Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/00A66A6A2A6CFE93C0F6E3DFC20DD331B580FB20383B62FE4B26C0294B4687C7/0/3230312e3233342e3234392e302f32342d3234203d3e203237393533.roa
File: 3230312e3233342e3234392e302f32342d3234203d3e203237393533.roa (raw, json)
Hash identifier: 0c4mbeRcUtjsnA86z2QM/CYsowlpWDiMho5mzrrqaaU=
Subject key identifier: 7B:45:33:3C:0A:BD:3A:3C:E1:03:49:2A:6C:F8:3D:C5:A5:A3:76:22
Certificate issuer: /CN=C87C55A4481F19C9B6184944B187B3813B7CEC56
Certificate serial: 59C88224A673994040A7EB7BD14098ACC6D4FC6E
Authority key identifier: C8:7C:55:A4:48:1F:19:C9:B6:18:49:44:B1:87:B3:81:3B:7C:EC:56
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C87C55A4481F19C9B6184944B187B3813B7CEC56.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/00A66A6A2A6CFE93C0F6E3DFC20DD331B580FB20383B62FE4B26C0294B4687C7/0/3230312e3233342e3234392e302f32342d3234203d3e203237393533.roa
Signing time: Tue 04 Feb 2025 18:41:27 +0000
ROA not before: Tue 04 Feb 2025 18:36:27 +0000
ROA not after: Tue 03 Feb 2026 18:41:27 +0000
asID: 27953
IP address blocks: 201.234.249.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/00A66A6A2A6CFE93C0F6E3DFC20DD331B580FB20383B62FE4B26C0294B4687C7/0/C87C55A4481F19C9B6184944B187B3813B7CEC56.crl
rsync://repository.lacnic.net/rpki/lacnic/00A66A6A2A6CFE93C0F6E3DFC20DD331B580FB20383B62FE4B26C0294B4687C7/0/C87C55A4481F19C9B6184944B187B3813B7CEC56.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C87C55A4481F19C9B6184944B187B3813B7CEC56.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 20:26:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:c8:82:24:a6:73:99:40:40:a7:eb:7b:d1:40:98:ac:c6:d4:fc:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C87C55A4481F19C9B6184944B187B3813B7CEC56
Validity
Not Before: Feb 4 18:36:27 2025 GMT
Not After : Feb 3 18:41:27 2026 GMT
Subject: CN=7B45333C0ABD3A3CE103492A6CF83DC5A5A37622
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b6:6f:5a:7e:3b:28:e2:e9:1b:19:25:3b:6e:
7f:cf:29:1d:77:37:c8:39:58:97:c3:64:dd:3f:cb:
ab:d3:11:71:ad:89:67:b1:d4:a8:43:01:57:61:a9:
49:00:e8:6e:b5:f0:c8:f8:72:e1:f8:47:4e:e1:2c:
97:30:48:d3:4b:d9:0c:41:c7:c0:71:1c:9e:dd:36:
12:88:ed:38:b4:58:ec:35:01:ec:78:a4:a8:e8:ce:
e2:6b:12:be:c6:af:ae:2f:61:6e:5f:34:ef:41:86:
b0:6e:c6:f5:2b:92:92:be:9a:91:10:23:c6:a0:a5:
4a:27:07:fa:34:65:d2:9f:7a:da:6b:76:63:84:9a:
61:60:12:6d:de:76:54:aa:72:16:9d:76:6f:1f:8f:
f6:86:31:15:0c:8c:ec:46:67:28:99:86:d4:db:e1:
46:cc:c1:8e:77:da:55:25:44:fd:bf:3c:1d:af:cf:
10:37:0a:7b:42:58:7c:9a:82:cf:92:36:89:3c:f4:
3d:b8:6e:79:e6:f5:ae:16:70:4a:57:80:2f:25:c6:
d8:cc:b1:ac:d3:f5:59:cd:fa:ac:95:aa:9a:b9:d2:
16:3b:e8:0a:e1:15:a2:81:e6:df:09:b0:6c:52:ec:
be:35:30:c2:5e:f7:e3:7b:b2:92:4d:23:45:bb:16:
d1:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:45:33:3C:0A:BD:3A:3C:E1:03:49:2A:6C:F8:3D:C5:A5:A3:76:22
X509v3 Authority Key Identifier:
keyid:C8:7C:55:A4:48:1F:19:C9:B6:18:49:44:B1:87:B3:81:3B:7C:EC:56
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/00A66A6A2A6CFE93C0F6E3DFC20DD331B580FB20383B62FE4B26C0294B4687C7/0/C87C55A4481F19C9B6184944B187B3813B7CEC56.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C87C55A4481F19C9B6184944B187B3813B7CEC56.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/00A66A6A2A6CFE93C0F6E3DFC20DD331B580FB20383B62FE4B26C0294B4687C7/0/3230312e3233342e3234392e302f32342d3234203d3e203237393533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.234.249.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:c8:3f:2c:4b:d1:e7:00:0d:19:ee:ee:30:5c:b2:58:30:67:
2c:57:66:6e:ef:08:df:06:7c:4d:b7:21:e5:e2:82:d6:e2:74:
75:77:d9:be:37:c0:fb:40:e5:3e:eb:e4:c5:fd:2b:54:40:c6:
2a:5a:28:9b:e4:89:1b:4f:03:8d:10:6d:fd:12:c4:05:7f:7a:
d3:52:ef:50:1d:79:a9:87:fb:67:29:74:30:c1:7c:db:d7:c1:
26:3d:27:da:17:69:e7:02:5d:ed:cd:9a:4e:22:2c:6e:d9:bb:
03:72:89:a1:d0:2f:42:59:fd:0e:2f:7c:f0:9d:ea:8b:26:b1:
d0:9b:f7:92:98:2d:25:a7:e0:fd:97:06:4c:55:36:f6:32:07:
41:a0:10:1b:21:a2:7e:42:b7:a8:3f:8f:7b:1c:a3:76:80:cc:
64:84:34:1e:67:d6:a9:53:18:3c:c0:d2:0a:6e:0c:8b:89:85:
48:2b:2a:e8:be:11:25:eb:46:99:57:e7:e5:af:5b:ee:28:09:
94:b3:72:34:9e:cb:70:4f:74:69:12:7f:05:ba:6b:72:02:35:
c3:c3:7a:50:52:58:d3:5b:55:dc:66:e2:ca:ce:7d:24:eb:86:
30:07:70:10:d0:f2:d9:14:86:83:54:05:0f:aa:68:f5:5b:5c:
d1:c2:59:62
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUWciCJKZzmUBAp+t70UCYrMbU/G4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzg3QzU1QTQ0ODFGMTlDOUI2MTg0OTQ0QjE4N0IzODEz
QjdDRUM1NjAeFw0yNTAyMDQxODM2MjdaFw0yNjAyMDMxODQxMjdaMDMxMTAvBgNV
BAMTKDdCNDUzMzNDMEFCRDNBM0NFMTAzNDkyQTZDRjgzREM1QTVBMzc2MjIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8tm9afjso4ukbGSU7bn/PKR13
N8g5WJfDZN0/y6vTEXGtiWex1KhDAVdhqUkA6G618Mj4cuH4R07hLJcwSNNL2QxB
x8BxHJ7dNhKI7Ti0WOw1Aex4pKjozuJrEr7Gr64vYW5fNO9BhrBuxvUrkpK+mpEQ
I8agpUonB/o0ZdKfetprdmOEmmFgEm3edlSqchaddm8fj/aGMRUMjOxGZyiZhtTb
4UbMwY532lUlRP2/PB2vzxA3CntCWHyags+SNok89D24bnnm9a4WcEpXgC8lxtjM
sazT9VnN+qyVqpq50hY76ArhFaKB5t8JsGxS7L41MMJe9+N7spJNI0W7FtEdAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUe0UzPAq9OjzhA0kqbPg9xaWjdiIwHwYDVR0j
BBgwFoAUyHxVpEgfGcm2GElEsYezgTt87FYwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8wMEE2NkE2QTJBNkNGRTkzQzBGNkUzREZDMjBERDMzMUI1
ODBGQjIwMzgzQjYyRkU0QjI2QzAyOTRCNDY4N0M3LzAvQzg3QzU1QTQ0ODFGMTlD
OUI2MTg0OTQ0QjE4N0IzODEzQjdDRUM1Ni5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DODdDNTVBNDQ4MUYxOUM5QjYx
ODQ5NDRCMTg3QjM4MTNCN0NFQzU2LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMDBBNjZBNkEyQTZDRkU5M0MwRjZFM0RGQzIwREQzMzFCNTgwRkIyMDM4
M0I2MkZFNEIyNkMwMjk0QjQ2ODdDNy8wLzMyMzAzMTJlMzIzMzM0MmUzMjM0Mzky
ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM3MzkzNTMzLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyer5
MA0GCSqGSIb3DQEBCwUAA4IBAQBdyD8sS9HnAA0Z7u4wXLJYMGcsV2Zu7wjfBnxN
tyHl4oLW4nR1d9m+N8D7QOU+6+TF/StUQMYqWiib5IkbTwONEG39EsQFf3rTUu9Q
HXmph/tnKXQwwXzb18EmPSfaF2nnAl3tzZpOIixu2bsDcomh0C9CWf0OL3zwneqL
JrHQm/eSmC0lp+D9lwZMVTb2MgdBoBAbIaJ+QreoP497HKN2gMxkhDQeZ9apUxg8
wNIKbgyLiYVIKyrovhEl60aZV+flr1vuKAmUs3I0nstwT3RpEn8FumtyAjXDw3pQ
UljTW1XcZuLKzn0k64YwB3AQ0PLZFIaDVAUPqmj1W1zRwlli
-----END CERTIFICATE-----
Generated at Mon Apr 14 16:35:35 2025 by rpki-client