Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/23C75C911B352DF0BC9691D4FFEA0118290A296B48618F95A0D7BBF42C21BB43/0/3230302e39312e36342e302f31382d3234203d3e2033333536.roa
File: 3230302e39312e36342e302f31382d3234203d3e2033333536.roa (raw, json)
Hash identifier: 3LfBQl7Hdt+D+X336RP20be7/CVafuVpYfF+MxNahpQ=
Subject key identifier: 4F:A8:24:E6:17:2C:3D:B8:A8:E1:75:08:AE:B4:DB:C4:89:23:56:D5
Certificate issuer: /CN=DED9DDB6E05D26D93F76D4434C060C7E1D26E6C2
Certificate serial: 59811D17DDD34FF6C60D845BEB88353FD48F6ED8
Authority key identifier: DE:D9:DD:B6:E0:5D:26:D9:3F:76:D4:43:4C:06:0C:7E:1D:26:E6:C2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DED9DDB6E05D26D93F76D4434C060C7E1D26E6C2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/23C75C911B352DF0BC9691D4FFEA0118290A296B48618F95A0D7BBF42C21BB43/0/3230302e39312e36342e302f31382d3234203d3e2033333536.roa
Signing time: Tue 04 Feb 2025 18:36:35 +0000
ROA not before: Tue 04 Feb 2025 18:31:35 +0000
ROA not after: Tue 03 Feb 2026 18:36:35 +0000
asID: 3356
IP address blocks: 200.91.64.0/18 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/23C75C911B352DF0BC9691D4FFEA0118290A296B48618F95A0D7BBF42C21BB43/0/DED9DDB6E05D26D93F76D4434C060C7E1D26E6C2.crl
rsync://repository.lacnic.net/rpki/lacnic/23C75C911B352DF0BC9691D4FFEA0118290A296B48618F95A0D7BBF42C21BB43/0/DED9DDB6E05D26D93F76D4434C060C7E1D26E6C2.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DED9DDB6E05D26D93F76D4434C060C7E1D26E6C2.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:81:1d:17:dd:d3:4f:f6:c6:0d:84:5b:eb:88:35:3f:d4:8f:6e:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DED9DDB6E05D26D93F76D4434C060C7E1D26E6C2
Validity
Not Before: Feb 4 18:31:35 2025 GMT
Not After : Feb 3 18:36:35 2026 GMT
Subject: CN=4FA824E6172C3DB8A8E17508AEB4DBC4892356D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:10:01:2e:50:58:51:cc:68:6a:5f:0d:c7:08:
c4:d4:f7:74:55:67:14:a5:80:b7:e4:e9:ac:c7:ef:
8c:4e:81:d9:bf:1a:e8:f0:a2:e6:b4:4c:48:f4:47:
b6:04:d8:03:9a:0e:f4:90:df:57:22:f3:8d:67:bf:
b7:b5:4d:f0:11:01:82:61:e6:33:f2:7d:a6:33:38:
d6:73:8e:fd:85:8d:43:41:7f:1c:4e:87:fa:3d:fa:
f0:0b:99:03:b7:7b:12:9b:4f:ad:82:2e:09:5e:f9:
3f:b0:6e:4f:47:c9:97:f6:d7:45:8d:6e:d2:d4:a0:
96:73:e1:b4:c8:a8:1a:67:13:45:8e:34:2c:ae:ca:
b5:bc:63:9b:45:30:90:1a:54:43:ae:b9:89:f8:3a:
55:58:7b:fd:fe:2c:71:b1:a7:a5:29:99:8f:36:92:
49:ff:a6:73:34:65:a5:19:02:20:f8:32:23:8a:61:
80:2d:b9:03:73:c8:74:5f:2a:59:9c:bc:28:d3:20:
da:12:8e:f5:28:98:34:9a:b1:9c:c9:5e:d3:db:b1:
79:1c:a1:aa:84:4a:a5:3f:f0:ee:d2:3c:c1:57:b9:
f4:8c:16:c3:9b:bf:9f:ce:ff:3b:e9:3b:30:f1:fc:
aa:26:29:40:78:b9:e3:d2:49:7b:63:e5:d0:4b:2d:
16:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:A8:24:E6:17:2C:3D:B8:A8:E1:75:08:AE:B4:DB:C4:89:23:56:D5
X509v3 Authority Key Identifier:
keyid:DE:D9:DD:B6:E0:5D:26:D9:3F:76:D4:43:4C:06:0C:7E:1D:26:E6:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/23C75C911B352DF0BC9691D4FFEA0118290A296B48618F95A0D7BBF42C21BB43/0/DED9DDB6E05D26D93F76D4434C060C7E1D26E6C2.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DED9DDB6E05D26D93F76D4434C060C7E1D26E6C2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/23C75C911B352DF0BC9691D4FFEA0118290A296B48618F95A0D7BBF42C21BB43/0/3230302e39312e36342e302f31382d3234203d3e2033333536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.91.64.0/18
Signature Algorithm: sha256WithRSAEncryption
1b:4b:c5:dd:30:d6:9e:66:a4:06:39:01:ee:a4:7a:16:64:27:
a9:ac:b5:4a:98:16:2d:87:0f:f3:dd:1a:5b:d4:71:8b:e3:bb:
78:ec:f5:81:b4:e1:e3:c5:d6:87:ea:a8:b8:26:45:67:84:63:
6d:be:6e:c7:b6:c6:e3:fc:7f:26:84:92:80:91:c3:88:07:ad:
eb:ec:a7:44:3e:af:c1:eb:c3:37:69:88:89:97:dc:c3:e0:e7:
6b:09:4b:50:54:1f:9f:70:e7:4c:b3:d4:b1:5f:98:83:ca:77:
ac:95:cd:9c:0b:01:dc:e0:9d:8a:60:fa:2e:14:52:18:63:43:
b3:79:a2:9e:ea:ac:cd:f3:8c:dd:57:aa:37:d0:36:4a:73:62:
f0:e9:6f:d2:1f:8b:53:9f:db:a4:f8:45:37:0f:35:74:d0:b5:
87:7e:35:f1:f2:ac:71:60:3d:1f:0e:37:7c:bc:0b:e2:15:43:
c3:02:fa:29:ca:72:0b:23:47:e7:99:4d:b4:36:ef:cd:39:50:
e9:db:61:95:67:d1:40:db:d7:78:85:f4:dd:ac:a5:ff:0c:43:
90:ed:db:fa:70:04:ad:ea:ec:c6:8d:a5:d3:06:99:2f:cf:92:
91:4d:26:5a:bc:67:ba:73:46:2f:c5:dd:ba:40:38:4f:eb:02:
28:fe:59:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 12:03:45 2025 by rpki-client