Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BAFF476963BEEEFBA925E6094AD61F8FE108B5D47F243A7D2C6288E23FA4F667/0/323830313a31653a333030303a3a2f34382d3438203d3e20323637383933.roa
File: 323830313a31653a333030303a3a2f34382d3438203d3e20323637383933.roa (raw, json)
Hash identifier: ShfiXTqhIxdLPbviFRl+sr029d2cewB9rQ7+Lw9HY50=
Subject key identifier: 66:30:D8:28:82:D3:80:1F:C4:6A:D5:5A:69:73:DB:52:63:F9:47:9D
Certificate issuer: /CN=3FA213F071F512993E71744BA485B170F0449C83
Certificate serial: 3712C90B04F00DCABD43AD3D05D4BA840001C61D
Authority key identifier: 3F:A2:13:F0:71:F5:12:99:3E:71:74:4B:A4:85:B1:70:F0:44:9C:83
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3FA213F071F512993E71744BA485B170F0449C83.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BAFF476963BEEEFBA925E6094AD61F8FE108B5D47F243A7D2C6288E23FA4F667/0/323830313a31653a333030303a3a2f34382d3438203d3e20323637383933.roa
Signing time: Tue 04 Feb 2025 18:22:28 +0000
ROA not before: Tue 04 Feb 2025 18:17:28 +0000
ROA not after: Tue 03 Feb 2026 18:22:28 +0000
asID: 267893
IP address blocks: 2801:1e:3000::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:12:c9:0b:04:f0:0d:ca:bd:43:ad:3d:05:d4:ba:84:00:01:c6:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3FA213F071F512993E71744BA485B170F0449C83
Validity
Not Before: Feb 4 18:17:28 2025 GMT
Not After : Feb 3 18:22:28 2026 GMT
Subject: CN=6630D82882D3801FC46AD55A6973DB5263F9479D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ee:ec:64:21:44:35:7f:39:ca:6b:76:07:db:
73:52:84:41:fc:ec:75:1d:8c:39:88:58:25:25:6f:
ed:69:20:a4:6d:22:13:98:16:82:59:e2:36:49:2d:
4c:6f:af:71:29:dc:52:9d:61:cb:a7:7a:95:8d:72:
ea:f6:04:3b:cc:fa:09:2c:85:69:0f:14:ae:54:66:
0c:bb:43:67:3d:ad:e0:06:59:04:1b:b2:62:e7:b3:
05:2b:20:56:15:c1:2d:1f:c2:f5:04:84:53:48:c3:
76:ca:79:58:f4:c0:a8:31:be:6d:31:88:b4:6c:a1:
9e:29:67:e8:33:67:4a:dd:70:5e:4c:9d:96:8b:ce:
42:6a:48:b7:90:7a:f3:28:53:ca:c2:8f:ce:ba:a4:
c5:3c:3e:dc:5b:36:dc:5d:21:d1:84:38:8b:07:76:
7e:fd:74:e3:9b:69:b1:37:cb:24:e5:94:d4:31:2d:
7d:0a:3f:8d:15:6a:4d:4f:e3:40:6d:30:a1:8b:32:
12:7e:a3:ae:80:dc:fb:62:0d:ef:8d:47:74:4c:66:
ed:79:38:ef:3d:ef:ee:04:87:3b:64:8a:a1:ea:1d:
62:8a:08:96:d5:db:2d:78:43:96:34:38:d8:1f:cd:
75:88:4c:3c:2e:2e:68:9c:76:71:87:a6:28:b3:f2:
10:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:30:D8:28:82:D3:80:1F:C4:6A:D5:5A:69:73:DB:52:63:F9:47:9D
X509v3 Authority Key Identifier:
keyid:3F:A2:13:F0:71:F5:12:99:3E:71:74:4B:A4:85:B1:70:F0:44:9C:83
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BAFF476963BEEEFBA925E6094AD61F8FE108B5D47F243A7D2C6288E23FA4F667/0/3FA213F071F512993E71744BA485B170F0449C83.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3FA213F071F512993E71744BA485B170F0449C83.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BAFF476963BEEEFBA925E6094AD61F8FE108B5D47F243A7D2C6288E23FA4F667/0/323830313a31653a333030303a3a2f34382d3438203d3e20323637383933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:1e:3000::/48
Signature Algorithm: sha256WithRSAEncryption
32:51:96:be:6f:f2:4a:43:3f:da:68:e8:84:bd:10:86:67:e7:
1b:30:93:ba:04:61:79:4e:be:60:2e:24:7b:f6:02:5a:26:fc:
2b:90:55:88:38:7d:1b:ba:ae:9f:cc:1b:b9:c3:f4:2c:73:dd:
9f:81:20:43:f2:86:ee:a3:70:2e:f1:92:38:e5:5b:9f:df:b7:
ba:42:41:4d:49:bb:7e:e5:6a:b0:52:87:aa:87:ed:2d:7c:36:
9e:c2:83:0d:b7:0a:e5:1e:f8:7d:2a:b7:c1:0e:86:cc:7a:0f:
de:fa:df:7e:65:11:cd:03:d5:bc:11:1e:60:69:57:22:3d:23:
3c:4b:51:89:eb:30:eb:06:a3:f7:37:f7:a7:34:c2:a3:1c:e6:
3d:3e:55:92:c1:02:8a:44:79:3b:01:16:c3:51:2a:9c:e9:74:
77:e0:9a:3d:45:7e:10:a5:5b:31:2c:ed:3d:3a:37:99:cb:67:
72:15:66:55:ea:75:94:73:5c:ce:46:2c:e6:63:7a:bd:7c:26:
dd:ac:94:33:ff:42:24:d5:3b:f1:d2:2f:64:9a:df:37:8e:89:
4c:e7:0c:81:6f:09:d1:18:20:57:2a:e3:23:59:b8:54:f6:36:
26:e3:6f:ae:f9:94:e6:cb:7c:b6:71:9c:48:d3:c2:fc:f4:7a:
46:4b:e9:29
-----BEGIN CERTIFICATE-----
MIIFxzCCBK+gAwIBAgIUNxLJCwTwDcq9Q609BdS6hAABxh0wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoM0ZBMjEzRjA3MUY1MTI5OTNFNzE3NDRCQTQ4NUIxNzBG
MDQ0OUM4MzAeFw0yNTAyMDQxODE3MjhaFw0yNjAyMDMxODIyMjhaMDMxMTAvBgNV
BAMTKDY2MzBEODI4ODJEMzgwMUZDNDZBRDU1QTY5NzNEQjUyNjNGOTQ3OUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC57uxkIUQ1fznKa3YH23NShEH8
7HUdjDmIWCUlb+1pIKRtIhOYFoJZ4jZJLUxvr3Ep3FKdYcunepWNcur2BDvM+gks
hWkPFK5UZgy7Q2c9reAGWQQbsmLnswUrIFYVwS0fwvUEhFNIw3bKeVj0wKgxvm0x
iLRsoZ4pZ+gzZ0rdcF5MnZaLzkJqSLeQevMoU8rCj866pMU8PtxbNtxdIdGEOIsH
dn79dOObabE3yyTllNQxLX0KP40Vak1P40BtMKGLMhJ+o66A3PtiDe+NR3RMZu15
OO897+4EhztkiqHqHWKKCJbV2y14Q5Y0ONgfzXWITDwuLmicdnGHpiiz8hAlAgMB
AAGjggLRMIICzTAdBgNVHQ4EFgQUZjDYKILTgB/EatVaaXPbUmP5R50wHwYDVR0j
BBgwFoAUP6IT8HH1Epk+cXRLpIWxcPBEnIMwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9CQUZGNDc2OTYzQkVFRUZCQTkyNUU2MDk0QUQ2MUY4RkUx
MDhCNUQ0N0YyNDNBN0QyQzYyODhFMjNGQTRGNjY3LzAvM0ZBMjEzRjA3MUY1MTI5
OTNFNzE3NDRCQTQ4NUIxNzBGMDQ0OUM4My5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8zRkEyMTNGMDcxRjUxMjk5M0U3
MTc0NEJBNDg1QjE3MEYwNDQ5QzgzLmNlcjCBzQYIKwYBBQUHAQsEgcAwgb0wgboG
CCsGAQUFBzALhoGtcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQkFGRjQ3Njk2M0JFRUVGQkE5MjVFNjA5NEFENjFGOEZFMTA4QjVENDdG
MjQzQTdEMkM2Mjg4RTIzRkE0RjY2Ny8wLzMyMzgzMDMxM2EzMTY1M2EzMzMwMzAz
MDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMyMzYzNzM4MzkzMy5yb2EwGAYDVR0g
AQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMH
ACgBAB4wADANBgkqhkiG9w0BAQsFAAOCAQEAMlGWvm/ySkM/2mjohL0QhmfnGzCT
ugRheU6+YC4ke/YCWib8K5BViDh9G7qun8wbucP0LHPdn4EgQ/KG7qNwLvGSOOVb
n9+3ukJBTUm7fuVqsFKHqoftLXw2nsKDDbcK5R74fSq3wQ6GzHoP3vrffmURzQPV
vBEeYGlXIj0jPEtRiesw6waj9zf3pzTCoxzmPT5VksECikR5OwEWw1EqnOl0d+Ca
PUV+EKVbMSztPTo3mctnchVmVep1lHNczkYs5mN6vXwm3ayUM/9CJNU78dIvZJrf
N46JTOcMgW8J0RggVyrjI1m4VPY2JuNvrvmU5st8tnGcSNPC/PR6RkvpKQ==
-----END CERTIFICATE-----
Generated at Sun Apr 6 04:14:01 2025 by rpki-client