b4:ba:f5:84:3c:f7:9d:f5:5e:76:fe:c5:4d:
fb:cd:9c:c0:6f:9c:91:02:28:0c:b9:71:7d:1c:74:
57:20:d7:46:72:93:f2:72:a8:74:d8:19:87:3b:4f:
b0:b6:61:88:5a:3a:ff:c9:29:72:a9:12:e6:32:d8:
fd:19:f2:64:c9:46:10:69:cc:93:82:c6:ef:46:c3:
e8:ee:86:fa:9e:50:ca:6d:dc:ad:99:0e:5d:db:c4:
ed:3d:bf:e3:92:25:ac:26:c6:f7:d3:fc:df:71:47:
1e:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:5A:DE:15:54:B2:B9:A5:2F:3E:F5:E6:5A:3A:B8:9F:BC:3C:FC:B9
X509v3 Authority Key Identifier:
keyid:CD:0B:4D:24:BC:D1:08:78:70:1F:4C:26:26:15:35:19:29:11:86:38
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/B39F5795B5CC3D5EBF32109ECEE4D926FE5FC4173B1D5D1672EA16AA1F859666/0/CD0B4D24BCD10878701F4C262615351929118638.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CD0B4D24BCD10878701F4C262615351929118638.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B39F5795B5CC3D5EBF32109ECEE4D926FE5FC4173B1D5D1672EA16AA1F859666/0/323830313a63343a32363a313a3a2f36342d313238203d3e20323635353834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:c4:26:1::/64
Signature Algorithm: sha256WithRSAEncryption
02:36:e1:e4:25:06:04:50:4b:a1:ca:7e:a2:51:3a:78:9e:4e:
1d:b5:c9:ce:75:30:11:0e:21:cc:e3:08:ae:e9:ef:47:f5:4a:
a9:39:5f:dd:78:74:73:3c:53:4f:7f:da:d7:bc:83:42:50:24:
72:3e:ed:5d:f0:24:30:66:9b:72:e7:80:17:58:17:fe:fb:92:
cc:af:92:fe:a3:25:02:d8:36:02:cd:31:12:55:6d:2b:e4:61:
64:f6:f8:b9:50:53:cd:a7:e6:ef:fe:56:33:06:2c:c5:7c:f7:
a2:1b:73:80:f8:4f:6f:57:5b:9e:12:f6:18:cb:78:42:4a:96:
81:00:d0:97:af:f4:61:6f:47:0b:f4:f5:e6:db:02:84:e7:c7:
4e:9a:11:13:4d:7f:32:88:c7:aa:ec:4d:f3:b1:d2:91:d3:d3:
c5:1f:87:8f:30:53:6a:95:ad:42:f1:ad:57:a9:c1:b5:d9:9a:
60:5d:c0:cd:7b:e9:da:d4:38:ea:74:be:f2:31:14:4d:9d:17:
55:d7:9f:46:4d:1a:6a:5a:d2:e4:07:25:52:01:82:28:44:62:
04:eb:90:65:2a:f4:f4:43:03:9b:99:6d:ab:f4:55:d1:40:90:
9c:40:50:85:37:b5:41:41:5c:aa:11:9d:b9:56:c5:44:09:e5:
73:56:bb:64
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Apr 11 16:29:16 2025 by rpki-client