Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/085BDDDF5F7A9600FE9C41871A2EB67C1F6DA1BE7DFA6E71EE3A62128E734133/0/3139302e3132312e3234322e302f32332d3234203d3e203630303232.roa
File: 3139302e3132312e3234322e302f32332d3234203d3e203630303232.roa (raw, json)
Hash identifier: DD5kBQzxSg++qn3FGVsIDOL37lxQmvlYgEPH02NGv5w=
Subject key identifier: 98:33:0D:E2:10:88:C5:A3:42:2E:62:F5:5C:76:81:4B:FB:7D:CF:A1
Certificate issuer: /CN=32DACDC930712AC6C14A51E11EE334A3F6C82286
Certificate serial: 1FDB2F62E714D8A7DD4E237183DF418CB9676101
Authority key identifier: 32:DA:CD:C9:30:71:2A:C6:C1:4A:51:E1:1E:E3:34:A3:F6:C8:22:86
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/32DACDC930712AC6C14A51E11EE334A3F6C82286.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/085BDDDF5F7A9600FE9C41871A2EB67C1F6DA1BE7DFA6E71EE3A62128E734133/0/3139302e3132312e3234322e302f32332d3234203d3e203630303232.roa
Signing time: Tue 04 Feb 2025 18:27:24 +0000
ROA not before: Tue 04 Feb 2025 18:22:24 +0000
ROA not after: Tue 03 Feb 2026 18:27:24 +0000
asID: 60022
IP address blocks: 190.121.242.0/23 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/085BDDDF5F7A9600FE9C41871A2EB67C1F6DA1BE7DFA6E71EE3A62128E734133/0/32DACDC930712AC6C14A51E11EE334A3F6C82286.crl
rsync://repository.lacnic.net/rpki/lacnic/085BDDDF5F7A9600FE9C41871A2EB67C1F6DA1BE7DFA6E71EE3A62128E734133/0/32DACDC930712AC6C14A51E11EE334A3F6C82286.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/32DACDC930712AC6C14A51E11EE334A3F6C82286.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 05:03:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1f:db:2f:62:e7:14:d8:a7:dd:4e:23:71:83:df:41:8c:b9:67:61:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32DACDC930712AC6C14A51E11EE334A3F6C82286
Validity
Not Before: Feb 4 18:22:24 2025 GMT
Not After : Feb 3 18:27:24 2026 GMT
Subject: CN=98330DE21088C5A3422E62F55C76814BFB7DCFA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:b3:61:b6:f5:63:a2:24:7d:c3:57:9c:af:0c:
35:eb:19:d2:0b:a4:ee:56:4f:c0:a9:57:31:8a:db:
ce:d3:1c:e3:e6:8a:06:0c:28:fd:e3:5c:c7:c7:5f:
ef:d6:5f:b2:36:70:b4:50:ff:76:e5:59:ae:72:b0:
a3:3c:1c:65:b0:bf:8c:42:df:92:f6:c0:7d:ea:df:
50:94:16:de:a7:11:87:6d:87:e6:70:34:86:e9:48:
b1:f1:b2:2b:1c:83:a8:85:bb:7c:bc:f2:a9:1f:83:
44:f0:72:6d:8e:b4:24:1e:3b:a8:6e:27:5a:0b:ee:
ff:c6:cc:c0:a8:c3:db:0e:52:12:f3:57:7b:4f:2e:
2b:09:4b:f3:0d:14:16:ec:27:af:f8:74:2e:39:ca:
dc:70:5d:07:f1:49:69:28:b1:30:f0:68:db:d8:6c:
db:58:6c:0b:76:6d:26:cd:04:20:d4:21:f8:59:94:
e8:80:5b:ec:d6:20:76:bf:2e:cf:47:d4:b1:42:27:
cf:8f:7a:f8:e6:78:06:79:d4:b1:94:58:16:f7:20:
f5:63:78:9f:02:f1:38:51:28:f4:34:30:53:a7:8b:
9b:c4:e2:ce:cf:fb:b7:d6:b4:fc:05:24:ad:5e:21:
08:68:e4:41:b7:21:fb:b4:21:a2:97:f6:e7:1f:21:
2e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:33:0D:E2:10:88:C5:A3:42:2E:62:F5:5C:76:81:4B:FB:7D:CF:A1
X509v3 Authority Key Identifier:
keyid:32:DA:CD:C9:30:71:2A:C6:C1:4A:51:E1:1E:E3:34:A3:F6:C8:22:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/085BDDDF5F7A9600FE9C41871A2EB67C1F6DA1BE7DFA6E71EE3A62128E734133/0/32DACDC930712AC6C14A51E11EE334A3F6C82286.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/32DACDC930712AC6C14A51E11EE334A3F6C82286.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/085BDDDF5F7A9600FE9C41871A2EB67C1F6DA1BE7DFA6E71EE3A62128E734133/0/3139302e3132312e3234322e302f32332d3234203d3e203630303232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.121.242.0/23
Signature Algorithm: sha256WithRSAEncryption
28:52:5b:99:db:0e:e1:07:33:89:cc:4f:c0:b0:31:63:0b:f1:
65:c9:3b:cd:f6:bf:eb:1b:b3:81:98:5f:f1:ad:d5:e1:a2:e5:
37:89:70:cd:0c:77:c8:02:2f:fc:4b:26:4f:9c:00:2c:3a:9b:
21:3d:ad:99:d2:2e:69:ec:c9:af:c6:4b:b8:77:e1:0d:05:b0:
08:95:05:b4:61:9f:aa:b3:ea:b9:aa:22:6e:83:cc:a2:72:dc:
47:67:ba:06:15:88:17:2a:d3:a0:4d:28:2c:af:fd:30:a9:e8:
e1:0e:e9:80:6f:f9:d0:8a:79:16:4d:fd:cd:c6:64:e3:38:10:
7e:e2:f9:9a:f6:12:be:6e:c8:63:f5:40:21:ff:d4:9d:c0:fb:
2d:8a:04:1e:f3:75:f5:ee:fd:d9:f2:52:f9:de:0e:95:b0:b1:
e7:c1:f8:b5:3d:b6:00:d4:e2:d4:ff:94:4d:30:5f:c4:dd:09:
7f:0f:49:3e:30:74:3f:b6:d0:2a:bb:d5:e7:2e:0b:f5:21:9f:
4c:4e:d0:8a:48:67:e5:cd:de:d6:6a:5a:f2:0c:21:fa:b5:ab:
ea:e3:c8:07:76:9b:0f:0e:28:48:c0:74:c4:aa:8c:6d:a2:9e:
d6:da:0a:22:b0:00:8c:0a:fe:03:2e:c0:fe:10:0a:37:df:d0:
1c:e1:54:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 05:53:08 2025 by rpki-client