Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BB0C32254BADF118E3E8E1FC5E1D13916CA9F020D47B417DEF5FA9CEE16B8A7E/0/323830333a626332303a3a2f33322d3438203d3e20323634363638.roa
File: 323830333a626332303a3a2f33322d3438203d3e20323634363638.roa (raw, json)
Hash identifier: LlYRCGv4cYNauwTR+MZt9LkbYE6yPEcujCYcp9Bz46I=
Subject key identifier: DD:95:F7:E7:22:BF:9E:93:55:38:C1:4C:34:AE:93:69:4B:21:6C:1B
Certificate issuer: /CN=3969A916AB2A182C19F90F28E002F43BBA68A0E4
Certificate serial: 3A6FB4D905FFB1B776CB64E6ED9D99DECBAFC7B6
Authority key identifier: 39:69:A9:16:AB:2A:18:2C:19:F9:0F:28:E0:02:F4:3B:BA:68:A0:E4
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3969A916AB2A182C19F90F28E002F43BBA68A0E4.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BB0C32254BADF118E3E8E1FC5E1D13916CA9F020D47B417DEF5FA9CEE16B8A7E/0/323830333a626332303a3a2f33322d3438203d3e20323634363638.roa
Signing time: Tue 04 Feb 2025 18:43:03 +0000
ROA not before: Tue 04 Feb 2025 18:38:03 +0000
ROA not after: Tue 03 Feb 2026 18:43:03 +0000
asID: 264668
IP address blocks: 2803:bc20::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:6f:b4:d9:05:ff:b1:b7:76:cb:64:e6:ed:9d:99:de:cb:af:c7:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3969A916AB2A182C19F90F28E002F43BBA68A0E4
Validity
Not Before: Feb 4 18:38:03 2025 GMT
Not After : Feb 3 18:43:03 2026 GMT
Subject: CN=DD95F7E722BF9E935538C14C34AE93694B216C1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d4:5f:52:c9:77:af:59:f1:67:ca:8e:0c:77:
4f:4b:3d:20:47:b2:29:9c:40:52:ca:c6:20:a4:39:
0a:29:2c:74:c3:51:3d:97:49:59:4b:50:8c:3e:ca:
d7:e7:0a:0a:de:56:84:bf:c3:01:86:b3:9c:00:d7:
0f:76:d5:de:f6:8b:f1:83:83:59:70:e3:b1:18:53:
35:95:11:27:60:02:fe:96:ec:48:3b:10:fc:6a:83:
34:3a:5e:0b:06:a5:8a:82:ba:fc:8f:ab:f6:d0:f1:
9d:83:8f:8f:b0:ab:4a:09:e1:54:6d:48:01:58:20:
9d:97:f8:77:15:a7:73:b5:1c:ce:62:25:f1:29:d2:
44:5b:59:79:a1:23:65:19:72:36:14:12:16:d5:0e:
1b:8b:e2:69:43:d3:de:18:6f:42:5e:7e:88:c5:49:
d8:2b:07:2a:9f:43:35:d3:8c:3d:f4:56:57:5f:39:
e6:3e:e7:a5:e4:3b:3a:2c:c4:a1:91:64:66:6c:b2:
3e:42:55:d5:ca:87:96:1c:07:fe:79:b5:bb:da:fb:
0a:48:a7:15:08:fe:51:1c:98:52:3c:13:e8:00:25:
1c:3e:12:ae:6a:e7:db:01:51:20:ea:4f:8b:ab:8e:
91:5d:ce:fa:f6:87:07:36:5d:fa:40:27:3b:00:93:
6f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:95:F7:E7:22:BF:9E:93:55:38:C1:4C:34:AE:93:69:4B:21:6C:1B
X509v3 Authority Key Identifier:
keyid:39:69:A9:16:AB:2A:18:2C:19:F9:0F:28:E0:02:F4:3B:BA:68:A0:E4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BB0C32254BADF118E3E8E1FC5E1D13916CA9F020D47B417DEF5FA9CEE16B8A7E/0/3969A916AB2A182C19F90F28E002F43BBA68A0E4.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3969A916AB2A182C19F90F28E002F43BBA68A0E4.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BB0C32254BADF118E3E8E1FC5E1D13916CA9F020D47B417DEF5FA9CEE16B8A7E/0/323830333a626332303a3a2f33322d3438203d3e20323634363638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:bc20::/32
Signature Algorithm: sha256WithRSAEncryption
0e:59:80:97:44:54:3c:32:da:93:19:ad:71:e0:62:64:24:91:
ea:36:84:cf:ba:43:65:94:90:4a:ca:e3:e1:ae:f3:db:a9:2c:
63:90:ea:db:1f:8f:1c:fe:0b:a7:fa:85:2e:e3:37:29:c7:1a:
38:33:46:09:3b:1e:ad:89:28:43:55:b9:5f:6d:4a:f3:d6:8b:
17:e6:53:b3:c0:cc:89:3b:29:6a:76:f2:66:ac:0a:7a:31:5c:
ab:5e:48:5e:93:23:9c:68:36:85:b9:50:7c:17:4f:d7:d0:2a:
b6:06:54:5f:f1:0a:54:0f:84:e0:2c:b8:26:ac:44:fe:a8:f9:
c9:63:c4:36:56:70:2b:c3:e9:46:2b:a5:aa:52:ce:af:24:5a:
6a:1b:33:da:38:d8:ae:74:da:1a:fe:64:aa:83:fb:fa:54:90:
02:a7:8f:d4:de:17:d6:a4:6d:42:67:25:26:28:33:a1:4d:df:
ce:59:7f:8b:12:ca:47:0e:20:8b:1c:b8:ad:a2:ca:c5:5f:29:
09:8c:90:15:70:65:7f:6c:92:25:1a:e9:6e:2d:9e:79:9c:3b:
11:80:f5:78:0f:56:5c:7a:fc:aa:8b:86:c2:03:aa:c2:93:24:
dd:5a:0c:ad:16:33:71:e7:fa:a7:b5:a0:56:16:f1:20:7f:bb:
4d:9f:ea:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:55:05 2025 by rpki-client