Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/FFE63625C9AB7AA044F5C373BFB8A18F01F83A578FC55AB432D50491242BAFA8/0/323830333a646136303a3a2f33322d313238203d3e20323637383930.roa
File: 323830333a646136303a3a2f33322d313238203d3e20323637383930.roa (raw, json)
Hash identifier: TEo9kbquH1Jt5bMHIxBo5KmkJw1TSiEIUZx3TuK5dh8=
Subject key identifier: 48:3C:61:9C:15:48:5E:64:71:F0:D0:7F:10:63:A0:5B:0F:7A:BA:4A
Certificate issuer: /CN=3CE86CC1C94EC0C2A8D0C668C7AA44FC5E3DE94F
Certificate serial: 3ADCD93376FB710F54935B20CCB3AAB551D44DB3
Authority key identifier: 3C:E8:6C:C1:C9:4E:C0:C2:A8:D0:C6:68:C7:AA:44:FC:5E:3D:E9:4F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3CE86CC1C94EC0C2A8D0C668C7AA44FC5E3DE94F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/FFE63625C9AB7AA044F5C373BFB8A18F01F83A578FC55AB432D50491242BAFA8/0/323830333a646136303a3a2f33322d313238203d3e20323637383930.roa
Signing time: Tue 04 Feb 2025 18:20:17 +0000
ROA not before: Tue 04 Feb 2025 18:15:17 +0000
ROA not after: Tue 03 Feb 2026 18:20:17 +0000
asID: 267890
IP address blocks: 2803:da60::/32 maxlen: 128
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:dc:d9:33:76:fb:71:0f:54:93:5b:20:cc:b3:aa:b5:51:d4:4d:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3CE86CC1C94EC0C2A8D0C668C7AA44FC5E3DE94F
Validity
Not Before: Feb 4 18:15:17 2025 GMT
Not After : Feb 3 18:20:17 2026 GMT
Subject: CN=483C619C15485E6471F0D07F1063A05B0F7ABA4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3a:11:77:de:1a:a7:98:f3:09:de:75:ec:67:
71:22:16:35:42:55:4c:c8:56:89:45:f4:de:cb:ac:
4d:c0:cb:fa:d5:ed:e3:ca:7a:cb:84:bd:96:af:64:
aa:cc:39:dc:fa:fa:ce:c2:ce:73:cf:70:15:80:3c:
9c:a4:34:8e:8f:9a:63:8f:d8:c6:d2:30:75:cc:1e:
02:4c:c4:f4:07:2d:6b:d1:53:41:4a:de:50:5d:85:
c0:5b:04:ec:72:8f:c1:ee:1a:bd:55:99:7f:81:2e:
2a:ab:9a:69:d5:4a:90:1f:ee:06:64:a0:e1:87:cb:
4b:6e:f2:ce:e0:30:96:69:c2:bc:db:a2:43:4f:ad:
d5:09:d7:00:7e:7a:f3:5c:fa:62:5d:3d:4a:3e:80:
b6:2c:62:05:0d:85:6d:f5:23:5e:8f:ad:e0:45:1e:
21:12:a9:88:26:61:2a:d3:bf:f2:f4:00:7b:78:70:
3e:4e:50:e2:bb:be:d0:48:c2:c4:b7:ea:f4:21:75:
bd:80:75:f9:be:23:f4:73:62:f2:37:e5:08:31:04:
aa:65:aa:68:f3:d6:9e:20:39:d7:74:4a:ba:de:8b:
0f:a3:f6:40:46:bc:7c:7f:a5:18:bc:7b:fd:6f:78:
ee:8d:43:97:8c:97:7e:05:21:0b:bb:27:a8:e9:d9:
c5:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:3C:61:9C:15:48:5E:64:71:F0:D0:7F:10:63:A0:5B:0F:7A:BA:4A
X509v3 Authority Key Identifier:
keyid:3C:E8:6C:C1:C9:4E:C0:C2:A8:D0:C6:68:C7:AA:44:FC:5E:3D:E9:4F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/FFE63625C9AB7AA044F5C373BFB8A18F01F83A578FC55AB432D50491242BAFA8/0/3CE86CC1C94EC0C2A8D0C668C7AA44FC5E3DE94F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3CE86CC1C94EC0C2A8D0C668C7AA44FC5E3DE94F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/FFE63625C9AB7AA044F5C373BFB8A18F01F83A578FC55AB432D50491242BAFA8/0/323830333a646136303a3a2f33322d313238203d3e20323637383930.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:da60::/32
Signature Algorithm: sha256WithRSAEncryption
0e:b8:92:bc:ed:f4:5c:c5:ac:8e:ab:93:85:28:9b:5a:c9:36:
ea:de:37:04:28:27:09:5c:a5:2d:4e:73:8d:77:40:c8:8c:23:
ea:81:4f:e6:ed:dd:10:1a:e9:00:e6:dd:31:09:c2:13:71:5e:
bf:e7:11:61:09:8c:50:07:ff:2a:a7:d2:bf:a5:12:bc:85:2f:
00:47:d5:7b:f6:60:36:b3:ce:31:22:d7:28:10:77:a3:54:79:
8f:a7:f1:13:43:ee:46:ed:36:2c:d5:cf:a2:6d:68:0b:ce:86:
72:d8:0e:73:24:b7:bd:3c:b4:c8:3e:59:02:d3:8e:c9:b8:79:
3f:d8:e7:c9:63:16:58:59:4b:0e:9b:72:2f:0f:3d:c6:a2:c5:
4b:66:66:15:c4:fb:2d:05:d9:7b:02:cf:e2:f6:7d:68:10:df:
99:ce:cb:99:88:7d:ff:77:7c:08:fe:86:4e:7d:6b:b9:14:98:
e2:da:12:b3:e9:9d:11:a8:b3:fa:4c:5b:0b:32:70:98:8e:e7:
b4:c1:39:a6:42:58:d7:4e:62:6b:be:b2:ac:a1:94:35:55:e2:
01:4f:c0:9d:b5:9a:6d:25:51:66:11:fe:af:2e:56:09:34:e6:
3b:54:4b:bb:0c:7d:75:5e:dc:fe:88:f3:c4:5b:a6:15:c7:26:
d4:97:79:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:59:57 2025 by rpki-client