Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D1229D43AEF24193696DD8A311BE1B164003B32F390D8584D1A9384B245BE665/0/323830363a3362313a3a2f33322d3438203d3e20323730313130.roa
File: 323830363a3362313a3a2f33322d3438203d3e20323730313130.roa (raw, json)
Hash identifier: ff0B1anELy1Qss9vRatUXu+X34CkCxn81hInmopqlmk=
Subject key identifier: C3:3E:45:E4:50:CC:24:79:2A:28:88:47:19:F4:D1:8E:E7:7D:8D:84
Certificate issuer: /CN=6A87DFE4B38F32D9EB4789BB7BE2DA27A3988443
Certificate serial: 307B6021C8B6721CDC6B7D67E0AEA0672E83C8DA
Authority key identifier: 6A:87:DF:E4:B3:8F:32:D9:EB:47:89:BB:7B:E2:DA:27:A3:98:84:43
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6A87DFE4B38F32D9EB4789BB7BE2DA27A3988443.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D1229D43AEF24193696DD8A311BE1B164003B32F390D8584D1A9384B245BE665/0/323830363a3362313a3a2f33322d3438203d3e20323730313130.roa
Signing time: Tue 04 Feb 2025 20:08:23 +0000
ROA not before: Tue 04 Feb 2025 20:03:23 +0000
ROA not after: Tue 03 Feb 2026 20:08:23 +0000
asID: 270110
IP address blocks: 2806:3b1::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
30:7b:60:21:c8:b6:72:1c:dc:6b:7d:67:e0:ae:a0:67:2e:83:c8:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6A87DFE4B38F32D9EB4789BB7BE2DA27A3988443
Validity
Not Before: Feb 4 20:03:23 2025 GMT
Not After : Feb 3 20:08:23 2026 GMT
Subject: CN=C33E45E450CC24792A28884719F4D18EE77D8D84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:e1:e2:3e:b3:61:31:0a:18:36:93:3e:f1:db:
67:f5:3e:19:09:9e:2f:d8:3b:6d:fa:14:2f:45:b0:
5e:08:8a:cb:d6:b5:21:bf:8c:d4:65:d5:33:aa:3b:
a8:64:7e:9e:8c:30:e8:50:84:e6:80:ed:d5:44:63:
f3:76:e8:00:dc:30:94:f0:70:07:5f:ac:14:60:f5:
b4:a8:e6:b5:0d:64:c2:61:ff:bf:d8:07:7f:c5:9a:
50:02:f8:58:c5:01:53:2b:04:bf:c8:e0:65:14:25:
a0:b4:c2:82:e4:c5:50:85:62:bd:20:6e:46:ff:0d:
67:d9:df:43:9b:bf:52:91:27:40:4e:95:e3:e7:01:
03:0e:8b:b4:ed:e1:69:de:ad:b2:cd:92:95:3e:7e:
01:ad:0d:4f:35:cf:ef:7f:bc:73:9c:92:a9:c5:e8:
2f:98:b9:2d:5a:c6:ff:82:04:f4:82:6c:45:b3:ce:
4f:b4:ca:4e:75:75:0a:89:dd:25:e1:f0:d7:8a:c0:
f0:44:90:28:6b:9b:33:9a:a3:b1:4e:0f:13:47:d7:
ef:32:1b:34:b0:99:1f:81:2a:67:8e:4c:42:5d:7e:
eb:28:03:1c:cf:f2:4a:b0:cf:62:7c:30:18:80:5a:
bc:00:94:1e:56:c5:2d:19:a8:2f:ef:53:a8:ea:08:
b0:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:3E:45:E4:50:CC:24:79:2A:28:88:47:19:F4:D1:8E:E7:7D:8D:84
X509v3 Authority Key Identifier:
keyid:6A:87:DF:E4:B3:8F:32:D9:EB:47:89:BB:7B:E2:DA:27:A3:98:84:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D1229D43AEF24193696DD8A311BE1B164003B32F390D8584D1A9384B245BE665/0/6A87DFE4B38F32D9EB4789BB7BE2DA27A3988443.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6A87DFE4B38F32D9EB4789BB7BE2DA27A3988443.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D1229D43AEF24193696DD8A311BE1B164003B32F390D8584D1A9384B245BE665/0/323830363a3362313a3a2f33322d3438203d3e20323730313130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2806:3b1::/32
Signature Algorithm: sha256WithRSAEncryption
77:54:44:c3:c5:a2:79:e2:96:94:50:00:68:ce:e8:e0:f3:ee:
b3:e5:be:1a:3d:c3:cd:09:9e:fc:d0:d3:28:4e:b6:4d:60:ff:
d6:1c:36:04:3f:c2:35:3b:32:20:b0:52:d7:fb:3a:78:c0:d2:
b0:50:a2:97:09:db:d0:a1:17:b6:3b:a4:90:0e:0c:0e:ee:ed:
a2:1d:d0:ce:45:ba:f5:3e:64:ca:b7:67:63:65:6b:85:0f:4a:
6c:af:c3:10:9a:dd:dc:5f:39:7a:b9:5b:bb:b1:1a:c4:63:6c:
2e:78:9e:70:29:3c:71:c8:78:60:6e:90:a0:ff:b3:17:bc:4d:
06:c5:b5:24:17:fc:78:99:e8:75:c4:93:22:76:93:59:07:e5:
12:79:ca:69:7c:b2:38:02:f8:01:96:a9:c4:fc:fb:c5:e4:6d:
a5:2f:cb:01:ed:3b:34:ab:61:84:6d:5b:c7:ed:da:26:6c:56:
13:ec:86:48:18:5c:e7:b2:0b:7b:37:27:83:bf:c0:71:ed:95:
0a:1f:57:de:57:b7:99:68:0a:5b:1a:f0:eb:25:43:f4:c7:5c:
c8:72:2b:88:e7:d8:24:09:d8:02:1f:9d:d5:a8:c9:fa:04:10:
d7:c4:9d:7c:25:26:63:1a:37:fb:47:f0:c3:53:50:5e:6f:f0:
11:21:98:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:57:40 2025 by rpki-client