Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1489EDDEDD16840B285BCF11153DD1A04B180E51826F3B121184F750C824FF88/0/3137302e3233392e3132382e302f32322d3234203d3e20323633373336.roa
File: 3137302e3233392e3132382e302f32322d3234203d3e20323633373336.roa (raw, json)
Hash identifier: ZjuXBLq6kh06FNk3nUx9QMlVljFchcVqsd6haxB6b9U=
Subject key identifier: B1:79:F5:BE:5B:46:19:3C:EA:A6:A7:44:27:4A:5F:AB:3B:4D:83:DB
Certificate issuer: /CN=6D3FC3D1EF1497B650EA4B8F238C71F242CCD88A
Certificate serial: 4E71DD336036732EC40E5F5AC855A0629A780D82
Authority key identifier: 6D:3F:C3:D1:EF:14:97:B6:50:EA:4B:8F:23:8C:71:F2:42:CC:D8:8A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6D3FC3D1EF1497B650EA4B8F238C71F242CCD88A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1489EDDEDD16840B285BCF11153DD1A04B180E51826F3B121184F750C824FF88/0/3137302e3233392e3132382e302f32322d3234203d3e20323633373336.roa
Signing time: Tue 04 Feb 2025 18:37:32 +0000
ROA not before: Tue 04 Feb 2025 18:32:32 +0000
ROA not after: Tue 03 Feb 2026 18:37:32 +0000
asID: 263736
IP address blocks: 170.239.128.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/1489EDDEDD16840B285BCF11153DD1A04B180E51826F3B121184F750C824FF88/0/6D3FC3D1EF1497B650EA4B8F238C71F242CCD88A.crl
rsync://repository.lacnic.net/rpki/lacnic/1489EDDEDD16840B285BCF11153DD1A04B180E51826F3B121184F750C824FF88/0/6D3FC3D1EF1497B650EA4B8F238C71F242CCD88A.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6D3FC3D1EF1497B650EA4B8F238C71F242CCD88A.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:71:dd:33:60:36:73:2e:c4:0e:5f:5a:c8:55:a0:62:9a:78:0d:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6D3FC3D1EF1497B650EA4B8F238C71F242CCD88A
Validity
Not Before: Feb 4 18:32:32 2025 GMT
Not After : Feb 3 18:37:32 2026 GMT
Subject: CN=B179F5BE5B46193CEAA6A744274A5FAB3B4D83DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a4:35:2c:03:92:f7:be:f0:4d:3d:28:74:d3:
68:ce:35:20:20:40:ae:5f:73:1e:c7:ef:09:1f:a6:
61:2a:35:1d:6b:0b:97:fd:49:45:a4:ee:e9:29:61:
38:d4:fc:23:ec:85:f9:62:b0:5d:c9:20:85:79:53:
fa:0e:d4:2e:fb:d4:73:ee:9d:5b:88:6f:cf:85:ae:
69:75:d7:ec:b5:fc:7d:49:9a:06:2d:07:15:f7:57:
98:59:93:bf:ac:ca:99:cf:51:bf:5f:e6:31:15:94:
da:be:f5:15:14:5f:ec:8a:d1:a8:52:60:e9:ab:74:
1c:40:d6:6f:42:79:2e:16:27:9c:71:1a:b5:3a:d0:
25:26:7d:2c:8f:34:7e:50:2c:f4:97:28:b7:e5:d3:
f7:84:18:52:6a:8f:02:c2:17:0a:25:d6:14:0d:0f:
df:c8:2f:13:08:2d:51:22:89:c5:b4:14:18:d2:78:
01:07:5c:3d:95:a4:9f:9c:6c:fa:00:95:f9:14:55:
5e:1d:d0:8c:c2:b0:13:20:86:76:e3:2b:6a:cc:98:
a2:b7:98:3c:9a:db:01:63:20:b8:4b:22:82:99:d1:
cb:f2:cf:17:9a:44:d2:af:80:95:4b:49:8e:c5:29:
a2:3b:98:b6:fb:af:50:cb:27:ce:56:7f:01:69:a3:
fe:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:79:F5:BE:5B:46:19:3C:EA:A6:A7:44:27:4A:5F:AB:3B:4D:83:DB
X509v3 Authority Key Identifier:
keyid:6D:3F:C3:D1:EF:14:97:B6:50:EA:4B:8F:23:8C:71:F2:42:CC:D8:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1489EDDEDD16840B285BCF11153DD1A04B180E51826F3B121184F750C824FF88/0/6D3FC3D1EF1497B650EA4B8F238C71F242CCD88A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6D3FC3D1EF1497B650EA4B8F238C71F242CCD88A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1489EDDEDD16840B285BCF11153DD1A04B180E51826F3B121184F750C824FF88/0/3137302e3233392e3132382e302f32322d3234203d3e20323633373336.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.239.128.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:68:65:4d:a2:8a:2d:7a:57:d5:23:52:8f:c1:e9:38:c3:ce:
73:bb:2b:a9:d1:26:00:6d:7f:f0:5e:7f:7b:49:b6:9f:4f:3f:
3f:c9:07:84:9c:5a:f4:34:6f:12:c9:53:13:2d:96:63:e0:9c:
19:0c:03:6e:b1:04:9f:f2:11:89:fc:dd:34:07:dd:7f:fe:3b:
de:9d:4e:02:85:2c:4b:e3:6f:b1:ac:52:02:23:e4:b5:84:f2:
c4:af:7d:dd:32:1a:3a:45:82:25:a9:ea:c3:87:b9:05:ad:3c:
47:8e:71:92:9f:21:bf:c1:6d:80:9e:c7:27:8e:62:9b:ee:b5:
5a:fd:e6:38:d7:0b:63:26:c0:00:02:83:57:55:3a:05:99:dc:
d1:aa:0a:52:c4:c9:e9:37:8a:65:31:96:62:b2:5e:40:02:52:
6f:af:69:52:e1:b0:84:89:de:79:d4:51:e2:87:b6:d7:7d:a2:
89:3b:77:20:5a:2e:81:0d:46:1d:88:8b:1f:00:1c:a7:9f:84:
d2:13:03:f1:df:07:6e:04:71:75:9c:27:09:55:73:82:df:31:
60:51:f2:96:a1:74:70:3f:a3:aa:4b:97:23:4e:88:75:cb:9e:
05:7f:ab:46:c1:04:c7:b1:c5:76:13:5d:a8:2c:c3:f3:aa:55:
90:9f:99:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 18:16:55 2025 by rpki-client