Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/25464C9B8AD92A55446F1DB59CF02C7287BE2E0239736DBA2E6AAEEC851E35C8/0/3230302e3131392e3135362e302f32322d3234203d3e203133363832.roa
File: 3230302e3131392e3135362e302f32322d3234203d3e203133363832.roa (raw, json)
Hash identifier: QSRpuolo8wYBZLw7dVxANgJNIGycV1cDaFB92Bn07Gk=
Subject key identifier: 2E:7B:53:1A:2E:C6:E8:03:43:57:7F:F8:12:0C:4C:D7:31:69:65:D2
Certificate issuer: /CN=30B067F4705EDF16C63ED51B9F8946787B07F237
Certificate serial: 113B6C21F2377B90B50AC851E0B5C1CB6850420D
Authority key identifier: 30:B0:67:F4:70:5E:DF:16:C6:3E:D5:1B:9F:89:46:78:7B:07:F2:37
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/30B067F4705EDF16C63ED51B9F8946787B07F237.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/25464C9B8AD92A55446F1DB59CF02C7287BE2E0239736DBA2E6AAEEC851E35C8/0/3230302e3131392e3135362e302f32322d3234203d3e203133363832.roa
Signing time: Tue 04 Feb 2025 18:55:17 +0000
ROA not before: Tue 04 Feb 2025 18:50:17 +0000
ROA not after: Tue 03 Feb 2026 18:55:17 +0000
asID: 13682
IP address blocks: 200.119.156.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/25464C9B8AD92A55446F1DB59CF02C7287BE2E0239736DBA2E6AAEEC851E35C8/0/30B067F4705EDF16C63ED51B9F8946787B07F237.crl
rsync://repository.lacnic.net/rpki/lacnic/25464C9B8AD92A55446F1DB59CF02C7287BE2E0239736DBA2E6AAEEC851E35C8/0/30B067F4705EDF16C63ED51B9F8946787B07F237.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/30B067F4705EDF16C63ED51B9F8946787B07F237.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 07:46:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
11:3b:6c:21:f2:37:7b:90:b5:0a:c8:51:e0:b5:c1:cb:68:50:42:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30B067F4705EDF16C63ED51B9F8946787B07F237
Validity
Not Before: Feb 4 18:50:17 2025 GMT
Not After : Feb 3 18:55:17 2026 GMT
Subject: CN=2E7B531A2EC6E80343577FF8120C4CD7316965D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:bb:ca:b5:41:8c:d1:ee:4b:dd:5f:b0:ad:af:
4c:0c:7a:9a:a2:d6:2b:de:0c:2a:b3:b5:8d:01:da:
31:22:49:97:74:fe:ee:06:1e:7b:a5:32:52:be:5e:
b9:e2:01:ba:be:24:de:47:ee:68:8a:b6:6f:a3:ea:
95:10:94:0a:18:b5:91:1b:3c:45:f5:53:ff:20:b9:
a9:7c:be:51:f5:4e:74:ad:fd:fa:53:85:bd:3f:99:
67:67:d7:dc:2d:e2:72:6b:32:4c:32:2c:ae:5e:8d:
14:d4:59:07:91:0a:9b:3b:0c:e3:86:a3:62:d4:4e:
b2:49:e8:ac:b0:bf:b4:61:c7:50:1a:06:e5:80:9d:
8a:8b:3e:32:07:4e:39:e0:a7:bd:31:50:92:24:e0:
82:33:cd:de:02:71:de:dc:ae:4d:2f:2b:52:2e:7d:
7b:a1:60:b5:a8:6b:0b:28:70:3d:b5:1f:78:80:d3:
09:5a:94:ee:69:09:85:71:00:70:ad:63:38:19:cd:
7d:5b:64:12:1e:80:e1:a0:b7:0f:f4:7a:e5:28:6e:
04:a6:3a:3d:fd:e7:58:08:c1:3f:ff:95:08:9e:7f:
69:d2:da:3c:bd:34:49:4b:98:26:ff:14:24:fa:b5:
fa:3c:5c:88:46:e2:93:0a:56:cd:d0:bd:bc:ea:54:
09:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:7B:53:1A:2E:C6:E8:03:43:57:7F:F8:12:0C:4C:D7:31:69:65:D2
X509v3 Authority Key Identifier:
keyid:30:B0:67:F4:70:5E:DF:16:C6:3E:D5:1B:9F:89:46:78:7B:07:F2:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/25464C9B8AD92A55446F1DB59CF02C7287BE2E0239736DBA2E6AAEEC851E35C8/0/30B067F4705EDF16C63ED51B9F8946787B07F237.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/30B067F4705EDF16C63ED51B9F8946787B07F237.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/25464C9B8AD92A55446F1DB59CF02C7287BE2E0239736DBA2E6AAEEC851E35C8/0/3230302e3131392e3135362e302f32322d3234203d3e203133363832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.119.156.0/22
Signature Algorithm: sha256WithRSAEncryption
95:bd:22:3c:fc:a4:58:b5:2e:b3:b1:f7:72:87:d7:d7:36:92:
75:11:a0:09:d0:f6:7f:11:5a:a8:f2:2d:8d:aa:26:d8:e4:6e:
4c:e2:88:6d:75:d6:f2:96:5d:17:77:95:29:37:72:ea:9e:77:
16:7b:e1:af:af:35:4e:a4:5a:76:9e:e5:34:74:28:44:50:98:
e3:56:d2:29:42:9a:0f:d1:df:f1:c2:9f:47:d9:74:61:ec:57:
84:5f:12:28:ed:5e:9c:91:ef:51:a4:91:46:ac:ee:91:5a:8a:
af:93:14:6b:78:a2:87:63:0a:7b:85:e0:34:d1:39:6e:21:cf:
fb:00:a0:54:ce:65:ea:ce:da:1e:3c:f2:5e:de:27:8e:97:04:
9d:f4:15:3a:81:34:75:6b:9c:79:03:14:6a:01:e6:cb:d6:46:
11:d4:4b:92:f5:fc:96:34:36:f8:db:b3:34:3e:25:09:ac:44:
30:38:2b:93:ad:9f:d2:c7:b2:3b:7b:de:53:e3:49:16:0f:a6:
6d:c4:ab:07:4e:dd:c5:77:54:6e:58:4d:5f:c6:80:9e:5c:9a:
17:4f:ca:3f:a6:a4:37:69:a3:a2:2e:66:9f:c2:fe:40:49:83:
c9:52:66:24:96:ad:36:99:75:5c:71:2c:1c:3c:c6:c2:e3:00:
ad:63:e2:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 11:28:10 2025 by rpki-client