Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1F00C0A324484A0E532189EE68B426AA220331435BA450CFFCF3816BF1031989/0/3136382e3139372e39362e302f32342d3234203d3e203532343233.roa
File: 3136382e3139372e39362e302f32342d3234203d3e203532343233.roa (raw, json)
Hash identifier: 8FI8pdx3+QSR8s386GdzLilggUUOjqCxZBXg3GBpxCA=
Subject key identifier: 4A:DF:B2:CF:82:8C:69:4A:8C:D7:F2:89:E6:20:58:75:BD:8F:BE:41
Certificate issuer: /CN=044328B588D7E6AB4F049D26F9E6FDBB2FB51970
Certificate serial: 31AE6DCC0F6977437D2842671D64E3AB0D781D5C
Authority key identifier: 04:43:28:B5:88:D7:E6:AB:4F:04:9D:26:F9:E6:FD:BB:2F:B5:19:70
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/044328B588D7E6AB4F049D26F9E6FDBB2FB51970.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1F00C0A324484A0E532189EE68B426AA220331435BA450CFFCF3816BF1031989/0/3136382e3139372e39362e302f32342d3234203d3e203532343233.roa
Signing time: Tue 04 Feb 2025 18:54:32 +0000
ROA not before: Tue 04 Feb 2025 18:49:32 +0000
ROA not after: Tue 03 Feb 2026 18:54:32 +0000
asID: 52423
IP address blocks: 168.197.96.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/1F00C0A324484A0E532189EE68B426AA220331435BA450CFFCF3816BF1031989/0/044328B588D7E6AB4F049D26F9E6FDBB2FB51970.crl
rsync://repository.lacnic.net/rpki/lacnic/1F00C0A324484A0E532189EE68B426AA220331435BA450CFFCF3816BF1031989/0/044328B588D7E6AB4F049D26F9E6FDBB2FB51970.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/044328B588D7E6AB4F049D26F9E6FDBB2FB51970.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:ae:6d:cc:0f:69:77:43:7d:28:42:67:1d:64:e3:ab:0d:78:1d:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=044328B588D7E6AB4F049D26F9E6FDBB2FB51970
Validity
Not Before: Feb 4 18:49:32 2025 GMT
Not After : Feb 3 18:54:32 2026 GMT
Subject: CN=4ADFB2CF828C694A8CD7F289E6205875BD8FBE41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:65:35:79:0b:4d:62:33:c0:90:1b:b1:94:28:
91:86:b0:0c:07:a8:d1:fa:8b:39:d3:ca:b9:03:12:
9d:39:99:bb:b2:13:a9:cc:c9:9e:bb:5d:a7:fe:54:
b0:9c:4f:14:b0:9a:33:bc:69:8f:fb:44:11:b6:ed:
29:df:cc:c7:16:23:09:13:e8:0d:55:4c:af:2d:d7:
f9:3c:e7:83:a7:22:3a:f5:b1:2a:6d:7f:54:9c:41:
45:d9:55:dc:6e:19:bc:b3:44:bb:ab:95:04:81:ca:
b3:78:86:5e:4e:d2:77:88:36:38:8d:40:77:bd:6a:
4a:2d:2a:87:19:c9:5f:c9:86:e0:6c:90:d7:c9:61:
fb:00:3c:68:92:50:d4:80:8d:1f:c9:86:d4:14:03:
5d:ba:0b:3a:11:84:83:75:8c:f2:6c:ef:eb:68:18:
a6:69:ba:19:2f:ae:57:a0:fa:55:fd:ce:09:0a:b6:
53:a0:2d:4d:86:cc:1a:c4:a6:9b:e7:32:b8:d9:64:
00:42:fe:20:b0:42:e9:24:f2:5d:7f:1e:d1:0e:f0:
d5:23:2e:1a:bd:03:90:8a:65:61:a6:38:60:9f:7b:
b0:38:35:25:2d:03:b0:f8:78:a0:22:82:f2:cc:be:
72:03:15:81:36:70:c2:de:99:00:8f:02:f7:c7:2c:
f8:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:DF:B2:CF:82:8C:69:4A:8C:D7:F2:89:E6:20:58:75:BD:8F:BE:41
X509v3 Authority Key Identifier:
keyid:04:43:28:B5:88:D7:E6:AB:4F:04:9D:26:F9:E6:FD:BB:2F:B5:19:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1F00C0A324484A0E532189EE68B426AA220331435BA450CFFCF3816BF1031989/0/044328B588D7E6AB4F049D26F9E6FDBB2FB51970.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/044328B588D7E6AB4F049D26F9E6FDBB2FB51970.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1F00C0A324484A0E532189EE68B426AA220331435BA450CFFCF3816BF1031989/0/3136382e3139372e39362e302f32342d3234203d3e203532343233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.197.96.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:5d:1a:57:da:19:7a:31:d6:18:f0:58:b7:6d:40:d2:30:6a:
5b:4f:81:2c:66:6f:5e:b5:d3:2e:5c:6c:39:f2:e1:68:80:d0:
f6:dc:a7:ef:78:a5:b8:1d:96:70:ca:2e:a5:c0:7c:81:7f:be:
7d:9a:66:45:de:90:dd:09:d6:75:8b:a5:b0:a7:7e:96:55:97:
ec:a5:a9:e5:a5:a4:e6:c0:d3:9a:dd:35:b1:7b:b0:5e:05:0a:
81:8a:dd:cf:2a:77:92:f2:18:2e:a9:93:40:37:50:60:a2:3b:
5f:66:63:d0:aa:a8:92:d4:80:7e:f3:5a:ea:52:bf:b7:5f:6b:
5d:d2:18:02:33:b4:5c:0c:48:c0:a0:43:63:28:c3:75:ba:90:
84:63:57:30:59:e7:47:74:65:52:45:2d:5c:36:95:0a:b4:89:
3e:3d:da:67:68:c5:a9:17:55:fb:3c:da:20:f7:44:53:61:3e:
94:6c:80:99:02:1f:14:8d:47:d7:48:27:b6:2f:f7:12:57:16:
06:91:0d:50:3d:8f:8e:88:5e:20:92:de:d9:ed:4b:2a:73:7d:
db:18:49:63:4b:dc:47:67:8b:ed:49:86:b0:e3:56:8b:35:fd:
16:8c:e4:66:05:d0:25:bb:ac:bc:e9:a8:4f:27:6e:27:dd:ba:
01:cc:b6:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 05:53:16 2025 by rpki-client