Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/EB815C78DDD40B4927D980FA94E8D07AD34C343AA1F23CD5DDE95FEF9FBCF1A4/0/323830313a3135313a64303a3a2f34382d3438203d3e20323731383931.roa
File: 323830313a3135313a64303a3a2f34382d3438203d3e20323731383931.roa (raw, json)
Hash identifier: e9MWLhQJXzfk4pb7wl2UVRUvJbPwXj/XlgZRcznezXg=
Subject key identifier: BC:96:BC:C7:23:97:61:B5:5B:49:AF:DF:67:BC:F6:15:63:EE:44:7A
Certificate issuer: /CN=4312ACB2226F8B88E5E89EF2F1442B8EEFB3B279
Certificate serial: 22AE099C5757B79708B6772028BF0ED107E6540C
Authority key identifier: 43:12:AC:B2:22:6F:8B:88:E5:E8:9E:F2:F1:44:2B:8E:EF:B3:B2:79
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4312ACB2226F8B88E5E89EF2F1442B8EEFB3B279.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/EB815C78DDD40B4927D980FA94E8D07AD34C343AA1F23CD5DDE95FEF9FBCF1A4/0/323830313a3135313a64303a3a2f34382d3438203d3e20323731383931.roa
Signing time: Tue 04 Feb 2025 18:45:09 +0000
ROA not before: Tue 04 Feb 2025 18:40:09 +0000
ROA not after: Tue 03 Feb 2026 18:45:09 +0000
asID: 271891
IP address blocks: 2801:151:d0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:ae:09:9c:57:57:b7:97:08:b6:77:20:28:bf:0e:d1:07:e6:54:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4312ACB2226F8B88E5E89EF2F1442B8EEFB3B279
Validity
Not Before: Feb 4 18:40:09 2025 GMT
Not After : Feb 3 18:45:09 2026 GMT
Subject: CN=BC96BCC7239761B55B49AFDF67BCF61563EE447A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:26:0b:dc:97:81:48:7d:c1:1a:8d:cc:c4:04:
a3:7c:c8:22:9e:33:68:0d:5a:77:57:1f:20:3d:83:
8d:f7:28:42:55:c4:da:5d:18:73:93:e3:d4:22:1a:
d7:e3:3d:15:ca:f3:a2:07:a4:91:c2:5d:eb:6c:c0:
0a:6a:b9:44:f7:6b:2d:d8:37:fe:bb:bb:f3:4c:cd:
f8:41:8b:40:d1:fa:47:5c:61:5f:8b:f8:4d:92:50:
a4:b3:51:49:c8:bd:16:c1:6b:9c:10:e7:f3:dc:bc:
61:f0:da:53:05:21:7f:cb:e7:a5:43:4c:7a:49:71:
a7:9d:23:b4:b5:c1:43:d9:02:00:8e:c2:8d:79:a9:
3d:c5:e3:27:06:6f:9f:6e:4b:4c:72:0b:a4:10:40:
45:2f:6b:5a:dc:79:d8:0c:ab:6d:75:76:26:22:5c:
df:f5:e7:bd:91:88:c4:c8:71:ae:79:2c:ae:a1:57:
ca:4f:60:70:5f:d2:72:31:5d:74:b1:69:f2:5a:f7:
82:84:6d:cf:12:cf:76:12:ed:9e:17:78:13:f3:27:
a5:2b:df:6c:22:45:29:b2:2a:fd:1e:2b:63:b4:46:
b2:89:2c:95:93:ba:0e:92:fb:86:50:01:0a:fc:71:
30:f2:0d:13:44:a1:13:b2:87:46:e3:f8:e8:3c:15:
74:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:96:BC:C7:23:97:61:B5:5B:49:AF:DF:67:BC:F6:15:63:EE:44:7A
X509v3 Authority Key Identifier:
keyid:43:12:AC:B2:22:6F:8B:88:E5:E8:9E:F2:F1:44:2B:8E:EF:B3:B2:79
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/EB815C78DDD40B4927D980FA94E8D07AD34C343AA1F23CD5DDE95FEF9FBCF1A4/0/4312ACB2226F8B88E5E89EF2F1442B8EEFB3B279.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4312ACB2226F8B88E5E89EF2F1442B8EEFB3B279.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/EB815C78DDD40B4927D980FA94E8D07AD34C343AA1F23CD5DDE95FEF9FBCF1A4/0/323830313a3135313a64303a3a2f34382d3438203d3e20323731383931.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:151:d0::/48
Signature Algorithm: sha256WithRSAEncryption
bd:73:c7:00:e8:b1:ec:0f:9c:1e:38:da:d8:8a:b5:03:81:5c:
9b:79:6a:eb:61:69:77:e0:0c:1e:9d:04:45:c6:3d:fd:68:22:
52:31:4b:c9:19:e8:bf:a0:8a:60:75:8c:e1:81:cd:32:94:39:
be:f0:ba:fb:e0:59:95:c4:a9:6b:8a:8a:f2:f4:59:a4:36:5d:
45:79:96:f5:4b:e2:33:f4:c8:1f:3f:ac:17:27:a3:83:69:d0:
88:40:19:0c:db:3a:9f:bf:1f:84:13:5c:57:72:88:1a:22:15:
19:a3:f2:f0:5e:b7:aa:12:a6:48:23:93:83:9a:2d:05:98:a8:
bb:4f:8e:57:9b:bd:28:57:97:42:6c:e8:0c:3d:f3:f4:e6:48:
3b:5e:e6:92:df:24:0d:cb:cd:b6:34:fb:7d:37:ba:e7:32:29:
69:5c:d6:ff:57:b4:82:ff:91:34:30:b2:f0:79:2c:c2:c7:f1:
4c:1a:52:26:a9:ee:cb:f3:38:e0:13:f1:7c:d1:06:f1:3c:2a:
0a:fc:56:03:84:d4:9b:01:18:57:7f:f3:93:9c:aa:ac:ef:3d:
81:a0:59:47:c3:25:cb:f1:10:c9:97:dd:a7:e9:61:cd:64:a4:
fd:02:b1:12:ae:09:13:29:57:db:6f:75:12:e5:c0:ba:e2:14:
15:d3:ff:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:46:19 2025 by rpki-client