Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C7EDE29EBBCF33DD905D57173E4B0C83C5E37D65E0FE36F9A7463AFD31EFE4AF/0/323830333a616131303a3a2f33322d3438203d3e20323731393236.roa
File: 323830333a616131303a3a2f33322d3438203d3e20323731393236.roa (raw, json)
Hash identifier: C2SltXQZnvvY3PNwNnCpDsytDi4bf1yd876HHt1Z18Y=
Subject key identifier: 5C:02:8D:8A:9A:C1:A4:E7:C3:00:1D:F8:44:40:AE:D9:71:B8:3B:EB
Certificate issuer: /CN=866B7DC5BD9E9CD59F31693C327AB7E0AEDB840F
Certificate serial: 49305AAD25D9BD5EE1C66B7D80FB4EAC113AE96F
Authority key identifier: 86:6B:7D:C5:BD:9E:9C:D5:9F:31:69:3C:32:7A:B7:E0:AE:DB:84:0F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/866B7DC5BD9E9CD59F31693C327AB7E0AEDB840F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C7EDE29EBBCF33DD905D57173E4B0C83C5E37D65E0FE36F9A7463AFD31EFE4AF/0/323830333a616131303a3a2f33322d3438203d3e20323731393236.roa
Signing time: Tue 04 Feb 2025 18:35:01 +0000
ROA not before: Tue 04 Feb 2025 18:30:01 +0000
ROA not after: Tue 03 Feb 2026 18:35:01 +0000
asID: 271926
IP address blocks: 2803:aa10::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:30:5a:ad:25:d9:bd:5e:e1:c6:6b:7d:80:fb:4e:ac:11:3a:e9:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=866B7DC5BD9E9CD59F31693C327AB7E0AEDB840F
Validity
Not Before: Feb 4 18:30:01 2025 GMT
Not After : Feb 3 18:35:01 2026 GMT
Subject: CN=5C028D8A9AC1A4E7C3001DF84440AED971B83BEB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:30:5a:a0:87:62:84:67:a6:1b:ed:d6:40:1b:
c5:69:15:02:e6:83:4b:87:66:a4:2f:67:0e:da:14:
a1:c0:89:ee:71:9c:19:f5:40:ec:dc:05:80:4c:fe:
fc:65:7a:60:74:21:9b:7f:7f:71:4a:10:7e:d2:10:
1e:d8:d3:8c:42:88:29:f1:2f:ea:e0:52:4c:62:a5:
03:45:79:1d:71:aa:c1:d6:db:6c:d9:be:30:1b:48:
5b:67:4f:cc:e0:5a:bd:8c:35:63:6c:91:db:9b:44:
ef:32:87:6d:de:72:8d:f4:c5:51:75:b5:d4:c7:b9:
f2:84:c6:27:fb:e5:68:72:b6:6c:e6:bb:f7:87:fd:
6b:9e:67:55:0c:ad:2b:b8:12:7c:b4:9f:50:57:70:
72:ba:64:7f:21:64:29:b6:3d:2a:68:7e:38:ed:25:
2b:1b:07:44:e3:99:d3:97:2d:28:1d:0e:d7:69:10:
66:ee:d8:62:89:ec:6a:c8:87:e5:03:4a:e9:ec:3a:
d4:90:a2:9a:fa:bd:e2:db:c9:dd:37:a0:c8:83:af:
6b:8b:b9:d1:c8:d3:f7:43:20:62:0e:b2:b1:4f:62:
5b:79:f5:be:13:92:45:04:3b:36:9b:b6:e3:4c:2f:
e0:52:b8:55:f2:cd:06:96:36:86:cd:a4:f6:7a:44:
55:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:02:8D:8A:9A:C1:A4:E7:C3:00:1D:F8:44:40:AE:D9:71:B8:3B:EB
X509v3 Authority Key Identifier:
keyid:86:6B:7D:C5:BD:9E:9C:D5:9F:31:69:3C:32:7A:B7:E0:AE:DB:84:0F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C7EDE29EBBCF33DD905D57173E4B0C83C5E37D65E0FE36F9A7463AFD31EFE4AF/0/866B7DC5BD9E9CD59F31693C327AB7E0AEDB840F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/866B7DC5BD9E9CD59F31693C327AB7E0AEDB840F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C7EDE29EBBCF33DD905D57173E4B0C83C5E37D65E0FE36F9A7463AFD31EFE4AF/0/323830333a616131303a3a2f33322d3438203d3e20323731393236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:aa10::/32
Signature Algorithm: sha256WithRSAEncryption
9c:c2:20:05:cd:b1:64:39:d6:50:aa:91:21:61:9f:20:05:96:
8a:05:e3:52:07:45:2b:be:dd:01:48:ce:4d:29:d6:e6:3a:6b:
62:e7:04:4a:3f:0e:40:9c:a5:02:fa:fe:db:44:d0:f3:2a:22:
bf:50:a0:a7:0f:d4:51:ff:19:40:63:18:f0:48:ad:99:ab:a1:
65:35:94:39:fb:9a:f8:fd:99:e3:1e:1c:e1:27:86:6e:80:dd:
9d:c0:b4:03:9e:a8:5d:ba:2e:9c:e8:ef:0b:9f:5a:71:76:c9:
04:95:af:9d:d3:91:db:bf:b6:72:7b:be:33:8a:1a:3a:0d:ee:
ea:3f:e1:a5:04:64:fc:8c:db:d0:7e:85:e7:c6:01:3c:d8:95:
f6:fc:10:4d:67:d1:39:3e:67:30:a6:6c:fd:01:a6:93:a2:17:
44:3a:57:25:f0:91:84:1a:00:9c:76:db:c2:87:d1:71:55:26:
df:80:7e:8b:75:c6:e1:3a:e7:0d:0f:9d:e0:58:ac:a2:7c:19:
48:d1:c2:13:cd:ae:27:41:9a:00:6c:0e:d1:91:d0:c4:f4:8f:
32:6a:a8:63:76:a9:61:91:e1:d9:87:22:b7:53:a7:d1:c9:fa:
28:68:23:34:32:0b:0c:c9:12:86:7e:d0:92:f0:6d:48:f3:bd:
35:58:c7:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:44:07 2025 by rpki-client