Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C32A8D50921BD87E43FA761FF973EE18169DD40683D0E47F21FE7576E4C359E0/0/323830313a3164613a3a2f34342d3434203d3e203134303830.roa
File: 323830313a3164613a3a2f34342d3434203d3e203134303830.roa (raw, json)
Hash identifier: 7a1zzEOFKOUUGKKnjajv6de3PBlOFhDHmUObkPDAFwI=
Subject key identifier: B6:8B:13:15:7D:E9:63:04:7B:97:CD:86:F3:D3:4E:86:16:F7:5E:D1
Certificate issuer: /CN=72B67FDA04246C53AE1C1A7EBE6EF57B4E9C842C
Certificate serial: 51C829B58B0C6ECFD8BD1122F89522A5AFCB1169
Authority key identifier: 72:B6:7F:DA:04:24:6C:53:AE:1C:1A:7E:BE:6E:F5:7B:4E:9C:84:2C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/72B67FDA04246C53AE1C1A7EBE6EF57B4E9C842C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C32A8D50921BD87E43FA761FF973EE18169DD40683D0E47F21FE7576E4C359E0/0/323830313a3164613a3a2f34342d3434203d3e203134303830.roa
Signing time: Tue 04 Feb 2025 18:09:00 +0000
ROA not before: Tue 04 Feb 2025 18:04:00 +0000
ROA not after: Tue 03 Feb 2026 18:09:00 +0000
asID: 14080
IP address blocks: 2801:1da::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:c8:29:b5:8b:0c:6e:cf:d8:bd:11:22:f8:95:22:a5:af:cb:11:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72B67FDA04246C53AE1C1A7EBE6EF57B4E9C842C
Validity
Not Before: Feb 4 18:04:00 2025 GMT
Not After : Feb 3 18:09:00 2026 GMT
Subject: CN=B68B13157DE963047B97CD86F3D34E8616F75ED1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:39:2a:45:07:8b:a2:9c:05:60:71:c0:04:f4:
88:89:70:1b:88:cf:16:3b:fb:ea:06:5d:51:62:cc:
ba:55:e4:a8:af:8a:e2:0e:f4:47:4a:d4:27:80:0a:
92:e0:e7:31:05:8e:01:5a:d2:06:c5:69:0b:11:cd:
a2:b8:41:93:4e:db:9b:f9:e4:b1:29:14:09:32:1d:
1a:49:74:2e:ce:68:34:81:90:d9:d7:b7:4c:d0:d1:
d3:bb:0f:2c:a3:80:cb:25:ca:b7:2a:15:9e:09:d1:
2e:dc:78:c4:3a:02:0f:10:4a:a0:af:f3:fc:8b:da:
67:db:0e:02:f2:b6:36:f2:ba:22:70:99:0b:b9:7c:
ea:14:14:3c:9a:2b:e0:dd:1b:25:77:f5:e4:43:38:
c5:7d:b4:54:bb:b0:aa:eb:84:67:99:d9:eb:25:34:
30:2a:a9:a6:5d:93:e1:3f:65:5a:48:9c:0c:03:a1:
ef:7f:aa:46:1a:c3:af:0b:c5:03:c9:e2:ed:33:35:
f4:c5:a6:24:de:85:25:e6:fd:f4:22:f6:c9:fc:b4:
e4:be:ca:f1:71:11:7a:7c:a2:b2:38:9e:05:d4:fc:
75:05:22:fa:67:37:d7:36:2c:be:b6:fc:80:90:3a:
38:21:8c:fd:50:1b:1e:a2:8b:70:a7:45:b5:f5:8b:
6f:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:8B:13:15:7D:E9:63:04:7B:97:CD:86:F3:D3:4E:86:16:F7:5E:D1
X509v3 Authority Key Identifier:
keyid:72:B6:7F:DA:04:24:6C:53:AE:1C:1A:7E:BE:6E:F5:7B:4E:9C:84:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C32A8D50921BD87E43FA761FF973EE18169DD40683D0E47F21FE7576E4C359E0/0/72B67FDA04246C53AE1C1A7EBE6EF57B4E9C842C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/72B67FDA04246C53AE1C1A7EBE6EF57B4E9C842C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C32A8D50921BD87E43FA761FF973EE18169DD40683D0E47F21FE7576E4C359E0/0/323830313a3164613a3a2f34342d3434203d3e203134303830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:1da::/44
Signature Algorithm: sha256WithRSAEncryption
79:60:65:cb:82:b9:e5:95:d0:67:34:e5:18:c2:84:6d:d3:13:
72:46:6e:fc:78:3d:d6:bb:82:d3:46:8f:3d:c2:f4:c2:c5:7c:
d8:33:9b:c0:5a:76:d2:4c:30:76:10:c8:44:16:1f:ad:68:1b:
c1:93:ac:b8:51:dc:72:28:44:3c:63:35:ea:a9:b0:12:a0:6e:
42:85:73:b4:e8:ef:d1:9e:18:e1:ac:9e:66:e3:34:1e:af:fa:
f9:76:a1:bc:2c:40:cb:fa:61:52:79:65:a6:b2:a8:f2:67:0a:
c0:7d:4e:bc:5e:bd:49:4e:f9:15:f9:12:0e:49:b0:ca:d6:d6:
a8:4c:23:5f:60:0d:43:47:6a:19:03:ab:3d:1d:d9:dc:85:35:
57:e7:bf:c4:c7:0b:5b:62:78:b0:5d:bf:f6:62:16:d2:d3:6f:
63:33:3a:9c:52:85:40:5b:a7:bc:a9:af:d9:37:14:bc:d6:5c:
9d:27:77:4d:a4:d1:34:f1:df:33:f1:f2:e6:aa:2d:db:92:77:
ff:58:55:e5:c5:9d:c7:13:ff:d9:44:5c:8a:d6:2b:d1:fc:1b:
ea:ed:cb:4f:12:75:ba:66:d6:66:0e:d0:77:b1:c0:94:ab:ce:
d6:39:b2:14:ee:18:87:ff:43:8b:98:0d:2c:69:e8:06:45:3f:
9b:b4:b9:88
-----BEGIN CERTIFICATE-----
MIIFvTCCBKWgAwIBAgIUUcgptYsMbs/YvREi+JUipa/LEWkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzJCNjdGREEwNDI0NkM1M0FFMUMxQTdFQkU2RUY1N0I0
RTlDODQyQzAeFw0yNTAyMDQxODA0MDBaFw0yNjAyMDMxODA5MDBaMDMxMTAvBgNV
BAMTKEI2OEIxMzE1N0RFOTYzMDQ3Qjk3Q0Q4NkYzRDM0RTg2MTZGNzVFRDEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAOSpFB4uinAVgccAE9IiJcBuI
zxY7++oGXVFizLpV5KiviuIO9EdK1CeACpLg5zEFjgFa0gbFaQsRzaK4QZNO25v5
5LEpFAkyHRpJdC7OaDSBkNnXt0zQ0dO7DyyjgMslyrcqFZ4J0S7ceMQ6Ag8QSqCv
8/yL2mfbDgLytjbyuiJwmQu5fOoUFDyaK+DdGyV39eRDOMV9tFS7sKrrhGeZ2esl
NDAqqaZdk+E/ZVpInAwDoe9/qkYaw68LxQPJ4u0zNfTFpiTehSXm/fQi9sn8tOS+
yvFxEXp8orI4ngXU/HUFIvpnN9c2LL62/ICQOjghjP1QGx6ii3CnRbX1i29TAgMB
AAGjggLHMIICwzAdBgNVHQ4EFgQUtosTFX3pYwR7l82G89NOhhb3XtEwHwYDVR0j
BBgwFoAUcrZ/2gQkbFOuHBp+vm71e06chCwwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9DMzJBOEQ1MDkyMUJEODdFNDNGQTc2MUZGOTczRUUxODE2
OURENDA2ODNEMEU0N0YyMUZFNzU3NkU0QzM1OUUwLzAvNzJCNjdGREEwNDI0NkM1
M0FFMUMxQTdFQkU2RUY1N0I0RTlDODQyQy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC83MkI2N0ZEQTA0MjQ2QzUzQUUx
QzFBN0VCRTZFRjU3QjRFOUM4NDJDLmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG
CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQzMyQThENTA5MjFCRDg3RTQzRkE3NjFGRjk3M0VFMTgxNjlERDQwNjgz
RDBFNDdGMjFGRTc1NzZFNEMzNTlFMC8wLzMyMzgzMDMxM2EzMTY0NjEzYTNhMmYz
NDM0MmQzNDM0MjAzZDNlMjAzMTM0MzAzODMwLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEKAEB2gAAMA0G
CSqGSIb3DQEBCwUAA4IBAQB5YGXLgrnlldBnNOUYwoRt0xNyRm78eD3Wu4LTRo89
wvTCxXzYM5vAWnbSTDB2EMhEFh+taBvBk6y4UdxyKEQ8YzXqqbASoG5ChXO06O/R
nhjhrJ5m4zQer/r5dqG8LEDL+mFSeWWmsqjyZwrAfU68Xr1JTvkV+RIOSbDK1tao
TCNfYA1DR2oZA6s9HdnchTVX57/ExwtbYniwXb/2YhbS029jMzqcUoVAW6e8qa/Z
NxS81lydJ3dNpNE08d8z8fLmqi3bknf/WFXlxZ3HE//ZRFyK1ivR/Bvq7ctPEnW6
ZtZmDtB3scCUq87WObIU7hiH/0OLmA0saegGRT+btLmI
-----END CERTIFICATE-----
Generated at Sat Apr 5 14:00:04 2025 by rpki-client