Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/3230302e38352e3133302e302f32342d3234203d3e20323731393036.roa
File: 3230302e38352e3133302e302f32342d3234203d3e20323731393036.roa (raw, json)
Hash identifier: Cn7RbvHKERkpW2NPWoc4JvBzMa5n3N2bFGFH0TFJTX4=
Subject key identifier: E7:2A:AA:3F:F2:19:7E:19:0E:D6:73:28:99:25:F8:5A:47:5A:4E:F6
Certificate issuer: /CN=AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3
Certificate serial: 234ABE4B2E77AB233CA4A643FE6155B556B8813C
Authority key identifier: AC:68:ED:FE:9E:FC:97:5A:F8:92:AC:92:B6:AE:19:14:A3:B2:D0:D3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/3230302e38352e3133302e302f32342d3234203d3e20323731393036.roa
Signing time: Tue 04 Feb 2025 18:40:03 +0000
ROA not before: Tue 04 Feb 2025 18:35:03 +0000
ROA not after: Tue 03 Feb 2026 18:40:03 +0000
asID: 271906
IP address blocks: 200.85.130.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.crl
rsync://repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:4a:be:4b:2e:77:ab:23:3c:a4:a6:43:fe:61:55:b5:56:b8:81:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3
Validity
Not Before: Feb 4 18:35:03 2025 GMT
Not After : Feb 3 18:40:03 2026 GMT
Subject: CN=E72AAA3FF2197E190ED673289925F85A475A4EF6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b7:0d:92:cb:1b:ae:5b:a9:3f:57:bb:76:78:
0f:58:c8:16:d8:87:51:5b:53:82:89:16:7b:4e:6d:
e7:ad:5f:6c:21:99:5c:28:47:47:cc:a0:84:33:30:
75:af:55:9c:23:0a:f4:c4:ea:4d:b7:a2:30:7d:e9:
49:70:7f:12:8b:8a:08:97:6a:c6:77:ad:21:06:65:
fc:1d:77:c9:1d:48:e9:ef:db:77:ee:5c:d9:47:6e:
bf:64:9a:86:86:05:b9:7d:ed:1b:79:1a:2a:93:8c:
00:38:52:3c:35:b2:ef:fd:d7:c8:14:b7:c0:7b:10:
76:5d:4b:cf:0c:64:81:e5:57:6a:f3:c9:2e:70:68:
d2:d5:13:e5:bf:df:22:df:4b:75:1e:89:6c:a5:9a:
44:df:7b:5e:23:cf:19:fa:27:91:19:59:89:84:12:
3c:2d:bb:65:c6:47:50:cf:f0:78:5c:56:b0:0a:af:
e8:dc:87:1c:82:89:c7:4f:b4:ca:a8:41:1a:17:be:
09:c8:e1:09:e6:3e:ae:54:85:cc:1a:7e:07:72:ef:
c7:96:41:38:fb:72:13:6b:42:78:f3:78:03:8c:8f:
6b:48:24:86:c5:91:52:9f:d2:28:d3:a1:7d:9e:7f:
45:2c:51:4d:a1:b2:0c:30:49:90:95:c6:75:3a:98:
d4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:2A:AA:3F:F2:19:7E:19:0E:D6:73:28:99:25:F8:5A:47:5A:4E:F6
X509v3 Authority Key Identifier:
keyid:AC:68:ED:FE:9E:FC:97:5A:F8:92:AC:92:B6:AE:19:14:A3:B2:D0:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/3230302e38352e3133302e302f32342d3234203d3e20323731393036.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.85.130.0/24
Signature Algorithm: sha256WithRSAEncryption
23:33:74:be:06:47:eb:8a:3b:43:c7:7d:09:61:f0:0a:ca:48:
ea:12:42:ec:66:01:eb:80:fe:a2:33:ca:32:06:ed:5c:10:c9:
9f:84:08:9c:1d:89:e0:98:f4:ac:e8:64:23:65:07:88:95:d8:
aa:33:3a:39:f3:12:ca:63:e1:60:c6:5a:2a:c3:93:3b:3a:22:
bd:de:72:b8:ec:23:60:cc:3c:0a:83:3a:f8:96:73:ca:03:04:
ac:5b:b4:cf:c4:23:46:10:61:5e:64:7c:60:63:1a:13:97:5f:
a0:c0:4e:9d:c8:3d:16:a4:d8:7c:7a:a6:23:fd:00:31:22:22:
01:fa:e3:aa:63:f1:6a:6f:5d:3f:11:b4:e4:fe:07:8c:7b:68:
e6:74:f7:d6:a7:59:43:da:5a:7e:1a:0e:74:1e:82:31:8c:8c:
eb:6b:c9:4a:ce:12:3a:a3:fe:ba:48:9d:e9:ad:29:39:3a:32:
8a:af:e1:83:d4:28:54:c5:18:27:4a:72:76:65:64:ee:6f:31:
44:06:a1:ec:0d:b5:d6:65:74:45:b9:ca:93:19:bc:9c:d0:bb:
df:90:f4:0a:98:c2:87:55:0c:00:8e:f8:72:8a:8b:de:b8:4b:
77:8a:7e:a8:22:bc:77:74:54:1b:75:f0:b1:f8:a8:4e:96:00:
26:fd:53:75
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUI0q+Sy53qyM8pKZD/mFVtVa4gTwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQUM2OEVERkU5RUZDOTc1QUY4OTJBQzkyQjZBRTE5MTRB
M0IyRDBEMzAeFw0yNTAyMDQxODM1MDNaFw0yNjAyMDMxODQwMDNaMDMxMTAvBgNV
BAMTKEU3MkFBQTNGRjIxOTdFMTkwRUQ2NzMyODk5MjVGODVBNDc1QTRFRjYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5tw2SyxuuW6k/V7t2eA9YyBbY
h1FbU4KJFntObeetX2whmVwoR0fMoIQzMHWvVZwjCvTE6k23ojB96UlwfxKLigiX
asZ3rSEGZfwdd8kdSOnv23fuXNlHbr9kmoaGBbl97Rt5GiqTjAA4Ujw1su/918gU
t8B7EHZdS88MZIHlV2rzyS5waNLVE+W/3yLfS3UeiWylmkTfe14jzxn6J5EZWYmE
Ejwtu2XGR1DP8HhcVrAKr+jchxyCicdPtMqoQRoXvgnI4QnmPq5Uhcwafgdy78eW
QTj7chNrQnjzeAOMj2tIJIbFkVKf0ijToX2ef0UsUU2hsgwwSZCVxnU6mNQNAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQU5yqqP/IZfhkO1nMomSX4WkdaTvYwHwYDVR0j
BBgwFoAUrGjt/p78l1r4kqyStq4ZFKOy0NMwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8xQThGQjlCNTBCRDZGNkJEQjkwNUQ0RjUyOTVFMzlFNzc3
MEJFQUJDMjQ3MUYyQjQ1OTg5QjM2MTk4Q0ZBRjY3LzAvQUM2OEVERkU5RUZDOTc1
QUY4OTJBQzkyQjZBRTE5MTRBM0IyRDBEMy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9BQzY4RURGRTlFRkM5NzVBRjg5
MkFDOTJCNkFFMTkxNEEzQjJEMEQzLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMUE4RkI5QjUwQkQ2RjZCREI5MDVENEY1Mjk1RTM5RTc3NzBCRUFCQzI0
NzFGMkI0NTk4OUIzNjE5OENGQUY2Ny8wLzMyMzAzMDJlMzgzNTJlMzEzMzMwMmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNzMxMzkzMDM2LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyFWC
MA0GCSqGSIb3DQEBCwUAA4IBAQAjM3S+BkfrijtDx30JYfAKykjqEkLsZgHrgP6i
M8oyBu1cEMmfhAicHYngmPSs6GQjZQeIldiqMzo58xLKY+Fgxloqw5M7OiK93nK4
7CNgzDwKgzr4lnPKAwSsW7TPxCNGEGFeZHxgYxoTl1+gwE6dyD0WpNh8eqYj/QAx
IiIB+uOqY/Fqb10/EbTk/geMe2jmdPfWp1lD2lp+Gg50HoIxjIzra8lKzhI6o/66
SJ3prSk5OjKKr+GD1ChUxRgnSnJ2ZWTubzFEBqHsDbXWZXRFucqTGbyc0LvfkPQK
mMKHVQwAjvhyioveuEt3in6oIrx3dFQbdfCx+KhOlgAm/VN1
-----END CERTIFICATE-----
Generated at Mon Apr 14 19:09:02 2025 by rpki-client