Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D6633A8732FC2FBB1FC821D3A7390B5E1B0220A07672532B53E32506040C0B44/0/323830333a626334303a3a2f33322d3438203d3e203532343638.roa
File: 323830333a626334303a3a2f33322d3438203d3e203532343638.roa (raw, json)
Hash identifier: 3ziq3cNCZ6KNnSTgftFP6RMNqFrAqCc6pn+EQaQEj9Y=
Subject key identifier: DD:53:D0:99:27:75:1F:34:24:B0:05:86:6C:DB:BC:86:AA:85:1B:63
Certificate issuer: /CN=8616AFEEE37AE6340A6524D920AA474EED6B6A70
Certificate serial: 7AFC6222994795F756D879B227A596E2B32406B5
Authority key identifier: 86:16:AF:EE:E3:7A:E6:34:0A:65:24:D9:20:AA:47:4E:ED:6B:6A:70
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8616AFEEE37AE6340A6524D920AA474EED6B6A70.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D6633A8732FC2FBB1FC821D3A7390B5E1B0220A07672532B53E32506040C0B44/0/323830333a626334303a3a2f33322d3438203d3e203532343638.roa
Signing time: Tue 04 Feb 2025 20:04:15 +0000
ROA not before: Tue 04 Feb 2025 19:59:15 +0000
ROA not after: Tue 03 Feb 2026 20:04:15 +0000
asID: 52468
IP address blocks: 2803:bc40::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:fc:62:22:99:47:95:f7:56:d8:79:b2:27:a5:96:e2:b3:24:06:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8616AFEEE37AE6340A6524D920AA474EED6B6A70
Validity
Not Before: Feb 4 19:59:15 2025 GMT
Not After : Feb 3 20:04:15 2026 GMT
Subject: CN=DD53D09927751F3424B005866CDBBC86AA851B63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:31:0b:c3:99:14:db:f1:72:43:c6:0c:fa:37:
fc:c7:40:93:e2:02:a8:7f:30:d3:8e:2e:5e:1c:45:
5a:44:72:5e:87:d1:68:b9:21:ae:f2:21:fb:c8:58:
3c:9a:fb:9f:51:2f:51:ec:d2:79:8e:a0:cf:3f:bd:
81:71:64:f3:d2:e3:ab:a8:3e:5b:a5:a8:61:45:52:
41:74:82:f1:72:ac:50:4e:e8:54:e4:eb:ef:29:38:
76:ff:0c:c0:5a:80:75:f2:ce:ff:cf:cf:d5:15:58:
5f:63:54:67:47:7c:c5:65:c4:af:ad:e2:8a:11:ef:
a2:77:31:09:f7:6e:65:9f:cd:8f:11:6e:30:43:df:
21:b0:c2:e2:cd:86:95:58:a3:79:e1:e2:9d:00:56:
68:64:23:26:29:78:d6:5a:21:50:cb:4a:05:fc:33:
8e:8c:bf:f1:f1:18:95:fa:fd:69:51:be:72:1f:d0:
bd:06:d9:fc:38:2b:47:76:42:5e:b7:7a:2e:b7:ec:
83:d5:b7:64:5d:9f:60:e7:b1:98:d4:c9:0a:a7:41:
15:4d:61:1d:36:35:6b:ec:e7:87:85:7c:e1:67:ad:
dd:e7:29:c0:e0:48:56:2b:00:fa:86:5a:29:05:3d:
c2:35:2b:59:06:0c:ca:73:c7:5a:b7:a8:b9:8d:d2:
94:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:53:D0:99:27:75:1F:34:24:B0:05:86:6C:DB:BC:86:AA:85:1B:63
X509v3 Authority Key Identifier:
keyid:86:16:AF:EE:E3:7A:E6:34:0A:65:24:D9:20:AA:47:4E:ED:6B:6A:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D6633A8732FC2FBB1FC821D3A7390B5E1B0220A07672532B53E32506040C0B44/0/8616AFEEE37AE6340A6524D920AA474EED6B6A70.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8616AFEEE37AE6340A6524D920AA474EED6B6A70.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D6633A8732FC2FBB1FC821D3A7390B5E1B0220A07672532B53E32506040C0B44/0/323830333a626334303a3a2f33322d3438203d3e203532343638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:bc40::/32
Signature Algorithm: sha256WithRSAEncryption
82:96:df:23:52:0e:a6:cd:77:36:14:6f:6b:48:83:cb:32:42:
80:4b:0a:fc:38:56:cc:26:04:9c:1d:2f:32:db:1b:01:65:02:
a8:d0:4b:76:65:01:40:2f:b6:e5:5a:0c:81:71:6e:c4:8c:93:
32:cb:7a:13:ab:1e:f6:33:88:0b:b0:f9:bf:d3:e3:f8:7b:39:
ec:e7:3b:0f:af:46:d3:88:a7:f2:ef:d8:9c:62:b4:21:83:c7:
59:19:b5:8f:aa:f5:67:99:89:34:57:26:87:ad:81:93:8c:2b:
72:64:3d:b5:4c:6f:96:1d:5d:6e:3f:d1:35:88:64:4c:e0:0a:
ba:7e:1e:8a:23:1b:69:c5:6c:53:7d:ea:1a:df:87:cd:8d:a2:
e0:3c:f3:40:88:a3:6c:a8:33:a2:83:f8:0f:ab:9f:09:c1:9b:
7c:01:3e:e0:60:bf:85:be:72:7b:b3:9f:85:82:ec:9a:53:0a:
67:df:f8:db:49:a9:74:bc:a9:8b:b5:89:bc:e6:c5:d6:d4:6e:
8c:43:fa:2f:bb:78:91:d5:c2:e7:f8:fe:8e:56:07:e0:5c:c3:
3e:72:4a:6e:89:af:5a:0c:0f:ca:f2:2c:ef:47:cd:df:23:87:
34:21:1b:60:aa:9a:a5:8c:90:fa:b6:0c:ff:2e:bf:87:9b:f3:
75:8b:f4:80
-----BEGIN CERTIFICATE-----
MIIFvTCCBKWgAwIBAgIUevxiIplHlfdW2HmyJ6WW4rMkBrUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODYxNkFGRUVFMzdBRTYzNDBBNjUyNEQ5MjBBQTQ3NEVF
RDZCNkE3MDAeFw0yNTAyMDQxOTU5MTVaFw0yNjAyMDMyMDA0MTVaMDMxMTAvBgNV
BAMTKERENTNEMDk5Mjc3NTFGMzQyNEIwMDU4NjZDREJCQzg2QUE4NTFCNjMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChMQvDmRTb8XJDxgz6N/zHQJPi
Aqh/MNOOLl4cRVpEcl6H0Wi5Ia7yIfvIWDya+59RL1Hs0nmOoM8/vYFxZPPS46uo
PlulqGFFUkF0gvFyrFBO6FTk6+8pOHb/DMBagHXyzv/Pz9UVWF9jVGdHfMVlxK+t
4ooR76J3MQn3bmWfzY8RbjBD3yGwwuLNhpVYo3nh4p0AVmhkIyYpeNZaIVDLSgX8
M46Mv/HxGJX6/WlRvnIf0L0G2fw4K0d2Ql63ei637IPVt2Rdn2DnsZjUyQqnQRVN
YR02NWvs54eFfOFnrd3nKcDgSFYrAPqGWikFPcI1K1kGDMpzx1q3qLmN0pRrAgMB
AAGjggLHMIICwzAdBgNVHQ4EFgQU3VPQmSd1HzQksAWGbNu8hqqFG2MwHwYDVR0j
BBgwFoAUhhav7uN65jQKZSTZIKpHTu1ranAwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9ENjYzM0E4NzMyRkMyRkJCMUZDODIxRDNBNzM5MEI1RTFC
MDIyMEEwNzY3MjUzMkI1M0UzMjUwNjA0MEMwQjQ0LzAvODYxNkFGRUVFMzdBRTYz
NDBBNjUyNEQ5MjBBQTQ3NEVFRDZCNkE3MC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84NjE2QUZFRUUzN0FFNjM0MEE2
NTI0RDkyMEFBNDc0RUVENkI2QTcwLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRDY2MzNBODczMkZDMkZCQjFGQzgyMUQzQTczOTBCNUUxQjAyMjBBMDc2
NzI1MzJCNTNFMzI1MDYwNDBDMEI0NC8wLzMyMzgzMDMzM2E2MjYzMzQzMDNhM2Ey
ZjMzMzIyZDM0MzgyMDNkM2UyMDM1MzIzNDM2Mzgucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAoA7xAMA0G
CSqGSIb3DQEBCwUAA4IBAQCClt8jUg6mzXc2FG9rSIPLMkKASwr8OFbMJgScHS8y
2xsBZQKo0Et2ZQFAL7blWgyBcW7EjJMyy3oTqx72M4gLsPm/0+P4ezns5zsPr0bT
iKfy79icYrQhg8dZGbWPqvVnmYk0VyaHrYGTjCtyZD21TG+WHV1uP9E1iGRM4Aq6
fh6KIxtpxWxTfeoa34fNjaLgPPNAiKNsqDOig/gPq58JwZt8AT7gYL+FvnJ7s5+F
guyaUwpn3/jbSal0vKmLtYm85sXW1G6MQ/ovu3iR1cLn+P6OVgfgXMM+ckpuia9a
DA/K8izvR83fI4c0IRtgqpqljJD6tgz/Lr+Hm/N1i/SA
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:12:22 2025 by rpki-client