Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0261522A7D1B1599601F0A1AAB8391A7D6EA0A5BDF95B045ABA001E79DD4B632/0/3133312e3232312e3131322e302f32322d3232203d3e20323633373031.roa
File: 3133312e3232312e3131322e302f32322d3232203d3e20323633373031.roa (raw, json)
Hash identifier: qyJN8SnD4HBSgE0PvRcBEwpzogyONY2XUQ9ELPGXk74=
Subject key identifier: 15:1A:E3:59:DE:C1:30:53:17:F2:A2:11:03:8B:E1:B9:E9:39:64:DB
Certificate issuer: /CN=2D8AB2848654D51664AC6F45A44E5407C6B35912
Certificate serial: 5AB782F5A92850CDA6DE0DCD6AFB38431C3E019A
Authority key identifier: 2D:8A:B2:84:86:54:D5:16:64:AC:6F:45:A4:4E:54:07:C6:B3:59:12
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D8AB2848654D51664AC6F45A44E5407C6B35912.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0261522A7D1B1599601F0A1AAB8391A7D6EA0A5BDF95B045ABA001E79DD4B632/0/3133312e3232312e3131322e302f32322d3232203d3e20323633373031.roa
Signing time: Tue 04 Feb 2025 18:21:03 +0000
ROA not before: Tue 04 Feb 2025 18:16:03 +0000
ROA not after: Tue 03 Feb 2026 18:21:03 +0000
asID: 263701
IP address blocks: 131.221.112.0/22 maxlen: 22
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/0261522A7D1B1599601F0A1AAB8391A7D6EA0A5BDF95B045ABA001E79DD4B632/0/2D8AB2848654D51664AC6F45A44E5407C6B35912.crl
rsync://repository.lacnic.net/rpki/lacnic/0261522A7D1B1599601F0A1AAB8391A7D6EA0A5BDF95B045ABA001E79DD4B632/0/2D8AB2848654D51664AC6F45A44E5407C6B35912.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D8AB2848654D51664AC6F45A44E5407C6B35912.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 12:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:b7:82:f5:a9:28:50:cd:a6:de:0d:cd:6a:fb:38:43:1c:3e:01:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D8AB2848654D51664AC6F45A44E5407C6B35912
Validity
Not Before: Feb 4 18:16:03 2025 GMT
Not After : Feb 3 18:21:03 2026 GMT
Subject: CN=151AE359DEC1305317F2A211038BE1B9E93964DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:d9:69:82:eb:1f:a3:41:cd:db:40:0a:b3:e2:
17:5f:b3:65:3c:dd:e9:66:e8:72:7e:d7:1e:8b:29:
be:89:5c:68:89:a5:64:a2:c5:41:18:12:2a:df:55:
44:c5:fc:d9:2b:7e:42:a6:7c:0e:91:d6:b1:c1:a8:
af:97:8c:fd:cd:2b:3e:8e:10:10:5f:a3:83:6f:a8:
92:35:be:74:28:16:4b:b6:0a:e1:c3:13:86:a7:8a:
64:5b:42:c1:42:15:da:f6:19:e6:fe:ff:64:41:88:
b1:c2:a9:da:12:19:78:8c:2f:72:ad:16:5b:fb:3e:
ed:70:07:11:09:bd:1f:89:49:fa:8e:90:90:58:6c:
71:ab:a1:42:d2:b2:8d:e6:ed:0f:ab:da:48:ab:51:
50:cb:b5:e2:34:db:16:2b:ea:ae:c9:ff:6c:99:5b:
34:e5:58:2d:21:2b:27:2d:71:e7:79:c5:2b:3e:c6:
2c:21:c3:71:3e:c3:6e:18:39:16:ac:a9:74:27:33:
63:3e:9b:51:b6:e4:0a:94:5d:1a:9c:5a:ea:dc:9d:
82:08:14:d3:82:15:a8:14:5b:ce:55:de:bf:cf:04:
b9:e5:29:da:12:44:cc:f1:e5:ec:f4:c7:c8:ca:6b:
41:98:06:f3:1b:cc:dd:d2:ce:6f:37:54:b7:b6:52:
ca:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:1A:E3:59:DE:C1:30:53:17:F2:A2:11:03:8B:E1:B9:E9:39:64:DB
X509v3 Authority Key Identifier:
keyid:2D:8A:B2:84:86:54:D5:16:64:AC:6F:45:A4:4E:54:07:C6:B3:59:12
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0261522A7D1B1599601F0A1AAB8391A7D6EA0A5BDF95B045ABA001E79DD4B632/0/2D8AB2848654D51664AC6F45A44E5407C6B35912.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D8AB2848654D51664AC6F45A44E5407C6B35912.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0261522A7D1B1599601F0A1AAB8391A7D6EA0A5BDF95B045ABA001E79DD4B632/0/3133312e3232312e3131322e302f32322d3232203d3e20323633373031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.221.112.0/22
Signature Algorithm: sha256WithRSAEncryption
98:85:bc:da:77:ca:03:7a:7e:40:4f:64:26:8e:bb:f1:51:4d:
24:4d:0e:c1:be:5a:d1:81:ec:fb:25:94:eb:f0:2c:97:98:28:
9d:96:3b:9b:2b:b7:8c:e0:00:6d:8c:4e:97:3e:7b:6b:77:8c:
20:48:ae:35:3e:05:ca:af:54:f2:e3:70:00:9e:cd:19:bd:17:
a4:a4:05:30:17:92:87:1a:d9:93:ec:2b:08:ad:e8:bf:a7:17:
ce:79:74:08:be:4d:5b:e7:ba:c5:01:24:4b:c8:47:81:36:33:
ec:cb:3f:ad:0c:88:76:52:d4:1a:72:8b:74:c0:ff:4d:c3:d2:
15:2f:cd:8d:d3:fd:b1:41:7d:6c:76:c5:d7:f6:93:e8:16:ce:
ef:01:cc:be:3b:18:ba:97:4b:1b:d8:e8:2a:70:f4:d1:e3:31:
d4:3e:3f:cd:a8:28:39:a5:34:a5:c7:df:4a:06:b3:c4:b4:ee:
1f:96:b7:ac:d8:67:fb:22:82:ce:2e:e1:6a:80:d1:d0:3d:ca:
3e:e3:6d:47:86:d3:a3:d0:4f:9e:ec:70:bf:a0:f5:57:c0:d2:
8a:a5:d2:d4:1a:4b:99:5c:06:01:64:49:fd:a1:f0:b7:8a:2e:
e9:d6:ab:89:e6:f9:cd:0f:97:72:a0:11:7d:81:ab:68:03:d0:
c9:f6:30:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 22:21:57 2025 by rpki-client