Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/07031B138BCD42121ACEF5EB2D60F1E4E467BDF55355C269F94C650F4F597F50/0/3136372e3235302e3131322e302f32322d3234203d3e203532333336.roa
File: 3136372e3235302e3131322e302f32322d3234203d3e203532333336.roa (raw, json)
Hash identifier: /v8EiWJCUOpCy6pOkdRwjvuIUkrVO+StMSyDsUSbq0g=
Subject key identifier: 2B:E5:A3:27:84:1D:87:FE:AE:4B:74:9C:D9:38:6F:57:22:44:10:2D
Certificate issuer: /CN=2FCA9EF36FD988A173F6DE2A363AB29540E686A6
Certificate serial: 39A2E91E892C198230FDA7EC88A39C87E1204E6A
Authority key identifier: 2F:CA:9E:F3:6F:D9:88:A1:73:F6:DE:2A:36:3A:B2:95:40:E6:86:A6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2FCA9EF36FD988A173F6DE2A363AB29540E686A6.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/07031B138BCD42121ACEF5EB2D60F1E4E467BDF55355C269F94C650F4F597F50/0/3136372e3235302e3131322e302f32322d3234203d3e203532333336.roa
Signing time: Tue 04 Feb 2025 20:03:16 +0000
ROA not before: Tue 04 Feb 2025 19:58:16 +0000
ROA not after: Tue 03 Feb 2026 20:03:16 +0000
asID: 52336
IP address blocks: 167.250.112.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/07031B138BCD42121ACEF5EB2D60F1E4E467BDF55355C269F94C650F4F597F50/0/2FCA9EF36FD988A173F6DE2A363AB29540E686A6.crl
rsync://repository.lacnic.net/rpki/lacnic/07031B138BCD42121ACEF5EB2D60F1E4E467BDF55355C269F94C650F4F597F50/0/2FCA9EF36FD988A173F6DE2A363AB29540E686A6.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2FCA9EF36FD988A173F6DE2A363AB29540E686A6.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 21:57:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:a2:e9:1e:89:2c:19:82:30:fd:a7:ec:88:a3:9c:87:e1:20:4e:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2FCA9EF36FD988A173F6DE2A363AB29540E686A6
Validity
Not Before: Feb 4 19:58:16 2025 GMT
Not After : Feb 3 20:03:16 2026 GMT
Subject: CN=2BE5A327841D87FEAE4B749CD9386F572244102D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:36:50:8b:6b:63:1f:39:6d:b0:48:60:c2:64:
98:6c:88:28:bd:75:8f:e2:7a:58:f5:3e:8d:6b:b5:
69:49:ad:22:f1:92:99:f2:5f:51:8f:05:d5:01:84:
ae:98:82:60:5a:23:a7:e7:89:d0:5e:8d:0b:09:85:
30:b8:bf:7e:ba:c5:7d:e6:77:29:b7:75:2c:29:b0:
5a:c3:f7:cb:0f:51:14:f8:b1:86:4a:05:b6:a4:66:
03:75:f0:25:16:4e:3a:d3:cc:8c:32:8d:f1:f6:74:
93:33:a9:38:df:91:81:4c:bd:9d:3a:c7:50:31:02:
e7:6a:88:d9:26:7d:bf:01:c5:8a:a8:fc:20:70:ea:
d9:8c:cb:94:38:60:1d:04:58:53:de:9b:f8:47:d7:
58:a9:ac:a4:38:23:86:71:e8:f4:db:1c:bb:51:ad:
08:70:53:73:2d:66:09:f8:cc:2f:5c:35:49:7b:67:
29:e7:df:18:88:45:f1:c0:81:8c:a6:8c:bb:d1:32:
d5:68:76:88:89:d6:ad:7b:98:79:c2:cd:a4:1a:c6:
fb:02:00:01:df:7d:b2:d8:15:88:be:0a:63:c2:5c:
c1:d1:fa:45:b4:6d:e4:14:bf:44:c1:e2:30:b0:d0:
44:c5:07:42:1d:3a:f5:ad:7b:92:09:7a:03:35:99:
33:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:E5:A3:27:84:1D:87:FE:AE:4B:74:9C:D9:38:6F:57:22:44:10:2D
X509v3 Authority Key Identifier:
keyid:2F:CA:9E:F3:6F:D9:88:A1:73:F6:DE:2A:36:3A:B2:95:40:E6:86:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/07031B138BCD42121ACEF5EB2D60F1E4E467BDF55355C269F94C650F4F597F50/0/2FCA9EF36FD988A173F6DE2A363AB29540E686A6.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2FCA9EF36FD988A173F6DE2A363AB29540E686A6.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/07031B138BCD42121ACEF5EB2D60F1E4E467BDF55355C269F94C650F4F597F50/0/3136372e3235302e3131322e302f32322d3234203d3e203532333336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.250.112.0/22
Signature Algorithm: sha256WithRSAEncryption
40:72:be:ab:4f:0b:59:40:dc:b1:53:ba:b8:5f:db:ab:07:a6:
75:59:e0:84:5c:0b:26:24:bc:a0:db:05:5d:7f:83:78:30:ac:
9b:b3:7e:99:63:62:78:f4:b3:7a:40:9a:63:0b:a5:a0:cc:84:
ed:fd:fa:95:81:d0:28:1a:d9:1c:8e:1c:fc:b3:fd:7c:ec:39:
5e:8e:42:24:0d:0e:50:c0:18:04:9b:e0:68:9b:00:fa:da:3f:
15:d4:dd:d3:5a:7f:b5:ba:9d:eb:c7:05:d5:8c:c2:1b:6b:cd:
7d:5d:c8:89:21:00:2d:83:b6:38:fc:cf:6f:bc:bb:55:68:40:
69:d1:09:3c:d4:79:ca:4d:d6:dc:f5:ba:71:8a:bf:bc:c1:0e:
61:93:33:93:3a:13:d0:1f:0c:a7:b5:90:67:bc:79:ac:62:e8:
fb:be:4d:2a:66:db:b2:47:7c:58:63:9b:38:71:10:0a:a4:a7:
10:4d:2d:90:c8:18:a4:42:52:fe:af:1b:86:11:7a:a6:02:92:
1f:73:02:e5:db:61:fd:e8:a2:17:36:71:da:3f:2a:80:80:fc:
09:63:a6:54:a4:cb:b5:da:97:c6:4c:73:1d:85:7f:10:87:fa:
3c:d3:fe:98:27:c6:b2:7b:de:f1:81:1e:cb:42:1d:1d:b3:df:
c0:90:a9:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 10:28:49 2025 by rpki-client