Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/3136382e3234332e3131372e302f32342d3234203d3e203237373733.roa
File: 3136382e3234332e3131372e302f32342d3234203d3e203237373733.roa (raw, json)
Hash identifier: +PpoA+MXLVXrL/0mE9ykAgEcS7eRP1I6ACO5WzpdqvM=
Subject key identifier: 48:CD:A4:18:B4:83:30:40:D4:E7:AB:C0:70:7E:2D:2D:E5:78:1D:08
Certificate issuer: /CN=D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA
Certificate serial: 68821E75DFF72D5F3BB67498F3A3D86B2A17DDD1
Authority key identifier: D3:50:3D:03:E3:D4:DF:A0:76:7F:6D:FF:3B:A7:1D:D7:B6:23:6A:FA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/3136382e3234332e3131372e302f32342d3234203d3e203237373733.roa
Signing time: Tue 04 Feb 2025 18:20:33 +0000
ROA not before: Tue 04 Feb 2025 18:15:33 +0000
ROA not after: Tue 03 Feb 2026 18:20:33 +0000
asID: 27773
IP address blocks: 168.243.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.crl
rsync://repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Wed 30 Apr 2025 05:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:82:1e:75:df:f7:2d:5f:3b:b6:74:98:f3:a3:d8:6b:2a:17:dd:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA
Validity
Not Before: Feb 4 18:15:33 2025 GMT
Not After : Feb 3 18:20:33 2026 GMT
Subject: CN=48CDA418B4833040D4E7ABC0707E2D2DE5781D08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:29:15:02:e1:59:07:8a:1e:b9:d5:19:06:da:
62:c9:98:f7:5f:ee:b9:bd:ca:76:10:03:14:d7:1a:
67:99:45:d9:df:9c:ba:02:13:80:d3:db:db:e6:31:
7c:c4:98:db:6b:d1:51:f8:31:cd:a4:2e:1e:d3:2f:
f3:23:b6:fc:33:90:93:8d:51:94:f0:74:8a:45:00:
03:3e:3a:c3:41:78:39:72:af:e3:46:0a:a9:a0:ea:
0d:31:cf:d2:f3:70:0c:e6:8c:1c:46:49:6a:a5:cf:
d8:90:50:b4:ad:1f:77:57:4b:69:53:c7:68:c8:53:
a1:83:dd:73:c4:0b:41:3f:b2:98:7e:4a:43:d1:57:
0f:e2:22:0e:0d:bc:b6:36:12:ff:fb:ea:2d:56:1a:
a5:26:a9:b5:19:b7:07:5e:9b:c5:f1:55:46:ff:81:
2a:21:9c:92:1b:ac:6a:3d:01:05:93:c5:ad:82:6b:
c8:e9:24:00:db:90:78:8c:69:fd:5a:a5:1d:9d:4b:
d5:a0:a3:09:bd:88:09:b7:4e:32:ff:dd:dc:b3:74:
18:62:72:c2:3f:f3:f4:10:dd:cf:df:00:42:35:f0:
c0:f9:d7:18:c0:79:1e:31:8c:2b:9f:f4:de:e5:5b:
22:f3:16:30:a0:1f:21:4c:57:5a:7c:3c:8a:4f:b3:
6d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:CD:A4:18:B4:83:30:40:D4:E7:AB:C0:70:7E:2D:2D:E5:78:1D:08
X509v3 Authority Key Identifier:
keyid:D3:50:3D:03:E3:D4:DF:A0:76:7F:6D:FF:3B:A7:1D:D7:B6:23:6A:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/3136382e3234332e3131372e302f32342d3234203d3e203237373733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.243.117.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:9d:bb:cf:81:30:93:d8:d7:03:bb:61:5d:d4:7b:82:85:9c:
0d:3f:b2:52:1c:56:a9:f8:12:e0:b7:78:fb:86:1c:43:5c:cb:
90:d9:c5:9c:8f:4a:a7:29:48:7f:b6:62:e6:e1:13:a8:6b:af:
07:ef:06:35:2e:be:a7:e5:65:04:94:23:36:4d:2c:60:ae:60:
ef:27:58:f6:bd:11:85:48:56:51:b4:b9:a1:87:10:7c:7b:e2:
68:c6:96:29:5f:8c:5b:d8:13:b1:c2:af:ac:18:e1:67:db:5a:
66:13:80:37:28:c9:87:1e:c9:27:64:35:54:53:ea:7c:6c:7d:
39:65:13:f9:5d:65:f6:a7:42:90:85:9c:1d:14:6f:0b:be:0f:
f7:27:84:ab:f1:24:bf:3f:ec:a4:eb:1a:04:be:81:09:b0:e8:
b8:96:0f:0b:b0:39:80:c5:43:03:cf:1b:ea:86:51:a7:45:29:
75:50:02:8c:8b:ff:77:df:14:9d:82:cd:b2:b5:b1:71:a9:a2:
4a:71:7e:a5:52:bd:97:73:05:da:20:0a:d4:c5:cd:69:fb:93:
83:cd:06:c1:65:bd:55:b8:83:51:ce:e5:bf:0e:3a:fd:46:20:
73:c0:7f:f5:3f:4b:29:af:4b:ec:d7:99:3a:69:3c:1e:b5:52:
3c:08:b8:63
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUaIIedd/3LV87tnSY86PYayoX3dEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDM1MDNEMDNFM0Q0REZBMDc2N0Y2REZGM0JBNzFERDdC
NjIzNkFGQTAeFw0yNTAyMDQxODE1MzNaFw0yNjAyMDMxODIwMzNaMDMxMTAvBgNV
BAMTKDQ4Q0RBNDE4QjQ4MzMwNDBENEU3QUJDMDcwN0UyRDJERTU3ODFEMDgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMKRUC4VkHih651RkG2mLJmPdf
7rm9ynYQAxTXGmeZRdnfnLoCE4DT29vmMXzEmNtr0VH4Mc2kLh7TL/MjtvwzkJON
UZTwdIpFAAM+OsNBeDlyr+NGCqmg6g0xz9LzcAzmjBxGSWqlz9iQULStH3dXS2lT
x2jIU6GD3XPEC0E/sph+SkPRVw/iIg4NvLY2Ev/76i1WGqUmqbUZtwdem8XxVUb/
gSohnJIbrGo9AQWTxa2Ca8jpJADbkHiMaf1apR2dS9Wgowm9iAm3TjL/3dyzdBhi
csI/8/QQ3c/fAEI18MD51xjAeR4xjCuf9N7lWyLzFjCgHyFMV1p8PIpPs23pAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUSM2kGLSDMEDU56vAcH4tLeV4HQgwHwYDVR0j
BBgwFoAU01A9A+PU36B2f23/O6cd17YjavowDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8wQkIwNzFEOTZEOEZCRTJBODY5OTA5MDVEQzE3RTE5OTM3
MEE1NzA1MjM2QTAwMDY1RDY4NTYzRkFBREI4NUU2LzAvRDM1MDNEMDNFM0Q0REZB
MDc2N0Y2REZGM0JBNzFERDdCNjIzNkFGQS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EMzUwM0QwM0UzRDRERkEwNzY3
RjZERkYzQkE3MUREN0I2MjM2QUZBLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMEJCMDcxRDk2RDhGQkUyQTg2OTkwOTA1REMxN0UxOTkzNzBBNTcwNTIz
NkEwMDA2NUQ2ODU2M0ZBQURCODVFNi8wLzMxMzYzODJlMzIzNDMzMmUzMTMxMzcy
ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM3MzczNzMzLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqPN1
MA0GCSqGSIb3DQEBCwUAA4IBAQAMnbvPgTCT2NcDu2Fd1HuChZwNP7JSHFap+BLg
t3j7hhxDXMuQ2cWcj0qnKUh/tmLm4ROoa68H7wY1Lr6n5WUElCM2TSxgrmDvJ1j2
vRGFSFZRtLmhhxB8e+JoxpYpX4xb2BOxwq+sGOFn21pmE4A3KMmHHsknZDVUU+p8
bH05ZRP5XWX2p0KQhZwdFG8Lvg/3J4Sr8SS/P+yk6xoEvoEJsOi4lg8LsDmAxUMD
zxvqhlGnRSl1UAKMi/933xSdgs2ytbFxqaJKcX6lUr2XcwXaIArUxc1p+5ODzQbB
Zb1VuINRzuW/Djr9RiBzwH/1P0spr0vs15k6aTwetVI8CLhj
-----END CERTIFICATE-----
Generated at Sat Apr 26 21:11:18 2025 by rpki-client