Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/CFF07613B767B29D935687D46B7A37F33B71AEC2FD4AB9779C434A9F7C10D4EF/0/323830333a383038303a3a2f33322d3332203d3e203437383639.roa
File: 323830333a383038303a3a2f33322d3332203d3e203437383639.roa (raw, json)
Hash identifier: fAyzVTo1ZSdEIOLa4Xyzkx8WB0DUMxDroLP9XDNdfeo=
Subject key identifier: 80:79:42:45:03:63:CF:2E:85:7C:FC:67:BE:14:66:4A:F1:A4:E4:66
Certificate issuer: /CN=BD459ECC75B18B5274DF19D2C3A50A019B34696E
Certificate serial: 2593AB686D32768FBF5756A0BAA8E400F4E97EBC
Authority key identifier: BD:45:9E:CC:75:B1:8B:52:74:DF:19:D2:C3:A5:0A:01:9B:34:69:6E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD459ECC75B18B5274DF19D2C3A50A019B34696E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/CFF07613B767B29D935687D46B7A37F33B71AEC2FD4AB9779C434A9F7C10D4EF/0/323830333a383038303a3a2f33322d3332203d3e203437383639.roa
Signing time: Tue 04 Feb 2025 20:06:52 +0000
ROA not before: Tue 04 Feb 2025 20:01:52 +0000
ROA not after: Tue 03 Feb 2026 20:06:52 +0000
asID: 47869
IP address blocks: 2803:8080::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:93:ab:68:6d:32:76:8f:bf:57:56:a0:ba:a8:e4:00:f4:e9:7e:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD459ECC75B18B5274DF19D2C3A50A019B34696E
Validity
Not Before: Feb 4 20:01:52 2025 GMT
Not After : Feb 3 20:06:52 2026 GMT
Subject: CN=807942450363CF2E857CFC67BE14664AF1A4E466
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e1:2c:63:d2:15:5d:2f:5a:ba:b5:cf:2b:eb:
05:85:aa:dc:5a:19:fd:b6:68:4f:ed:b7:12:e8:c3:
03:f8:b7:2b:54:6d:32:ff:dc:2a:fd:80:29:f4:03:
9c:bd:42:a6:65:16:7b:f0:b9:24:32:9c:06:3c:0d:
b4:f4:70:1b:95:5d:85:3f:60:3a:69:12:9c:1a:b6:
05:43:5b:89:26:87:10:47:e9:f4:8e:3d:4c:cd:d2:
14:41:56:2c:ec:2f:4a:71:61:3b:10:7a:a1:b5:b4:
0e:c9:a8:99:9b:51:fa:9b:54:b9:89:ef:7a:c0:04:
c6:22:b0:86:e1:29:3c:cb:3d:b5:80:a3:dc:62:aa:
65:e7:84:5a:ec:e0:2f:cb:9b:66:9c:22:d8:1e:33:
c6:35:e3:76:41:e6:40:7a:b9:1b:3a:7c:6c:35:b3:
a9:6c:6b:df:01:6a:e1:20:2d:0a:e1:b9:2f:17:ae:
98:91:02:86:50:a7:20:58:92:20:2a:43:33:38:0a:
12:81:7c:f7:4d:76:aa:d3:17:c4:bb:37:19:fa:a4:
f8:f0:ed:cb:69:89:53:32:24:5a:90:5d:a5:f1:8a:
46:e8:fe:18:6c:da:03:23:64:06:dc:f5:69:6a:24:
24:7c:af:1b:d6:c7:e5:df:e9:17:93:75:5e:ff:90:
29:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:79:42:45:03:63:CF:2E:85:7C:FC:67:BE:14:66:4A:F1:A4:E4:66
X509v3 Authority Key Identifier:
keyid:BD:45:9E:CC:75:B1:8B:52:74:DF:19:D2:C3:A5:0A:01:9B:34:69:6E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/CFF07613B767B29D935687D46B7A37F33B71AEC2FD4AB9779C434A9F7C10D4EF/0/BD459ECC75B18B5274DF19D2C3A50A019B34696E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD459ECC75B18B5274DF19D2C3A50A019B34696E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/CFF07613B767B29D935687D46B7A37F33B71AEC2FD4AB9779C434A9F7C10D4EF/0/323830333a383038303a3a2f33322d3332203d3e203437383639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:8080::/32
Signature Algorithm: sha256WithRSAEncryption
98:43:f7:93:b4:02:d7:38:b1:6c:cd:83:f7:1f:bb:b3:c5:a9:
54:43:89:cf:e1:ec:2d:42:05:9e:ec:f0:f2:5a:c5:c2:e3:98:
c7:48:29:ff:e4:7a:de:b5:bd:78:82:33:20:08:51:6a:75:c3:
f0:d5:5b:16:38:53:31:75:6e:f5:6c:df:a1:fd:7c:95:b2:9b:
ce:41:af:00:ec:2c:6c:fb:c7:50:d5:df:b5:ac:8d:1a:c1:91:
c9:62:ff:fd:a7:57:a9:b4:e8:74:9b:2d:42:f3:f0:16:37:65:
e9:68:bf:6e:1e:7d:a9:67:e0:52:28:a0:74:c1:ff:61:53:82:
cd:1d:25:80:8f:4e:cf:10:df:92:a0:26:81:18:49:25:5e:65:
ac:b3:30:43:25:aa:b2:54:17:b3:38:f4:60:2d:92:29:6c:d5:
2f:e1:b3:e0:10:4a:e4:88:8d:6e:43:4c:74:81:de:cf:34:41:
85:ee:17:8a:14:7f:56:b7:2c:20:76:d6:f4:79:ef:e4:15:da:
6e:a0:54:ec:45:78:3f:9b:17:89:00:e0:71:e9:db:38:28:e6:
85:16:b3:a3:69:d0:72:64:b7:bc:b4:0a:b5:05:42:36:d2:25:
25:50:47:40:ff:6b:1e:a6:ea:2b:6a:97:39:58:22:60:14:72:
bd:42:d3:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:19:08 2025 by rpki-client