Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/CD9B70903CEAC3DC6B7E5F56726C3E4C1F114FC153EE5052D8360BCD1A587B7E/0/323830333a333635303a3a2f33322d3332203d3e20323733323038.roa
File: 323830333a333635303a3a2f33322d3332203d3e20323733323038.roa (raw, json)
Hash identifier: GJSfPhI/P0iMIecaGynWrRn8xPkJTBeOBnft/w0YP+s=
Subject key identifier: 01:87:7F:F5:47:D7:71:FE:C9:53:87:18:FD:FD:2A:1C:B5:2E:8F:22
Certificate issuer: /CN=2D6E029EFDDBCAB8D0BDDDE5274DB682DD4154B9
Certificate serial: 3BED7A815AC13775FD1C19E39563D3103E621321
Authority key identifier: 2D:6E:02:9E:FD:DB:CA:B8:D0:BD:DD:E5:27:4D:B6:82:DD:41:54:B9
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D6E029EFDDBCAB8D0BDDDE5274DB682DD4154B9.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/CD9B70903CEAC3DC6B7E5F56726C3E4C1F114FC153EE5052D8360BCD1A587B7E/0/323830333a333635303a3a2f33322d3332203d3e20323733323038.roa
Signing time: Tue 18 Jun 2024 01:55:00 +0000
ROA not before: Tue 18 Jun 2024 01:50:00 +0000
ROA not after: Tue 17 Jun 2025 01:55:00 +0000
asID: 273208
IP address blocks: 2803:3650::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:ed:7a:81:5a:c1:37:75:fd:1c:19:e3:95:63:d3:10:3e:62:13:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D6E029EFDDBCAB8D0BDDDE5274DB682DD4154B9
Validity
Not Before: Jun 18 01:50:00 2024 GMT
Not After : Jun 17 01:55:00 2025 GMT
Subject: CN=01877FF547D771FEC9538718FDFD2A1CB52E8F22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:22:88:31:9e:f7:89:24:fe:ae:a1:93:24:1a:
21:1a:33:fd:bd:fc:2e:df:dd:02:af:f4:88:04:fc:
fc:ba:7c:76:6e:5d:a6:84:1f:40:18:3e:dd:09:5d:
ab:8b:e3:4e:1b:47:db:84:c2:22:13:ae:a2:dd:f1:
bd:ae:9c:05:67:40:a9:33:f7:32:2e:60:81:36:de:
99:13:73:8c:17:2c:cb:c2:b0:9b:3c:17:99:4f:5a:
b4:28:93:37:6d:cf:1c:3c:b7:1e:e9:cf:b0:86:3f:
e8:99:9d:e1:60:bd:4a:f3:2e:1f:c8:1d:cf:84:39:
e9:a7:11:32:ce:69:df:5e:1f:f2:b4:18:27:c2:1e:
0e:be:52:33:45:b3:29:65:fb:de:f6:6d:93:4f:c6:
9e:60:68:89:a7:8e:13:1d:97:13:3e:4b:46:44:cd:
6a:1a:ba:c6:d3:5b:5a:39:ea:21:07:95:15:b0:e1:
29:5d:13:b6:e3:e7:12:28:27:ef:99:d3:26:76:ce:
c6:77:1d:ca:af:25:48:7e:43:8d:22:e1:0b:82:08:
f8:11:e4:c9:4b:2a:ba:e4:f2:dd:86:38:4f:d4:47:
e7:3a:60:e6:77:57:19:58:10:26:1d:6a:9b:e1:03:
cb:22:ac:98:94:d8:de:3b:8c:42:91:f1:2e:9c:f2:
48:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:87:7F:F5:47:D7:71:FE:C9:53:87:18:FD:FD:2A:1C:B5:2E:8F:22
X509v3 Authority Key Identifier:
keyid:2D:6E:02:9E:FD:DB:CA:B8:D0:BD:DD:E5:27:4D:B6:82:DD:41:54:B9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/CD9B70903CEAC3DC6B7E5F56726C3E4C1F114FC153EE5052D8360BCD1A587B7E/0/2D6E029EFDDBCAB8D0BDDDE5274DB682DD4154B9.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D6E029EFDDBCAB8D0BDDDE5274DB682DD4154B9.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/CD9B70903CEAC3DC6B7E5F56726C3E4C1F114FC153EE5052D8360BCD1A587B7E/0/323830333a333635303a3a2f33322d3332203d3e20323733323038.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:3650::/32
Signature Algorithm: sha256WithRSAEncryption
1b:ef:41:bd:8b:06:a6:b0:e6:11:3a:24:ca:67:b7:84:64:7c:
63:0d:6e:0a:60:74:4f:33:19:cf:2d:74:99:22:ac:90:d0:e2:
dd:b8:0f:d9:17:b0:4d:eb:21:b5:a7:28:4c:8e:43:fd:2c:0f:
27:19:c5:bf:01:38:91:41:78:b7:57:31:77:84:22:e6:c6:f4:
1b:c5:d3:50:95:71:88:eb:55:1d:8e:01:9b:b1:c1:80:bb:99:
3f:d4:8c:47:12:88:a0:51:b9:03:41:82:5b:43:f8:13:8b:7a:
f6:c8:5a:45:80:a4:67:f9:c7:89:34:49:bd:4f:6e:78:ab:d3:
c3:f2:49:ad:e8:11:ae:ad:ea:a9:d3:e5:ab:0d:87:e8:e2:91:
ac:53:0a:47:e8:29:74:3a:a7:02:3b:8c:be:31:23:ba:f3:01:
ab:9c:02:95:e1:8a:d6:2d:f7:ef:23:6c:ab:f3:00:2b:ec:5c:
56:0a:42:6a:3e:33:1c:dc:77:d6:36:df:83:7a:4f:f4:89:82:
7e:a2:f6:78:c4:f9:f8:5c:3f:2f:c7:ce:98:b5:0d:af:00:29:
4e:52:c6:8d:d0:50:90:33:d7:13:dd:e6:2e:5e:97:12:4f:f7:
66:05:db:39:6f:ac:a9:95:85:16:76:87:78:68:9d:52:55:99:
c9:30:4f:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:42:58 2025 by rpki-client