Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/07D0AD335E61C788F1CFF1422E994CD61DBBB16D1B22DC8EECAA6875470393D3/0/3133382e39342e3134302e302f32322d3234203d3e203238333937.roa
File: 3133382e39342e3134302e302f32322d3234203d3e203238333937.roa (raw, json)
Hash identifier: lW+7bNz3bPxOR6Ab4glzIXonjg0zzwz2+d9lFtplHFg=
Subject key identifier: CE:E3:B4:F3:8D:FA:AA:FC:EC:5E:C4:66:A7:CF:2D:AE:A3:1C:51:77
Certificate issuer: /CN=854635177B013A723EEB20E0A79AEBE128081C13
Certificate serial: 5880CB4CE537EBB86B688D0AB48C37A8BC5CDBDA
Authority key identifier: 85:46:35:17:7B:01:3A:72:3E:EB:20:E0:A7:9A:EB:E1:28:08:1C:13
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/854635177B013A723EEB20E0A79AEBE128081C13.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/07D0AD335E61C788F1CFF1422E994CD61DBBB16D1B22DC8EECAA6875470393D3/0/3133382e39342e3134302e302f32322d3234203d3e203238333937.roa
Signing time: Tue 04 Feb 2025 18:40:17 +0000
ROA not before: Tue 04 Feb 2025 18:35:17 +0000
ROA not after: Tue 03 Feb 2026 18:40:17 +0000
asID: 28397
IP address blocks: 138.94.140.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/07D0AD335E61C788F1CFF1422E994CD61DBBB16D1B22DC8EECAA6875470393D3/0/854635177B013A723EEB20E0A79AEBE128081C13.crl
rsync://repository.lacnic.net/rpki/lacnic/07D0AD335E61C788F1CFF1422E994CD61DBBB16D1B22DC8EECAA6875470393D3/0/854635177B013A723EEB20E0A79AEBE128081C13.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/854635177B013A723EEB20E0A79AEBE128081C13.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
58:80:cb:4c:e5:37:eb:b8:6b:68:8d:0a:b4:8c:37:a8:bc:5c:db:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854635177B013A723EEB20E0A79AEBE128081C13
Validity
Not Before: Feb 4 18:35:17 2025 GMT
Not After : Feb 3 18:40:17 2026 GMT
Subject: CN=CEE3B4F38DFAAAFCEC5EC466A7CF2DAEA31C5177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:84:73:cb:32:da:52:e7:7d:21:51:92:c5:9e:
2b:d4:c4:63:4e:e3:b5:2d:95:dd:94:5a:72:c4:78:
aa:c6:69:24:ff:2c:88:de:66:f9:13:00:4e:5b:db:
de:10:50:e1:09:a4:c8:b0:d5:d4:36:fc:69:d7:79:
23:e3:e1:a7:ff:2d:76:c8:97:05:0a:de:16:6e:a7:
38:29:86:13:ae:4b:0d:2e:6d:d2:d5:78:ea:76:45:
fe:a0:9d:1e:5a:6e:7a:7b:aa:d8:37:ef:5f:30:c9:
d2:b4:b9:50:17:f5:ae:f7:f5:a3:4d:09:e1:0a:38:
b8:ed:0c:de:a4:57:c2:94:01:12:ef:b0:eb:d3:ec:
e8:13:a8:8b:1b:4f:60:e7:e1:2b:cc:4f:f2:ee:9d:
4c:38:89:8d:cb:21:66:4d:4d:82:7d:f0:85:00:da:
90:59:0f:2f:26:7e:d3:7b:d3:ac:40:46:e5:f5:09:
f6:ba:e7:a1:b6:df:e1:2e:b0:f3:0d:1d:85:28:e4:
d2:f1:6a:15:fc:54:12:7b:07:a7:f4:2b:ad:67:d6:
d1:d4:bb:f1:24:ee:65:22:a1:49:f1:35:40:90:65:
04:e5:83:f5:89:af:2d:d6:1a:62:8d:46:12:89:4f:
52:e0:03:85:c5:d1:16:0d:96:2a:b5:a0:35:44:ef:
8d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:E3:B4:F3:8D:FA:AA:FC:EC:5E:C4:66:A7:CF:2D:AE:A3:1C:51:77
X509v3 Authority Key Identifier:
keyid:85:46:35:17:7B:01:3A:72:3E:EB:20:E0:A7:9A:EB:E1:28:08:1C:13
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/07D0AD335E61C788F1CFF1422E994CD61DBBB16D1B22DC8EECAA6875470393D3/0/854635177B013A723EEB20E0A79AEBE128081C13.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/854635177B013A723EEB20E0A79AEBE128081C13.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/07D0AD335E61C788F1CFF1422E994CD61DBBB16D1B22DC8EECAA6875470393D3/0/3133382e39342e3134302e302f32322d3234203d3e203238333937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.94.140.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:48:84:04:00:56:6e:9d:ef:72:67:77:34:d1:1f:08:d9:92:
f0:ec:91:8c:28:f5:cb:b8:f7:9d:25:98:3c:b6:50:49:67:27:
dd:1f:83:6d:91:7d:20:3c:2a:66:0b:93:de:ec:ca:bc:d2:cb:
95:8c:84:44:f0:71:da:21:f1:58:f2:6e:bf:c0:1e:90:c2:98:
fc:50:61:fb:87:24:45:88:cc:af:18:3b:4f:52:ba:f9:f6:10:
f5:9e:3e:88:8a:3b:b5:d3:22:79:f9:ec:46:19:ee:95:f1:3d:
8d:79:4a:1c:33:c5:c7:e2:b3:6d:45:0b:15:81:47:d3:0b:fe:
7f:d9:9b:61:e8:65:26:2e:ec:38:20:7b:d5:04:01:34:a6:c1:
4c:00:88:20:93:d8:ec:c5:9e:b4:86:0d:f8:a8:a0:08:00:ec:
7c:29:64:59:85:4b:c5:29:27:8c:55:6d:42:5c:bd:ed:05:fd:
3f:8b:b6:f5:44:a3:b5:6c:9c:6a:06:30:9d:6f:02:94:b7:03:
ce:ae:61:41:ae:da:cf:f4:e3:fb:8b:ee:2b:af:ce:ea:c6:98:
a6:d9:04:10:fa:63:62:36:98:94:83:83:70:31:35:e9:51:ac:
27:ee:0d:fc:f9:04:50:98:22:3e:c8:03:08:47:0a:f3:f5:58:
3a:a8:78:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 12:52:19 2025 by rpki-client