Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1FAE84C9D2EA5B9E68263543BBD498C3F1CEF1F87F38343467F5515D602B7529/0/3139302e39302e3134342e302f32312d3234203d3e203138363738.roa
File: 3139302e39302e3134342e302f32312d3234203d3e203138363738.roa (raw, json)
Hash identifier: CxUKw5qu/y3a4qQSXNUDC5LEl2+B5iDP43zknSNjKvY=
Subject key identifier: 61:9D:2E:5E:97:ED:3C:4A:93:F4:A1:A2:85:C2:7A:80:45:21:FF:89
Certificate issuer: /CN=CBDE88C65320D3EBD8ED2F568D896F3935E87CC5
Certificate serial: 74CD79D4ED9DF9C04597E0CC76B961DD4A46F71F
Authority key identifier: CB:DE:88:C6:53:20:D3:EB:D8:ED:2F:56:8D:89:6F:39:35:E8:7C:C5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CBDE88C65320D3EBD8ED2F568D896F3935E87CC5.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1FAE84C9D2EA5B9E68263543BBD498C3F1CEF1F87F38343467F5515D602B7529/0/3139302e39302e3134342e302f32312d3234203d3e203138363738.roa
Signing time: Mon 03 Mar 2025 21:10:00 +0000
ROA not before: Mon 03 Mar 2025 21:05:00 +0000
ROA not after: Mon 02 Mar 2026 21:10:00 +0000
asID: 18678
IP address blocks: 190.90.144.0/21 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/1FAE84C9D2EA5B9E68263543BBD498C3F1CEF1F87F38343467F5515D602B7529/0/CBDE88C65320D3EBD8ED2F568D896F3935E87CC5.crl
rsync://repository.lacnic.net/rpki/lacnic/1FAE84C9D2EA5B9E68263543BBD498C3F1CEF1F87F38343467F5515D602B7529/0/CBDE88C65320D3EBD8ED2F568D896F3935E87CC5.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CBDE88C65320D3EBD8ED2F568D896F3935E87CC5.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 11:53:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:cd:79:d4:ed:9d:f9:c0:45:97:e0:cc:76:b9:61:dd:4a:46:f7:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CBDE88C65320D3EBD8ED2F568D896F3935E87CC5
Validity
Not Before: Mar 3 21:05:00 2025 GMT
Not After : Mar 2 21:10:00 2026 GMT
Subject: CN=619D2E5E97ED3C4A93F4A1A285C27A804521FF89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:98:32:3a:27:30:02:51:73:4c:f0:a4:b6:42:
dc:88:54:82:85:42:11:01:c2:06:bb:d5:8f:b7:ab:
a8:7e:54:8e:c7:e4:64:80:3f:a0:bd:c3:5e:86:22:
e1:8a:b7:00:db:2e:c2:44:f9:c4:b4:a9:2e:a4:05:
ca:b1:49:be:40:2a:cf:a5:94:0d:21:15:00:1a:9c:
81:0f:c9:4e:ad:1f:67:ab:46:ac:49:b7:20:aa:b4:
fc:49:e0:55:95:8b:a4:3f:d6:af:a4:94:5e:51:2b:
56:53:f7:4d:1e:21:e7:9a:29:25:7a:4d:5a:9d:e9:
67:46:f4:20:09:bd:b1:10:ba:c3:2e:70:bc:f3:26:
1e:a7:53:3e:e3:36:92:50:ec:63:c0:af:a7:e5:ad:
48:e7:72:29:c0:e9:9e:7a:87:f6:9e:fd:75:3d:6e:
09:07:9d:19:09:24:8b:2e:83:ff:cf:b3:5f:cb:c2:
c1:8f:b5:a6:fb:f9:7f:25:74:a8:f8:07:88:8b:07:
cf:cb:41:0f:ad:a8:9e:14:02:4f:5c:a7:20:79:9e:
22:ff:b4:60:15:28:1a:bd:89:17:d3:d7:6e:cb:e6:
b0:b3:ed:4b:81:9c:b7:3b:a9:72:32:32:f2:0d:69:
f3:b3:7b:c8:92:4d:3d:9d:95:3e:39:6f:76:c0:33:
fc:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:9D:2E:5E:97:ED:3C:4A:93:F4:A1:A2:85:C2:7A:80:45:21:FF:89
X509v3 Authority Key Identifier:
keyid:CB:DE:88:C6:53:20:D3:EB:D8:ED:2F:56:8D:89:6F:39:35:E8:7C:C5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1FAE84C9D2EA5B9E68263543BBD498C3F1CEF1F87F38343467F5515D602B7529/0/CBDE88C65320D3EBD8ED2F568D896F3935E87CC5.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CBDE88C65320D3EBD8ED2F568D896F3935E87CC5.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1FAE84C9D2EA5B9E68263543BBD498C3F1CEF1F87F38343467F5515D602B7529/0/3139302e39302e3134342e302f32312d3234203d3e203138363738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.90.144.0/21
Signature Algorithm: sha256WithRSAEncryption
11:d1:f5:c6:a4:79:56:af:a0:d8:e5:39:b4:af:d7:c2:57:c3:
66:e6:a1:9f:2e:55:9b:75:6e:9e:5b:2f:9d:f8:54:f8:90:8f:
ac:53:31:89:63:6d:50:b0:51:d0:00:4b:84:94:06:ff:fc:aa:
9e:c7:19:9c:a8:78:c2:ef:03:d6:ed:59:31:34:3f:da:44:46:
9c:b1:a9:f5:51:7a:bd:0f:2b:ea:bf:08:0f:99:f8:44:f2:21:
62:f7:eb:75:ec:21:36:43:9c:77:64:44:a7:62:1d:f7:e4:25:
ec:1f:7b:8d:c3:d5:31:58:29:b8:5a:ea:06:5b:a0:90:6c:04:
04:98:2e:16:96:72:1b:eb:40:28:82:34:d2:be:7c:cf:20:16:
3f:ec:04:98:04:22:ba:a4:9d:f7:d1:a3:79:3b:8f:c4:94:d4:
1c:08:88:6f:fb:c4:3c:c8:16:3b:81:53:38:fd:91:07:dd:48:
9f:62:97:a1:5e:3f:14:cb:3a:29:b5:00:eb:79:33:e2:c7:a9:
60:0f:3a:a2:fb:60:7f:48:83:e5:91:97:0b:31:c6:fa:77:e5:
2d:3d:17:77:7c:e3:27:9b:48:c8:b5:37:d9:68:a2:27:ce:b3:
98:36:57:e4:cc:cf:91:c7:73:2d:5f:18:1b:72:6b:52:87:4a:
72:b9:68:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 22:07:01 2025 by rpki-client