Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BA4E20598674DC9DA80E176D835AD27168C6CB80289E64E21C1615B35E57A1C0/0/323830313a303a3134313a3a2f34382d3634203d3e20323634363833.roa
File: 323830313a303a3134313a3a2f34382d3634203d3e20323634363833.roa (raw, json)
Hash identifier: Wt6Jxc4wi6Mq35oXq57s49uJ9gt1DgSCbqpJQ4NarrY=
Subject key identifier: 7D:CE:AB:81:4B:9D:12:F3:D4:17:F0:A9:70:AC:93:F5:F9:93:2F:DB
Certificate issuer: /CN=99A4B645BCE1A6FA746C89A3F6E22889F8F2088C
Certificate serial: 7EE7DE350C29722ABDA01DDCF639328E7DFB5F4D
Authority key identifier: 99:A4:B6:45:BC:E1:A6:FA:74:6C:89:A3:F6:E2:28:89:F8:F2:08:8C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/99A4B645BCE1A6FA746C89A3F6E22889F8F2088C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BA4E20598674DC9DA80E176D835AD27168C6CB80289E64E21C1615B35E57A1C0/0/323830313a303a3134313a3a2f34382d3634203d3e20323634363833.roa
Signing time: Tue 04 Feb 2025 20:06:49 +0000
ROA not before: Tue 04 Feb 2025 20:01:49 +0000
ROA not after: Tue 03 Feb 2026 20:06:49 +0000
asID: 264683
IP address blocks: 2801:0:141::/48 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:e7:de:35:0c:29:72:2a:bd:a0:1d:dc:f6:39:32:8e:7d:fb:5f:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99A4B645BCE1A6FA746C89A3F6E22889F8F2088C
Validity
Not Before: Feb 4 20:01:49 2025 GMT
Not After : Feb 3 20:06:49 2026 GMT
Subject: CN=7DCEAB814B9D12F3D417F0A970AC93F5F9932FDB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:c5:04:a5:6e:3d:89:fc:97:a1:a9:1e:90:07:
4e:6f:e5:e0:dc:4a:b7:42:f1:4f:a9:c2:fb:d0:0f:
c0:47:81:31:fa:4a:c9:df:1e:f0:85:77:85:a9:d9:
a3:ae:4e:c3:e2:2b:93:b6:f3:b8:04:b3:42:6a:1f:
5b:98:27:00:85:b3:33:1b:8e:cc:37:07:fa:e9:95:
11:ea:86:4e:29:ff:b7:5c:d8:b8:25:45:10:b0:0d:
94:01:b0:f3:c3:35:58:b6:5e:43:2d:4f:0b:1b:5e:
3b:ef:ce:a5:f5:2e:12:a2:88:d4:15:47:dd:05:b8:
f7:da:51:6d:47:cf:11:80:9b:ce:b6:4e:1c:c8:75:
4b:8c:55:d7:77:9a:88:eb:27:59:dd:4c:bc:95:17:
f6:33:31:a9:06:fd:5d:a9:c0:6f:de:1b:e9:e9:88:
f9:c4:f3:4e:23:c4:fd:d1:38:9e:3c:5b:19:fb:fe:
c6:b1:6e:6f:89:c6:2a:13:49:9b:c3:cb:1e:8a:cb:
9f:03:30:40:90:99:6f:6e:32:07:24:e1:a5:b1:e6:
0b:ff:18:5b:1f:ae:fa:c7:59:12:7f:fa:ca:cf:e9:
93:75:63:9f:d5:5e:94:26:30:f1:7b:1e:16:4d:e2:
5f:39:96:1a:0c:6e:78:72:17:23:a2:64:b0:32:ec:
ed:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:CE:AB:81:4B:9D:12:F3:D4:17:F0:A9:70:AC:93:F5:F9:93:2F:DB
X509v3 Authority Key Identifier:
keyid:99:A4:B6:45:BC:E1:A6:FA:74:6C:89:A3:F6:E2:28:89:F8:F2:08:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BA4E20598674DC9DA80E176D835AD27168C6CB80289E64E21C1615B35E57A1C0/0/99A4B645BCE1A6FA746C89A3F6E22889F8F2088C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/99A4B645BCE1A6FA746C89A3F6E22889F8F2088C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BA4E20598674DC9DA80E176D835AD27168C6CB80289E64E21C1615B35E57A1C0/0/323830313a303a3134313a3a2f34382d3634203d3e20323634363833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:0:141::/48
Signature Algorithm: sha256WithRSAEncryption
3b:cb:a8:07:b8:d5:3c:e0:13:f7:b3:73:a8:2a:38:32:98:7e:
43:82:5c:34:b4:93:a3:60:bf:77:49:3d:7b:7c:6c:35:78:88:
97:78:db:7d:f9:64:48:7d:4b:dd:cc:ab:fb:50:29:84:a9:d0:
bb:93:28:6a:58:80:d3:5c:67:c4:3f:a9:74:51:1a:53:49:3c:
fe:79:42:0a:08:e3:f0:6c:fe:2c:31:fe:3f:db:64:06:77:b2:
2f:f7:d2:ba:3a:d1:88:06:d2:b7:22:e1:af:6e:61:42:6d:ec:
b7:4c:c4:70:bf:e2:28:cf:f1:43:df:40:37:91:5c:45:7b:ac:
d5:63:90:92:e0:e9:1e:9b:9f:30:2d:4c:46:ab:c0:c1:e0:b1:
49:b0:32:2d:b1:07:c9:c7:06:6a:c4:1f:4d:e3:5e:80:6c:26:
11:d5:ce:64:a5:f2:c7:0e:fc:71:98:14:b3:eb:b9:78:bd:62:
23:76:3f:4b:2d:0d:bb:2a:8b:4e:6c:7c:60:cc:e8:07:f7:6a:
2c:51:46:b8:84:24:77:fd:95:80:c2:ec:f6:29:d4:23:2c:bb:
ed:55:20:c9:f4:cb:50:01:71:24:21:00:d3:1e:c8:0e:fa:e7:
70:7e:6f:23:06:4b:cd:2f:62:8d:74:e6:cb:d6:02:9a:fc:42:
b0:21:0c:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:48:33 2025 by rpki-client