Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C9A64611A248C351E224B4309AD36E950C94FBDEAF1044FB52D1AC9322E53924/0/323830333a653438303a3a2f33322d3438203d3e203532333532.roa
File: 323830333a653438303a3a2f33322d3438203d3e203532333532.roa (raw, json)
Hash identifier: Y89rW/95uWHFcYvJEVhXFn6kL+e0QKteNWMDaOfuUAc=
Subject key identifier: 38:4C:86:5D:D5:0A:22:4E:A5:E5:FF:FE:29:8C:6B:8A:BB:F4:7B:E3
Certificate issuer: /CN=A61B23F86A21FE9CCB4CE1E9BC92C2B210FE7FC8
Certificate serial: 10EF1C7750C4B4B2C6116AA9DD35A3393F7CE9F0
Authority key identifier: A6:1B:23:F8:6A:21:FE:9C:CB:4C:E1:E9:BC:92:C2:B2:10:FE:7F:C8
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A61B23F86A21FE9CCB4CE1E9BC92C2B210FE7FC8.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C9A64611A248C351E224B4309AD36E950C94FBDEAF1044FB52D1AC9322E53924/0/323830333a653438303a3a2f33322d3438203d3e203532333532.roa
Signing time: Tue 04 Feb 2025 18:47:40 +0000
ROA not before: Tue 04 Feb 2025 18:42:40 +0000
ROA not after: Tue 03 Feb 2026 18:47:40 +0000
asID: 52352
IP address blocks: 2803:e480::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:ef:1c:77:50:c4:b4:b2:c6:11:6a:a9:dd:35:a3:39:3f:7c:e9:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A61B23F86A21FE9CCB4CE1E9BC92C2B210FE7FC8
Validity
Not Before: Feb 4 18:42:40 2025 GMT
Not After : Feb 3 18:47:40 2026 GMT
Subject: CN=384C865DD50A224EA5E5FFFE298C6B8ABBF47BE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c6:70:1f:a4:6c:40:31:bd:7f:73:7c:e2:f5:
73:f4:45:87:ae:8f:72:81:59:79:f3:bb:29:a6:e8:
51:e0:3d:01:15:c8:f2:b9:9e:cf:3c:40:14:ea:b4:
74:b2:94:50:15:d9:aa:c2:67:14:a3:5b:d4:9c:39:
72:d6:0a:f2:82:b7:06:e4:84:5f:f9:3c:fd:3a:d4:
7f:f4:0b:85:1d:0b:86:cb:c0:c9:4d:3e:fc:53:b3:
1a:85:7e:d3:ba:61:b5:cb:93:7b:be:f8:cb:cc:e5:
99:46:5e:cf:da:72:34:85:b4:98:03:f0:0b:c7:0c:
a5:f9:a6:28:03:90:ed:5b:c1:75:61:7c:00:99:c7:
47:cc:e4:21:1c:6b:bd:0a:02:4f:99:ab:bd:fd:30:
82:6d:80:f5:44:f1:e5:b7:5c:cb:04:df:32:af:eb:
1f:cb:45:4a:f3:75:2c:7e:8a:d8:ec:92:52:75:12:
95:08:32:e3:2c:ca:d7:f3:09:e3:9c:dc:2e:91:bd:
19:c2:f5:e3:ff:18:9a:7b:f1:bf:a3:d5:c9:2b:5f:
e2:55:bc:15:67:3e:a6:ee:fd:3e:5c:07:3b:d2:f4:
4a:b6:12:93:1c:a0:1a:f9:dc:5d:9b:c1:d7:cf:2e:
ba:9d:76:e2:09:dd:10:4e:d4:3b:5a:ca:98:67:cd:
ad:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:4C:86:5D:D5:0A:22:4E:A5:E5:FF:FE:29:8C:6B:8A:BB:F4:7B:E3
X509v3 Authority Key Identifier:
keyid:A6:1B:23:F8:6A:21:FE:9C:CB:4C:E1:E9:BC:92:C2:B2:10:FE:7F:C8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C9A64611A248C351E224B4309AD36E950C94FBDEAF1044FB52D1AC9322E53924/0/A61B23F86A21FE9CCB4CE1E9BC92C2B210FE7FC8.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A61B23F86A21FE9CCB4CE1E9BC92C2B210FE7FC8.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C9A64611A248C351E224B4309AD36E950C94FBDEAF1044FB52D1AC9322E53924/0/323830333a653438303a3a2f33322d3438203d3e203532333532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:e480::/32
Signature Algorithm: sha256WithRSAEncryption
49:10:9a:32:7a:45:4f:95:c3:d9:ef:07:36:92:2c:40:3a:ec:
ef:d8:b2:be:84:68:69:35:16:3d:e2:6e:59:99:6e:52:d9:69:
53:4d:57:77:3d:2a:cb:7e:26:9c:87:d7:01:43:bf:7b:27:31:
f0:83:c8:a2:b6:b3:7c:b1:27:d3:2b:f9:a0:4b:5e:7e:49:9d:
5f:9a:10:b5:76:8f:75:c3:29:1e:95:ee:e1:78:31:5e:d5:40:
35:b9:a2:f8:df:3d:a7:2a:f6:14:63:79:1a:a9:49:c4:eb:44:
f3:3e:28:25:37:a5:f7:6e:3a:d0:28:50:fe:d3:73:76:ee:2e:
ab:e7:ed:a4:58:00:b7:8e:da:ea:3c:fd:cf:e9:7c:cb:55:65:
9e:84:2e:f8:85:5d:31:a5:43:58:b2:e2:b6:b2:c2:55:66:8f:
d9:12:b4:7d:bb:78:27:17:aa:e6:32:e2:50:19:2d:29:77:1b:
66:fa:7a:27:e2:65:87:18:0f:9f:04:a8:fc:0f:11:a5:18:67:
4e:d9:d2:48:8d:06:d0:f9:ea:5b:d3:0e:23:86:33:d2:a7:e8:
54:05:23:84:a3:6a:ce:29:4a:7f:29:28:9f:61:bb:1e:d1:a8:
ff:0a:08:32:21:91:a2:eb:73:a6:a2:bf:f4:35:c0:bc:dd:1b:
44:26:81:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 14:00:06 2025 by rpki-client