Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0ACD83F65B3C2985BFC1981F2F5786B16670160A035E7992C8B5BFE15FA23832/0/3230302e312e3135362e302f32322d3234203d3e203237373735.roa
File: 3230302e312e3135362e302f32322d3234203d3e203237373735.roa (raw, json)
Hash identifier: 0yqX13VSG3ywVUumV44Q6UKejXSODRl7IuFSqIzUlaU=
Subject key identifier: 03:45:6A:F5:CB:80:9C:6D:9F:61:CB:5A:4C:BE:65:11:71:84:75:26
Certificate issuer: /CN=E448655A46C905154A46DF19D5CADDB20B5D1153
Certificate serial: 22908C32A93CDDD36941A1B081339471D8DDB3A9
Authority key identifier: E4:48:65:5A:46:C9:05:15:4A:46:DF:19:D5:CA:DD:B2:0B:5D:11:53
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E448655A46C905154A46DF19D5CADDB20B5D1153.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0ACD83F65B3C2985BFC1981F2F5786B16670160A035E7992C8B5BFE15FA23832/0/3230302e312e3135362e302f32322d3234203d3e203237373735.roa
Signing time: Tue 04 Feb 2025 18:25:20 +0000
ROA not before: Tue 04 Feb 2025 18:20:20 +0000
ROA not after: Tue 03 Feb 2026 18:25:20 +0000
asID: 27775
IP address blocks: 200.1.156.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/0ACD83F65B3C2985BFC1981F2F5786B16670160A035E7992C8B5BFE15FA23832/0/E448655A46C905154A46DF19D5CADDB20B5D1153.crl
rsync://repository.lacnic.net/rpki/lacnic/0ACD83F65B3C2985BFC1981F2F5786B16670160A035E7992C8B5BFE15FA23832/0/E448655A46C905154A46DF19D5CADDB20B5D1153.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E448655A46C905154A46DF19D5CADDB20B5D1153.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 23:30:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:90:8c:32:a9:3c:dd:d3:69:41:a1:b0:81:33:94:71:d8:dd:b3:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E448655A46C905154A46DF19D5CADDB20B5D1153
Validity
Not Before: Feb 4 18:20:20 2025 GMT
Not After : Feb 3 18:25:20 2026 GMT
Subject: CN=03456AF5CB809C6D9F61CB5A4CBE651171847526
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:09:1c:72:c4:af:02:a1:82:a7:2b:9f:a6:ce:
21:79:47:ca:e5:94:38:b6:f9:8f:a3:84:4a:7b:6d:
8e:e5:a6:05:af:2a:69:bb:75:80:23:90:e1:ad:82:
fa:cc:04:4e:a3:19:22:00:df:74:bf:fa:47:a2:bb:
66:34:6d:ab:7a:94:e0:df:a7:13:ab:4c:c5:9d:16:
b9:ea:c0:52:20:a3:b0:07:a9:eb:02:ad:13:14:44:
7e:1e:07:05:c7:d1:05:7b:60:61:a0:ab:de:1f:e8:
98:4d:81:c5:07:28:a5:3e:b3:6f:7b:cf:f7:00:26:
ab:49:6f:b3:67:b8:50:b2:60:49:02:e2:4a:1e:45:
57:bb:05:da:1e:e8:b1:1f:0b:c7:9a:2a:84:af:13:
9b:ec:e4:8b:2b:b3:29:3f:41:df:1a:96:ec:22:cd:
2e:1e:b7:87:fe:93:e5:0f:e8:43:fd:5b:51:5f:0b:
a0:18:67:6e:bc:2e:bd:e9:d9:34:8c:f2:c1:cf:44:
6f:c0:85:7f:3c:f0:99:fe:b3:bf:bf:6c:f9:6b:81:
26:02:77:83:33:1e:9b:2a:6e:dd:82:24:73:4a:0c:
17:0e:80:e8:46:f7:06:5b:7f:cf:71:e3:6a:2a:7f:
da:10:b9:1c:c3:b7:20:00:d8:27:2c:94:3b:88:31:
c9:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:45:6A:F5:CB:80:9C:6D:9F:61:CB:5A:4C:BE:65:11:71:84:75:26
X509v3 Authority Key Identifier:
keyid:E4:48:65:5A:46:C9:05:15:4A:46:DF:19:D5:CA:DD:B2:0B:5D:11:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0ACD83F65B3C2985BFC1981F2F5786B16670160A035E7992C8B5BFE15FA23832/0/E448655A46C905154A46DF19D5CADDB20B5D1153.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E448655A46C905154A46DF19D5CADDB20B5D1153.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0ACD83F65B3C2985BFC1981F2F5786B16670160A035E7992C8B5BFE15FA23832/0/3230302e312e3135362e302f32322d3234203d3e203237373735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.1.156.0/22
Signature Algorithm: sha256WithRSAEncryption
be:c5:37:1e:98:d6:38:50:9c:f2:f6:91:2f:04:ab:96:1b:0e:
3d:83:ec:65:c3:4d:92:b1:00:1d:f5:53:2c:2a:9e:6f:83:a2:
1c:ec:15:66:99:20:a5:ca:61:2f:6e:5f:2b:b1:e9:b3:26:9c:
7f:e2:91:87:08:a1:4a:07:98:7b:a8:96:5d:0c:f6:33:5d:7b:
86:4b:54:50:65:68:9a:9f:ca:2f:3e:51:84:44:5b:58:d5:e7:
3b:d9:ba:5e:d5:f7:c5:c8:e0:62:22:0a:0b:70:a2:db:61:06:
53:68:e1:d0:09:cb:16:9b:70:ae:37:08:fa:2f:1a:6f:98:2c:
b0:cc:49:c9:7d:f3:37:96:ce:9b:f9:02:fa:ec:94:3b:d1:d6:
cd:5f:82:33:7d:fe:c9:05:16:38:7a:36:54:d6:72:b3:26:5f:
03:06:5f:dc:3d:bd:41:1e:b9:f9:a9:3a:86:49:a8:a2:7a:30:
7a:ce:51:c7:1e:84:14:26:06:ba:bd:9e:88:72:44:ac:02:a1:
f4:ba:a5:79:f8:f5:45:7d:12:a3:81:3f:10:30:54:ff:44:7b:
28:f8:2b:a7:8e:15:21:aa:0f:11:7b:88:0f:14:09:8b:fe:95:
3a:d8:a6:3b:dc:d0:c8:53:39:1b:bb:6b:35:71:97:16:a5:ec:
77:28:9e:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 18:17:18 2025 by rpki-client