Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/04EDDEE6B6F88EA17E6C2CD56C55F29A1937EB8745DD56F3E71B340A9FF830A6/0/3230302e3233332e34342e302f32322d3234203d3e203238303332.roa
File: 3230302e3233332e34342e302f32322d3234203d3e203238303332.roa (raw, json)
Hash identifier: q2jVn+eVl/pOsdNV25L101XSG3vXoZ2BGkOLLLmjNsg=
Subject key identifier: 44:F4:D9:91:FF:7D:94:00:59:AE:52:57:5C:84:75:1C:C1:B3:9F:EF
Certificate issuer: /CN=25E2A43494D13C6F2ABA675D1A57C4D00A108B2B
Certificate serial: 3760BBE3837BA1A9B4B34C899D4146C461306C62
Authority key identifier: 25:E2:A4:34:94:D1:3C:6F:2A:BA:67:5D:1A:57:C4:D0:0A:10:8B:2B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25E2A43494D13C6F2ABA675D1A57C4D00A108B2B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/04EDDEE6B6F88EA17E6C2CD56C55F29A1937EB8745DD56F3E71B340A9FF830A6/0/3230302e3233332e34342e302f32322d3234203d3e203238303332.roa
Signing time: Tue 04 Feb 2025 18:44:56 +0000
ROA not before: Tue 04 Feb 2025 18:39:56 +0000
ROA not after: Tue 03 Feb 2026 18:44:56 +0000
asID: 28032
IP address blocks: 200.233.44.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/04EDDEE6B6F88EA17E6C2CD56C55F29A1937EB8745DD56F3E71B340A9FF830A6/0/25E2A43494D13C6F2ABA675D1A57C4D00A108B2B.crl
rsync://repository.lacnic.net/rpki/lacnic/04EDDEE6B6F88EA17E6C2CD56C55F29A1937EB8745DD56F3E71B340A9FF830A6/0/25E2A43494D13C6F2ABA675D1A57C4D00A108B2B.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25E2A43494D13C6F2ABA675D1A57C4D00A108B2B.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 15:05:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
37:60:bb:e3:83:7b:a1:a9:b4:b3:4c:89:9d:41:46:c4:61:30:6c:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25E2A43494D13C6F2ABA675D1A57C4D00A108B2B
Validity
Not Before: Feb 4 18:39:56 2025 GMT
Not After : Feb 3 18:44:56 2026 GMT
Subject: CN=44F4D991FF7D940059AE52575C84751CC1B39FEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e8:2c:7a:57:1f:fc:44:c0:64:87:17:85:3f:
9d:39:f7:52:bd:12:aa:47:f2:61:62:96:6e:2b:8e:
85:df:67:ea:3e:95:45:09:d3:2a:ef:bc:a7:d3:84:
28:d6:a7:af:8a:68:5c:d1:18:02:28:56:45:79:20:
6a:10:b3:a2:24:db:df:21:7f:9c:44:e3:c5:13:77:
db:0a:9f:cd:f8:20:c6:e2:11:af:bc:a9:c2:d8:b1:
44:17:f0:da:a8:65:da:22:0a:a8:f8:f2:09:a0:17:
ab:ec:fb:d7:0e:59:b4:bc:cb:38:b0:85:f5:b6:d0:
90:a7:50:71:19:eb:00:b8:7e:d6:ff:7d:ab:f4:e7:
92:95:5c:ce:33:13:47:ce:d2:c8:6e:e4:f5:2d:cb:
be:9f:ef:03:16:b4:d2:35:ac:c6:7d:7e:26:99:70:
76:2b:e0:70:c9:a8:aa:4d:3f:19:bd:78:a1:75:f3:
dc:d7:62:fc:8f:98:16:29:4c:5b:24:51:24:63:0d:
f4:1b:90:4d:d9:e5:2e:ee:81:01:db:28:ea:ee:d9:
89:68:8d:a8:8a:13:9d:9f:58:68:24:c6:0a:23:da:
c7:12:ce:e7:0c:73:8b:60:32:14:b4:8c:c1:d5:f2:
a6:f2:7d:a8:6e:18:22:ce:8c:dc:22:a6:e8:a5:d9:
ff:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:F4:D9:91:FF:7D:94:00:59:AE:52:57:5C:84:75:1C:C1:B3:9F:EF
X509v3 Authority Key Identifier:
keyid:25:E2:A4:34:94:D1:3C:6F:2A:BA:67:5D:1A:57:C4:D0:0A:10:8B:2B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/04EDDEE6B6F88EA17E6C2CD56C55F29A1937EB8745DD56F3E71B340A9FF830A6/0/25E2A43494D13C6F2ABA675D1A57C4D00A108B2B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25E2A43494D13C6F2ABA675D1A57C4D00A108B2B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/04EDDEE6B6F88EA17E6C2CD56C55F29A1937EB8745DD56F3E71B340A9FF830A6/0/3230302e3233332e34342e302f32322d3234203d3e203238303332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.233.44.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:27:12:df:55:01:3c:2a:53:1c:ee:a8:50:1f:1d:27:a4:57:
4e:7e:26:e2:fd:52:42:37:35:e5:77:f5:bc:5c:91:b6:fe:b6:
c3:7d:4a:f0:00:7e:63:50:d2:8b:5f:33:75:33:c3:8d:e6:2b:
f7:d4:c9:79:b7:02:18:5b:5c:18:e7:65:fe:d3:95:89:c9:fc:
e7:a1:52:c2:35:30:8f:f7:82:da:83:92:f5:2d:c7:14:9e:e7:
70:d6:b2:5b:2a:dc:1b:45:35:d5:f8:22:63:43:14:c3:33:af:
97:ec:8b:1c:56:74:8e:7e:c3:d4:cb:f6:b6:cb:79:a6:e5:ca:
bd:f3:b7:ca:42:50:99:11:8d:9a:d5:d0:0a:0d:17:bf:2f:72:
4f:1c:1f:32:18:df:bf:9e:6a:0d:a1:e3:19:6f:ac:a8:b5:aa:
8b:e6:39:15:2d:41:75:61:e8:26:bd:f9:87:2b:7c:f5:ec:b9:
d2:26:4e:a0:41:c0:ff:2d:f5:8a:a4:13:a7:eb:61:2a:c0:21:
fa:0e:31:16:d4:da:0f:75:56:01:df:27:62:98:fe:72:03:d6:
2c:d8:dd:4e:7d:1d:72:60:d1:3d:9e:cf:f7:28:9b:cc:d6:4d:
7b:b6:f6:6e:a9:05:5e:1d:61:b6:a3:bc:9a:95:f5:1f:17:a7:
2c:f9:ed:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 02:58:30 2025 by rpki-client