Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/296CACF4DBEE77502940FAD50279723AF0DA139E5C75A6B5BCEBA6B1C143DB88/0/3133312e3130382e3134332e302f32342d3234203d3e203631343930.roa
File: 3133312e3130382e3134332e302f32342d3234203d3e203631343930.roa (raw, json)
Hash identifier: SS+Ot+ZRvgQ0dt529+nWCiN4jRhfOlSab7bEew+i/jA=
Subject key identifier: A2:B6:18:0A:50:1C:5B:F6:68:7C:BD:E0:7A:25:CE:8E:C8:94:6E:54
Certificate issuer: /CN=D74EEC332802572047CBE0FAB13F3CF2BA417AFF
Certificate serial: 4BBB042AEBF9C7977610C98473E4781A80FD19FC
Authority key identifier: D7:4E:EC:33:28:02:57:20:47:CB:E0:FA:B1:3F:3C:F2:BA:41:7A:FF
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D74EEC332802572047CBE0FAB13F3CF2BA417AFF.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/296CACF4DBEE77502940FAD50279723AF0DA139E5C75A6B5BCEBA6B1C143DB88/0/3133312e3130382e3134332e302f32342d3234203d3e203631343930.roa
Signing time: Tue 04 Feb 2025 17:59:17 +0000
ROA not before: Tue 04 Feb 2025 17:54:17 +0000
ROA not after: Tue 03 Feb 2026 17:59:17 +0000
asID: 61490
IP address blocks: 131.108.143.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/296CACF4DBEE77502940FAD50279723AF0DA139E5C75A6B5BCEBA6B1C143DB88/0/D74EEC332802572047CBE0FAB13F3CF2BA417AFF.crl
rsync://repository.lacnic.net/rpki/lacnic/296CACF4DBEE77502940FAD50279723AF0DA139E5C75A6B5BCEBA6B1C143DB88/0/D74EEC332802572047CBE0FAB13F3CF2BA417AFF.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D74EEC332802572047CBE0FAB13F3CF2BA417AFF.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 07:34:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:bb:04:2a:eb:f9:c7:97:76:10:c9:84:73:e4:78:1a:80:fd:19:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D74EEC332802572047CBE0FAB13F3CF2BA417AFF
Validity
Not Before: Feb 4 17:54:17 2025 GMT
Not After : Feb 3 17:59:17 2026 GMT
Subject: CN=A2B6180A501C5BF6687CBDE07A25CE8EC8946E54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3a:d3:7f:72:ee:1e:ce:c8:03:40:ce:b9:4e:
2a:66:1c:db:a7:fa:0b:8c:da:83:4f:48:27:79:45:
92:3b:09:5f:02:db:da:04:e0:e0:42:94:36:db:b2:
8b:bb:58:29:2c:79:de:71:c7:6a:dd:89:cd:d5:b8:
ad:b5:fd:4d:41:5a:be:d2:e2:fe:05:4c:0f:f4:1e:
2b:87:4c:d3:61:0b:ab:58:8f:2f:f4:db:51:da:4a:
b2:f0:dd:34:cf:29:fd:64:f2:51:ea:0a:a4:c8:f1:
22:37:8d:55:8f:51:a6:51:b0:6d:6f:c4:49:4c:02:
a3:db:98:c1:9e:2d:5c:38:37:a2:03:6b:8d:a8:41:
44:42:84:0d:76:64:72:74:89:c3:96:f9:e0:f6:18:
31:be:80:a3:c3:0a:24:4c:67:53:1f:ba:66:0d:76:
5b:41:2c:ea:c1:1d:6a:55:a5:df:c5:5e:7e:0a:c6:
8f:5e:af:b3:11:f0:37:f9:0d:a2:dc:6a:ba:ad:ef:
3f:bd:bd:5f:49:a0:36:24:54:a4:89:f5:85:24:8c:
5e:50:33:aa:a6:09:11:a5:6c:28:92:61:bf:0e:5d:
25:6b:a3:8c:83:d0:34:4d:fe:0a:07:16:3e:f1:10:
09:34:9e:9f:6b:43:c3:da:07:d5:db:a3:f6:4b:93:
dc:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:B6:18:0A:50:1C:5B:F6:68:7C:BD:E0:7A:25:CE:8E:C8:94:6E:54
X509v3 Authority Key Identifier:
keyid:D7:4E:EC:33:28:02:57:20:47:CB:E0:FA:B1:3F:3C:F2:BA:41:7A:FF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/296CACF4DBEE77502940FAD50279723AF0DA139E5C75A6B5BCEBA6B1C143DB88/0/D74EEC332802572047CBE0FAB13F3CF2BA417AFF.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D74EEC332802572047CBE0FAB13F3CF2BA417AFF.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/296CACF4DBEE77502940FAD50279723AF0DA139E5C75A6B5BCEBA6B1C143DB88/0/3133312e3130382e3134332e302f32342d3234203d3e203631343930.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.108.143.0/24
Signature Algorithm: sha256WithRSAEncryption
56:8f:50:b2:8b:c7:53:2d:ed:a6:63:1e:27:97:94:34:c9:ac:
5f:93:fd:b2:e8:5c:4e:d9:38:76:9d:e9:16:fd:3c:26:9f:1e:
8a:c7:96:f6:77:c9:df:37:1d:52:ab:14:8d:4e:53:41:4b:ab:
66:a2:ce:32:86:66:4b:10:36:d8:4f:4f:da:fa:c9:4a:6c:99:
48:b9:fb:67:d6:8b:78:51:e5:32:04:93:5b:26:35:94:47:00:
90:f3:8f:5e:81:19:7a:75:c0:7d:df:c2:01:5c:f4:1f:98:05:
37:20:26:aa:2b:10:da:07:43:01:44:9f:b0:b7:83:5f:4a:24:
a6:46:46:51:5d:4d:76:e5:31:da:cf:ab:e0:36:69:e5:b2:e8:
d5:f6:82:59:9d:ec:82:2a:26:a9:ea:06:db:3d:8f:24:37:63:
90:b4:bf:a3:22:a9:e7:9d:5c:11:19:64:40:c2:3f:9d:5d:dc:
88:87:86:59:2f:f4:3d:f4:12:76:bd:98:d7:c2:17:8b:38:a4:
52:8e:b0:93:54:9d:c7:b4:10:a1:48:74:0f:62:77:5a:fd:3d:
21:e1:83:f9:a7:b4:70:b0:fd:bd:d7:25:fb:a0:ea:ae:ae:1c:
22:a9:95:4c:3c:6e:ee:ca:70:68:0e:7a:22:b1:76:0f:8d:a4:
a6:37:3e:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 08:58:51 2025 by rpki-client