Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/CD96A10A651E01C032F7F25AA20AF311BFE36F04776606125D370A6277276F29/0/323830363a3230663a3a2f33322d3332203d3e203238343038.roa
File: 323830363a3230663a3a2f33322d3332203d3e203238343038.roa (raw, json)
Hash identifier: zXiy00wu7LjAOYUl1msOzTqtAuY/Mhm07KLvnFhkDpA=
Subject key identifier: F5:91:B4:86:0E:8D:FB:2C:FB:36:93:98:51:89:22:15:8F:AE:1B:0E
Certificate issuer: /CN=01ED585C7FF695D515C213CCD92F98A26AF818D7
Certificate serial: 608113268EBFB4A5C54BA2866B8A03E4227AB19F
Authority key identifier: 01:ED:58:5C:7F:F6:95:D5:15:C2:13:CC:D9:2F:98:A2:6A:F8:18:D7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/01ED585C7FF695D515C213CCD92F98A26AF818D7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/CD96A10A651E01C032F7F25AA20AF311BFE36F04776606125D370A6277276F29/0/323830363a3230663a3a2f33322d3332203d3e203238343038.roa
Signing time: Tue 04 Feb 2025 18:33:53 +0000
ROA not before: Tue 04 Feb 2025 18:28:53 +0000
ROA not after: Tue 03 Feb 2026 18:33:53 +0000
asID: 28408
IP address blocks: 2806:20f::/32 maxlen: 32
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/CD96A10A651E01C032F7F25AA20AF311BFE36F04776606125D370A6277276F29/0/01ED585C7FF695D515C213CCD92F98A26AF818D7.crl
rsync://repository.lacnic.net/rpki/lacnic/CD96A10A651E01C032F7F25AA20AF311BFE36F04776606125D370A6277276F29/0/01ED585C7FF695D515C213CCD92F98A26AF818D7.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/01ED585C7FF695D515C213CCD92F98A26AF818D7.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Wed 30 Apr 2025 05:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:81:13:26:8e:bf:b4:a5:c5:4b:a2:86:6b:8a:03:e4:22:7a:b1:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01ED585C7FF695D515C213CCD92F98A26AF818D7
Validity
Not Before: Feb 4 18:28:53 2025 GMT
Not After : Feb 3 18:33:53 2026 GMT
Subject: CN=F591B4860E8DFB2CFB369398518922158FAE1B0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:00:2f:bb:3b:d3:98:71:2f:db:e2:d5:81:66:
81:68:91:0e:19:2d:91:1e:30:48:44:0b:db:f9:2a:
41:27:4b:fd:cb:6d:07:0a:dd:e0:08:e8:59:db:40:
63:02:8f:f0:ba:c9:f6:fd:f8:8c:94:23:54:fe:6c:
63:84:e3:f9:39:62:2c:59:f7:82:e5:e5:25:cd:76:
12:e6:71:d3:1f:3d:be:88:02:60:cf:95:d7:c9:b9:
82:d8:ed:0d:13:26:dc:8c:d5:34:3e:f8:8a:37:a0:
a2:2f:bf:b3:41:29:1e:a6:87:5d:bd:28:ef:5f:b6:
ba:52:40:d9:5b:f9:6c:14:68:43:75:54:96:c3:24:
81:99:9b:fc:99:2c:18:b7:0a:c3:5c:51:21:9c:ab:
76:fc:20:2b:f8:63:1b:00:fb:26:0c:48:f1:d8:36:
d3:e6:10:25:2a:1b:75:26:6f:a5:99:e2:98:9d:2a:
2c:53:94:83:c7:58:1b:13:26:90:b9:18:4e:8d:d3:
22:60:e3:01:df:b0:6e:74:5a:87:83:6e:41:73:c8:
9b:50:bd:f9:8a:69:02:fd:df:23:cc:e9:24:e7:d3:
82:d2:eb:de:8c:46:eb:b4:c2:12:6d:09:9a:81:db:
dc:0b:a8:84:db:18:98:af:6a:6a:5e:39:4b:90:5a:
f3:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:91:B4:86:0E:8D:FB:2C:FB:36:93:98:51:89:22:15:8F:AE:1B:0E
X509v3 Authority Key Identifier:
keyid:01:ED:58:5C:7F:F6:95:D5:15:C2:13:CC:D9:2F:98:A2:6A:F8:18:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/CD96A10A651E01C032F7F25AA20AF311BFE36F04776606125D370A6277276F29/0/01ED585C7FF695D515C213CCD92F98A26AF818D7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/01ED585C7FF695D515C213CCD92F98A26AF818D7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/CD96A10A651E01C032F7F25AA20AF311BFE36F04776606125D370A6277276F29/0/323830363a3230663a3a2f33322d3332203d3e203238343038.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2806:20f::/32
Signature Algorithm: sha256WithRSAEncryption
6c:cd:38:9a:63:57:ab:bc:26:d9:69:dc:74:50:f0:db:39:07:
82:d2:ad:34:c5:69:52:7c:2b:af:34:3a:b8:e2:57:cd:a9:33:
8f:46:39:28:f7:61:9b:38:4c:c8:c7:5b:ac:e6:18:68:5f:0f:
09:27:f7:34:92:92:bb:52:f0:a9:dd:32:39:21:4a:ab:c5:90:
af:e7:e3:6a:a0:b2:e4:dd:92:c7:ba:ab:21:33:98:4c:cf:ad:
a7:82:b7:b7:d5:f3:c2:8b:6e:e2:4c:fa:d5:48:c7:14:0a:b0:
dc:95:08:02:9c:8c:8f:10:d1:d3:6b:d6:8b:a1:c4:49:d4:36:
d0:9d:33:c3:f0:bc:82:7a:1b:e6:0e:e4:c8:39:5c:7c:a5:7a:
74:2b:8a:45:24:68:5f:0a:0a:74:11:af:c2:af:2e:b7:16:8b:
ed:a3:13:35:44:57:af:59:0e:c8:29:15:ff:cd:cd:af:6d:86:
af:cf:65:1f:f4:17:cf:28:cb:f0:b5:a8:65:46:62:40:25:48:
59:e1:55:3d:c5:85:fd:7c:85:7a:c8:aa:88:dd:96:ad:63:fb:
85:15:47:ae:53:c0:62:05:ed:56:07:7f:c6:d8:81:45:4d:f6:
b1:8e:19:90:61:85:e8:fa:a0:80:95:73:c6:55:af:75:c3:1c:
5b:9e:a7:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 04:25:12 2025 by rpki-client