Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/CBE3E0AD30E658C291B2B4AFEAC3EAC3A222F1BF9DCA8641457CB8D81A34B669/0/323830333a383330303a3a2f33322d3438203d3e203139353832.roa
File: 323830333a383330303a3a2f33322d3438203d3e203139353832.roa (raw, json)
Hash identifier: G46ge1inQ+2DaFD3fWsegIrJ6pID2mRIgNq/nP14+D0=
Subject key identifier: 03:F5:E4:B8:F6:D0:40:1C:8D:E1:D1:BB:F0:32:0D:21:5B:3C:72:4C
Certificate issuer: /CN=37D2C6C6B6FDFA4003FD3EFDD2AEF40BFA93CB9E
Certificate serial: 4223605FCC16039A7807E0F6ABA7D6E186B0156C
Authority key identifier: 37:D2:C6:C6:B6:FD:FA:40:03:FD:3E:FD:D2:AE:F4:0B:FA:93:CB:9E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/37D2C6C6B6FDFA4003FD3EFDD2AEF40BFA93CB9E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/CBE3E0AD30E658C291B2B4AFEAC3EAC3A222F1BF9DCA8641457CB8D81A34B669/0/323830333a383330303a3a2f33322d3438203d3e203139353832.roa
Signing time: Tue 04 Feb 2025 20:05:20 +0000
ROA not before: Tue 04 Feb 2025 20:00:20 +0000
ROA not after: Tue 03 Feb 2026 20:05:20 +0000
asID: 19582
IP address blocks: 2803:8300::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
42:23:60:5f:cc:16:03:9a:78:07:e0:f6:ab:a7:d6:e1:86:b0:15:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37D2C6C6B6FDFA4003FD3EFDD2AEF40BFA93CB9E
Validity
Not Before: Feb 4 20:00:20 2025 GMT
Not After : Feb 3 20:05:20 2026 GMT
Subject: CN=03F5E4B8F6D0401C8DE1D1BBF0320D215B3C724C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:83:a5:be:13:e8:a5:39:a9:03:cb:f6:d8:a4:
6d:13:81:89:4b:aa:22:be:7b:d4:f4:32:e5:b5:63:
8b:ad:79:2f:df:9e:e4:8d:1d:b4:de:c3:07:27:62:
f1:bc:2f:e3:50:5b:32:ff:ef:6a:7e:5e:94:32:84:
de:13:5f:da:df:19:64:f4:1d:67:94:f7:4a:a6:34:
bd:a9:1e:b1:00:fa:de:87:27:56:5b:9b:ed:6e:8a:
5c:b6:30:61:cc:bc:67:10:79:db:fa:98:52:c6:9c:
dd:f5:4a:78:2f:1f:3e:a8:4f:ad:07:f3:6e:f8:4e:
94:a5:e9:20:0f:b5:93:0b:c9:bd:c8:56:e2:a6:ef:
9f:3c:9d:2a:10:b6:74:ea:b8:19:23:8f:ec:67:23:
59:58:c4:43:a8:dc:42:12:37:22:53:9f:6b:5d:f4:
1c:c3:89:5e:b7:ce:00:d2:60:af:bf:f9:db:36:3f:
2e:83:20:b0:7d:94:4d:cc:fc:99:25:2e:86:fb:97:
27:a3:36:99:23:ab:68:2f:4e:5e:37:dd:26:3a:16:
e8:a3:c8:00:f2:8e:d4:7a:6d:92:71:9c:19:b2:0a:
ff:3c:84:21:52:55:52:ad:1e:18:f3:a8:bf:9a:d8:
21:10:63:0a:da:dd:6b:16:6d:4a:e5:d6:c1:dc:b7:
a9:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:F5:E4:B8:F6:D0:40:1C:8D:E1:D1:BB:F0:32:0D:21:5B:3C:72:4C
X509v3 Authority Key Identifier:
keyid:37:D2:C6:C6:B6:FD:FA:40:03:FD:3E:FD:D2:AE:F4:0B:FA:93:CB:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/CBE3E0AD30E658C291B2B4AFEAC3EAC3A222F1BF9DCA8641457CB8D81A34B669/0/37D2C6C6B6FDFA4003FD3EFDD2AEF40BFA93CB9E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/37D2C6C6B6FDFA4003FD3EFDD2AEF40BFA93CB9E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/CBE3E0AD30E658C291B2B4AFEAC3EAC3A222F1BF9DCA8641457CB8D81A34B669/0/323830333a383330303a3a2f33322d3438203d3e203139353832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:8300::/32
Signature Algorithm: sha256WithRSAEncryption
6a:2a:7b:23:81:f8:2d:1c:ec:4c:f1:61:a5:ed:73:c1:34:c0:
71:5c:fa:a6:bf:ad:f6:35:1c:b3:31:4f:f3:9b:31:74:88:77:
4d:2d:d5:61:22:76:2f:11:df:3f:9b:bc:3b:39:85:33:19:a5:
f4:f7:df:a5:3c:92:a6:88:1d:e3:61:ff:01:73:27:8f:10:5c:
f7:4c:8d:b3:d9:25:40:55:c5:1c:ec:c2:fe:5b:9b:d9:2e:cb:
22:3c:94:d2:79:16:b5:ee:41:72:e3:d2:d6:a4:bc:f4:da:9a:
bf:97:aa:e2:79:ea:ad:87:f6:2b:37:12:41:dd:c6:fa:7b:b2:
8a:f7:6d:00:a1:39:5e:5e:90:77:d6:52:21:40:27:9b:0e:21:
56:9f:14:f9:97:4a:cb:02:7e:bf:a9:a4:44:5e:2e:17:0a:b1:
a4:57:f8:fe:69:3a:5b:37:e6:99:8f:41:f8:28:67:c7:08:7d:
cc:ef:8c:b4:1d:92:67:6a:44:cc:76:6a:c0:cf:50:76:ff:e5:
29:e4:21:8d:77:50:3e:0c:b0:ed:3d:c2:da:53:30:e3:39:4d:
76:b4:5b:4f:96:0b:b3:11:78:79:39:25:04:2f:3e:4f:9a:ac:
77:3c:b9:ee:b2:f6:1b:b4:ce:25:b8:10:a2:d2:0f:b0:b5:05:
5a:c9:a5:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:06:30 2025 by rpki-client