Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/28C8A68704DD8B73E4DE39EEC2EE40C186813FE537AC494F96F4FD4DC09ED71A/0/3136382e3139352e3230342e302f32322d3234203d3e20323635353039.roa
File: 3136382e3139352e3230342e302f32322d3234203d3e20323635353039.roa (raw, json)
Hash identifier: ObuRymeDC0sk37WoqInC/w4lphNjaWx8SfohKyVQk+s=
Subject key identifier: 4C:6B:1B:88:1E:4A:BA:44:64:D4:99:D0:91:10:23:7C:3C:7C:57:40
Certificate issuer: /CN=5FB2498BEC08819FA5A323BD3C5EC1E8AEE683BD
Certificate serial: 52D821E261749D6494C913861D1CDCF68C8104E7
Authority key identifier: 5F:B2:49:8B:EC:08:81:9F:A5:A3:23:BD:3C:5E:C1:E8:AE:E6:83:BD
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5FB2498BEC08819FA5A323BD3C5EC1E8AEE683BD.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/28C8A68704DD8B73E4DE39EEC2EE40C186813FE537AC494F96F4FD4DC09ED71A/0/3136382e3139352e3230342e302f32322d3234203d3e20323635353039.roa
Signing time: Tue 04 Feb 2025 18:04:17 +0000
ROA not before: Tue 04 Feb 2025 17:59:17 +0000
ROA not after: Tue 03 Feb 2026 18:04:17 +0000
asID: 265509
IP address blocks: 168.195.204.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/28C8A68704DD8B73E4DE39EEC2EE40C186813FE537AC494F96F4FD4DC09ED71A/0/5FB2498BEC08819FA5A323BD3C5EC1E8AEE683BD.crl
rsync://repository.lacnic.net/rpki/lacnic/28C8A68704DD8B73E4DE39EEC2EE40C186813FE537AC494F96F4FD4DC09ED71A/0/5FB2498BEC08819FA5A323BD3C5EC1E8AEE683BD.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5FB2498BEC08819FA5A323BD3C5EC1E8AEE683BD.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 15:09:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:d8:21:e2:61:74:9d:64:94:c9:13:86:1d:1c:dc:f6:8c:81:04:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5FB2498BEC08819FA5A323BD3C5EC1E8AEE683BD
Validity
Not Before: Feb 4 17:59:17 2025 GMT
Not After : Feb 3 18:04:17 2026 GMT
Subject: CN=4C6B1B881E4ABA4464D499D09110237C3C7C5740
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e8:e7:d8:9f:79:65:fa:57:71:25:09:69:39:
68:ba:b0:ca:5d:ec:f7:d2:5e:67:2e:8c:4d:70:31:
00:68:19:bf:3e:7c:7e:c9:97:f6:80:da:44:78:fc:
43:d5:4a:70:b0:eb:5b:d5:6d:28:17:1d:85:7a:38:
f4:08:63:f1:28:d1:28:7a:d3:b6:b5:73:a2:f1:26:
8a:0c:95:17:0b:73:1a:b0:e3:56:53:66:cf:11:0c:
0e:d1:06:4b:50:0a:42:bc:8d:01:8c:0e:cb:35:de:
01:8c:85:49:c6:ca:60:4b:54:e1:7e:13:4a:2f:d6:
f8:ad:89:d9:7d:23:f7:80:23:5b:0c:c6:a5:db:90:
af:8b:25:91:6d:29:ae:24:c9:ee:4f:d0:52:03:10:
ec:db:bf:3f:f3:35:99:36:ce:35:9c:28:b4:77:02:
03:c0:06:f8:16:07:be:d1:cc:0b:d5:d7:80:de:0f:
7d:0f:5a:49:fd:41:22:ac:a4:8c:ff:ca:92:66:a4:
29:c7:58:1e:1e:0b:92:3b:56:a8:49:ba:ae:bf:70:
d9:37:c4:f3:8b:2f:7b:a2:cc:f3:33:35:0c:f5:3c:
dc:67:a6:d2:5d:cf:f3:10:fd:01:89:82:74:1e:68:
ab:ee:47:04:88:3f:4d:04:fd:4e:1f:fe:d3:72:ac:
fc:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:6B:1B:88:1E:4A:BA:44:64:D4:99:D0:91:10:23:7C:3C:7C:57:40
X509v3 Authority Key Identifier:
keyid:5F:B2:49:8B:EC:08:81:9F:A5:A3:23:BD:3C:5E:C1:E8:AE:E6:83:BD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/28C8A68704DD8B73E4DE39EEC2EE40C186813FE537AC494F96F4FD4DC09ED71A/0/5FB2498BEC08819FA5A323BD3C5EC1E8AEE683BD.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5FB2498BEC08819FA5A323BD3C5EC1E8AEE683BD.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/28C8A68704DD8B73E4DE39EEC2EE40C186813FE537AC494F96F4FD4DC09ED71A/0/3136382e3139352e3230342e302f32322d3234203d3e20323635353039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.195.204.0/22
Signature Algorithm: sha256WithRSAEncryption
41:5f:b5:c1:54:6a:83:d7:53:6e:c9:6b:e2:5c:14:3c:3d:74:
dd:51:91:43:2f:16:c1:f0:cd:22:0b:a5:50:55:45:13:84:fa:
ec:01:5d:f8:48:af:2c:2d:38:c2:eb:34:1f:27:3d:bd:86:d7:
22:ff:ea:21:97:21:6a:80:0f:70:55:d0:83:5b:94:7e:40:ce:
29:09:91:94:3f:26:24:39:01:78:ee:92:37:d2:26:f3:a3:28:
bf:4a:4d:74:0b:d5:28:86:07:3a:4f:70:9d:15:23:3a:8f:de:
b1:47:b1:cd:4a:34:0d:c7:89:1a:ae:7b:4d:59:e1:58:ed:ec:
5e:22:ff:22:10:46:34:67:f2:fa:21:48:f3:eb:5c:b5:66:35:
90:f8:e4:8d:5b:5e:fc:4f:91:04:56:cb:51:c0:fb:47:43:05:
47:c8:e4:7a:65:a1:4c:5a:a3:a3:31:ec:b6:50:e8:4b:11:cf:
a9:90:7e:85:70:4c:0b:34:9c:8a:9e:1f:45:f1:1c:7f:f5:65:
16:d1:d5:ca:35:bd:70:83:13:2f:81:f2:c2:2a:85:e5:b3:ba:
7a:18:3e:16:ac:0c:11:41:9b:36:be:75:63:80:d3:45:91:a1:
1e:2c:1f:b8:0b:3b:54:6d:b9:c0:d3:ef:58:4a:eb:22:26:69:
a2:bd:89:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 08:59:03 2025 by rpki-client