Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/3136382e3234332e38342e302f32322d3234203d3e20323633323138.roa
File: 3136382e3234332e38342e302f32322d3234203d3e20323633323138.roa (raw, json)
Hash identifier: A7KVKb8ZWKeFMMqSX5Dro8EMKM21wDtKmAUNH6tv8zo=
Subject key identifier: 8F:56:27:93:6C:95:EE:93:1B:EA:79:4A:7E:32:B5:C4:23:46:B4:E5
Certificate issuer: /CN=D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA
Certificate serial: 620C3244036E177063E89B5F367799B8CE3FCE74
Authority key identifier: D3:50:3D:03:E3:D4:DF:A0:76:7F:6D:FF:3B:A7:1D:D7:B6:23:6A:FA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/3136382e3234332e38342e302f32322d3234203d3e20323633323138.roa
Signing time: Tue 04 Feb 2025 18:20:33 +0000
ROA not before: Tue 04 Feb 2025 18:15:33 +0000
ROA not after: Tue 03 Feb 2026 18:20:33 +0000
asID: 263218
IP address blocks: 168.243.84.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.crl
rsync://repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:0c:32:44:03:6e:17:70:63:e8:9b:5f:36:77:99:b8:ce:3f:ce:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA
Validity
Not Before: Feb 4 18:15:33 2025 GMT
Not After : Feb 3 18:20:33 2026 GMT
Subject: CN=8F5627936C95EE931BEA794A7E32B5C42346B4E5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:bb:ec:fe:49:0e:39:6a:0b:40:5b:9c:ce:74:
d6:fd:64:74:68:5e:5c:dd:d6:42:37:46:5d:89:83:
1d:57:8c:44:10:19:32:df:88:55:70:cd:b5:41:29:
bf:27:03:06:5c:49:59:2d:37:e4:bf:70:b0:e0:a0:
48:f2:9a:cb:f3:39:64:54:80:fd:3e:b9:75:eb:2e:
6c:a9:5a:b6:df:14:5f:23:89:c9:49:02:65:fe:0e:
85:06:3e:df:f0:ce:c1:3b:09:af:20:69:99:a1:3b:
09:31:37:cd:2d:d0:92:e5:a4:d5:82:9d:fe:05:bf:
55:e4:a7:ba:62:ef:c3:f6:55:a1:af:81:41:02:37:
d3:94:de:32:d3:60:56:fa:28:af:98:a7:bd:a0:01:
e0:bf:d1:fc:5a:43:54:10:f6:1f:65:88:ca:ed:6f:
33:1a:59:38:82:22:14:a7:38:98:a4:90:7a:a7:f6:
f4:ba:11:95:eb:a7:58:48:8e:8c:50:1d:c4:dc:65:
09:46:65:9d:47:be:8d:57:ff:a5:ba:79:7f:ee:69:
c9:41:c3:02:e8:55:39:f0:44:a4:bc:de:09:70:ba:
8c:2a:fd:8e:30:51:10:b4:5c:2c:cb:00:17:5a:6a:
50:95:4e:b5:f4:e0:1b:03:d1:08:2b:93:22:25:c9:
a9:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:56:27:93:6C:95:EE:93:1B:EA:79:4A:7E:32:B5:C4:23:46:B4:E5
X509v3 Authority Key Identifier:
keyid:D3:50:3D:03:E3:D4:DF:A0:76:7F:6D:FF:3B:A7:1D:D7:B6:23:6A:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D3503D03E3D4DFA0767F6DFF3BA71DD7B6236AFA.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0BB071D96D8FBE2A86990905DC17E199370A5705236A00065D68563FAADB85E6/0/3136382e3234332e38342e302f32322d3234203d3e20323633323138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.243.84.0/22
Signature Algorithm: sha256WithRSAEncryption
af:9c:5f:59:6d:57:78:c4:22:25:8d:d9:52:fb:df:34:53:ac:
d5:a3:7d:1d:8d:47:b0:c2:30:cd:d7:37:c6:b4:27:2f:3a:43:
2a:ab:fb:03:22:0f:7f:70:85:51:e4:8f:d0:aa:e2:c9:84:fa:
d2:1b:0f:48:36:24:69:d1:ec:90:03:08:39:56:bf:52:2e:94:
52:15:fd:d3:1f:96:0a:21:9d:51:8b:91:56:e7:1e:e1:71:dd:
7a:a8:ac:1f:32:1d:03:58:ee:1d:e8:c2:5a:03:53:ab:80:5a:
9b:d7:55:a9:e6:54:09:c9:47:96:7d:22:1c:99:06:fa:a6:4a:
f7:03:7e:32:3b:04:dd:41:5e:60:19:d2:61:04:c3:ca:2b:73:
d0:05:c7:7b:9d:70:71:7e:22:6b:b8:73:a7:fd:a2:65:cd:39:
94:e1:e0:ef:62:20:a6:7f:52:6a:6b:7b:c8:69:5c:15:6b:95:
cd:85:ef:6e:22:5f:fb:e2:69:bd:b1:1b:f0:e0:53:36:83:c3:
54:22:88:a4:d6:0d:18:9f:65:70:b5:d0:a1:b5:02:63:8b:b6:
1f:02:ea:c6:52:86:f1:88:f6:e1:a9:7c:62:82:65:d5:5f:a4:
83:a1:14:2a:47:c7:06:82:89:7b:8e:d5:8b:47:e2:58:b0:40:
e8:f3:f1:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 17:36:03 2025 by rpki-client