Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/07031B138BCD42121ACEF5EB2D60F1E4E467BDF55355C269F94C650F4F597F50/0/3136372e3235302e3131322e302f32322d3234203d3e203532343638.roa
File: 3136372e3235302e3131322e302f32322d3234203d3e203532343638.roa (raw, json)
Hash identifier: YprOblxCxUS7/mbNbKefsagQOueMT2K+OTf73JW8b0Q=
Subject key identifier: E7:5A:2B:D3:E9:6B:13:BF:C9:99:1E:26:20:8D:D9:D9:96:28:56:D9
Certificate issuer: /CN=2FCA9EF36FD988A173F6DE2A363AB29540E686A6
Certificate serial: 71398EF57FDD7AE5022F5F12990211A7DD8E113E
Authority key identifier: 2F:CA:9E:F3:6F:D9:88:A1:73:F6:DE:2A:36:3A:B2:95:40:E6:86:A6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2FCA9EF36FD988A173F6DE2A363AB29540E686A6.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/07031B138BCD42121ACEF5EB2D60F1E4E467BDF55355C269F94C650F4F597F50/0/3136372e3235302e3131322e302f32322d3234203d3e203532343638.roa
Signing time: Tue 04 Feb 2025 20:03:17 +0000
ROA not before: Tue 04 Feb 2025 19:58:17 +0000
ROA not after: Tue 03 Feb 2026 20:03:17 +0000
asID: 52468
IP address blocks: 167.250.112.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/07031B138BCD42121ACEF5EB2D60F1E4E467BDF55355C269F94C650F4F597F50/0/2FCA9EF36FD988A173F6DE2A363AB29540E686A6.crl
rsync://repository.lacnic.net/rpki/lacnic/07031B138BCD42121ACEF5EB2D60F1E4E467BDF55355C269F94C650F4F597F50/0/2FCA9EF36FD988A173F6DE2A363AB29540E686A6.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2FCA9EF36FD988A173F6DE2A363AB29540E686A6.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 21:57:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:39:8e:f5:7f:dd:7a:e5:02:2f:5f:12:99:02:11:a7:dd:8e:11:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2FCA9EF36FD988A173F6DE2A363AB29540E686A6
Validity
Not Before: Feb 4 19:58:17 2025 GMT
Not After : Feb 3 20:03:17 2026 GMT
Subject: CN=E75A2BD3E96B13BFC9991E26208DD9D9962856D9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f6:be:c2:3b:a0:2e:a6:0f:2d:96:f4:4f:f4:
a2:41:a8:de:a3:a0:5c:79:50:6a:df:a0:14:de:38:
d5:7a:c1:72:96:4b:bf:98:eb:3f:3f:18:b4:7d:a7:
64:78:f3:cf:49:3c:fc:f9:9a:63:89:7f:50:8c:cc:
42:ae:13:c9:cf:d2:d4:b8:02:9b:a4:64:66:26:87:
2e:4b:65:49:74:a1:18:02:f0:e1:c6:73:ba:95:af:
d6:e4:98:3b:68:9d:67:92:31:96:73:fc:ad:51:2e:
c0:e9:e4:bc:b6:2e:fe:d4:f5:ac:b2:3c:02:a8:a3:
47:37:71:1b:95:93:d4:fe:bf:ce:33:d0:b9:41:3a:
ea:98:9a:46:d8:23:35:ac:48:7c:b6:57:34:0b:c5:
08:91:da:47:24:f0:fa:01:e6:a9:3c:2f:54:0c:13:
ee:57:66:b5:23:89:6d:ea:b1:3e:22:60:da:c5:78:
a8:05:cb:0b:bf:f6:06:ec:17:cc:f3:88:bc:ae:bf:
51:83:37:8a:f7:e2:41:ed:ca:9f:8d:0d:62:d4:80:
f0:1b:75:c4:d8:5e:b2:c1:26:8d:6b:bd:b9:ae:f9:
d9:02:63:58:d2:98:6a:45:cc:90:4f:96:24:69:fb:
46:9d:4e:c9:dc:e2:9e:a7:f8:e0:99:9b:9c:8b:4b:
6b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:5A:2B:D3:E9:6B:13:BF:C9:99:1E:26:20:8D:D9:D9:96:28:56:D9
X509v3 Authority Key Identifier:
keyid:2F:CA:9E:F3:6F:D9:88:A1:73:F6:DE:2A:36:3A:B2:95:40:E6:86:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/07031B138BCD42121ACEF5EB2D60F1E4E467BDF55355C269F94C650F4F597F50/0/2FCA9EF36FD988A173F6DE2A363AB29540E686A6.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2FCA9EF36FD988A173F6DE2A363AB29540E686A6.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/07031B138BCD42121ACEF5EB2D60F1E4E467BDF55355C269F94C650F4F597F50/0/3136372e3235302e3131322e302f32322d3234203d3e203532343638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.250.112.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:1b:62:97:07:6f:d7:fa:46:c8:5e:50:e3:0d:4f:69:10:f6:
44:70:dc:c1:bb:7e:86:8b:40:f3:12:1c:2d:e6:11:ec:ff:84:
85:2a:56:76:10:a2:30:98:f0:d0:e5:f5:d3:b0:3a:2a:dd:9a:
19:51:6a:e8:a1:c7:8b:b6:59:bb:83:f6:9a:c3:14:44:ea:c6:
be:18:b3:f8:64:2f:8c:4c:57:f7:e6:6b:1a:a7:01:81:62:a0:
32:38:b4:73:a6:28:4a:34:fe:e3:d5:4f:bb:49:65:9f:a1:1b:
1f:02:87:b5:5b:8c:56:23:eb:17:25:7f:fe:66:a8:93:64:34:
bc:04:8d:e6:99:c4:60:0f:24:1b:d4:e2:f9:6d:2e:ad:83:dd:
64:51:82:4c:21:7a:8c:a5:13:60:87:fb:48:90:eb:1d:c1:70:
26:19:bd:38:7f:00:b1:68:de:41:79:70:99:43:ee:34:e2:ef:
d3:26:83:5a:31:74:d5:94:3b:fa:12:12:f6:81:4c:8b:11:c2:
fc:5b:e6:4f:1a:e8:33:84:72:55:b8:0d:44:e9:15:a9:5b:93:
7b:19:99:8d:bf:a8:86:86:ad:d9:3a:ee:db:a0:08:d6:45:45:
68:30:6f:81:54:b3:63:65:7e:09:bf:1e:0e:1f:42:ba:b5:9e:
c6:dd:a3:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 13:29:39 2025 by rpki-client