Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BBFFBF6405F5FE441C4C5CCF0763F033426C3B473A8B887A4F3EA9F065235D4C/0/323830333a626530303a3a2f33322d3336203d3e203532343235.roa
File: 323830333a626530303a3a2f33322d3336203d3e203532343235.roa (raw, json)
Hash identifier: 1BPxa5/a6ZIT+P0dDinp6I+Rm10jDZhfnKW4Ox2uv00=
Subject key identifier: 80:CC:F9:98:39:92:43:89:3F:24:8A:AF:87:FD:D8:72:D5:36:2B:DF
Certificate issuer: /CN=D663037914FA22285F5A90948270F4B18D3F2D85
Certificate serial: 5BB7E72A13644A3B309E9EF7C596EDDBCA1FF901
Authority key identifier: D6:63:03:79:14:FA:22:28:5F:5A:90:94:82:70:F4:B1:8D:3F:2D:85
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D663037914FA22285F5A90948270F4B18D3F2D85.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BBFFBF6405F5FE441C4C5CCF0763F033426C3B473A8B887A4F3EA9F065235D4C/0/323830333a626530303a3a2f33322d3336203d3e203532343235.roa
Signing time: Tue 04 Feb 2025 18:05:59 +0000
ROA not before: Tue 04 Feb 2025 18:00:59 +0000
ROA not after: Tue 03 Feb 2026 18:05:59 +0000
asID: 52425
IP address blocks: 2803:be00::/32 maxlen: 36
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:b7:e7:2a:13:64:4a:3b:30:9e:9e:f7:c5:96:ed:db:ca:1f:f9:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D663037914FA22285F5A90948270F4B18D3F2D85
Validity
Not Before: Feb 4 18:00:59 2025 GMT
Not After : Feb 3 18:05:59 2026 GMT
Subject: CN=80CCF998399243893F248AAF87FDD872D5362BDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:9f:54:11:1d:17:80:ba:7f:a0:6e:c5:93:77:
5b:58:f7:0a:8c:6f:41:a2:c7:46:b2:22:68:71:a0:
11:59:80:37:5d:4a:52:ba:c1:e0:f2:46:48:ca:7c:
e2:25:c4:dc:69:16:43:82:13:52:5b:6e:92:b9:6e:
7a:00:c3:e1:e6:e0:de:c7:cf:95:17:2a:01:84:ad:
af:5a:b4:72:b6:be:89:0e:af:95:4f:32:ff:c7:97:
97:b8:36:1a:a1:b2:56:09:8a:ba:2b:2f:d7:86:a3:
1e:11:1a:c4:f0:47:ef:1d:d7:95:71:47:b6:09:c2:
62:c1:0a:c4:91:a3:12:d5:c2:e8:b4:0c:99:53:5d:
b8:b1:bc:47:e3:02:6a:21:35:0e:3a:d9:fa:31:a2:
c0:42:b0:1d:8f:10:47:fa:0c:a9:2a:cc:4e:7c:f3:
e8:fb:b2:f8:76:62:30:bc:5b:08:df:bd:36:c9:af:
c5:70:4d:63:19:b6:02:c1:ac:97:19:6c:7e:9e:e1:
a0:0b:50:4b:e2:27:7e:91:07:3b:a0:d1:05:bb:d5:
53:ed:44:cb:8c:07:2f:cb:45:a1:69:e9:eb:76:46:
7d:7a:0f:95:92:48:6d:95:f5:8a:66:07:30:bc:16:
78:10:ab:19:e5:35:36:6c:c3:6a:68:70:ca:50:7d:
13:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:CC:F9:98:39:92:43:89:3F:24:8A:AF:87:FD:D8:72:D5:36:2B:DF
X509v3 Authority Key Identifier:
keyid:D6:63:03:79:14:FA:22:28:5F:5A:90:94:82:70:F4:B1:8D:3F:2D:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BBFFBF6405F5FE441C4C5CCF0763F033426C3B473A8B887A4F3EA9F065235D4C/0/D663037914FA22285F5A90948270F4B18D3F2D85.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D663037914FA22285F5A90948270F4B18D3F2D85.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BBFFBF6405F5FE441C4C5CCF0763F033426C3B473A8B887A4F3EA9F065235D4C/0/323830333a626530303a3a2f33322d3336203d3e203532343235.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:be00::/32
Signature Algorithm: sha256WithRSAEncryption
2f:cd:3b:fc:ce:59:68:95:7f:ed:ca:c9:87:52:22:17:4a:d1:
81:e6:7a:fb:3d:18:ce:42:94:d5:b8:f9:33:92:92:1a:d4:b0:
e8:84:ef:2b:dd:9b:99:e6:8a:7c:02:2d:1a:80:e4:93:5c:81:
bc:f3:41:32:1e:66:3e:30:26:ef:b6:33:d6:a7:a8:fa:7b:87:
90:8f:0e:a5:39:d0:53:58:0f:fb:e7:a2:1f:1f:35:54:75:3b:
d8:fc:aa:d8:8d:fb:17:31:79:67:cb:06:19:dd:77:57:a5:22:
b1:30:80:d2:7c:6a:26:69:7e:8c:b1:1c:ce:70:15:b2:b6:13:
aa:14:fa:17:63:f3:1d:31:1a:4a:8f:8d:6a:34:95:b1:6c:da:
7e:a8:c1:cb:45:f7:5a:8e:aa:41:e7:4d:59:5f:47:30:94:80:
d0:e8:14:b1:a3:65:0a:5d:7c:c9:7c:50:e1:28:72:ed:66:3b:
fe:e3:87:de:b3:b8:c5:ab:d8:fd:ad:10:7b:53:c4:bb:a3:fe:
54:a1:1e:6b:1a:88:03:96:b3:ec:b9:e6:30:4d:42:e1:ce:98:
34:df:ae:4c:14:4c:4f:ae:67:a7:7a:96:55:56:25:cb:d2:17:
77:e6:19:a5:81:e2:c1:b0:9e:46:c8:c1:34:6c:e4:22:e1:08:
32:cb:8b:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 00:44:48 2025 by rpki-client