Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1AE88E1895A1AA42D5A10A7ED389A0BACFD7B4874CBAB86A7B790A78C1457EFC/0/3139302e38392e33302e302f32332d3234203d3e20323634363238.roa
File: 3139302e38392e33302e302f32332d3234203d3e20323634363238.roa (raw, json)
Hash identifier: KhXKx5dvbEtfbuQNY+8EKd83f5T7zYmsARmgbPEql94=
Subject key identifier: 9B:80:45:49:71:A8:1F:C1:85:D5:B6:FE:18:D1:68:EE:8C:3A:A8:53
Certificate issuer: /CN=597B422C63F4E901AB522655E1EDFD64C35BD133
Certificate serial: 59083673D1E101678FD74787DCDF85290112B611
Authority key identifier: 59:7B:42:2C:63:F4:E9:01:AB:52:26:55:E1:ED:FD:64:C3:5B:D1:33
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/597B422C63F4E901AB522655E1EDFD64C35BD133.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1AE88E1895A1AA42D5A10A7ED389A0BACFD7B4874CBAB86A7B790A78C1457EFC/0/3139302e38392e33302e302f32332d3234203d3e20323634363238.roa
Signing time: Tue 04 Feb 2025 18:02:20 +0000
ROA not before: Tue 04 Feb 2025 17:57:20 +0000
ROA not after: Tue 03 Feb 2026 18:02:20 +0000
asID: 264628
IP address blocks: 190.89.30.0/23 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/1AE88E1895A1AA42D5A10A7ED389A0BACFD7B4874CBAB86A7B790A78C1457EFC/0/597B422C63F4E901AB522655E1EDFD64C35BD133.crl
rsync://repository.lacnic.net/rpki/lacnic/1AE88E1895A1AA42D5A10A7ED389A0BACFD7B4874CBAB86A7B790A78C1457EFC/0/597B422C63F4E901AB522655E1EDFD64C35BD133.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/597B422C63F4E901AB522655E1EDFD64C35BD133.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Wed 30 Apr 2025 05:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:08:36:73:d1:e1:01:67:8f:d7:47:87:dc:df:85:29:01:12:b6:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=597B422C63F4E901AB522655E1EDFD64C35BD133
Validity
Not Before: Feb 4 17:57:20 2025 GMT
Not After : Feb 3 18:02:20 2026 GMT
Subject: CN=9B80454971A81FC185D5B6FE18D168EE8C3AA853
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:90:6b:56:09:fe:66:ff:20:fd:cd:02:61:c4:
02:59:eb:fc:fe:f9:16:32:aa:33:ff:b5:36:83:88:
a2:b7:08:db:5c:52:79:27:f1:71:56:f4:af:eb:d1:
39:35:b6:e0:6d:5e:6a:8a:c6:4b:78:10:90:66:db:
7b:eb:9f:48:c9:cc:56:4b:9e:85:60:9b:ef:52:fc:
1b:66:fc:69:c8:b0:f6:62:9b:bc:0b:42:53:dc:b1:
4a:59:9b:fd:4d:c0:9b:6c:1f:cb:71:49:3e:34:8b:
74:10:46:d0:ae:27:72:c8:01:1f:3b:05:75:6b:20:
e5:d2:95:87:d5:83:a4:67:4d:71:5f:fa:f8:78:fb:
39:c1:be:31:13:3b:fb:b4:e5:e3:71:20:b2:03:7a:
fd:72:6f:57:88:0a:91:d6:23:63:44:86:8f:e0:94:
14:61:e3:61:d9:2e:e6:36:a6:5e:78:b4:46:8a:2b:
c5:f4:9e:3d:c8:42:de:e5:f1:ec:7c:63:7b:a7:d7:
40:c4:ba:c0:00:ee:b9:96:2f:0c:0b:6f:88:56:f8:
6e:bf:9c:10:92:7d:98:3f:30:4e:a0:f9:bf:74:09:
d5:be:40:37:df:2b:3c:91:63:9f:f7:03:6e:42:18:
25:57:38:8e:61:9f:a0:8b:30:e5:82:6e:c5:ad:68:
08:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:80:45:49:71:A8:1F:C1:85:D5:B6:FE:18:D1:68:EE:8C:3A:A8:53
X509v3 Authority Key Identifier:
keyid:59:7B:42:2C:63:F4:E9:01:AB:52:26:55:E1:ED:FD:64:C3:5B:D1:33
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1AE88E1895A1AA42D5A10A7ED389A0BACFD7B4874CBAB86A7B790A78C1457EFC/0/597B422C63F4E901AB522655E1EDFD64C35BD133.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/597B422C63F4E901AB522655E1EDFD64C35BD133.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1AE88E1895A1AA42D5A10A7ED389A0BACFD7B4874CBAB86A7B790A78C1457EFC/0/3139302e38392e33302e302f32332d3234203d3e20323634363238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.89.30.0/23
Signature Algorithm: sha256WithRSAEncryption
55:21:89:b6:34:74:27:6c:28:95:85:b8:ce:2a:68:5b:15:6d:
e2:07:e6:2d:16:72:d3:e4:75:08:ac:13:5e:df:98:c1:fa:d4:
5f:d8:71:0f:7a:76:da:03:c2:01:06:3f:2c:11:6b:3b:e2:d9:
ff:16:01:12:cb:43:ba:c4:5f:65:98:63:cd:de:64:1a:17:eb:
8a:dd:c1:dd:00:05:47:11:f2:80:70:3b:14:0b:cd:18:88:14:
e0:65:89:3c:9d:33:0a:6a:8b:4b:b6:49:5a:22:62:41:de:64:
8e:da:75:e0:d3:09:e7:1e:cc:b9:d5:7b:0e:2c:90:eb:ef:87:
9b:c2:98:30:c3:65:e2:0d:8a:db:fd:80:94:c0:b6:5c:a8:d1:
2e:70:7c:95:5b:27:1c:6f:27:a3:24:2c:3d:cb:dd:84:fb:ea:
d2:99:45:7f:2e:81:99:1d:aa:d8:9c:97:1d:e3:f7:53:16:db:
33:d2:0c:d0:83:87:9a:03:de:79:3a:67:ed:9e:bd:f1:cd:62:
b5:e3:82:29:55:b4:46:5b:0f:98:fd:7e:75:a8:7e:64:dc:0e:
bb:ba:e3:43:64:54:0c:d4:d4:6d:62:6d:bf:7d:3e:c1:71:9a:
f7:cf:3e:8c:9e:2c:3f:a7:d2:39:45:c5:0e:fc:0d:36:8f:83:
c4:27:26:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 05:04:34 2025 by rpki-client