Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/88FF336A6B2F9FAA9A7980829832DDE757814C175E420E9317DDA53106684047/0/3139302e31332e3231372e302f32342d3234203d3e20323632323038.roa
File: 3139302e31332e3231372e302f32342d3234203d3e20323632323038.roa (raw, json)
Hash identifier: MSsGtYyGM4xf5NGgoQeAQ4TMIWEzAe9gMbhdk/d/hqo=
Subject key identifier: A3:99:51:0D:43:B1:D8:22:DB:60:51:00:2D:B8:B2:FE:B2:22:EE:D2
Certificate issuer: /CN=4A8CA56E3B7BF88CD1347971DBEE896F367714C7
Certificate serial: 64333CE448E6A1C99FB2B874DCB8DA86B95A52A5
Authority key identifier: 4A:8C:A5:6E:3B:7B:F8:8C:D1:34:79:71:DB:EE:89:6F:36:77:14:C7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4A8CA56E3B7BF88CD1347971DBEE896F367714C7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/88FF336A6B2F9FAA9A7980829832DDE757814C175E420E9317DDA53106684047/0/3139302e31332e3231372e302f32342d3234203d3e20323632323038.roa
Signing time: Tue 04 Feb 2025 18:55:08 +0000
ROA not before: Tue 04 Feb 2025 18:50:08 +0000
ROA not after: Tue 03 Feb 2026 18:55:08 +0000
asID: 262208
IP address blocks: 190.13.217.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/88FF336A6B2F9FAA9A7980829832DDE757814C175E420E9317DDA53106684047/0/4A8CA56E3B7BF88CD1347971DBEE896F367714C7.crl
rsync://repository.lacnic.net/rpki/lacnic/88FF336A6B2F9FAA9A7980829832DDE757814C175E420E9317DDA53106684047/0/4A8CA56E3B7BF88CD1347971DBEE896F367714C7.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4A8CA56E3B7BF88CD1347971DBEE896F367714C7.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Tue 29 Apr 2025 20:47:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:33:3c:e4:48:e6:a1:c9:9f:b2:b8:74:dc:b8:da:86:b9:5a:52:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4A8CA56E3B7BF88CD1347971DBEE896F367714C7
Validity
Not Before: Feb 4 18:50:08 2025 GMT
Not After : Feb 3 18:55:08 2026 GMT
Subject: CN=A399510D43B1D822DB6051002DB8B2FEB222EED2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4f:32:41:17:19:f2:44:23:4c:06:7b:d0:c8:
5c:87:50:34:ba:ea:8a:ff:19:e5:e8:25:93:e3:e3:
1d:d8:8d:bb:47:f5:6c:81:fd:62:6f:59:f2:7f:da:
56:c6:26:10:9a:b7:e5:9d:e0:83:9a:29:37:1e:78:
a1:20:85:b7:cb:c4:2f:34:f1:9d:0a:3b:0e:c7:92:
08:b9:23:16:41:27:d5:a1:bc:77:d8:6f:b6:63:93:
ef:86:9c:10:24:4c:91:01:56:83:db:b1:54:ab:8a:
6b:01:df:86:0e:3b:02:54:6a:a1:b8:b9:cd:62:85:
e2:6b:a8:e5:c9:8b:02:af:92:05:c9:dd:69:2e:c4:
2b:b5:c3:74:07:cc:70:8a:64:ce:fd:ab:03:8b:57:
a7:d1:47:2a:05:24:44:9a:d7:eb:0a:c4:08:d0:6a:
cd:1c:f0:4e:6d:66:4f:2a:e4:5e:b3:c4:29:fd:2d:
da:94:6a:d8:6e:76:c5:70:13:3b:ff:18:e0:b0:93:
c3:7b:76:3b:9f:f4:91:7d:cf:8b:2d:cc:e6:7b:cb:
e8:c4:4f:ad:e5:74:a5:4f:6c:56:79:40:12:0e:c7:
4e:85:bb:22:3a:22:ce:9a:c2:fd:51:90:3b:e4:51:
d3:b6:40:df:9f:c8:22:87:7d:d3:c0:cd:53:de:01:
4c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:99:51:0D:43:B1:D8:22:DB:60:51:00:2D:B8:B2:FE:B2:22:EE:D2
X509v3 Authority Key Identifier:
keyid:4A:8C:A5:6E:3B:7B:F8:8C:D1:34:79:71:DB:EE:89:6F:36:77:14:C7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/88FF336A6B2F9FAA9A7980829832DDE757814C175E420E9317DDA53106684047/0/4A8CA56E3B7BF88CD1347971DBEE896F367714C7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4A8CA56E3B7BF88CD1347971DBEE896F367714C7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/88FF336A6B2F9FAA9A7980829832DDE757814C175E420E9317DDA53106684047/0/3139302e31332e3231372e302f32342d3234203d3e20323632323038.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.13.217.0/24
Signature Algorithm: sha256WithRSAEncryption
51:38:79:d1:67:65:ab:73:5e:bf:cd:70:d1:43:2f:e8:e1:66:
69:90:29:48:03:34:cc:72:e9:1a:78:92:bd:49:35:8f:7a:d3:
fa:64:b9:74:e3:ab:1e:a6:fc:c7:ce:ac:d8:50:6a:74:d9:dc:
60:fc:df:21:74:74:12:c3:91:98:bd:91:15:04:5b:1b:d5:4c:
43:0e:1c:5a:bd:d4:9b:eb:5f:cc:23:9f:3a:7d:e0:ec:1b:34:
e7:06:c0:fa:a8:5a:45:5d:7d:54:7e:5c:ab:24:21:5c:ce:9e:
d1:0e:f1:ea:98:83:9f:67:1b:70:c3:e0:90:a1:13:e8:4b:80:
b3:4a:de:66:01:3c:58:70:d6:f8:3b:9c:55:0b:97:a2:d3:62:
9c:e3:b4:75:fe:03:19:ff:e6:70:c2:93:ca:d3:f2:73:20:94:
c7:cd:b1:aa:46:43:05:51:89:0a:42:29:4a:28:c0:b5:f8:45:
83:ee:1d:11:ff:1a:e4:e5:81:67:74:90:3d:d1:e6:e4:b4:ce:
5d:89:56:9a:6e:60:06:81:e2:b3:70:2e:ab:73:76:63:a3:b9:
66:15:aa:38:39:e7:16:4e:1a:a5:b1:86:0e:8b:d8:db:82:15:
da:54:af:67:99:92:65:8f:4e:c5:a6:77:e8:12:c1:b4:39:c4:
e6:6b:ff:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 21:24:41 2025 by rpki-client