Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/EB815C78DDD40B4927D980FA94E8D07AD34C343AA1F23CD5DDE95FEF9FBCF1A4/0/323830313a3135313a3130383a3a2f34382d3438203d3e20323731383931.roa
File: 323830313a3135313a3130383a3a2f34382d3438203d3e20323731383931.roa (raw, json)
Hash identifier: xqQu8A+CTSqTINpcHMwAvIaXXsJ4JFOMRWTNZkssUqc=
Subject key identifier: 72:80:DB:29:6E:2A:80:05:62:96:46:18:39:C7:86:06:79:EB:05:E9
Certificate issuer: /CN=4312ACB2226F8B88E5E89EF2F1442B8EEFB3B279
Certificate serial: 358C8B4F29A6570C9CD003331FF2E7F423FA91B0
Authority key identifier: 43:12:AC:B2:22:6F:8B:88:E5:E8:9E:F2:F1:44:2B:8E:EF:B3:B2:79
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4312ACB2226F8B88E5E89EF2F1442B8EEFB3B279.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/EB815C78DDD40B4927D980FA94E8D07AD34C343AA1F23CD5DDE95FEF9FBCF1A4/0/323830313a3135313a3130383a3a2f34382d3438203d3e20323731383931.roa
Signing time: Tue 04 Feb 2025 18:45:00 +0000
ROA not before: Tue 04 Feb 2025 18:40:00 +0000
ROA not after: Tue 03 Feb 2026 18:45:00 +0000
asID: 271891
IP address blocks: 2801:151:108::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:8c:8b:4f:29:a6:57:0c:9c:d0:03:33:1f:f2:e7:f4:23:fa:91:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4312ACB2226F8B88E5E89EF2F1442B8EEFB3B279
Validity
Not Before: Feb 4 18:40:00 2025 GMT
Not After : Feb 3 18:45:00 2026 GMT
Subject: CN=7280DB296E2A80056296461839C7860679EB05E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:cb:74:0d:46:4e:07:a4:dd:e9:d7:1a:17:62:
4f:f9:76:d8:49:c0:99:4f:ea:b1:aa:24:13:ca:57:
49:2b:0b:62:47:41:24:0a:25:84:bb:64:f4:20:ca:
6a:54:c8:18:a4:dd:c2:8a:13:ee:97:23:2d:e1:57:
27:83:2a:61:ec:83:5e:d0:d4:4f:dc:c1:98:34:4c:
a6:01:d3:ef:97:bd:2f:16:63:9e:df:e8:a0:92:d0:
bb:b4:9c:36:d8:72:cc:da:85:f2:66:dc:24:ab:41:
e4:96:ea:2a:ad:c2:9d:d4:89:09:d7:1c:ad:54:2c:
37:08:fd:84:93:87:c7:c9:5a:48:8d:11:e0:cf:a2:
99:ca:cf:72:c6:a5:8f:d2:92:4a:ed:17:ab:da:d2:
cf:76:d6:cf:37:83:7b:44:15:43:90:6b:30:be:ee:
87:09:b3:43:dd:bf:45:ac:ac:23:e6:2b:ef:99:e7:
ca:a5:5b:0b:7d:32:92:4b:33:5f:be:ee:24:58:70:
89:e1:03:43:78:67:0d:3a:fb:1f:5a:67:72:c0:83:
e0:74:9c:f6:5c:04:dd:86:e0:04:cd:50:61:1c:66:
58:bd:a0:5b:83:d1:1e:68:fb:00:0a:d8:73:5b:75:
dd:da:b9:56:a9:36:8b:cf:e4:c7:bb:92:c5:4e:bd:
62:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:80:DB:29:6E:2A:80:05:62:96:46:18:39:C7:86:06:79:EB:05:E9
X509v3 Authority Key Identifier:
keyid:43:12:AC:B2:22:6F:8B:88:E5:E8:9E:F2:F1:44:2B:8E:EF:B3:B2:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/EB815C78DDD40B4927D980FA94E8D07AD34C343AA1F23CD5DDE95FEF9FBCF1A4/0/4312ACB2226F8B88E5E89EF2F1442B8EEFB3B279.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4312ACB2226F8B88E5E89EF2F1442B8EEFB3B279.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/EB815C78DDD40B4927D980FA94E8D07AD34C343AA1F23CD5DDE95FEF9FBCF1A4/0/323830313a3135313a3130383a3a2f34382d3438203d3e20323731383931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:151:108::/48
Signature Algorithm: sha256WithRSAEncryption
02:f4:67:cd:44:8b:c6:04:a9:3b:78:76:78:e0:8d:bd:b5:5c:
5e:50:55:87:9e:aa:83:f3:f9:58:a9:88:e0:de:81:d7:4c:20:
20:d8:ac:eb:41:6c:88:cf:12:ad:ee:2d:7b:c5:cf:30:eb:80:
6e:1f:44:ad:4f:60:d9:08:a5:6a:86:49:82:9c:f5:9f:0c:fa:
0f:f2:8a:bf:05:d3:32:ba:7a:13:72:d4:da:4f:a4:d2:59:52:
f4:13:7a:59:7f:af:2b:92:c2:b0:32:d2:73:76:41:68:1c:a5:
32:d5:22:7a:d5:05:50:e1:09:c8:9b:01:fd:ad:f1:74:f3:6d:
69:66:a7:1c:77:5a:a7:eb:81:74:ec:b9:00:87:60:4b:fc:f7:
65:e4:19:db:63:a3:43:0c:a9:50:03:fc:6e:02:62:b7:20:20:
28:3e:95:4a:11:fb:00:92:a6:bf:d9:dd:20:2d:1d:e7:43:2d:
d5:cc:a4:56:10:b2:ea:1d:f5:71:0a:c0:0d:e2:f4:86:32:c5:
b3:c8:80:ec:6e:7c:40:cb:75:18:da:ad:e8:ff:ac:62:7d:48:
27:49:9f:03:c7:b2:f3:8b:db:49:ea:5a:5c:b0:24:a2:75:9f:
89:55:33:01:7a:40:1f:8d:af:9c:46:ad:51:65:72:f8:50:0d:
48:d7:0a:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:45:25 2025 by rpki-client