Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/3230302e38352e3133352e302f32342d3234203d3e20323732393133.roa
File: 3230302e38352e3133352e302f32342d3234203d3e20323732393133.roa (raw, json)
Hash identifier: zjrkY5FH/PeUZG5AdMWZCLOjAvMkOl4ci/uEH8GqzEc=
Subject key identifier: 41:B2:7E:D9:0E:31:CE:0B:8B:58:98:26:12:69:B6:1E:60:78:CC:29
Certificate issuer: /CN=AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3
Certificate serial: 227D3BC210B99C85643511502F45FE6AF0B8F175
Authority key identifier: AC:68:ED:FE:9E:FC:97:5A:F8:92:AC:92:B6:AE:19:14:A3:B2:D0:D3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/3230302e38352e3133352e302f32342d3234203d3e20323732393133.roa
Signing time: Tue 04 Feb 2025 18:40:01 +0000
ROA not before: Tue 04 Feb 2025 18:35:01 +0000
ROA not after: Tue 03 Feb 2026 18:40:01 +0000
asID: 272913
IP address blocks: 200.85.135.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.crl
rsync://repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 16:24:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:7d:3b:c2:10:b9:9c:85:64:35:11:50:2f:45:fe:6a:f0:b8:f1:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3
Validity
Not Before: Feb 4 18:35:01 2025 GMT
Not After : Feb 3 18:40:01 2026 GMT
Subject: CN=41B27ED90E31CE0B8B5898261269B61E6078CC29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:5c:07:9b:a3:d0:af:ad:ef:ee:1a:f3:3a:3d:
d7:42:a1:48:ef:70:e3:84:6d:2d:3a:17:97:40:7a:
a4:b7:f4:c8:fb:36:21:2d:80:b4:b4:d6:3c:ce:ee:
cb:f1:af:db:54:30:60:9e:ca:be:12:ce:5b:3c:51:
62:55:bf:4c:d5:4a:cf:a5:a5:1e:9a:a9:8f:33:91:
32:da:e4:71:47:27:0c:72:83:d9:ae:66:f5:07:63:
ab:de:f7:72:ef:a3:71:bf:d3:4b:72:b0:f4:54:b8:
15:2e:79:0e:f0:c8:10:0b:57:05:29:e0:d5:90:ce:
62:63:7b:9e:f1:20:9e:e5:05:f5:88:03:4b:8f:45:
82:64:12:a2:6c:db:78:b9:51:0b:fc:01:cb:72:2d:
7e:a7:5b:9b:04:5c:78:e1:01:28:76:87:70:21:71:
e6:9f:05:05:d0:56:65:4d:4b:7b:10:22:73:57:62:
bf:13:84:69:bd:29:00:f2:46:3c:b2:71:c3:d1:be:
28:ea:df:1b:e6:87:ed:40:ba:9e:38:b6:68:c2:a3:
84:ce:7e:2e:65:b3:87:de:b4:25:95:a0:cb:01:77:
a6:3d:c8:53:34:ff:8f:22:e7:de:84:37:4d:5e:f1:
46:47:0a:fa:a0:89:df:90:d5:88:c7:d7:c1:c7:6a:
96:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:B2:7E:D9:0E:31:CE:0B:8B:58:98:26:12:69:B6:1E:60:78:CC:29
X509v3 Authority Key Identifier:
keyid:AC:68:ED:FE:9E:FC:97:5A:F8:92:AC:92:B6:AE:19:14:A3:B2:D0:D3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AC68EDFE9EFC975AF892AC92B6AE1914A3B2D0D3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1A8FB9B50BD6F6BDB905D4F5295E39E7770BEABC2471F2B45989B36198CFAF67/0/3230302e38352e3133352e302f32342d3234203d3e20323732393133.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.85.135.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:6d:ec:63:64:7c:b0:af:43:98:72:d4:1e:9e:b8:5d:1f:5a:
6e:9f:27:06:05:9f:65:39:22:8a:6c:0c:40:8f:bf:27:c6:c7:
4d:47:74:d1:49:b8:06:61:7e:78:71:dd:84:43:fd:72:05:5e:
58:92:62:3b:d3:b7:07:99:50:51:b7:75:38:ce:16:10:2e:df:
46:f6:4a:00:29:a0:f2:5a:8c:6f:da:d7:eb:61:15:9a:58:11:
9e:81:28:0b:cb:2e:ab:f7:bd:9d:4d:ca:9a:eb:9e:30:f1:5c:
6b:6b:0b:ab:0c:5f:09:b4:20:f8:a8:e8:8c:ec:36:8e:32:88:
4b:81:0f:81:2b:61:23:05:a3:f4:c3:de:84:a5:ec:d3:1d:cb:
cb:12:93:28:3d:9c:d2:d8:b8:09:19:ce:ad:67:42:4c:26:3c:
14:cc:fa:dd:d4:ab:44:12:8d:d3:5d:0f:35:b3:97:ef:38:d9:
7b:63:f8:54:b0:e3:34:cc:bb:3f:be:e7:b3:ef:cb:51:05:d9:
bf:5c:64:d2:3f:6a:18:0f:ad:2d:b1:0d:99:c9:88:77:b0:8f:
e7:bc:da:70:61:a4:3e:28:b8:10:6a:33:ec:d2:be:8e:70:22:
05:32:d7:9c:42:fe:db:60:00:de:0a:8a:26:b6:31:ea:7f:b5:
75:51:f1:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 17:35:53 2025 by rpki-client