Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/CE42FD1EE33212C063B4C065E7B63698FA002ECE8EB7A9F663C2C72AA344C5E8/0/323830313a31373a613830303a3a2f34382d3438203d3e203139343239.roa
File: 323830313a31373a613830303a3a2f34382d3438203d3e203139343239.roa (raw, json)
Hash identifier: 0LYMeVsSI02BRasVDh1jNgFbWhsUaGjhRPdgMpK7wUo=
Subject key identifier: AB:D2:BE:60:A3:29:7A:C9:7E:13:41:68:A5:A6:0F:54:BC:20:48:39
Certificate issuer: /CN=473DA6D2AD1870712B3574665CA7D12EF08A67EB
Certificate serial: 4366B52862540531FCDABE9D47569C1B96DBE9FA
Authority key identifier: 47:3D:A6:D2:AD:18:70:71:2B:35:74:66:5C:A7:D1:2E:F0:8A:67:EB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/473DA6D2AD1870712B3574665CA7D12EF08A67EB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/CE42FD1EE33212C063B4C065E7B63698FA002ECE8EB7A9F663C2C72AA344C5E8/0/323830313a31373a613830303a3a2f34382d3438203d3e203139343239.roa
Signing time: Tue 04 Feb 2025 18:05:44 +0000
ROA not before: Tue 04 Feb 2025 18:00:44 +0000
ROA not after: Tue 03 Feb 2026 18:05:44 +0000
asID: 19429
IP address blocks: 2801:17:a800::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:66:b5:28:62:54:05:31:fc:da:be:9d:47:56:9c:1b:96:db:e9:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473DA6D2AD1870712B3574665CA7D12EF08A67EB
Validity
Not Before: Feb 4 18:00:44 2025 GMT
Not After : Feb 3 18:05:44 2026 GMT
Subject: CN=ABD2BE60A3297AC97E134168A5A60F54BC204839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e3:2c:27:e8:c4:a3:98:f0:e4:fb:64:d4:a3:
3e:33:db:7b:e0:13:c5:56:97:cd:26:0d:6b:1d:dd:
f8:c1:11:bb:56:01:84:14:55:74:3a:1c:ec:4f:54:
00:1d:c3:38:44:08:b5:5d:fa:fb:3b:c4:75:65:0e:
f6:ed:fa:d8:20:72:7d:ff:a1:35:59:a0:43:9c:2a:
1f:34:cf:98:ae:3a:34:a5:0b:7f:70:74:16:98:c9:
fc:3c:c5:9a:4f:39:82:09:7d:21:28:4b:3a:38:3e:
35:3d:2c:9d:81:7d:f8:5c:51:e1:f6:01:a4:b2:12:
c3:17:c2:ad:ff:41:f2:1b:5e:a2:e3:f6:ab:7f:08:
26:e8:62:b2:47:72:3f:20:b5:0c:d4:cb:ce:63:d8:
b4:b3:51:7b:55:c8:2c:01:7f:da:13:63:43:a0:d7:
96:4b:b6:d5:71:a8:ad:1f:59:f4:08:35:51:a5:1a:
13:e1:7b:f1:f3:ce:ad:f3:2e:44:18:0c:68:5f:4f:
d6:0e:02:92:a9:7d:a1:7a:af:97:cf:9a:b2:f1:88:
5a:9c:e5:53:71:e6:2b:ab:b1:70:bb:b2:54:39:ad:
ee:5a:1c:ee:bb:c8:10:81:dd:81:ea:7a:fd:8e:f1:
22:69:a5:d3:9c:f1:3d:40:5d:c9:8f:47:2c:bf:7c:
a4:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:D2:BE:60:A3:29:7A:C9:7E:13:41:68:A5:A6:0F:54:BC:20:48:39
X509v3 Authority Key Identifier:
keyid:47:3D:A6:D2:AD:18:70:71:2B:35:74:66:5C:A7:D1:2E:F0:8A:67:EB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/CE42FD1EE33212C063B4C065E7B63698FA002ECE8EB7A9F663C2C72AA344C5E8/0/473DA6D2AD1870712B3574665CA7D12EF08A67EB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/473DA6D2AD1870712B3574665CA7D12EF08A67EB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/CE42FD1EE33212C063B4C065E7B63698FA002ECE8EB7A9F663C2C72AA344C5E8/0/323830313a31373a613830303a3a2f34382d3438203d3e203139343239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:17:a800::/48
Signature Algorithm: sha256WithRSAEncryption
39:6d:ab:1c:c1:e9:1e:6c:77:f8:c0:82:af:cd:a1:58:c9:cc:
50:20:b2:2f:de:24:2d:a7:45:ec:12:7f:fb:09:9d:9e:c8:69:
ae:b0:2a:fb:23:35:ca:d4:c6:20:48:69:e2:59:9a:fc:0a:e1:
d3:3c:58:ba:10:56:80:19:7d:91:09:6e:d7:64:0b:05:b5:28:
34:41:02:94:ea:69:3d:7e:e5:a0:e0:71:fa:ce:c6:78:90:0c:
a9:e6:32:54:27:87:a5:22:b1:29:61:be:4e:d9:6e:d7:bc:5f:
0b:d4:c3:34:8b:c2:17:9d:05:d4:08:1a:d5:10:64:c2:19:5d:
14:95:ab:9b:f8:13:b8:2a:35:f8:8e:72:c0:f4:ed:a8:8b:fc:
62:fa:fd:39:8c:49:6d:79:f2:c7:09:d3:bb:f6:7a:c5:e1:29:
8a:42:06:e2:aa:6c:e2:57:40:a1:c6:cd:20:a3:a5:f6:9c:4a:
55:f1:13:0c:cc:56:77:ee:94:a1:65:02:3a:bf:cd:8c:44:03:
a9:f5:cf:a1:05:4e:2c:3f:1b:93:a3:4e:11:74:b6:f2:0c:f3:
ce:23:da:72:da:4e:98:73:0f:ab:b1:c2:d9:1b:8d:3e:db:a7:
4f:15:43:d0:53:6a:e7:e1:51:8e:56:8a:55:dc:38:c0:c5:eb:
b6:36:eb:26
-----BEGIN CERTIFICATE-----
MIIFxTCCBK2gAwIBAgIUQ2a1KGJUBTH82r6dR1acG5bb6fowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDczREE2RDJBRDE4NzA3MTJCMzU3NDY2NUNBN0QxMkVG
MDhBNjdFQjAeFw0yNTAyMDQxODAwNDRaFw0yNjAyMDMxODA1NDRaMDMxMTAvBgNV
BAMTKEFCRDJCRTYwQTMyOTdBQzk3RTEzNDE2OEE1QTYwRjU0QkMyMDQ4MzkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDW4ywn6MSjmPDk+2TUoz4z23vg
E8VWl80mDWsd3fjBEbtWAYQUVXQ6HOxPVAAdwzhECLVd+vs7xHVlDvbt+tggcn3/
oTVZoEOcKh80z5iuOjSlC39wdBaYyfw8xZpPOYIJfSEoSzo4PjU9LJ2BffhcUeH2
AaSyEsMXwq3/QfIbXqLj9qt/CCboYrJHcj8gtQzUy85j2LSzUXtVyCwBf9oTY0Og
15ZLttVxqK0fWfQINVGlGhPhe/Hzzq3zLkQYDGhfT9YOApKpfaF6r5fPmrLxiFqc
5VNx5iursXC7slQ5re5aHO67yBCB3YHqev2O8SJppdOc8T1AXcmPRyy/fKRJAgMB
AAGjggLPMIICyzAdBgNVHQ4EFgQUq9K+YKMpesl+E0FopaYPVLwgSDkwHwYDVR0j
BBgwFoAURz2m0q0YcHErNXRmXKfRLvCKZ+swDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9DRTQyRkQxRUUzMzIxMkMwNjNCNEMwNjVFN0I2MzY5OEZB
MDAyRUNFOEVCN0E5RjY2M0MyQzcyQUEzNDRDNUU4LzAvNDczREE2RDJBRDE4NzA3
MTJCMzU3NDY2NUNBN0QxMkVGMDhBNjdFQi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC80NzNEQTZEMkFEMTg3MDcxMkIz
NTc0NjY1Q0E3RDEyRUYwOEE2N0VCLmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG
CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQ0U0MkZEMUVFMzMyMTJDMDYzQjRDMDY1RTdCNjM2OThGQTAwMkVDRThF
QjdBOUY2NjNDMkM3MkFBMzQ0QzVFOC8wLzMyMzgzMDMxM2EzMTM3M2E2MTM4MzAz
MDNhM2EyZjM0MzgyZDM0MzgyMDNkM2UyMDMxMzkzNDMyMzkucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAo
AQAXqAAwDQYJKoZIhvcNAQELBQADggEBADltqxzB6R5sd/jAgq/NoVjJzFAgsi/e
JC2nRewSf/sJnZ7Iaa6wKvsjNcrUxiBIaeJZmvwK4dM8WLoQVoAZfZEJbtdkCwW1
KDRBApTqaT1+5aDgcfrOxniQDKnmMlQnh6UisSlhvk7Zbte8XwvUwzSLwhedBdQI
GtUQZMIZXRSVq5v4E7gqNfiOcsD07aiL/GL6/TmMSW158scJ07v2esXhKYpCBuKq
bOJXQKHGzSCjpfacSlXxEwzMVnfulKFlAjq/zYxEA6n1z6EFTiw/G5OjThF0tvIM
884j2nLaTphzD6uxwtkbjT7bp08VQ9BTaufhUY5WilXcOMDF67Y26yY=
-----END CERTIFICATE-----
Generated at Sat Apr 5 11:22:48 2025 by rpki-client