Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D877E30D1FFF1010EC4A40BD1DD396C70B74BF32FB2C9D30397652606FB699F7/0/323830333a616465303a3a2f33322d3438203d3e20323730303439.roa
File: 323830333a616465303a3a2f33322d3438203d3e20323730303439.roa (raw, json)
Hash identifier: rPYRMZsh+WhI2EMM6ReO8gNHXXJB9scT1S63vC0lZ4k=
Subject key identifier: 2C:79:1E:34:58:C7:D0:30:B5:E4:C9:70:8A:AC:C2:38:2E:06:F0:45
Certificate issuer: /CN=FF9663FE43D33F28F6E1EF717FEAADD21E1D5E15
Certificate serial: 447529FD18D4C3004F53E4ADDF11681A088CD9C3
Authority key identifier: FF:96:63:FE:43:D3:3F:28:F6:E1:EF:71:7F:EA:AD:D2:1E:1D:5E:15
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FF9663FE43D33F28F6E1EF717FEAADD21E1D5E15.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D877E30D1FFF1010EC4A40BD1DD396C70B74BF32FB2C9D30397652606FB699F7/0/323830333a616465303a3a2f33322d3438203d3e20323730303439.roa
Signing time: Tue 04 Feb 2025 18:21:28 +0000
ROA not before: Tue 04 Feb 2025 18:16:28 +0000
ROA not after: Tue 03 Feb 2026 18:21:28 +0000
asID: 270049
IP address blocks: 2803:ade0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:75:29:fd:18:d4:c3:00:4f:53:e4:ad:df:11:68:1a:08:8c:d9:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FF9663FE43D33F28F6E1EF717FEAADD21E1D5E15
Validity
Not Before: Feb 4 18:16:28 2025 GMT
Not After : Feb 3 18:21:28 2026 GMT
Subject: CN=2C791E3458C7D030B5E4C9708AACC2382E06F045
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7f:9a:65:bc:d1:f8:f0:03:35:25:d8:4c:10:
46:9b:b2:ef:52:03:71:b3:da:ff:11:fc:db:bb:f0:
99:45:15:31:0f:b7:53:b9:25:4b:ce:06:bc:d9:db:
72:3f:4d:8c:71:97:b2:73:6d:28:44:37:f2:cc:e4:
90:f7:f3:88:fb:64:dc:9c:f0:8c:b4:e7:e8:b1:ec:
78:3b:6a:27:0e:98:30:49:25:87:2a:53:9f:de:14:
6b:bf:4c:03:f8:fd:80:5d:dd:46:93:32:eb:42:80:
91:81:ce:f8:fc:1f:f4:3a:e8:74:1a:a3:2d:5e:d0:
a7:25:6c:54:f9:64:ae:e6:5a:eb:cc:7b:c2:ca:f1:
45:e1:af:b6:f1:cf:34:89:ca:b0:5d:51:d4:7c:9f:
52:33:66:f8:06:71:42:42:83:db:28:f8:40:52:d9:
70:18:ea:13:c4:bc:24:8e:3d:74:e3:7e:ee:6a:21:
a6:be:f8:da:bc:5b:79:cd:df:9f:35:d5:26:f0:c4:
80:ae:81:09:2f:bc:f0:64:dd:2d:7f:63:e5:7b:42:
bd:47:23:99:35:e9:73:c3:88:98:ff:29:95:78:bb:
26:c0:89:7b:95:4e:4e:b0:d3:ef:2e:f7:ee:61:2d:
47:ca:74:d2:11:9d:d3:25:2a:da:f6:0f:05:c3:ee:
3f:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:79:1E:34:58:C7:D0:30:B5:E4:C9:70:8A:AC:C2:38:2E:06:F0:45
X509v3 Authority Key Identifier:
keyid:FF:96:63:FE:43:D3:3F:28:F6:E1:EF:71:7F:EA:AD:D2:1E:1D:5E:15
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D877E30D1FFF1010EC4A40BD1DD396C70B74BF32FB2C9D30397652606FB699F7/0/FF9663FE43D33F28F6E1EF717FEAADD21E1D5E15.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FF9663FE43D33F28F6E1EF717FEAADD21E1D5E15.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D877E30D1FFF1010EC4A40BD1DD396C70B74BF32FB2C9D30397652606FB699F7/0/323830333a616465303a3a2f33322d3438203d3e20323730303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:ade0::/32
Signature Algorithm: sha256WithRSAEncryption
31:c9:5d:df:72:f1:bf:0b:0f:d2:5c:c2:5f:54:99:80:8f:05:
82:b9:d5:dc:8f:c1:78:e1:43:1c:02:15:41:4b:f7:dd:76:78:
32:b8:be:c2:bf:1c:25:c0:ab:c3:31:eb:76:07:87:68:c6:fc:
6e:b8:5a:89:d7:5d:13:e5:c9:2e:fe:7d:8a:d5:e6:32:41:c5:
ef:71:b7:2f:90:f2:71:7b:29:a9:c6:6c:54:83:8a:16:3c:28:
47:a6:89:c5:c4:d0:08:23:91:c8:4b:a3:a3:96:04:eb:d6:e7:
77:36:2e:73:56:4a:08:73:32:e5:d8:fa:9c:14:04:c3:8b:5d:
20:42:1a:44:d5:7e:f1:69:0c:e3:e1:bd:f6:15:5c:88:68:60:
ad:f7:09:e4:2c:91:94:26:04:ea:cf:0f:b3:18:1b:6b:2d:d5:
2d:95:ac:28:24:25:db:9c:a6:12:9e:0c:e6:79:22:81:a4:68:
19:33:85:23:1a:86:d1:df:f5:81:9a:f0:82:04:a2:a2:96:3c:
c3:14:38:06:32:e8:47:84:c1:2e:87:10:b4:67:2f:b6:89:51:
cb:01:6b:7e:7c:16:ad:9a:7f:5b:c4:aa:34:fb:4d:85:ce:5b:
35:8a:1a:68:e5:40:e5:bc:d0:c2:08:e7:82:8f:ec:15:35:c9:
6f:16:d7:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:10:29 2025 by rpki-client