Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BDBF09B3CAE1A376B8986E8C71550097CDFFD30F14F2FD2790FF48D55E3D54C1/0/323830333a386332303a3a2f33322d3332203d3e203532343638.roa
File: 323830333a386332303a3a2f33322d3332203d3e203532343638.roa (raw, json)
Hash identifier: EMXzQ3dtfq2AMyqy7iOO7xybImXYSL4x3Qk47HIeCsE=
Subject key identifier: AD:19:40:FF:87:35:78:EA:5C:DA:63:6B:DF:D0:40:D8:23:12:30:EE
Certificate issuer: /CN=BE6B84F38BEBE6F35EC79CB835CAE0A3F921B355
Certificate serial: 5B7828EB015DEB3B168A7BD9241F07F156512C76
Authority key identifier: BE:6B:84:F3:8B:EB:E6:F3:5E:C7:9C:B8:35:CA:E0:A3:F9:21:B3:55
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BE6B84F38BEBE6F35EC79CB835CAE0A3F921B355.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BDBF09B3CAE1A376B8986E8C71550097CDFFD30F14F2FD2790FF48D55E3D54C1/0/323830333a386332303a3a2f33322d3332203d3e203532343638.roa
Signing time: Tue 04 Feb 2025 18:26:50 +0000
ROA not before: Tue 04 Feb 2025 18:21:50 +0000
ROA not after: Tue 03 Feb 2026 18:26:50 +0000
asID: 52468
IP address blocks: 2803:8c20::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:78:28:eb:01:5d:eb:3b:16:8a:7b:d9:24:1f:07:f1:56:51:2c:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BE6B84F38BEBE6F35EC79CB835CAE0A3F921B355
Validity
Not Before: Feb 4 18:21:50 2025 GMT
Not After : Feb 3 18:26:50 2026 GMT
Subject: CN=AD1940FF873578EA5CDA636BDFD040D8231230EE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:43:81:e9:5b:28:7f:53:dd:c4:58:df:36:38:
f2:75:aa:d4:aa:c2:64:0d:5d:4d:03:c0:ba:fe:d9:
55:4d:6e:f4:2a:3e:1e:5e:34:95:39:b1:d0:bf:94:
d3:c7:2d:5f:8c:8c:a2:43:98:39:0a:02:44:13:35:
d1:5e:06:cf:14:16:a5:41:d6:fe:a6:59:aa:df:b4:
0c:8d:7d:56:13:45:12:3e:5a:4b:f7:d4:45:12:1a:
ee:bc:c8:cf:da:bc:fe:24:8f:df:e4:65:06:4b:fa:
62:40:d4:cf:fd:c5:79:f4:c2:71:e6:3e:40:4f:88:
06:01:51:e4:28:f4:04:41:aa:5c:ac:7d:2c:4c:4d:
5e:2d:02:d6:64:ed:02:dc:ee:a8:bd:9e:39:09:a4:
41:18:02:a8:21:63:6d:a7:65:bc:3e:1a:7e:19:09:
f5:bd:d3:68:e7:99:58:54:7d:14:ac:05:90:ff:59:
e3:d5:ac:a4:97:9b:22:8f:5f:30:a5:57:37:25:1f:
3f:b9:5d:04:50:08:ba:36:1c:15:cd:47:ad:d4:1d:
01:69:e9:ad:4d:0a:f3:85:ea:c9:f1:8d:c2:f0:c5:
16:7f:c7:0a:6e:dc:ef:09:52:2e:7e:e2:bb:26:10:
21:74:47:e9:00:b2:be:a8:18:76:c4:20:5f:a4:a2:
e7:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:19:40:FF:87:35:78:EA:5C:DA:63:6B:DF:D0:40:D8:23:12:30:EE
X509v3 Authority Key Identifier:
keyid:BE:6B:84:F3:8B:EB:E6:F3:5E:C7:9C:B8:35:CA:E0:A3:F9:21:B3:55
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BDBF09B3CAE1A376B8986E8C71550097CDFFD30F14F2FD2790FF48D55E3D54C1/0/BE6B84F38BEBE6F35EC79CB835CAE0A3F921B355.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BE6B84F38BEBE6F35EC79CB835CAE0A3F921B355.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BDBF09B3CAE1A376B8986E8C71550097CDFFD30F14F2FD2790FF48D55E3D54C1/0/323830333a386332303a3a2f33322d3332203d3e203532343638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:8c20::/32
Signature Algorithm: sha256WithRSAEncryption
4d:d5:d6:cf:00:26:58:d7:e6:23:2d:d7:b9:4a:72:18:4c:e3:
42:e6:79:e2:31:3c:c3:68:1d:48:06:99:78:90:6d:12:18:a3:
36:82:bf:33:e8:2b:47:52:be:7f:1b:c0:15:36:83:2b:4f:08:
e5:99:d6:d9:ea:91:88:ff:cc:42:0e:0a:01:d9:4a:cd:56:56:
85:02:30:41:84:66:b7:5c:01:2e:2a:bf:e2:c4:e8:dd:e4:0e:
bc:a0:9e:5d:93:d1:87:be:f8:40:55:3e:97:65:f7:ef:46:23:
45:b7:2a:8b:fb:72:fe:18:17:6b:12:1f:3e:68:bb:b1:a9:62:
d7:44:45:cb:55:c9:fd:7d:ce:6e:9b:86:4c:f5:51:61:e4:a8:
a4:e9:94:36:f5:a6:3d:f7:cb:92:20:b3:b9:df:81:14:b5:2f:
7e:f2:a1:8e:f6:8c:67:86:cd:43:39:c9:82:1a:06:40:20:03:
4d:d2:ac:3d:1b:7c:77:7d:ac:89:75:93:18:07:f9:67:21:60:
b3:fc:71:95:7d:13:8f:b5:78:2d:8d:df:2e:f2:25:0c:1c:15:
d8:ad:26:5e:c5:c1:dc:2e:ac:1b:22:83:63:ef:74:9b:67:82:
8a:31:46:fb:d0:18:7a:e5:fa:d2:cf:fd:16:e2:52:e1:f1:39:
84:c7:a4:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 19:55:57 2025 by rpki-client