Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/243BBF4FB997A7F3A11C17ABA766684C941F1E0890672475DCAE1B7244BCF2D4/0/3230302e3231352e3232382e302f32322d3330203d3e20323731383638.roa
File: 3230302e3231352e3232382e302f32322d3330203d3e20323731383638.roa (raw, json)
Hash identifier: rnjkBqdlkR5hhbzRtvJ84BAbtsXJM2u9ozZyfu7CJ3U=
Subject key identifier: A6:04:EA:74:32:33:AD:F5:9E:58:6E:2D:D0:C8:83:5D:0B:9D:94:F9
Certificate issuer: /CN=2106B43C1B8BD45BDEF6E3DB8101E6DE7E03E78B
Certificate serial: 1417F7F01279ADD851A9A9970C1389A858488E77
Authority key identifier: 21:06:B4:3C:1B:8B:D4:5B:DE:F6:E3:DB:81:01:E6:DE:7E:03:E7:8B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2106B43C1B8BD45BDEF6E3DB8101E6DE7E03E78B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/243BBF4FB997A7F3A11C17ABA766684C941F1E0890672475DCAE1B7244BCF2D4/0/3230302e3231352e3232382e302f32322d3330203d3e20323731383638.roa
Signing time: Tue 04 Feb 2025 18:43:46 +0000
ROA not before: Tue 04 Feb 2025 18:38:46 +0000
ROA not after: Tue 03 Feb 2026 18:43:46 +0000
asID: 271868
IP address blocks: 200.215.228.0/22 maxlen: 30
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/243BBF4FB997A7F3A11C17ABA766684C941F1E0890672475DCAE1B7244BCF2D4/0/2106B43C1B8BD45BDEF6E3DB8101E6DE7E03E78B.crl
rsync://repository.lacnic.net/rpki/lacnic/243BBF4FB997A7F3A11C17ABA766684C941F1E0890672475DCAE1B7244BCF2D4/0/2106B43C1B8BD45BDEF6E3DB8101E6DE7E03E78B.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2106B43C1B8BD45BDEF6E3DB8101E6DE7E03E78B.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 19:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:17:f7:f0:12:79:ad:d8:51:a9:a9:97:0c:13:89:a8:58:48:8e:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2106B43C1B8BD45BDEF6E3DB8101E6DE7E03E78B
Validity
Not Before: Feb 4 18:38:46 2025 GMT
Not After : Feb 3 18:43:46 2026 GMT
Subject: CN=A604EA743233ADF59E586E2DD0C8835D0B9D94F9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:9d:6d:5c:63:13:10:dd:08:35:9a:f3:23:06:
ec:13:42:26:1f:ff:06:13:63:16:0c:c3:e1:10:ff:
80:eb:3e:f2:bf:38:89:f0:70:65:47:8c:09:dd:d8:
b9:8f:90:3c:aa:98:15:59:2b:11:f9:e2:c9:60:56:
dc:e3:4c:a3:82:a8:a5:e6:41:c1:31:fe:86:76:66:
99:6a:af:53:75:22:e5:36:b3:84:6a:1d:41:36:2a:
29:1a:0c:2b:53:84:8d:1e:1e:a5:7e:36:2e:f0:d5:
cc:b4:b4:3a:c5:a6:27:f9:01:bf:43:f1:56:7f:f8:
72:da:2e:87:cb:e1:e7:f0:cd:7a:c6:bc:66:8e:1c:
b2:5c:9e:c0:c8:2b:1a:e7:7d:e5:22:a8:ba:19:aa:
3c:de:1e:8c:b2:e9:8d:b2:f3:5c:f5:a1:4a:43:e7:
ac:8d:e8:2f:c5:d5:34:41:c2:18:26:89:55:a6:aa:
ca:54:05:d4:03:51:38:e9:16:0d:b2:fa:47:c3:7e:
61:e2:1c:3e:11:cd:1a:02:f0:98:23:20:69:2e:73:
32:26:0e:8e:af:54:a6:4b:bc:eb:bd:27:c4:e9:7a:
47:c0:81:af:de:aa:15:c6:8f:a0:c9:06:a8:fd:2a:
d2:ea:3d:70:35:ce:70:13:03:86:db:d3:26:84:ae:
11:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:04:EA:74:32:33:AD:F5:9E:58:6E:2D:D0:C8:83:5D:0B:9D:94:F9
X509v3 Authority Key Identifier:
keyid:21:06:B4:3C:1B:8B:D4:5B:DE:F6:E3:DB:81:01:E6:DE:7E:03:E7:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/243BBF4FB997A7F3A11C17ABA766684C941F1E0890672475DCAE1B7244BCF2D4/0/2106B43C1B8BD45BDEF6E3DB8101E6DE7E03E78B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2106B43C1B8BD45BDEF6E3DB8101E6DE7E03E78B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/243BBF4FB997A7F3A11C17ABA766684C941F1E0890672475DCAE1B7244BCF2D4/0/3230302e3231352e3232382e302f32322d3330203d3e20323731383638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.215.228.0/22
Signature Algorithm: sha256WithRSAEncryption
37:ec:39:16:6e:4b:9d:95:08:ca:30:67:e0:63:f2:cd:d0:3a:
20:45:c7:64:b6:c4:dc:a2:b5:01:5f:e6:fc:ec:22:47:18:4a:
98:68:7c:5a:f6:98:c6:2e:c6:17:08:42:1a:b3:5d:6f:7a:3f:
50:ac:56:bd:a7:11:cf:4e:7f:f3:07:82:5a:c2:36:fd:0d:e9:
0b:a4:7a:f5:ee:30:ce:ce:d0:1b:95:9f:47:60:80:b4:8e:8a:
15:e4:91:44:71:84:b0:19:f7:31:9d:bd:1e:ed:21:ec:a2:c9:
c5:90:9b:8f:c1:c5:97:03:ce:c0:e4:a3:a0:e3:b1:bf:20:c2:
83:bb:36:a7:be:2a:ae:10:c0:46:24:bf:c7:b7:73:bf:11:cf:
85:dd:e6:c9:a4:f1:36:86:90:12:de:86:96:7e:b5:e0:61:e4:
4e:9e:b0:cd:c5:8a:32:2a:e8:50:1f:d3:7e:41:77:82:56:2c:
a6:26:a1:c9:15:f7:6b:57:f9:52:53:a8:70:06:e0:7f:2b:d2:
79:1e:c0:cf:8d:98:ad:51:f9:3d:b6:7b:fb:f7:a5:a8:73:f7:
e0:1f:1a:b6:60:97:57:36:e2:5e:b6:59:34:d8:9c:f9:ba:82:
dd:6c:43:2e:70:f6:6a:9a:c1:e2:7f:ad:0b:87:db:56:05:95:
45:61:dd:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 21:11:40 2025 by rpki-client