Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0D35C9A7980523AB7EB047E165C2ABEB389A079423AFE52808D319DAB921C503/0/323830333a3438303a32303a3a2f34382d3634203d3e203532343538.roa
File: 323830333a3438303a32303a3a2f34382d3634203d3e203532343538.roa (raw, json)
Hash identifier: OWZ63DUzhk9DVqlLoyJ/1v2uFi6VoTpmDYNcwrBwTlc=
Subject key identifier: 27:37:5B:34:29:68:26:12:1B:12:13:18:FE:77:56:DE:72:31:63:0F
Certificate issuer: /CN=11F68518B1162A4FBF29B57C1A80F87FFF477028
Certificate serial: 49B48C68925BB133B50291D78C2000BF35AEB9B3
Authority key identifier: 11:F6:85:18:B1:16:2A:4F:BF:29:B5:7C:1A:80:F8:7F:FF:47:70:28
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/11F68518B1162A4FBF29B57C1A80F87FFF477028.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0D35C9A7980523AB7EB047E165C2ABEB389A079423AFE52808D319DAB921C503/0/323830333a3438303a32303a3a2f34382d3634203d3e203532343538.roa
Signing time: Tue 04 Feb 2025 18:24:23 +0000
ROA not before: Tue 04 Feb 2025 18:19:23 +0000
ROA not after: Tue 03 Feb 2026 18:24:23 +0000
asID: 52458
IP address blocks: 2803:480:20::/48 maxlen: 64
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/0D35C9A7980523AB7EB047E165C2ABEB389A079423AFE52808D319DAB921C503/0/11F68518B1162A4FBF29B57C1A80F87FFF477028.crl
rsync://repository.lacnic.net/rpki/lacnic/0D35C9A7980523AB7EB047E165C2ABEB389A079423AFE52808D319DAB921C503/0/11F68518B1162A4FBF29B57C1A80F87FFF477028.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/11F68518B1162A4FBF29B57C1A80F87FFF477028.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 04:40:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:b4:8c:68:92:5b:b1:33:b5:02:91:d7:8c:20:00:bf:35:ae:b9:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11F68518B1162A4FBF29B57C1A80F87FFF477028
Validity
Not Before: Feb 4 18:19:23 2025 GMT
Not After : Feb 3 18:24:23 2026 GMT
Subject: CN=27375B34296826121B121318FE7756DE7231630F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:0f:8b:7b:91:53:8b:d5:7c:da:58:7a:98:1f:
18:c2:62:bf:04:01:13:00:b1:e3:5a:d0:67:70:b2:
ef:46:e5:73:dc:d6:5b:21:5b:a3:7c:c0:b4:e9:e0:
59:27:ac:e3:31:02:4d:aa:91:86:e1:2f:c9:02:9f:
ab:e8:71:c7:98:9c:83:ca:75:97:d5:f1:28:9b:21:
4f:b4:5c:9c:3f:03:43:68:c5:1d:94:f0:3e:73:f3:
a1:f4:8c:69:ee:8c:49:da:7b:7e:08:f2:aa:da:2e:
4c:98:ef:f5:86:1c:48:a2:fa:5e:a6:92:cc:e7:e7:
a7:32:c4:fb:3f:a1:eb:cb:fe:2f:bb:db:3b:28:98:
38:b4:3f:cb:42:07:53:fe:bc:b2:ed:0c:3c:cc:26:
56:93:7f:ce:f1:0b:bf:df:fc:b7:f6:68:02:ca:fb:
71:a9:97:db:81:57:6f:17:dc:e4:cc:f1:39:4b:c5:
0f:06:be:27:05:57:0e:0b:ec:64:83:3f:ce:00:34:
1d:a7:17:d3:29:2b:a9:2c:a6:6c:40:18:ca:62:ae:
26:dc:a2:fc:7f:3b:22:b7:f9:a3:54:b6:ca:02:cb:
10:c7:16:e5:0b:4b:3d:ab:d3:c2:a6:19:c0:82:cc:
a5:14:54:f9:96:8b:42:6e:f4:bb:c7:2a:58:53:ab:
71:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:37:5B:34:29:68:26:12:1B:12:13:18:FE:77:56:DE:72:31:63:0F
X509v3 Authority Key Identifier:
keyid:11:F6:85:18:B1:16:2A:4F:BF:29:B5:7C:1A:80:F8:7F:FF:47:70:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0D35C9A7980523AB7EB047E165C2ABEB389A079423AFE52808D319DAB921C503/0/11F68518B1162A4FBF29B57C1A80F87FFF477028.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/11F68518B1162A4FBF29B57C1A80F87FFF477028.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0D35C9A7980523AB7EB047E165C2ABEB389A079423AFE52808D319DAB921C503/0/323830333a3438303a32303a3a2f34382d3634203d3e203532343538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:480:20::/48
Signature Algorithm: sha256WithRSAEncryption
64:bb:45:ad:4c:50:e5:89:cd:ac:af:b8:a2:4f:8d:e2:3a:91:
cc:b6:93:19:ea:c0:31:39:75:59:d4:5e:e6:3f:36:e8:6d:ae:
40:76:79:bc:2d:4c:81:92:23:95:88:9c:74:a4:59:5e:a8:da:
d9:2e:fb:cf:6f:b8:9f:4a:d5:b0:4d:59:94:3c:3c:1c:20:d9:
de:0f:1b:13:e7:c9:d5:c1:69:e9:08:6b:a3:64:f5:8a:6a:e2:
fb:97:67:d1:9d:ad:bd:49:01:1e:a1:b7:9b:c8:30:3a:51:28:
ff:c9:cd:3f:fa:5f:ac:76:fd:1d:0e:51:c7:08:53:fa:af:2c:
77:d8:12:a2:ec:69:db:09:89:b3:30:ca:23:1e:0b:67:b7:a1:
d2:8b:b1:bd:e9:a3:6b:dc:53:de:da:89:d6:08:8b:6c:29:30:
19:d6:9e:66:11:1b:cb:57:6c:1e:66:ef:0e:f0:b7:7b:0b:b6:
30:f8:77:ec:7e:2d:99:63:05:3f:af:90:79:45:c0:b6:8c:75:
21:f0:e8:53:9d:ca:7d:99:3a:15:2d:a6:98:6c:49:32:a5:c8:
19:44:11:21:a5:26:ea:fd:ff:6d:42:b4:66:92:78:f2:f9:14:
3b:d7:f7:2c:62:8d:1b:ad:22:3d:79:16:d1:b7:37:d5:5c:7f:
d4:a2:fe:5e
-----BEGIN CERTIFICATE-----
MIIFwzCCBKugAwIBAgIUSbSMaJJbsTO1ApHXjCAAvzWuubMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTFGNjg1MThCMTE2MkE0RkJGMjlCNTdDMUE4MEY4N0ZG
RjQ3NzAyODAeFw0yNTAyMDQxODE5MjNaFw0yNjAyMDMxODI0MjNaMDMxMTAvBgNV
BAMTKDI3Mzc1QjM0Mjk2ODI2MTIxQjEyMTMxOEZFNzc1NkRFNzIzMTYzMEYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7D4t7kVOL1XzaWHqYHxjCYr8E
ARMAseNa0Gdwsu9G5XPc1lshW6N8wLTp4FknrOMxAk2qkYbhL8kCn6vocceYnIPK
dZfV8SibIU+0XJw/A0NoxR2U8D5z86H0jGnujEnae34I8qraLkyY7/WGHEii+l6m
kszn56cyxPs/oevL/i+72zsomDi0P8tCB1P+vLLtDDzMJlaTf87xC7/f/Lf2aALK
+3Gpl9uBV28X3OTM8TlLxQ8GvicFVw4L7GSDP84ANB2nF9MpK6kspmxAGMpiribc
ovx/OyK3+aNUtsoCyxDHFuULSz2r08KmGcCCzKUUVPmWi0Ju9LvHKlhTq3EhAgMB
AAGjggLNMIICyTAdBgNVHQ4EFgQUJzdbNCloJhIbEhMY/ndW3nIxYw8wHwYDVR0j
BBgwFoAUEfaFGLEWKk+/KbV8GoD4f/9HcCgwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8wRDM1QzlBNzk4MDUyM0FCN0VCMDQ3RTE2NUMyQUJFQjM4
OUEwNzk0MjNBRkU1MjgwOEQzMTlEQUI5MjFDNTAzLzAvMTFGNjg1MThCMTE2MkE0
RkJGMjlCNTdDMUE4MEY4N0ZGRjQ3NzAyOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8xMUY2ODUxOEIxMTYyQTRGQkYy
OUI1N0MxQTgwRjg3RkZGNDc3MDI4LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMEQzNUM5QTc5ODA1MjNBQjdFQjA0N0UxNjVDMkFCRUIzODlBMDc5NDIz
QUZFNTI4MDhEMzE5REFCOTIxQzUwMy8wLzMyMzgzMDMzM2EzNDM4MzAzYTMyMzAz
YTNhMmYzNDM4MmQzNjM0MjAzZDNlMjAzNTMyMzQzNTM4LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKAME
gAAgMA0GCSqGSIb3DQEBCwUAA4IBAQBku0WtTFDlic2sr7iiT43iOpHMtpMZ6sAx
OXVZ1F7mPzboba5Adnm8LUyBkiOViJx0pFleqNrZLvvPb7ifStWwTVmUPDwcINne
DxsT58nVwWnpCGujZPWKauL7l2fRna29SQEeobebyDA6USj/yc0/+l+sdv0dDlHH
CFP6ryx32BKi7GnbCYmzMMojHgtnt6HSi7G96aNr3FPe2onWCItsKTAZ1p5mERvL
V2weZu8O8Ld7C7Yw+Hfsfi2ZYwU/r5B5RcC2jHUh8OhTncp9mToVLaaYbEkypcgZ
RBEhpSbq/f9tQrRmknjy+RQ71/csYo0brSI9eRbRtzfVXH/Uov5e
-----END CERTIFICATE-----
Generated at Mon Apr 14 01:12:08 2025 by rpki-client