Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3137392e34332e3132312e302f32342d3234203d3e203237383233.roa
File: 3137392e34332e3132312e302f32342d3234203d3e203237383233.roa (raw, json)
Hash identifier: KlsFtL9glPfXc36T/4wc1WkfrSE9MTejpv/K5+kSLr0=
Subject key identifier: 21:CD:61:C0:0E:22:FE:F3:D8:C7:1A:22:AE:3D:61:4D:4D:FC:D9:00
Certificate issuer: /CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80
Certificate serial: 7D8B0347BDEDC197A50A01F05B32D31309A4A71C
Authority key identifier: A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3137392e34332e3132312e302f32342d3234203d3e203237383233.roa
Signing time: Tue 04 Feb 2025 18:08:12 +0000
ROA not before: Tue 04 Feb 2025 18:03:12 +0000
ROA not after: Tue 03 Feb 2026 18:08:12 +0000
asID: 27823
IP address blocks: 179.43.121.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.crl
rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 07:17:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:8b:03:47:bd:ed:c1:97:a5:0a:01:f0:5b:32:d3:13:09:a4:a7:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80
Validity
Not Before: Feb 4 18:03:12 2025 GMT
Not After : Feb 3 18:08:12 2026 GMT
Subject: CN=21CD61C00E22FEF3D8C71A22AE3D614D4DFCD900
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:1e:e5:cd:70:90:58:43:26:42:a9:d2:69:5f:
cd:d8:df:d7:fb:6e:e5:91:9c:fe:7e:f4:e6:a2:68:
3c:d8:98:dd:31:00:1a:cd:f2:82:33:9b:9b:b1:b0:
4c:1b:e2:1e:41:bf:b0:bb:fd:c7:03:47:70:4b:05:
73:47:59:89:6c:7e:67:eb:06:74:79:98:e8:ba:24:
db:a4:6c:74:be:e9:9e:0a:61:49:fa:0e:07:55:75:
19:52:29:6f:c0:ab:0e:66:2b:61:f5:15:91:1d:90:
6c:a0:29:bc:67:3d:4a:25:f1:91:2e:8b:65:fa:df:
a6:d1:04:c9:51:8b:e7:f6:72:1f:4b:92:d2:8f:7a:
9b:29:6f:3a:85:ba:94:b0:bc:e6:fa:35:47:6f:7e:
88:1f:41:07:8f:32:9c:02:ee:c4:9d:78:d4:58:fa:
70:11:ed:1a:b6:11:7d:6b:63:5c:b1:e8:9f:1a:db:
0e:bf:ed:05:4b:91:b2:9e:dc:48:c7:1f:0c:ea:6f:
f6:38:ea:b9:04:30:26:76:37:70:ee:17:a0:1d:e1:
cb:d1:5c:b5:69:a3:d8:b6:ab:56:11:82:a1:ba:9f:
b6:8f:49:ed:62:e4:fc:81:d0:b0:1f:2a:59:08:9e:
81:2d:b4:b4:12:a5:33:18:90:5e:8e:dd:b2:e5:f8:
46:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:CD:61:C0:0E:22:FE:F3:D8:C7:1A:22:AE:3D:61:4D:4D:FC:D9:00
X509v3 Authority Key Identifier:
keyid:A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3137392e34332e3132312e302f32342d3234203d3e203237383233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.43.121.0/24
Signature Algorithm: sha256WithRSAEncryption
24:56:e4:42:cd:25:af:d6:c5:5c:5f:10:be:bd:a5:b9:cd:90:
55:ba:2f:96:66:d1:90:1d:87:e9:01:eb:d3:bd:95:8a:2a:f8:
e3:8b:a1:ad:3f:da:a1:31:a0:6d:81:23:af:1e:59:57:ba:04:
9a:8b:3c:ae:b2:03:21:6a:9f:37:1c:96:90:98:49:90:b4:ce:
7e:ee:8a:22:a5:a8:6e:b0:fa:aa:b5:14:57:62:bd:d6:db:48:
bf:ed:a3:f0:31:86:af:b0:a7:2b:23:45:a7:31:72:7b:f7:b3:
9a:14:40:ae:25:d7:58:7d:69:53:d8:e0:c1:91:2e:87:4b:9f:
25:9d:2b:be:74:b2:01:e1:7b:fd:e6:5c:1a:f6:17:0f:36:7f:
ff:d0:b5:0a:59:7c:db:2b:5d:a4:31:11:bd:0f:07:f6:51:13:
89:ab:09:8c:72:5d:b3:d9:23:c8:40:be:ef:6a:3b:ef:ec:6c:
9f:2a:ba:c7:68:00:51:42:07:fe:34:e3:e1:a1:7b:94:46:0a:
d6:83:5c:f6:f4:87:1e:6d:0f:a6:16:4f:a8:fa:81:03:d7:bf:
00:47:f1:12:9e:d0:8f:00:d3:66:3f:f7:82:6b:a7:4e:7b:74:
57:c0:43:29:82:d9:d1:46:20:9c:e1:0a:f1:68:b5:86:f4:b4:
4d:ff:9a:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 22:06:54 2025 by rpki-client