Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/111D092A6DA63F829977CF80EA5EAD226BC8733214E20AD24287A581FCCD8146/0/323830333a643861303a3a2f33322d3438203d3e20323636383132.roa
File: 323830333a643861303a3a2f33322d3438203d3e20323636383132.roa (raw, json)
Hash identifier: Tv46jSL3jD0k1NXV0T/tAaiSDTR6TBPS4SWa9rtammU=
Subject key identifier: D9:59:46:2E:50:BE:1E:54:67:26:88:CF:BD:7E:EC:71:29:A7:47:1D
Certificate issuer: /CN=28AB99A51F6C6981A558CD0B48ACF4CDCBA9536A
Certificate serial: 0B168B55ABBD5882DE12D6A5D44C0A8359EF6A01
Authority key identifier: 28:AB:99:A5:1F:6C:69:81:A5:58:CD:0B:48:AC:F4:CD:CB:A9:53:6A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/28AB99A51F6C6981A558CD0B48ACF4CDCBA9536A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/111D092A6DA63F829977CF80EA5EAD226BC8733214E20AD24287A581FCCD8146/0/323830333a643861303a3a2f33322d3438203d3e20323636383132.roa
Signing time: Tue 04 Feb 2025 20:07:26 +0000
ROA not before: Tue 04 Feb 2025 20:02:26 +0000
ROA not after: Tue 03 Feb 2026 20:07:26 +0000
asID: 266812
IP address blocks: 2803:d8a0::/32 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/111D092A6DA63F829977CF80EA5EAD226BC8733214E20AD24287A581FCCD8146/0/28AB99A51F6C6981A558CD0B48ACF4CDCBA9536A.crl
rsync://repository.lacnic.net/rpki/lacnic/111D092A6DA63F829977CF80EA5EAD226BC8733214E20AD24287A581FCCD8146/0/28AB99A51F6C6981A558CD0B48ACF4CDCBA9536A.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/28AB99A51F6C6981A558CD0B48ACF4CDCBA9536A.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 00:03:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:16:8b:55:ab:bd:58:82:de:12:d6:a5:d4:4c:0a:83:59:ef:6a:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28AB99A51F6C6981A558CD0B48ACF4CDCBA9536A
Validity
Not Before: Feb 4 20:02:26 2025 GMT
Not After : Feb 3 20:07:26 2026 GMT
Subject: CN=D959462E50BE1E54672688CFBD7EEC7129A7471D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:c4:bd:36:2e:25:41:52:9f:aa:62:2e:5d:af:
c2:78:64:e6:dd:cd:01:30:bc:d4:25:e0:52:38:18:
63:44:fe:fe:1e:1a:0e:3f:9d:44:27:3e:77:cf:c3:
3a:c2:74:0e:c5:45:38:c8:3c:52:65:3e:8c:2c:29:
00:d9:44:9e:e5:17:f9:d0:c8:8e:c8:b5:c4:9f:b8:
00:c7:28:21:6f:2d:cf:d7:55:34:77:4d:6c:df:d2:
a6:40:60:f9:7b:05:63:bb:56:8c:57:e5:91:a1:d1:
2d:b2:f5:f0:65:97:11:5d:ca:47:6e:7a:90:d2:b9:
69:df:f2:ce:7f:c3:a3:22:9a:82:c7:0e:16:8e:c1:
08:03:ee:b9:bd:54:49:da:ba:c1:a7:60:7a:50:d7:
27:32:ff:fa:f8:f7:88:47:2a:51:16:7f:f9:a5:5a:
c3:e6:5a:64:a8:8e:77:d2:bc:20:55:ee:62:b9:1d:
1e:82:7d:27:ae:81:e1:19:34:29:c2:fa:db:2d:0b:
37:15:e7:44:27:ab:46:c3:b5:4e:86:38:80:85:db:
e2:40:db:06:7e:e8:70:12:27:74:6b:e0:63:33:d5:
a6:9c:26:be:9d:15:c3:d2:b1:2a:90:89:7b:5f:e0:
73:be:c3:8e:45:31:47:72:c7:c5:3d:5d:4e:d6:ff:
70:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:59:46:2E:50:BE:1E:54:67:26:88:CF:BD:7E:EC:71:29:A7:47:1D
X509v3 Authority Key Identifier:
keyid:28:AB:99:A5:1F:6C:69:81:A5:58:CD:0B:48:AC:F4:CD:CB:A9:53:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/111D092A6DA63F829977CF80EA5EAD226BC8733214E20AD24287A581FCCD8146/0/28AB99A51F6C6981A558CD0B48ACF4CDCBA9536A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/28AB99A51F6C6981A558CD0B48ACF4CDCBA9536A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/111D092A6DA63F829977CF80EA5EAD226BC8733214E20AD24287A581FCCD8146/0/323830333a643861303a3a2f33322d3438203d3e20323636383132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:d8a0::/32
Signature Algorithm: sha256WithRSAEncryption
9d:19:90:94:98:09:a9:1a:3b:82:94:06:26:e5:6e:88:6e:2b:
25:6b:6c:69:03:ed:e3:71:bc:ad:80:8e:9a:1f:c7:4c:c3:88:
57:95:37:67:24:2e:aa:df:c9:18:c7:46:9a:67:b4:67:69:4d:
78:66:b0:8d:fa:e1:d4:6f:8e:fe:d4:94:8c:a5:41:20:8c:d1:
49:01:8f:fc:de:d0:96:ab:69:85:a0:45:9d:19:4b:d7:dd:bd:
0c:2f:e4:d8:9e:19:78:2e:ee:90:2e:23:8a:36:8a:6f:a5:5c:
12:bd:ad:a6:2d:c8:00:64:00:c1:a9:c1:12:e0:05:db:a6:ab:
5f:dc:31:a1:0c:ec:f5:13:6d:e0:dc:84:ca:41:70:f7:f1:37:
ee:05:5a:17:ad:1d:de:cf:e8:d7:ea:47:06:8c:2b:00:b5:10:
9a:dd:73:94:ed:18:3b:6a:4a:d2:13:2e:76:38:5c:75:74:5b:
a0:26:c8:9a:c2:46:3c:0f:22:3a:ea:ee:2d:e7:3c:91:19:b6:
d9:1c:48:33:c4:30:40:ed:87:1a:75:e3:5a:51:82:e0:1d:4e:
6d:c8:c8:a6:21:a6:10:68:dc:3d:e2:b5:d2:56:5d:e8:3c:68:
1e:9f:f0:37:b7:52:ef:a3:1c:f1:bb:55:d4:a4:6c:be:89:64:
4f:15:b1:a7
-----BEGIN CERTIFICATE-----
MIIFvzCCBKegAwIBAgIUCxaLVau9WILeEtal1EwKg1nvagEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjhBQjk5QTUxRjZDNjk4MUE1NThDRDBCNDhBQ0Y0Q0RD
QkE5NTM2QTAeFw0yNTAyMDQyMDAyMjZaFw0yNjAyMDMyMDA3MjZaMDMxMTAvBgNV
BAMTKEQ5NTk0NjJFNTBCRTFFNTQ2NzI2ODhDRkJEN0VFQzcxMjlBNzQ3MUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgxL02LiVBUp+qYi5dr8J4ZObd
zQEwvNQl4FI4GGNE/v4eGg4/nUQnPnfPwzrCdA7FRTjIPFJlPowsKQDZRJ7lF/nQ
yI7ItcSfuADHKCFvLc/XVTR3TWzf0qZAYPl7BWO7VoxX5ZGh0S2y9fBllxFdykdu
epDSuWnf8s5/w6MimoLHDhaOwQgD7rm9VEnausGnYHpQ1ycy//r494hHKlEWf/ml
WsPmWmSojnfSvCBV7mK5HR6CfSeugeEZNCnC+tstCzcV50Qnq0bDtU6GOICF2+JA
2wZ+6HASJ3Rr4GMz1aacJr6dFcPSsSqQiXtf4HO+w45FMUdyx8U9XU7W/3AJAgMB
AAGjggLJMIICxTAdBgNVHQ4EFgQU2VlGLlC+HlRnJojPvX7scSmnRx0wHwYDVR0j
BBgwFoAUKKuZpR9saYGlWM0LSKz0zcupU2owDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8xMTFEMDkyQTZEQTYzRjgyOTk3N0NGODBFQTVFQUQyMjZC
Qzg3MzMyMTRFMjBBRDI0Mjg3QTU4MUZDQ0Q4MTQ2LzAvMjhBQjk5QTUxRjZDNjk4
MUE1NThDRDBCNDhBQ0Y0Q0RDQkE5NTM2QS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yOEFCOTlBNTFGNkM2OTgxQTU1
OENEMEI0OEFDRjRDRENCQTk1MzZBLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMTExRDA5MkE2REE2M0Y4Mjk5NzdDRjgwRUE1RUFEMjI2QkM4NzMzMjE0
RTIwQUQyNDI4N0E1ODFGQ0NEODE0Ni8wLzMyMzgzMDMzM2E2NDM4NjEzMDNhM2Ey
ZjMzMzIyZDM0MzgyMDNkM2UyMDMyMzYzNjM4MzEzMi5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACgD2KAw
DQYJKoZIhvcNAQELBQADggEBAJ0ZkJSYCakaO4KUBiblbohuKyVrbGkD7eNxvK2A
jpofx0zDiFeVN2ckLqrfyRjHRppntGdpTXhmsI364dRvjv7UlIylQSCM0UkBj/ze
0JaraYWgRZ0ZS9fdvQwv5NieGXgu7pAuI4o2im+lXBK9raYtyABkAMGpwRLgBdum
q1/cMaEM7PUTbeDchMpBcPfxN+4FWhetHd7P6NfqRwaMKwC1EJrdc5TtGDtqStIT
LnY4XHV0W6AmyJrCRjwPIjrq7i3nPJEZttkcSDPEMEDthxp141pRguAdTm3IyKYh
phBo3D3itdJWXeg8aB6f8De3Uu+jHPG7VdSkbL6JZE8Vsac=
-----END CERTIFICATE-----
Generated at Mon Apr 14 11:28:11 2025 by rpki-client