Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E698B1766D7DBBC446025F68168128B04036DC1941F1F04E7581C25CA1660F1A/0/323830363a3265613a3a2f33322d3332203d3e20313339323335.roa
File: 323830363a3265613a3a2f33322d3332203d3e20313339323335.roa (raw, json)
Hash identifier: 2w4y42Qe2wEryMKVsvTi1HboLwgnHLS11OSEah0Rv0w=
Subject key identifier: 92:A7:4C:9E:28:DF:92:1A:BB:69:E9:B6:A9:9E:4A:AB:8C:98:05:47
Certificate issuer: /CN=A8DE9D1A4E99DCF1914B916B9FE6682ED471EC41
Certificate serial: 311BB355EC6AD2E79BF3DCE8CAA2BD3ABEDFABFE
Authority key identifier: A8:DE:9D:1A:4E:99:DC:F1:91:4B:91:6B:9F:E6:68:2E:D4:71:EC:41
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A8DE9D1A4E99DCF1914B916B9FE6682ED471EC41.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E698B1766D7DBBC446025F68168128B04036DC1941F1F04E7581C25CA1660F1A/0/323830363a3265613a3a2f33322d3332203d3e20313339323335.roa
Signing time: Tue 04 Feb 2025 18:20:15 +0000
ROA not before: Tue 04 Feb 2025 18:15:15 +0000
ROA not after: Tue 03 Feb 2026 18:20:15 +0000
asID: 139235
IP address blocks: 2806:2ea::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:1b:b3:55:ec:6a:d2:e7:9b:f3:dc:e8:ca:a2:bd:3a:be:df:ab:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A8DE9D1A4E99DCF1914B916B9FE6682ED471EC41
Validity
Not Before: Feb 4 18:15:15 2025 GMT
Not After : Feb 3 18:20:15 2026 GMT
Subject: CN=92A74C9E28DF921ABB69E9B6A99E4AAB8C980547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b9:a1:90:ed:0c:8c:06:d1:6e:56:2f:c3:df:
7a:a9:ab:b4:a2:06:f1:9c:65:bc:a0:ae:e1:73:ca:
76:0f:cc:82:92:e0:68:02:1c:02:42:e9:90:21:8f:
d2:59:4e:0b:38:46:19:b3:cd:a6:8d:66:65:4e:99:
11:64:37:87:68:8d:cd:66:0d:23:7b:db:c2:1f:6a:
94:18:5b:76:e3:0e:a7:9d:40:19:6b:40:bc:25:4c:
1d:48:04:85:cb:e5:27:76:7c:04:c7:84:9a:2e:f2:
f2:c4:6d:95:08:f1:6e:9f:ce:cd:eb:e6:13:de:ff:
81:32:04:69:06:77:1d:e8:0a:3c:cc:bf:f8:4c:e3:
93:dd:76:84:be:c5:b8:be:f4:56:51:2e:3e:7a:ca:
71:42:40:f1:47:b1:f4:08:4a:40:3a:79:bf:e2:67:
34:1a:81:fe:58:f5:4e:7b:8f:a3:eb:b2:5c:30:ad:
93:24:8d:1c:3f:f9:d9:36:a2:44:58:f3:19:6a:4f:
d3:48:68:b8:3a:ca:9e:2e:b5:78:99:cf:ae:6a:05:
73:74:d1:f1:1f:bb:80:48:4b:5b:78:02:6e:39:da:
7c:cf:a6:75:1d:26:0c:5d:a2:7c:22:af:bb:9d:9a:
24:9a:91:9e:aa:27:9a:20:16:55:47:38:95:b3:51:
a7:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:A7:4C:9E:28:DF:92:1A:BB:69:E9:B6:A9:9E:4A:AB:8C:98:05:47
X509v3 Authority Key Identifier:
keyid:A8:DE:9D:1A:4E:99:DC:F1:91:4B:91:6B:9F:E6:68:2E:D4:71:EC:41
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/E698B1766D7DBBC446025F68168128B04036DC1941F1F04E7581C25CA1660F1A/0/A8DE9D1A4E99DCF1914B916B9FE6682ED471EC41.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A8DE9D1A4E99DCF1914B916B9FE6682ED471EC41.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E698B1766D7DBBC446025F68168128B04036DC1941F1F04E7581C25CA1660F1A/0/323830363a3265613a3a2f33322d3332203d3e20313339323335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2806:2ea::/32
Signature Algorithm: sha256WithRSAEncryption
24:a8:63:38:48:e8:70:35:28:ce:8d:b9:25:50:b0:94:4d:57:
d0:f7:17:f6:13:77:ba:b9:32:9b:b6:d7:e9:a5:02:df:1a:b2:
4f:c4:ae:08:9f:28:e6:21:0d:33:1b:bf:3f:5a:5d:b8:4d:19:
84:2f:4b:7f:c1:3f:27:89:77:bf:5b:c2:14:83:a2:4a:03:e1:
5f:f9:48:3f:28:5e:18:f2:06:78:2d:37:15:03:4f:32:64:d3:
6d:6e:9d:1a:ec:92:00:b7:87:b7:b7:41:3d:f8:0a:5f:3f:63:
77:63:6f:5b:92:e4:ae:f9:e2:c7:1e:eb:22:e4:05:96:2b:32:
c5:83:42:70:f2:b3:1b:61:54:c7:09:8a:d9:e1:95:2f:fc:05:
5a:62:c5:bf:25:28:a4:cd:5f:04:d9:22:1b:80:95:d0:9e:57:
06:db:fe:1e:56:c0:db:2d:2f:8c:c1:3c:9b:15:cb:13:cb:09:
94:86:e8:dc:6b:02:4c:46:c6:b8:cb:ec:ea:f5:e9:36:d9:dd:
0e:b7:85:b6:d2:3c:e8:e0:92:43:19:29:63:fc:49:34:80:7e:
1f:2f:8b:aa:27:c5:b4:70:2e:38:f6:e0:5b:26:2d:10:4d:ee:
26:4d:c6:aa:42:db:b3:c6:fa:7a:71:d4:18:9f:74:5a:d0:4b:
87:2a:e8:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:10:10 2025 by rpki-client