Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/08C3EA796DE2A8DC84B989CDFA46FEA0EE10CFB8AA714F20F43D1CB010D4A2AD/0/323830333a666265303a3a2f33322d3438203d3e20323730303932.roa
File: 323830333a666265303a3a2f33322d3438203d3e20323730303932.roa (raw, json)
Hash identifier: oO7wKo0+SVqOjkWZN+0gQ07+aVmVbN4/1cQXmOBOt+E=
Subject key identifier: 0F:94:3C:B9:B8:18:8C:8A:02:EE:85:73:AD:69:EC:90:64:29:C1:FB
Certificate issuer: /CN=2B96B959C7245B9CBE8AE0F7BD6A75212CCA1589
Certificate serial: 09182F1BF9976A812C56DAA68B42DD00661F8350
Authority key identifier: 2B:96:B9:59:C7:24:5B:9C:BE:8A:E0:F7:BD:6A:75:21:2C:CA:15:89
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2B96B959C7245B9CBE8AE0F7BD6A75212CCA1589.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/08C3EA796DE2A8DC84B989CDFA46FEA0EE10CFB8AA714F20F43D1CB010D4A2AD/0/323830333a666265303a3a2f33322d3438203d3e20323730303932.roa
Signing time: Tue 04 Feb 2025 18:41:57 +0000
ROA not before: Tue 04 Feb 2025 18:36:57 +0000
ROA not after: Tue 03 Feb 2026 18:41:57 +0000
asID: 270092
IP address blocks: 2803:fbe0::/32 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/08C3EA796DE2A8DC84B989CDFA46FEA0EE10CFB8AA714F20F43D1CB010D4A2AD/0/2B96B959C7245B9CBE8AE0F7BD6A75212CCA1589.crl
rsync://repository.lacnic.net/rpki/lacnic/08C3EA796DE2A8DC84B989CDFA46FEA0EE10CFB8AA714F20F43D1CB010D4A2AD/0/2B96B959C7245B9CBE8AE0F7BD6A75212CCA1589.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2B96B959C7245B9CBE8AE0F7BD6A75212CCA1589.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 13:18:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:18:2f:1b:f9:97:6a:81:2c:56:da:a6:8b:42:dd:00:66:1f:83:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2B96B959C7245B9CBE8AE0F7BD6A75212CCA1589
Validity
Not Before: Feb 4 18:36:57 2025 GMT
Not After : Feb 3 18:41:57 2026 GMT
Subject: CN=0F943CB9B8188C8A02EE8573AD69EC906429C1FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:7a:17:7c:bd:5b:2e:28:1e:d0:9b:96:f6:c4:
c6:c4:60:44:42:14:1e:25:8c:05:64:42:a9:be:19:
15:a9:45:5e:cd:ff:b5:f0:89:1c:45:9e:6a:2c:31:
8f:e7:a4:ca:35:67:bd:c2:d4:eb:36:22:1a:42:87:
d6:65:a4:6c:18:96:0b:15:fd:c4:5b:cc:75:4e:5b:
4f:f7:a0:8d:33:8a:3e:ef:91:0b:8c:b4:81:2e:fd:
d9:c2:33:4c:09:a6:6d:a8:61:b3:20:d8:88:2e:90:
e1:4a:5b:b1:8a:cf:8e:71:c9:25:89:22:e0:f2:ac:
59:14:80:54:af:a8:73:23:d4:0a:2e:17:42:70:0d:
2e:34:7c:69:0f:7b:6b:56:ce:25:12:b8:39:2c:c3:
c2:b9:a9:4d:a1:e4:ca:0e:b3:ed:5a:fc:99:db:fa:
21:56:29:43:7b:1d:60:d8:21:97:2e:fc:5c:21:16:
3d:f3:7a:d1:be:03:62:3f:cf:2a:79:7a:9d:b0:36:
d0:7d:4a:f2:b5:f3:19:80:c1:40:3e:05:85:1f:8e:
96:2c:45:f3:0c:d8:1b:e6:41:5e:7e:62:91:5b:22:
8a:39:90:0d:bf:8c:5a:57:50:da:32:48:d0:30:1e:
b5:ea:b9:31:f0:78:b2:c9:a0:29:58:54:bd:ab:79:
17:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:94:3C:B9:B8:18:8C:8A:02:EE:85:73:AD:69:EC:90:64:29:C1:FB
X509v3 Authority Key Identifier:
keyid:2B:96:B9:59:C7:24:5B:9C:BE:8A:E0:F7:BD:6A:75:21:2C:CA:15:89
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/08C3EA796DE2A8DC84B989CDFA46FEA0EE10CFB8AA714F20F43D1CB010D4A2AD/0/2B96B959C7245B9CBE8AE0F7BD6A75212CCA1589.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2B96B959C7245B9CBE8AE0F7BD6A75212CCA1589.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/08C3EA796DE2A8DC84B989CDFA46FEA0EE10CFB8AA714F20F43D1CB010D4A2AD/0/323830333a666265303a3a2f33322d3438203d3e20323730303932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:fbe0::/32
Signature Algorithm: sha256WithRSAEncryption
52:a9:4d:c5:74:dd:32:e2:ad:7b:28:a4:a6:8e:1e:18:eb:0d:
e5:ad:37:ab:16:b1:63:ce:c5:5c:35:43:0a:06:a2:31:bf:48:
18:6d:9c:f8:f0:a8:f7:3b:19:6c:ab:ce:65:1b:2a:c5:4e:a2:
43:55:d9:7a:a0:95:cb:2a:c5:f9:b4:08:5d:4f:22:8a:84:72:
4b:d5:76:d7:3a:f5:67:4c:29:d2:e8:3f:4e:42:78:29:de:b0:
1d:6d:99:ec:11:88:e6:a1:68:b4:0d:df:18:91:a0:2d:d5:fe:
1b:0a:29:aa:d0:58:1b:df:27:99:ab:17:5a:05:c1:44:2f:46:
74:6c:34:fe:11:b1:55:00:0f:bf:9d:6b:3d:af:bc:f9:a4:5c:
5d:b0:29:97:ba:6b:0b:2b:e9:21:39:2b:4d:a6:f7:5c:81:cc:
a6:3d:62:80:6b:5a:2b:8b:56:ce:6f:6c:05:f6:72:61:63:74:
74:49:95:ef:b5:0b:8b:3c:ab:c2:b2:a0:ae:69:d2:73:13:c8:
10:68:31:3d:51:f9:23:c8:b3:72:64:9f:8d:c4:be:dc:e1:41:
60:76:e4:98:6e:5e:93:34:47:d8:5b:ab:f3:9b:38:54:32:18:
7c:a2:ff:6c:6d:ab:28:8d:c3:5d:9d:02:ff:99:e5:91:50:26:
7a:2f:62:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 04:06:15 2025 by rpki-client