Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/04BB42195A3038A81C1F1200E30F8D51F752801E722B954EE7A5705D70C72CB0/0/3230312e3231392e3133302e302f32342d3234203d3e20323635373035.roa
File: 3230312e3231392e3133302e302f32342d3234203d3e20323635373035.roa (raw, json)
Hash identifier: uM9ZhdVJKNhMFlPwlLvHQcPJ7Tfe/xqL1jdXxaz4V8k=
Subject key identifier: 3B:BA:4A:9B:09:8F:3D:8E:5B:55:A2:DA:F2:6E:C0:E4:0C:F2:F0:36
Certificate issuer: /CN=BA56744DBF20010C478D63405BC3FD8408043C5B
Certificate serial: 452ED00F444176ACC3DBFA40CE2E2A277318CF79
Authority key identifier: BA:56:74:4D:BF:20:01:0C:47:8D:63:40:5B:C3:FD:84:08:04:3C:5B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BA56744DBF20010C478D63405BC3FD8408043C5B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/04BB42195A3038A81C1F1200E30F8D51F752801E722B954EE7A5705D70C72CB0/0/3230312e3231392e3133302e302f32342d3234203d3e20323635373035.roa
Signing time: Tue 04 Feb 2025 18:32:29 +0000
ROA not before: Tue 04 Feb 2025 18:27:29 +0000
ROA not after: Tue 03 Feb 2026 18:32:29 +0000
asID: 265705
IP address blocks: 201.219.130.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/04BB42195A3038A81C1F1200E30F8D51F752801E722B954EE7A5705D70C72CB0/0/BA56744DBF20010C478D63405BC3FD8408043C5B.crl
rsync://repository.lacnic.net/rpki/lacnic/04BB42195A3038A81C1F1200E30F8D51F752801E722B954EE7A5705D70C72CB0/0/BA56744DBF20010C478D63405BC3FD8408043C5B.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BA56744DBF20010C478D63405BC3FD8408043C5B.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 11:59:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:2e:d0:0f:44:41:76:ac:c3:db:fa:40:ce:2e:2a:27:73:18:cf:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BA56744DBF20010C478D63405BC3FD8408043C5B
Validity
Not Before: Feb 4 18:27:29 2025 GMT
Not After : Feb 3 18:32:29 2026 GMT
Subject: CN=3BBA4A9B098F3D8E5B55A2DAF26EC0E40CF2F036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:93:2b:b7:a4:c6:f0:e8:14:4b:42:d8:cd:ad:
8a:0f:b0:ba:ce:37:32:08:66:6f:49:92:8e:c8:4b:
16:41:48:2f:01:46:5d:78:2a:78:0f:54:f4:12:f8:
88:46:68:13:64:1c:37:6b:8a:67:fb:c5:6e:5c:b9:
29:23:f9:61:aa:62:94:4c:f0:12:b0:42:20:9f:1a:
1f:ba:88:8e:28:84:66:9e:37:26:37:79:3d:95:13:
df:81:c6:12:af:6d:e8:b6:49:70:47:59:6a:24:19:
10:9a:59:5c:92:8e:27:eb:b3:eb:eb:72:97:6b:7f:
61:e0:f9:b6:c7:e8:41:2a:b5:2c:c7:8c:76:2f:f8:
76:4e:32:a1:5c:8b:c3:95:c3:d5:98:49:1b:f5:2f:
72:c5:fb:ef:d4:4c:81:41:62:7e:8d:a9:bc:f0:c0:
96:77:c4:7d:db:84:9a:8b:67:50:67:f2:3d:9d:41:
21:d7:2c:45:9d:b8:81:6b:e8:c9:7f:a4:ef:9a:b6:
5e:7e:bc:63:86:8b:b4:68:0e:c5:3b:68:9f:4e:9a:
32:94:da:d7:20:14:13:b4:bb:5e:36:87:bf:e4:c4:
ab:05:89:0b:72:df:af:68:d5:96:8a:be:31:8a:53:
b4:14:eb:44:d6:56:20:2f:5e:db:32:82:1f:c2:8f:
73:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:BA:4A:9B:09:8F:3D:8E:5B:55:A2:DA:F2:6E:C0:E4:0C:F2:F0:36
X509v3 Authority Key Identifier:
keyid:BA:56:74:4D:BF:20:01:0C:47:8D:63:40:5B:C3:FD:84:08:04:3C:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/04BB42195A3038A81C1F1200E30F8D51F752801E722B954EE7A5705D70C72CB0/0/BA56744DBF20010C478D63405BC3FD8408043C5B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BA56744DBF20010C478D63405BC3FD8408043C5B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/04BB42195A3038A81C1F1200E30F8D51F752801E722B954EE7A5705D70C72CB0/0/3230312e3231392e3133302e302f32342d3234203d3e20323635373035.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.219.130.0/24
Signature Algorithm: sha256WithRSAEncryption
35:63:f6:6f:a7:e5:75:df:51:b2:3d:02:39:e4:b7:0c:9c:c5:
32:a7:ec:f7:6a:62:5d:05:2c:93:a2:30:02:9e:43:fb:33:0e:
25:22:be:0f:60:f5:4d:d1:8a:a8:71:ac:59:e2:2c:80:b6:3c:
3b:da:2c:98:a1:ba:42:c9:4a:43:bc:ab:fb:0d:bd:a8:50:16:
cf:54:58:bc:43:3d:c2:b7:91:3b:28:a2:ab:33:1e:f6:c2:ba:
40:94:0b:20:e6:49:d1:cc:55:1e:c4:50:37:2c:fd:4a:82:ba:
9a:aa:eb:de:e3:e6:eb:90:d9:89:67:d8:83:40:30:f1:a2:e7:
00:ea:07:73:c7:fc:fb:9d:b6:61:a6:65:20:e3:cb:d2:f1:64:
e7:a0:62:23:8f:7d:d3:18:4e:88:ad:37:6e:11:c2:a5:bc:06:
7b:d9:c7:3d:76:8a:f7:57:9b:f6:44:0e:10:a8:44:f9:58:be:
8b:02:c2:ce:66:b9:48:81:f2:2f:0a:7d:e1:29:1c:fd:40:41:
3c:a0:06:95:89:45:98:23:1d:e8:05:66:68:cb:de:de:1f:15:
8d:ac:66:c5:44:46:c7:ca:2a:c0:0c:e3:82:7c:53:8e:f8:b6:
02:9f:0b:3c:3a:5d:1f:78:81:e4:86:e2:59:bd:41:01:8e:e2:
59:30:86:d4
-----BEGIN CERTIFICATE-----
MIIFwjCCBKqgAwIBAgIURS7QD0RBdqzD2/pAzi4qJ3MYz3kwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQkE1Njc0NERCRjIwMDEwQzQ3OEQ2MzQwNUJDM0ZEODQw
ODA0M0M1QjAeFw0yNTAyMDQxODI3MjlaFw0yNjAyMDMxODMyMjlaMDMxMTAvBgNV
BAMTKDNCQkE0QTlCMDk4RjNEOEU1QjU1QTJEQUYyNkVDMEU0MENGMkYwMzYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDikyu3pMbw6BRLQtjNrYoPsLrO
NzIIZm9Jko7ISxZBSC8BRl14KngPVPQS+IhGaBNkHDdrimf7xW5cuSkj+WGqYpRM
8BKwQiCfGh+6iI4ohGaeNyY3eT2VE9+BxhKvbei2SXBHWWokGRCaWVySjifrs+vr
cpdrf2Hg+bbH6EEqtSzHjHYv+HZOMqFci8OVw9WYSRv1L3LF++/UTIFBYn6Nqbzw
wJZ3xH3bhJqLZ1Bn8j2dQSHXLEWduIFr6Ml/pO+atl5+vGOGi7RoDsU7aJ9OmjKU
2tcgFBO0u142h7/kxKsFiQty369o1ZaKvjGKU7QU60TWViAvXtsygh/Cj3ORAgMB
AAGjggLMMIICyDAdBgNVHQ4EFgQUO7pKmwmPPY5bVaLa8m7A5Azy8DYwHwYDVR0j
BBgwFoAUulZ0Tb8gAQxHjWNAW8P9hAgEPFswDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8wNEJCNDIxOTVBMzAzOEE4MUMxRjEyMDBFMzBGOEQ1MUY3
NTI4MDFFNzIyQjk1NEVFN0E1NzA1RDcwQzcyQ0IwLzAvQkE1Njc0NERCRjIwMDEw
QzQ3OEQ2MzQwNUJDM0ZEODQwODA0M0M1Qi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9CQTU2NzQ0REJGMjAwMTBDNDc4
RDYzNDA1QkMzRkQ4NDA4MDQzQzVCLmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG
CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMDRCQjQyMTk1QTMwMzhBODFDMUYxMjAwRTMwRjhENTFGNzUyODAxRTcy
MkI5NTRFRTdBNTcwNUQ3MEM3MkNCMC8wLzMyMzAzMTJlMzIzMTM5MmUzMTMzMzAy
ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM2MzUzNzMwMzUucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADJ
24IwDQYJKoZIhvcNAQELBQADggEBADVj9m+n5XXfUbI9AjnktwycxTKn7PdqYl0F
LJOiMAKeQ/szDiUivg9g9U3RiqhxrFniLIC2PDvaLJihukLJSkO8q/sNvahQFs9U
WLxDPcK3kTsooqszHvbCukCUCyDmSdHMVR7EUDcs/UqCupqq697j5uuQ2Yln2INA
MPGi5wDqB3PH/PudtmGmZSDjy9LxZOegYiOPfdMYToitN24RwqW8BnvZxz12ivdX
m/ZEDhCoRPlYvosCws5muUiB8i8KfeEpHP1AQTygBpWJRZgjHegFZmjL3t4fFY2s
ZsVERsfKKsAM44J8U474tgKfCzw6XR94geSG4lm9QQGO4lkwhtQ=
-----END CERTIFICATE-----
Generated at Mon Apr 14 17:57:28 2025 by rpki-client