Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/103AE1AC330EAC8A63D02330742753AC6FE7F0280423D4A41AAD47830E99D099/0/3133312e3130382e31362e302f32322d3232203d3e20323633373434.roa
File: 3133312e3130382e31362e302f32322d3232203d3e20323633373434.roa (raw, json)
Hash identifier: zm/1pD5RFs6OzNaaDw2fvubFV6QOaixgvYuM8+oGJZo=
Subject key identifier: 27:93:D7:25:BC:60:89:F6:4C:DB:6B:0D:D5:85:57:15:85:F3:67:BE
Certificate issuer: /CN=632D71062751773B5FA51AC0AB69127826F756A2
Certificate serial: 2D7E4B5BB71F90304A940F2EF7306B51DE22231B
Authority key identifier: 63:2D:71:06:27:51:77:3B:5F:A5:1A:C0:AB:69:12:78:26:F7:56:A2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/632D71062751773B5FA51AC0AB69127826F756A2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/103AE1AC330EAC8A63D02330742753AC6FE7F0280423D4A41AAD47830E99D099/0/3133312e3130382e31362e302f32322d3232203d3e20323633373434.roa
Signing time: Tue 04 Feb 2025 18:13:53 +0000
ROA not before: Tue 04 Feb 2025 18:08:53 +0000
ROA not after: Tue 03 Feb 2026 18:13:53 +0000
asID: 263744
IP address blocks: 131.108.16.0/22 maxlen: 22
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/103AE1AC330EAC8A63D02330742753AC6FE7F0280423D4A41AAD47830E99D099/0/632D71062751773B5FA51AC0AB69127826F756A2.crl
rsync://repository.lacnic.net/rpki/lacnic/103AE1AC330EAC8A63D02330742753AC6FE7F0280423D4A41AAD47830E99D099/0/632D71062751773B5FA51AC0AB69127826F756A2.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/632D71062751773B5FA51AC0AB69127826F756A2.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 13:46:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:7e:4b:5b:b7:1f:90:30:4a:94:0f:2e:f7:30:6b:51:de:22:23:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=632D71062751773B5FA51AC0AB69127826F756A2
Validity
Not Before: Feb 4 18:08:53 2025 GMT
Not After : Feb 3 18:13:53 2026 GMT
Subject: CN=2793D725BC6089F64CDB6B0DD585571585F367BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:49:24:9d:d3:d1:bc:0d:06:cb:10:99:7e:e2:
25:85:8d:d1:38:6d:a2:1f:66:e1:16:48:e1:3a:0a:
80:42:d3:60:25:ec:51:9f:1f:65:9e:66:fd:32:38:
71:46:1a:71:09:5f:4c:96:53:36:52:d8:24:50:20:
13:59:27:16:25:76:52:db:54:13:16:c2:f3:7e:c9:
9d:99:5c:2a:b1:71:47:61:59:32:04:88:83:f6:70:
c7:0c:52:19:c6:0c:73:cc:c8:d4:19:a2:10:df:8a:
34:fb:63:ac:fc:9f:06:b7:55:2b:b2:98:29:be:a4:
71:49:4b:1e:ba:d3:13:dc:65:4a:6a:f6:ad:fc:7d:
f4:ff:28:82:c8:b0:ed:fa:3c:68:71:3a:0c:3c:20:
fe:cc:63:24:e3:2d:62:21:50:62:71:c5:51:f0:dd:
f8:2c:22:60:7d:32:bb:57:f1:1a:6a:7e:b5:1b:63:
a9:22:c2:39:6f:07:01:66:7b:ef:be:e3:2c:a6:29:
a5:89:97:07:3a:cf:9e:05:3e:28:4f:04:7c:7c:a5:
ba:20:8a:67:98:c7:35:c1:d9:22:d9:9f:d9:31:51:
fc:71:73:00:ef:74:4a:0e:5d:46:b4:e6:fa:f9:6b:
aa:8c:b9:da:0b:b4:03:c5:e5:9b:e9:5e:03:6c:89:
65:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:93:D7:25:BC:60:89:F6:4C:DB:6B:0D:D5:85:57:15:85:F3:67:BE
X509v3 Authority Key Identifier:
keyid:63:2D:71:06:27:51:77:3B:5F:A5:1A:C0:AB:69:12:78:26:F7:56:A2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/103AE1AC330EAC8A63D02330742753AC6FE7F0280423D4A41AAD47830E99D099/0/632D71062751773B5FA51AC0AB69127826F756A2.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/632D71062751773B5FA51AC0AB69127826F756A2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/103AE1AC330EAC8A63D02330742753AC6FE7F0280423D4A41AAD47830E99D099/0/3133312e3130382e31362e302f32322d3232203d3e20323633373434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.108.16.0/22
Signature Algorithm: sha256WithRSAEncryption
23:9a:23:a8:7e:a9:8a:95:34:bd:fd:30:02:26:dd:e2:ab:31:
ae:f7:9c:ce:5d:f1:77:89:24:e1:a1:d3:3d:45:22:61:b6:31:
51:73:2d:26:9c:ec:d0:ec:ae:da:fb:82:97:90:b9:25:59:48:
84:f0:6e:28:0c:5e:d4:a9:ac:73:54:9e:d1:93:50:33:51:d3:
ca:cd:97:3f:dc:37:4b:3f:ec:3a:4d:f4:4d:ce:45:63:05:eb:
64:bd:84:11:ec:e7:5d:7c:f6:f6:5d:60:d6:47:bf:08:6a:fc:
54:a3:52:1f:8e:19:37:4e:12:c4:e2:54:e3:88:46:71:ec:0e:
1b:4e:ec:ce:02:28:ad:90:b0:39:d5:9d:11:2a:40:53:70:05:
73:9b:c7:1f:de:dc:3f:e0:95:c3:57:df:c0:e1:46:7f:f3:69:
11:9e:2e:dd:ff:1a:43:ab:be:ce:c6:f6:94:fe:6d:30:33:16:
6f:27:5b:2d:f9:56:0b:e5:08:e7:85:54:99:39:b4:98:63:7f:
b1:56:64:10:e8:07:40:75:3b:2d:d9:aa:cc:90:ff:18:20:9f:
cf:93:88:53:5f:0f:56:5b:db:ae:0f:6a:dc:ad:c2:1a:8c:27:
22:76:a3:fc:e9:9d:1d:92:ae:c4:d2:d2:15:61:31:3a:80:83:
ed:77:21:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 04:26:48 2025 by rpki-client