Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1244569586B78FBA22BD188209EE71ED9A1EBB587A0C94B828A92E7223D62984/0/3137392e34322e3137322e302f32322d3234203d3e20323633313935.roa
File: 3137392e34322e3137322e302f32322d3234203d3e20323633313935.roa (raw, json)
Hash identifier: cR3oJYSvy/dWiWfs5im7DJQJmxMs9S41tmKf9oYkVH0=
Subject key identifier: D3:07:A2:0F:60:9E:72:90:CF:B3:F6:23:D2:C3:03:E8:49:62:60:4D
Certificate issuer: /CN=67C6935F7C38762C3BEE650617B03328B96FF014
Certificate serial: 43138D29EC487D957DD4055B6D56FE44E5746A22
Authority key identifier: 67:C6:93:5F:7C:38:76:2C:3B:EE:65:06:17:B0:33:28:B9:6F:F0:14
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/67C6935F7C38762C3BEE650617B03328B96FF014.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1244569586B78FBA22BD188209EE71ED9A1EBB587A0C94B828A92E7223D62984/0/3137392e34322e3137322e302f32322d3234203d3e20323633313935.roa
Signing time: Tue 04 Feb 2025 18:43:44 +0000
ROA not before: Tue 04 Feb 2025 18:38:44 +0000
ROA not after: Tue 03 Feb 2026 18:43:44 +0000
asID: 263195
IP address blocks: 179.42.172.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/1244569586B78FBA22BD188209EE71ED9A1EBB587A0C94B828A92E7223D62984/0/67C6935F7C38762C3BEE650617B03328B96FF014.crl
rsync://repository.lacnic.net/rpki/lacnic/1244569586B78FBA22BD188209EE71ED9A1EBB587A0C94B828A92E7223D62984/0/67C6935F7C38762C3BEE650617B03328B96FF014.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/67C6935F7C38762C3BEE650617B03328B96FF014.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 18:44:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:13:8d:29:ec:48:7d:95:7d:d4:05:5b:6d:56:fe:44:e5:74:6a:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67C6935F7C38762C3BEE650617B03328B96FF014
Validity
Not Before: Feb 4 18:38:44 2025 GMT
Not After : Feb 3 18:43:44 2026 GMT
Subject: CN=D307A20F609E7290CFB3F623D2C303E84962604D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7c:30:67:9d:00:91:9a:e4:54:40:60:7f:72:
3c:26:55:f7:11:fa:ec:5f:b7:95:3e:07:b7:b8:37:
30:47:ed:e9:d3:fa:4c:ee:40:27:20:65:70:df:09:
e1:bf:05:04:fd:83:05:36:70:2f:5a:05:7f:c3:93:
4c:54:c4:1e:f9:c3:e5:98:b2:21:08:a6:93:9f:f3:
fc:b3:92:5f:38:8b:84:fa:1f:90:f1:a8:76:92:37:
aa:a8:cb:57:96:dc:78:1b:73:a9:61:6f:55:22:36:
6b:61:b9:2b:14:48:6b:af:e4:d1:c9:80:be:49:07:
82:2a:ba:00:32:d1:10:84:76:6d:54:ac:72:cd:1b:
24:de:fc:14:1a:86:31:24:94:08:08:54:11:ee:2b:
45:52:3d:61:53:e4:af:ca:90:77:1e:2a:cc:2e:03:
cb:67:7b:4f:42:de:4d:b7:af:ac:22:6d:aa:e5:ed:
d0:90:a1:4b:2a:af:93:aa:a1:83:f1:6a:9d:46:c2:
5b:81:0d:f0:42:47:64:a1:97:54:ae:ed:65:6d:75:
44:b6:44:83:94:4e:53:15:00:35:38:52:b0:10:ae:
11:2b:18:98:e9:f3:32:fa:f6:73:cc:bd:d0:54:80:
c2:bf:6f:ab:ab:99:03:f3:75:38:40:3a:dc:4c:07:
a0:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:07:A2:0F:60:9E:72:90:CF:B3:F6:23:D2:C3:03:E8:49:62:60:4D
X509v3 Authority Key Identifier:
keyid:67:C6:93:5F:7C:38:76:2C:3B:EE:65:06:17:B0:33:28:B9:6F:F0:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1244569586B78FBA22BD188209EE71ED9A1EBB587A0C94B828A92E7223D62984/0/67C6935F7C38762C3BEE650617B03328B96FF014.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/67C6935F7C38762C3BEE650617B03328B96FF014.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1244569586B78FBA22BD188209EE71ED9A1EBB587A0C94B828A92E7223D62984/0/3137392e34322e3137322e302f32322d3234203d3e20323633313935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.42.172.0/22
Signature Algorithm: sha256WithRSAEncryption
20:b1:27:89:9d:d4:31:a1:d5:59:9f:5c:ec:0d:1a:30:15:f6:
1c:10:c4:33:8b:10:84:ad:13:6d:9d:a8:32:07:bf:1a:a1:e0:
29:be:af:b4:ff:1a:4d:1a:78:1d:9f:dd:3f:3e:55:2e:1d:bc:
b8:a9:23:76:df:ad:04:63:02:e6:80:b8:04:f1:de:89:fd:4e:
e0:62:60:94:b4:2d:62:b8:e1:b3:d5:58:18:94:5a:92:9e:a4:
ed:c4:cf:ae:68:93:c3:8e:e8:ff:cb:3d:91:1b:d3:41:53:c7:
26:f0:1e:d4:a0:2b:01:12:6a:e5:98:0d:8e:0c:15:93:e3:df:
69:99:93:7d:ef:3e:bc:ea:e8:41:c0:b4:52:b9:10:da:e2:3e:
e8:6b:e2:31:cf:b5:06:45:fa:01:09:ad:2c:d8:d4:12:c3:64:
be:1c:4d:0d:e5:7d:5a:37:96:83:d3:86:38:d5:a2:b3:e1:d0:
2f:04:4b:0f:d3:4e:11:a7:47:0a:52:e4:8c:38:54:8a:0b:65:
5b:5a:3f:b1:1f:f9:f4:a3:97:aa:09:d7:f5:69:f3:b1:0e:88:
40:8e:c3:7e:58:89:ef:74:df:da:2d:19:cb:82:fb:7d:10:be:
5a:df:8e:11:0f:c3:5c:a0:aa:b0:fe:a2:53:7c:6b:ff:97:9d:
e7:6b:66:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:13:17 2025 by rpki-client