Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0D35C9A7980523AB7EB047E165C2ABEB389A079423AFE52808D319DAB921C503/0/323830333a3438303a31313a3a2f36342d3634203d3e203532343538.roa
File: 323830333a3438303a31313a3a2f36342d3634203d3e203532343538.roa (raw, json)
Hash identifier: ZcCNv8vE5Uhwcr6l6TRrnBqBU1fV5PV7lHS7vKGbSzc=
Subject key identifier: AF:35:62:30:72:67:AF:68:9F:0A:57:F1:C1:E3:EC:91:1D:0A:0E:3F
Certificate issuer: /CN=11F68518B1162A4FBF29B57C1A80F87FFF477028
Certificate serial: 26BA569438B41568DBB0D97A43FE5969083C9EBA
Authority key identifier: 11:F6:85:18:B1:16:2A:4F:BF:29:B5:7C:1A:80:F8:7F:FF:47:70:28
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/11F68518B1162A4FBF29B57C1A80F87FFF477028.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0D35C9A7980523AB7EB047E165C2ABEB389A079423AFE52808D319DAB921C503/0/323830333a3438303a31313a3a2f36342d3634203d3e203532343538.roa
Signing time: Tue 04 Feb 2025 18:24:22 +0000
ROA not before: Tue 04 Feb 2025 18:19:22 +0000
ROA not after: Tue 03 Feb 2026 18:24:22 +0000
asID: 52458
IP address blocks: 2803:480:11::/64 maxlen: 64
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/0D35C9A7980523AB7EB047E165C2ABEB389A079423AFE52808D319DAB921C503/0/11F68518B1162A4FBF29B57C1A80F87FFF477028.crl
rsync://repository.lacnic.net/rpki/lacnic/0D35C9A7980523AB7EB047E165C2ABEB389A079423AFE52808D319DAB921C503/0/11F68518B1162A4FBF29B57C1A80F87FFF477028.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/11F68518B1162A4FBF29B57C1A80F87FFF477028.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 20:38:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:ba:56:94:38:b4:15:68:db:b0:d9:7a:43:fe:59:69:08:3c:9e:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11F68518B1162A4FBF29B57C1A80F87FFF477028
Validity
Not Before: Feb 4 18:19:22 2025 GMT
Not After : Feb 3 18:24:22 2026 GMT
Subject: CN=AF3562307267AF689F0A57F1C1E3EC911D0A0E3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:36:ee:0b:0f:31:c8:eb:83:b6:3c:ca:9b:7b:
e8:0b:6e:8b:21:a8:73:28:eb:a7:43:c2:45:52:45:
d3:25:f9:c4:61:db:b2:63:1f:71:ec:14:ce:97:77:
65:4e:64:29:55:7a:40:11:ae:b2:eb:2d:59:1b:94:
34:9d:d6:53:56:3c:ee:50:da:48:d0:7d:da:4c:24:
a4:2e:f7:be:03:6e:df:41:5c:ae:75:f6:48:62:ce:
e1:b1:ff:42:77:9f:22:bb:78:34:14:82:f5:3c:cc:
b9:ee:7e:8f:44:d0:b1:ee:52:18:f2:23:22:e9:2a:
cb:b5:5e:c6:e5:18:da:d5:12:16:8c:16:58:4a:74:
01:fa:c2:f6:90:73:29:1a:d9:33:57:90:a8:ee:23:
c5:5e:b8:9e:4c:28:d5:11:da:e5:9f:ab:dc:a9:8a:
fa:5c:0b:95:a0:3b:af:5f:4a:be:5e:c6:d6:2b:a8:
99:25:22:34:bb:85:ef:12:3a:1f:0c:77:87:0b:1d:
4d:3f:81:4d:c0:8e:f1:95:0b:a5:b3:4d:c9:9b:3f:
ce:32:72:f3:be:27:a6:13:41:9e:11:5e:f7:7f:c1:
78:0c:63:6d:2a:4e:71:d8:c0:13:bb:e7:a2:c6:cd:
9e:d0:f6:72:3f:89:e6:54:45:22:4d:89:c7:8d:84:
cf:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:35:62:30:72:67:AF:68:9F:0A:57:F1:C1:E3:EC:91:1D:0A:0E:3F
X509v3 Authority Key Identifier:
keyid:11:F6:85:18:B1:16:2A:4F:BF:29:B5:7C:1A:80:F8:7F:FF:47:70:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0D35C9A7980523AB7EB047E165C2ABEB389A079423AFE52808D319DAB921C503/0/11F68518B1162A4FBF29B57C1A80F87FFF477028.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/11F68518B1162A4FBF29B57C1A80F87FFF477028.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0D35C9A7980523AB7EB047E165C2ABEB389A079423AFE52808D319DAB921C503/0/323830333a3438303a31313a3a2f36342d3634203d3e203532343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:480:11::/64
Signature Algorithm: sha256WithRSAEncryption
91:0a:a0:6a:0a:16:fa:28:1a:7b:48:0c:f4:fc:5b:73:0a:0c:
a2:38:92:e4:2d:d2:0c:ee:c4:18:87:1a:9f:12:89:a1:51:97:
68:b1:b8:2b:97:72:55:9e:dc:ba:3f:f8:cc:ec:2a:ed:be:a8:
4f:40:3f:41:16:e5:b3:6d:3c:b3:9d:1f:fe:27:e7:ec:9a:30:
5f:32:22:ac:48:e3:ca:11:93:57:35:f2:14:88:87:76:9f:d9:
e2:d0:c8:e5:70:58:24:23:e4:e3:d4:c4:fa:87:9e:bc:b9:ad:
a1:c8:b9:5f:8e:05:3f:83:17:bb:3b:fd:f4:b1:31:8b:c0:c0:
d2:ab:63:90:ea:73:d5:de:fc:60:a8:a0:ad:3e:fa:63:dd:89:
e5:a0:99:1f:1c:34:20:87:01:9b:18:90:19:97:83:b0:31:61:
3a:9e:f3:e2:19:6a:ec:96:b7:8c:a9:96:78:6b:b2:52:28:83:
33:f8:d3:68:5e:22:c0:4d:b4:1d:33:9d:ab:ab:c0:c5:0d:22:
ad:c9:e8:2e:ae:88:82:8a:e1:e9:e0:29:de:93:37:b8:f1:92:
22:cd:b2:e9:23:db:33:58:5f:9d:4f:8f:ec:df:55:3b:ec:3f:
76:0d:6d:84:e6:09:5d:5c:7b:18:f2:b9:81:39:c8:45:6d:f3:
31:ae:40:51
-----BEGIN CERTIFICATE-----
MIIFxTCCBK2gAwIBAgIUJrpWlDi0FWjbsNl6Q/5ZaQg8nrowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTFGNjg1MThCMTE2MkE0RkJGMjlCNTdDMUE4MEY4N0ZG
RjQ3NzAyODAeFw0yNTAyMDQxODE5MjJaFw0yNjAyMDMxODI0MjJaMDMxMTAvBgNV
BAMTKEFGMzU2MjMwNzI2N0FGNjg5RjBBNTdGMUMxRTNFQzkxMUQwQTBFM0YwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvNu4LDzHI64O2PMqbe+gLbosh
qHMo66dDwkVSRdMl+cRh27JjH3HsFM6Xd2VOZClVekARrrLrLVkblDSd1lNWPO5Q
2kjQfdpMJKQu974Dbt9BXK519khizuGx/0J3nyK7eDQUgvU8zLnufo9E0LHuUhjy
IyLpKsu1XsblGNrVEhaMFlhKdAH6wvaQcyka2TNXkKjuI8VeuJ5MKNUR2uWfq9yp
ivpcC5WgO69fSr5extYrqJklIjS7he8SOh8Md4cLHU0/gU3AjvGVC6WzTcmbP84y
cvO+J6YTQZ4RXvd/wXgMY20qTnHYwBO756LGzZ7Q9nI/ieZURSJNiceNhM/1AgMB
AAGjggLPMIICyzAdBgNVHQ4EFgQUrzViMHJnr2ifClfxwePskR0KDj8wHwYDVR0j
BBgwFoAUEfaFGLEWKk+/KbV8GoD4f/9HcCgwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8wRDM1QzlBNzk4MDUyM0FCN0VCMDQ3RTE2NUMyQUJFQjM4
OUEwNzk0MjNBRkU1MjgwOEQzMTlEQUI5MjFDNTAzLzAvMTFGNjg1MThCMTE2MkE0
RkJGMjlCNTdDMUE4MEY4N0ZGRjQ3NzAyOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8xMUY2ODUxOEIxMTYyQTRGQkYy
OUI1N0MxQTgwRjg3RkZGNDc3MDI4LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMEQzNUM5QTc5ODA1MjNBQjdFQjA0N0UxNjVDMkFCRUIzODlBMDc5NDIz
QUZFNTI4MDhEMzE5REFCOTIxQzUwMy8wLzMyMzgzMDMzM2EzNDM4MzAzYTMxMzEz
YTNhMmYzNjM0MmQzNjM0MjAzZDNlMjAzNTMyMzQzNTM4LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAAjALAwkAKAME
gAARAAAwDQYJKoZIhvcNAQELBQADggEBAJEKoGoKFvooGntIDPT8W3MKDKI4kuQt
0gzuxBiHGp8SiaFRl2ixuCuXclWe3Lo/+MzsKu2+qE9AP0EW5bNtPLOdH/4n5+ya
MF8yIqxI48oRk1c18hSIh3af2eLQyOVwWCQj5OPUxPqHnry5raHIuV+OBT+DF7s7
/fSxMYvAwNKrY5Dqc9Xe/GCooK0++mPdieWgmR8cNCCHAZsYkBmXg7AxYTqe8+IZ
auyWt4yplnhrslIogzP402heIsBNtB0znaurwMUNIq3J6C6uiIKK4engKd6TN7jx
kiLNsukj2zNYX51Pj+zfVTvsP3YNbYTmCV1cexjyuYE5yEVt8zGuQFE=
-----END CERTIFICATE-----
Generated at Fri Apr 11 20:46:20 2025 by rpki-client