Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/07E69AF9A14E5B9738D2479D7B88732F71E255B77D7BD2CBD927126EB9322FA9/0/3137302e3233312e3234382e302f32322d3232203d3e20333937303434.roa
File: 3137302e3233312e3234382e302f32322d3232203d3e20333937303434.roa (raw, json)
Hash identifier: a7oiBE9MUOClwcoygtPnboiY+AhAHmj7aBZq+P28NtQ=
Subject key identifier: 2C:0A:7A:9E:E1:FC:A0:8B:AB:D7:6C:07:1C:AF:7B:61:6B:DF:6E:2A
Certificate issuer: /CN=139F22949A3A148A31827A973EA0FF67A3A095E8
Certificate serial: 721AAE49E97A0D372FAD43B1C74C6FBC6D8445B3
Authority key identifier: 13:9F:22:94:9A:3A:14:8A:31:82:7A:97:3E:A0:FF:67:A3:A0:95:E8
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/139F22949A3A148A31827A973EA0FF67A3A095E8.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/07E69AF9A14E5B9738D2479D7B88732F71E255B77D7BD2CBD927126EB9322FA9/0/3137302e3233312e3234382e302f32322d3232203d3e20333937303434.roa
Signing time: Tue 04 Feb 2025 19:58:18 +0000
ROA not before: Tue 04 Feb 2025 19:53:18 +0000
ROA not after: Tue 03 Feb 2026 19:58:18 +0000
asID: 397044
IP address blocks: 170.231.248.0/22 maxlen: 22
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/07E69AF9A14E5B9738D2479D7B88732F71E255B77D7BD2CBD927126EB9322FA9/0/139F22949A3A148A31827A973EA0FF67A3A095E8.crl
rsync://repository.lacnic.net/rpki/lacnic/07E69AF9A14E5B9738D2479D7B88732F71E255B77D7BD2CBD927126EB9322FA9/0/139F22949A3A148A31827A973EA0FF67A3A095E8.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/139F22949A3A148A31827A973EA0FF67A3A095E8.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
72:1a:ae:49:e9:7a:0d:37:2f:ad:43:b1:c7:4c:6f:bc:6d:84:45:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=139F22949A3A148A31827A973EA0FF67A3A095E8
Validity
Not Before: Feb 4 19:53:18 2025 GMT
Not After : Feb 3 19:58:18 2026 GMT
Subject: CN=2C0A7A9EE1FCA08BABD76C071CAF7B616BDF6E2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:59:96:ad:54:23:d4:f7:a6:bb:2f:51:cd:72:
48:f2:75:2f:02:93:7a:d9:bc:29:7a:a3:b3:01:7b:
7a:de:d1:64:c6:a0:73:8e:1c:ba:d2:06:75:c3:39:
5b:32:0f:d0:91:bf:f7:9b:0d:c1:bf:98:23:7d:e9:
de:ba:49:11:be:bf:c1:10:76:a9:bb:e6:03:15:81:
7d:59:96:22:b3:fb:c3:29:b6:52:32:fa:8c:03:25:
10:b2:93:6c:ef:3d:85:7d:84:44:8c:74:48:a5:c6:
72:f5:0e:08:11:6d:42:9d:aa:22:14:0d:ab:25:54:
03:3c:1e:ab:cc:5e:20:00:1c:f7:8f:1c:5d:f0:70:
43:ac:79:65:20:d3:4f:33:69:10:ac:5d:05:3e:e6:
ae:54:8b:2e:54:31:dc:0c:93:ac:63:ce:d7:6f:66:
de:26:ea:cf:53:a9:a3:14:27:0a:30:e3:b1:f1:37:
da:be:b0:c5:a6:0e:25:c4:ef:7a:2f:ef:30:f4:14:
70:12:f4:3f:4c:d1:3c:11:1d:ce:74:74:f3:2d:5c:
5e:c2:0e:57:34:10:a5:09:1d:0f:a0:0c:a7:88:cd:
a4:28:91:24:df:f6:4e:f3:05:84:6a:c7:05:53:60:
07:81:d1:b1:69:41:5a:59:c1:88:3f:2f:61:39:cb:
ef:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:0A:7A:9E:E1:FC:A0:8B:AB:D7:6C:07:1C:AF:7B:61:6B:DF:6E:2A
X509v3 Authority Key Identifier:
keyid:13:9F:22:94:9A:3A:14:8A:31:82:7A:97:3E:A0:FF:67:A3:A0:95:E8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/07E69AF9A14E5B9738D2479D7B88732F71E255B77D7BD2CBD927126EB9322FA9/0/139F22949A3A148A31827A973EA0FF67A3A095E8.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/139F22949A3A148A31827A973EA0FF67A3A095E8.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/07E69AF9A14E5B9738D2479D7B88732F71E255B77D7BD2CBD927126EB9322FA9/0/3137302e3233312e3234382e302f32322d3232203d3e20333937303434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.231.248.0/22
Signature Algorithm: sha256WithRSAEncryption
74:e5:5c:9d:87:81:67:47:f3:e2:53:e7:ca:c6:c8:38:5b:4f:
49:9e:da:04:bb:24:d5:9c:2c:b5:b7:19:6b:ed:52:f4:c9:72:
dc:60:ef:95:4a:40:83:26:8d:84:50:49:5d:a0:34:5e:ed:89:
cf:3e:7b:b7:66:20:f4:09:f5:15:d4:f1:d6:4b:e7:d2:00:8e:
ee:41:76:c5:92:41:69:4a:f3:ac:fd:81:9e:fa:0e:22:d7:e9:
47:ea:10:78:4f:ab:cc:37:f2:41:20:95:b5:46:c9:82:41:98:
4b:97:86:ae:aa:47:ae:b9:9e:60:ea:88:ed:52:f1:37:40:49:
c4:8b:5a:73:50:16:10:80:d6:d0:45:a9:c3:f9:33:cd:26:87:
d6:d4:a1:d7:48:1f:88:dd:75:47:2f:f5:52:dd:9c:59:e4:dd:
53:97:10:58:4b:3c:35:ca:90:04:04:f1:2a:7d:86:90:70:e8:
b5:be:71:11:ca:d7:23:2c:6a:62:f6:a8:48:e6:8c:8c:f0:98:
c8:af:ab:5f:7b:15:23:e8:c4:e9:2f:25:d0:69:44:ec:39:72:
9d:cb:48:0f:ef:f7:f9:61:29:54:62:7b:e4:f3:0d:b9:2c:aa:
52:54:4f:4e:1c:90:18:8b:35:1c:8d:15:66:94:55:b7:66:72:
ca:84:0d:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 14:44:54 2025 by rpki-client