Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F0CDE723D82FA920B88EAAFDCC612A1728AAE76F6ECCBDAA52C3D699FF78D069/0/323830333a613634303a3a2f33322d3536203d3e203436313938.roa
File: 323830333a613634303a3a2f33322d3536203d3e203436313938.roa (raw, json)
Hash identifier: Y7Graa1GkNAS8x/l9kUW3FtTElJHfsqwEL6EK8UOTJ8=
Subject key identifier: AA:E3:7A:B3:F6:C1:57:77:FB:BC:6E:87:37:17:D3:14:D4:D3:B1:A6
Certificate issuer: /CN=70B51DCC347573651055FC72DB19C170524018CC
Certificate serial: 6FC31AD2589ADF807AF7DD0C0660CEDF4A8FE890
Authority key identifier: 70:B5:1D:CC:34:75:73:65:10:55:FC:72:DB:19:C1:70:52:40:18:CC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/70B51DCC347573651055FC72DB19C170524018CC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F0CDE723D82FA920B88EAAFDCC612A1728AAE76F6ECCBDAA52C3D699FF78D069/0/323830333a613634303a3a2f33322d3536203d3e203436313938.roa
Signing time: Tue 04 Feb 2025 18:15:47 +0000
ROA not before: Tue 04 Feb 2025 18:10:47 +0000
ROA not after: Tue 03 Feb 2026 18:15:47 +0000
asID: 46198
IP address blocks: 2803:a640::/32 maxlen: 56
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6f:c3:1a:d2:58:9a:df:80:7a:f7:dd:0c:06:60:ce:df:4a:8f:e8:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70B51DCC347573651055FC72DB19C170524018CC
Validity
Not Before: Feb 4 18:10:47 2025 GMT
Not After : Feb 3 18:15:47 2026 GMT
Subject: CN=AAE37AB3F6C15777FBBC6E873717D314D4D3B1A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:e4:a1:24:41:12:5c:c3:1d:fc:ed:93:29:24:
a3:71:15:16:47:31:ba:45:6f:94:55:70:af:60:82:
6a:a0:6c:34:bf:bf:fe:a8:dd:c1:92:b1:9b:d1:71:
08:80:75:f7:70:cb:e1:52:f5:e8:48:3f:ae:d1:72:
ed:6e:c1:73:fe:55:3a:48:fb:bc:d2:f3:50:8a:e4:
09:66:3e:bf:06:39:b5:c2:23:bd:70:0f:8b:78:37:
e0:56:f3:26:20:7d:f0:9b:62:67:c0:72:2b:e9:b9:
22:c7:f0:44:20:47:eb:30:b5:56:79:13:e1:c2:b7:
2f:4d:74:0b:43:6a:ec:55:14:df:cc:b4:46:8f:3e:
bc:7a:85:be:21:ab:13:bd:ee:72:d3:b2:84:3d:8a:
1b:cb:d2:10:57:37:95:15:4f:48:7d:9c:c0:0b:36:
b7:a8:59:af:87:43:dd:e9:9d:2b:05:b6:d8:ce:9f:
37:03:18:61:15:8f:af:d0:4d:c3:f4:1f:fa:08:19:
67:58:c9:61:8d:c9:e7:56:7b:c0:69:45:ff:da:00:
2d:47:d1:1f:39:fa:4c:7f:c4:ed:d8:4b:b3:40:41:
82:65:4c:36:e5:80:14:0d:b7:05:73:92:08:72:1b:
b0:d3:b0:0f:05:4c:f4:e2:8e:a4:e4:0f:5f:3e:f9:
20:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:E3:7A:B3:F6:C1:57:77:FB:BC:6E:87:37:17:D3:14:D4:D3:B1:A6
X509v3 Authority Key Identifier:
keyid:70:B5:1D:CC:34:75:73:65:10:55:FC:72:DB:19:C1:70:52:40:18:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/F0CDE723D82FA920B88EAAFDCC612A1728AAE76F6ECCBDAA52C3D699FF78D069/0/70B51DCC347573651055FC72DB19C170524018CC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/70B51DCC347573651055FC72DB19C170524018CC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F0CDE723D82FA920B88EAAFDCC612A1728AAE76F6ECCBDAA52C3D699FF78D069/0/323830333a613634303a3a2f33322d3536203d3e203436313938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:a640::/32
Signature Algorithm: sha256WithRSAEncryption
4b:5b:e1:6e:a4:ef:a0:bb:8a:c6:55:1b:4c:1e:a5:7e:72:d6:
32:f8:cc:c1:b4:b8:35:61:9c:0e:93:11:92:dc:87:b8:19:82:
7b:e6:3c:8d:08:48:92:85:39:2e:c7:0c:a9:e9:86:ae:07:78:
74:64:f6:b2:4f:12:5b:13:86:4d:56:ff:49:65:5b:85:c0:68:
ff:be:13:83:de:5d:72:fe:c9:bf:fd:74:71:65:63:61:c9:50:
cf:d8:10:02:25:7f:57:1e:a2:ec:6c:0f:0c:13:d7:7f:f0:5d:
2e:f9:08:5e:23:d5:71:45:9a:50:ca:aa:df:32:d2:a1:cf:91:
b7:ac:f9:1c:b3:dc:61:4e:af:f8:82:e2:40:0e:f1:bf:f6:49:
e3:b6:ab:89:67:f6:75:04:1a:ef:01:8f:37:97:26:fb:80:a4:
49:51:08:86:10:0e:8e:aa:4f:61:ec:72:6b:79:68:de:9a:16:
3d:44:e9:65:99:38:5c:d1:07:82:8c:ca:80:2e:02:8d:ea:71:
0b:84:82:75:f8:a4:5a:24:03:7d:ba:94:d4:39:ce:11:c5:df:
a2:46:ae:03:07:bb:1b:32:f8:7f:5c:8c:c7:0c:37:b5:25:c8:
cc:9b:f2:9c:2f:99:ef:2d:bb:66:ef:97:80:4e:69:a7:8c:52:
2c:a7:da:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:54:03 2025 by rpki-client