Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1A8DFEFC267C90FA673EB149935ED7F0100A2DF47ED9FBD4570456D1D71E7525/0/3138362e3135392e39362e302f32302d3230203d3e203237373435.roa
File: 3138362e3135392e39362e302f32302d3230203d3e203237373435.roa (raw, json)
Hash identifier: Jub+aXjLeLf0C/mj59SHPCah9LHXQ6PJYwmp7ie0+lI=
Subject key identifier: B2:F3:24:61:39:01:5D:6F:16:36:DA:F9:7A:D1:6C:0A:86:19:71:8C
Certificate issuer: /CN=15DB6B388486161B93957759E07BEB14CE6D932F
Certificate serial: 6297163A2B9E25D2FD0BC46042FE155DD00CB295
Authority key identifier: 15:DB:6B:38:84:86:16:1B:93:95:77:59:E0:7B:EB:14:CE:6D:93:2F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/15DB6B388486161B93957759E07BEB14CE6D932F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1A8DFEFC267C90FA673EB149935ED7F0100A2DF47ED9FBD4570456D1D71E7525/0/3138362e3135392e39362e302f32302d3230203d3e203237373435.roa
Signing time: Tue 04 Feb 2025 18:32:49 +0000
ROA not before: Tue 04 Feb 2025 18:27:49 +0000
ROA not after: Tue 03 Feb 2026 18:32:49 +0000
asID: 27745
IP address blocks: 186.159.96.0/20 maxlen: 20
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/1A8DFEFC267C90FA673EB149935ED7F0100A2DF47ED9FBD4570456D1D71E7525/0/15DB6B388486161B93957759E07BEB14CE6D932F.crl
rsync://repository.lacnic.net/rpki/lacnic/1A8DFEFC267C90FA673EB149935ED7F0100A2DF47ED9FBD4570456D1D71E7525/0/15DB6B388486161B93957759E07BEB14CE6D932F.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/15DB6B388486161B93957759E07BEB14CE6D932F.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 20:38:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:97:16:3a:2b:9e:25:d2:fd:0b:c4:60:42:fe:15:5d:d0:0c:b2:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15DB6B388486161B93957759E07BEB14CE6D932F
Validity
Not Before: Feb 4 18:27:49 2025 GMT
Not After : Feb 3 18:32:49 2026 GMT
Subject: CN=B2F3246139015D6F1636DAF97AD16C0A8619718C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b3:09:50:81:11:d1:a6:2c:7d:7d:9b:8d:36:
9b:ab:8f:98:ab:61:65:26:06:f4:81:de:a3:79:79:
37:39:a9:e2:26:c5:68:13:ed:43:8a:b1:5f:1f:f4:
bd:62:6a:67:cf:42:34:45:2a:4d:67:ac:40:ac:56:
bf:66:7f:f1:74:13:f4:24:89:21:02:44:66:99:7e:
84:26:55:99:e0:42:07:48:de:4d:02:cd:45:c0:68:
e8:2b:e2:01:44:6c:2b:bf:28:9a:6f:09:ed:d0:02:
d3:59:8a:9b:b3:b0:e5:ef:66:ec:a2:f1:a9:dd:81:
45:b6:ce:94:5d:21:3c:99:1d:f7:8a:22:33:da:bc:
34:10:40:88:48:af:b5:86:8b:45:10:8e:92:06:03:
58:95:be:a3:9d:50:ad:a7:91:fb:ce:73:3d:6e:43:
64:cf:c9:7d:ff:a1:90:6b:db:fb:7a:d1:bc:e8:09:
da:78:0d:a8:51:cc:7d:e7:57:3c:40:4d:f7:b1:4c:
73:27:15:ef:78:68:db:a0:d2:12:cf:2e:77:5b:81:
2a:9f:4f:2a:24:64:cc:24:72:c7:5f:30:ea:b3:63:
70:8a:c5:95:40:85:57:40:19:af:35:71:1c:60:95:
8b:85:63:1e:84:48:d0:bd:6a:a2:96:68:9a:ec:df:
77:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:F3:24:61:39:01:5D:6F:16:36:DA:F9:7A:D1:6C:0A:86:19:71:8C
X509v3 Authority Key Identifier:
keyid:15:DB:6B:38:84:86:16:1B:93:95:77:59:E0:7B:EB:14:CE:6D:93:2F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1A8DFEFC267C90FA673EB149935ED7F0100A2DF47ED9FBD4570456D1D71E7525/0/15DB6B388486161B93957759E07BEB14CE6D932F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/15DB6B388486161B93957759E07BEB14CE6D932F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1A8DFEFC267C90FA673EB149935ED7F0100A2DF47ED9FBD4570456D1D71E7525/0/3138362e3135392e39362e302f32302d3230203d3e203237373435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.159.96.0/20
Signature Algorithm: sha256WithRSAEncryption
17:dc:08:b5:69:36:ca:24:79:e9:6e:99:1c:fe:b2:96:c1:f2:
a0:68:a2:d9:26:15:13:d2:f5:20:c7:b9:bf:dd:d1:d6:14:88:
4d:35:ba:c3:8f:95:e8:13:da:9c:2c:28:a5:b1:cd:7a:46:19:
fd:29:f6:5f:1f:05:c0:20:c2:29:85:e8:69:ff:c1:3c:b7:9f:
84:ac:11:4b:f9:25:61:01:d7:eb:62:26:b3:d0:ce:5c:a6:19:
1c:49:87:aa:62:2f:15:74:04:08:ae:8c:66:90:28:2e:d9:f8:
94:6f:ec:cb:70:ec:18:bf:d9:7f:d1:3b:ba:58:1b:70:89:f9:
78:33:2b:97:7f:f5:24:c2:b9:9c:87:30:92:b1:41:71:16:b1:
73:cb:88:27:13:d0:42:3e:da:89:fd:8c:46:d5:9b:47:8b:1c:
26:0c:29:1e:cc:4e:86:70:4b:a8:8e:af:27:ff:8b:5c:b9:34:
ff:f4:5c:73:c2:16:76:37:74:95:ab:99:b4:5f:ee:35:df:30:
7a:0f:16:67:6a:e9:23:c3:0d:10:f9:68:aa:84:21:1f:aa:d9:
42:0e:37:10:a2:b0:51:1a:c8:12:36:a1:26:27:fc:09:e2:a1:
1c:90:8b:04:2f:72:23:77:ca:c6:01:5a:c0:7b:2c:df:fb:2e:
3c:4e:a6:a5
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUYpcWOiueJdL9C8RgQv4VXdAMspUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTVEQjZCMzg4NDg2MTYxQjkzOTU3NzU5RTA3QkVCMTRD
RTZEOTMyRjAeFw0yNTAyMDQxODI3NDlaFw0yNjAyMDMxODMyNDlaMDMxMTAvBgNV
BAMTKEIyRjMyNDYxMzkwMTVENkYxNjM2REFGOTdBRDE2QzBBODYxOTcxOEMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCaswlQgRHRpix9fZuNNpurj5ir
YWUmBvSB3qN5eTc5qeImxWgT7UOKsV8f9L1iamfPQjRFKk1nrECsVr9mf/F0E/Qk
iSECRGaZfoQmVZngQgdI3k0CzUXAaOgr4gFEbCu/KJpvCe3QAtNZipuzsOXvZuyi
8andgUW2zpRdITyZHfeKIjPavDQQQIhIr7WGi0UQjpIGA1iVvqOdUK2nkfvOcz1u
Q2TPyX3/oZBr2/t60bzoCdp4DahRzH3nVzxATfexTHMnFe94aNug0hLPLndbgSqf
TyokZMwkcsdfMOqzY3CKxZVAhVdAGa81cRxglYuFYx6ESNC9aqKWaJrs33cxAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUsvMkYTkBXW8WNtr5etFsCoYZcYwwHwYDVR0j
BBgwFoAUFdtrOISGFhuTlXdZ4HvrFM5tky8wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8xQThERkVGQzI2N0M5MEZBNjczRUIxNDk5MzVFRDdGMDEw
MEEyREY0N0VEOUZCRDQ1NzA0NTZEMUQ3MUU3NTI1LzAvMTVEQjZCMzg4NDg2MTYx
QjkzOTU3NzU5RTA3QkVCMTRDRTZEOTMyRi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8xNURCNkIzODg0ODYxNjFCOTM5
NTc3NTlFMDdCRUIxNENFNkQ5MzJGLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMUE4REZFRkMyNjdDOTBGQTY3M0VCMTQ5OTM1RUQ3RjAxMDBBMkRGNDdF
RDlGQkQ0NTcwNDU2RDFENzFFNzUyNS8wLzMxMzgzNjJlMzEzNTM5MmUzOTM2MmUz
MDJmMzIzMDJkMzIzMDIwM2QzZTIwMzIzNzM3MzQzNS5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBLqfYDAN
BgkqhkiG9w0BAQsFAAOCAQEAF9wItWk2yiR56W6ZHP6ylsHyoGii2SYVE9L1IMe5
v93R1hSITTW6w4+V6BPanCwopbHNekYZ/Sn2Xx8FwCDCKYXoaf/BPLefhKwRS/kl
YQHX62Ims9DOXKYZHEmHqmIvFXQECK6MZpAoLtn4lG/sy3DsGL/Zf9E7ulgbcIn5
eDMrl3/1JMK5nIcwkrFBcRaxc8uIJxPQQj7aif2MRtWbR4scJgwpHsxOhnBLqI6v
J/+LXLk0//Rcc8IWdjd0lauZtF/uNd8weg8WZ2rpI8MNEPloqoQhH6rZQg43EKKw
URrIEjahJif8CeKhHJCLBC9yI3fKxgFawHss3/suPE6mpQ==
-----END CERTIFICATE-----
Generated at Fri Apr 11 20:46:33 2025 by rpki-client