Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/085BDDDF5F7A9600FE9C41871A2EB67C1F6DA1BE7DFA6E71EE3A62128E734133/0/3139302e3132312e3234382e302f32312d3234203d3e203630303232.roa
File: 3139302e3132312e3234382e302f32312d3234203d3e203630303232.roa (raw, json)
Hash identifier: JXkWKWPqE0MJbsNJCNydOv6jsX/npxI37rWNEgS8vUs=
Subject key identifier: B3:AD:B6:66:71:EA:CB:FB:1A:DC:10:53:84:25:00:3B:96:50:11:7E
Certificate issuer: /CN=32DACDC930712AC6C14A51E11EE334A3F6C82286
Certificate serial: 243E9FCF59B900AE8DA7794687041EE17D6AD51C
Authority key identifier: 32:DA:CD:C9:30:71:2A:C6:C1:4A:51:E1:1E:E3:34:A3:F6:C8:22:86
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/32DACDC930712AC6C14A51E11EE334A3F6C82286.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/085BDDDF5F7A9600FE9C41871A2EB67C1F6DA1BE7DFA6E71EE3A62128E734133/0/3139302e3132312e3234382e302f32312d3234203d3e203630303232.roa
Signing time: Tue 04 Feb 2025 18:27:24 +0000
ROA not before: Tue 04 Feb 2025 18:22:24 +0000
ROA not after: Tue 03 Feb 2026 18:27:24 +0000
asID: 60022
IP address blocks: 190.121.248.0/21 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/085BDDDF5F7A9600FE9C41871A2EB67C1F6DA1BE7DFA6E71EE3A62128E734133/0/32DACDC930712AC6C14A51E11EE334A3F6C82286.crl
rsync://repository.lacnic.net/rpki/lacnic/085BDDDF5F7A9600FE9C41871A2EB67C1F6DA1BE7DFA6E71EE3A62128E734133/0/32DACDC930712AC6C14A51E11EE334A3F6C82286.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/32DACDC930712AC6C14A51E11EE334A3F6C82286.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 05:03:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:3e:9f:cf:59:b9:00:ae:8d:a7:79:46:87:04:1e:e1:7d:6a:d5:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32DACDC930712AC6C14A51E11EE334A3F6C82286
Validity
Not Before: Feb 4 18:22:24 2025 GMT
Not After : Feb 3 18:27:24 2026 GMT
Subject: CN=B3ADB66671EACBFB1ADC10538425003B9650117E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:43:7a:a1:98:c6:7d:74:f4:1a:17:17:d7:fb:
98:d0:76:99:b9:ac:df:66:c9:0b:40:b4:ec:f8:bf:
9b:81:0a:c5:54:1e:e3:d8:00:4b:aa:5a:9e:16:09:
60:e7:a3:5d:1e:fa:ad:77:b8:a7:06:b4:50:04:60:
1a:a8:44:41:18:d9:3b:cb:a5:51:7c:1a:fa:54:bd:
87:dc:9f:71:e5:f9:3b:97:4c:96:48:98:c3:fa:03:
c9:8f:8c:88:42:43:c2:91:8e:67:f3:f1:c2:d7:3e:
81:74:90:fc:3c:e9:8b:b4:2d:13:85:1e:25:02:3c:
ab:bd:03:0f:cc:7e:d0:03:90:11:ca:34:8d:dc:89:
60:9c:92:57:fe:cb:70:a5:25:2a:54:7f:c1:94:38:
dc:16:00:01:cf:3f:ba:f7:36:b5:a7:2f:dd:2a:21:
33:83:8a:30:6a:33:0f:e2:ce:bc:c5:23:69:50:39:
c6:4d:d5:3a:7b:81:f4:d0:d7:72:2a:86:36:33:37:
5d:e9:fd:80:d9:38:cd:88:1b:fb:6a:de:f2:ab:1c:
71:59:5c:6d:3f:ff:95:72:11:18:e1:8e:d6:ac:34:
c1:3a:cf:5c:bb:10:88:ca:86:39:59:c3:9d:70:39:
bf:a1:c5:8f:82:3e:5f:1a:1c:a5:9b:7f:a5:1e:2c:
48:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:AD:B6:66:71:EA:CB:FB:1A:DC:10:53:84:25:00:3B:96:50:11:7E
X509v3 Authority Key Identifier:
keyid:32:DA:CD:C9:30:71:2A:C6:C1:4A:51:E1:1E:E3:34:A3:F6:C8:22:86
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/085BDDDF5F7A9600FE9C41871A2EB67C1F6DA1BE7DFA6E71EE3A62128E734133/0/32DACDC930712AC6C14A51E11EE334A3F6C82286.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/32DACDC930712AC6C14A51E11EE334A3F6C82286.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/085BDDDF5F7A9600FE9C41871A2EB67C1F6DA1BE7DFA6E71EE3A62128E734133/0/3139302e3132312e3234382e302f32312d3234203d3e203630303232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.121.248.0/21
Signature Algorithm: sha256WithRSAEncryption
4d:90:4f:74:a8:f1:c9:92:3b:05:ca:9a:b0:2c:3e:5d:2c:f4:
72:ec:b5:43:e1:b7:98:b5:c1:11:78:05:74:90:22:62:0a:cb:
d2:c7:9d:c2:25:7f:0d:84:96:97:76:0d:d0:53:66:1c:d4:72:
bf:cf:c3:fb:b8:49:46:a3:6f:2a:90:3a:a8:c2:93:80:75:f7:
b5:48:43:d8:1e:b4:99:46:7c:8f:6e:15:fd:cb:60:8e:bb:26:
45:c3:f8:44:02:b6:6b:ef:52:e0:85:ad:91:50:a9:3f:b8:27:
6b:c8:1e:9a:2d:7d:f6:44:ba:13:89:82:1b:d7:8a:17:ad:fd:
50:e1:29:c6:4e:01:1e:22:12:f8:51:bb:83:05:1b:99:2f:18:
b0:a5:0b:9a:79:0b:16:0a:d2:c4:8d:62:1a:f1:6d:da:c6:a3:
f9:9f:1e:54:59:4a:86:f7:f7:3a:b7:d4:7b:d4:ae:74:72:08:
37:df:1b:60:50:e6:ec:58:27:c1:4c:d4:f3:54:17:77:b9:f6:
1a:b6:c0:14:6f:1b:1f:b3:2f:92:66:25:64:13:95:4c:a4:63:
d3:54:ab:66:9e:cc:46:71:b2:a9:ed:50:3a:ad:41:f5:6a:63:
51:78:91:f3:0e:81:4e:02:9b:31:cb:cb:f0:75:9d:40:1a:22:
c7:e0:f5:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 06:22:41 2025 by rpki-client