Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2C9AA2C334FE0E68C2263029F8058D13AAFFD9C68218B8974854A1E91B1F97CA/0/323830363a3364353a3a2f33322d3634203d3e20323730313333.roa
File: 323830363a3364353a3a2f33322d3634203d3e20323730313333.roa (raw, json)
Hash identifier: AoqkwoWbV9CDXnpF4S/nwBo+Z6q8IovLE3JdgHDjvjo=
Subject key identifier: 95:A9:8E:C7:DA:38:40:D1:33:4D:A5:DB:A1:E8:FF:A2:49:E3:D7:91
Certificate issuer: /CN=0BA31E688FC187BB18657847D0585DC1291EBD14
Certificate serial: 6EB3965D2BFE9E65176022DF25735CDA1A8FBB81
Authority key identifier: 0B:A3:1E:68:8F:C1:87:BB:18:65:78:47:D0:58:5D:C1:29:1E:BD:14
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0BA31E688FC187BB18657847D0585DC1291EBD14.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2C9AA2C334FE0E68C2263029F8058D13AAFFD9C68218B8974854A1E91B1F97CA/0/323830363a3364353a3a2f33322d3634203d3e20323730313333.roa
Signing time: Fri 21 Feb 2025 14:10:34 +0000
ROA not before: Fri 21 Feb 2025 14:05:34 +0000
ROA not after: Fri 20 Feb 2026 14:10:34 +0000
asID: 270133
IP address blocks: 2806:3d5::/32 maxlen: 64
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/2C9AA2C334FE0E68C2263029F8058D13AAFFD9C68218B8974854A1E91B1F97CA/0/0BA31E688FC187BB18657847D0585DC1291EBD14.crl
rsync://repository.lacnic.net/rpki/lacnic/2C9AA2C334FE0E68C2263029F8058D13AAFFD9C68218B8974854A1E91B1F97CA/0/0BA31E688FC187BB18657847D0585DC1291EBD14.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0BA31E688FC187BB18657847D0585DC1291EBD14.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6e:b3:96:5d:2b:fe:9e:65:17:60:22:df:25:73:5c:da:1a:8f:bb:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0BA31E688FC187BB18657847D0585DC1291EBD14
Validity
Not Before: Feb 21 14:05:34 2025 GMT
Not After : Feb 20 14:10:34 2026 GMT
Subject: CN=95A98EC7DA3840D1334DA5DBA1E8FFA249E3D791
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:e2:94:de:7a:16:97:37:bb:15:04:a9:79:7e:
40:43:53:77:d7:b3:23:95:9a:9d:de:40:ff:48:6b:
04:2f:c4:06:c4:9c:40:ef:46:fa:2e:63:4f:54:e0:
98:8b:66:96:3b:ab:ab:bd:7f:f7:03:02:d5:1f:c4:
b9:12:2c:41:85:4a:80:59:72:33:59:90:bc:da:08:
a7:f6:7d:78:90:5a:5d:9e:9b:e7:3a:1a:e4:87:d6:
aa:50:fa:4a:11:a5:9d:f6:0d:4d:9e:ff:49:ad:0a:
cd:63:2f:da:e6:c5:2b:54:06:b5:0b:ee:d6:11:b1:
bd:ad:5e:7d:aa:61:76:55:44:10:12:37:0e:b9:c5:
ac:8b:23:e1:71:71:23:d3:60:03:19:1f:17:4d:0e:
d4:d7:9a:98:f0:08:cb:6b:f8:e9:75:c5:9a:14:13:
c8:2a:b0:79:4a:d8:ab:e1:bc:c1:71:30:fa:e0:a4:
70:0a:f3:76:c4:42:22:47:72:3c:28:5b:aa:1a:f5:
27:dc:3e:9e:d8:90:0a:12:c3:6a:41:81:f6:93:19:
61:cb:38:ec:da:32:70:d2:bb:9b:f2:0a:d6:81:62:
df:80:37:3f:eb:02:63:3b:46:17:fe:a3:19:03:73:
b4:47:b0:6c:41:f5:02:1e:bf:95:d7:66:bf:95:e2:
ac:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:A9:8E:C7:DA:38:40:D1:33:4D:A5:DB:A1:E8:FF:A2:49:E3:D7:91
X509v3 Authority Key Identifier:
keyid:0B:A3:1E:68:8F:C1:87:BB:18:65:78:47:D0:58:5D:C1:29:1E:BD:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2C9AA2C334FE0E68C2263029F8058D13AAFFD9C68218B8974854A1E91B1F97CA/0/0BA31E688FC187BB18657847D0585DC1291EBD14.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0BA31E688FC187BB18657847D0585DC1291EBD14.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2C9AA2C334FE0E68C2263029F8058D13AAFFD9C68218B8974854A1E91B1F97CA/0/323830363a3364353a3a2f33322d3634203d3e20323730313333.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2806:3d5::/32
Signature Algorithm: sha256WithRSAEncryption
09:e3:bf:e0:7d:9c:f5:9d:12:b8:15:a9:61:99:5d:7b:b1:02:
6c:47:03:59:7a:90:34:79:ac:fa:59:55:ac:03:07:f9:27:98:
01:f7:72:5f:0b:f6:3d:d8:71:f3:7d:0a:1c:68:cc:3f:f9:b2:
85:75:10:3a:63:62:a9:85:ca:00:1a:7e:03:14:1d:68:7e:ef:
80:f9:86:82:dd:e4:59:72:26:ee:50:f9:52:40:98:ed:90:39:
0a:85:52:ee:0b:96:7c:8e:f9:9f:31:07:93:68:d2:c0:36:69:
1a:20:3e:c0:5b:67:ad:8a:4c:d2:47:71:79:d8:5f:e7:e6:01:
df:66:df:f8:5b:93:20:97:e9:8a:79:b1:35:51:9f:ab:80:5f:
90:4c:06:24:e1:15:09:2f:51:7b:61:94:44:a3:a3:59:09:79:
5e:fc:54:c0:20:4e:7b:8a:1a:5e:6c:15:11:0a:f3:f7:a2:c4:
a0:cb:e0:84:a9:47:39:3f:76:50:9e:99:e0:8b:00:c9:0d:43:
08:6b:cf:48:c4:b6:94:4d:e3:10:cf:3b:6c:ae:2b:51:8c:4e:
69:bf:ba:4a:70:c9:bf:27:b9:e5:0a:78:21:3a:e3:fa:01:85:
3b:fc:90:ba:37:4f:90:04:1c:b9:b8:31:0a:5d:d8:9c:59:08:
34:33:91:d1
-----BEGIN CERTIFICATE-----
MIIFvTCCBKWgAwIBAgIUbrOWXSv+nmUXYCLfJXNc2hqPu4EwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMEJBMzFFNjg4RkMxODdCQjE4NjU3ODQ3RDA1ODVEQzEy
OTFFQkQxNDAeFw0yNTAyMjExNDA1MzRaFw0yNjAyMjAxNDEwMzRaMDMxMTAvBgNV
BAMTKDk1QTk4RUM3REEzODQwRDEzMzREQTVEQkExRThGRkEyNDlFM0Q3OTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDY4pTeehaXN7sVBKl5fkBDU3fX
syOVmp3eQP9IawQvxAbEnEDvRvouY09U4JiLZpY7q6u9f/cDAtUfxLkSLEGFSoBZ
cjNZkLzaCKf2fXiQWl2em+c6GuSH1qpQ+koRpZ32DU2e/0mtCs1jL9rmxStUBrUL
7tYRsb2tXn2qYXZVRBASNw65xayLI+FxcSPTYAMZHxdNDtTXmpjwCMtr+Ol1xZoU
E8gqsHlK2KvhvMFxMPrgpHAK83bEQiJHcjwoW6oa9SfcPp7YkAoSw2pBgfaTGWHL
OOzaMnDSu5vyCtaBYt+ANz/rAmM7Rhf+oxkDc7RHsGxB9QIev5XXZr+V4qyFAgMB
AAGjggLHMIICwzAdBgNVHQ4EFgQUlamOx9o4QNEzTaXboej/oknj15EwHwYDVR0j
BBgwFoAUC6MeaI/Bh7sYZXhH0FhdwSkevRQwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8yQzlBQTJDMzM0RkUwRTY4QzIyNjMwMjlGODA1OEQxM0FB
RkZEOUM2ODIxOEI4OTc0ODU0QTFFOTFCMUY5N0NBLzAvMEJBMzFFNjg4RkMxODdC
QjE4NjU3ODQ3RDA1ODVEQzEyOTFFQkQxNC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8wQkEzMUU2ODhGQzE4N0JCMTg2
NTc4NDdEMDU4NURDMTI5MUVCRDE0LmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMkM5QUEyQzMzNEZFMEU2OEMyMjYzMDI5RjgwNThEMTNBQUZGRDlDNjgy
MThCODk3NDg1NEExRTkxQjFGOTdDQS8wLzMyMzgzMDM2M2EzMzY0MzUzYTNhMmYz
MzMyMmQzNjM0MjAzZDNlMjAzMjM3MzAzMTMzMzMucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAoBgPVMA0G
CSqGSIb3DQEBCwUAA4IBAQAJ47/gfZz1nRK4FalhmV17sQJsRwNZepA0eaz6WVWs
Awf5J5gB93JfC/Y92HHzfQocaMw/+bKFdRA6Y2KphcoAGn4DFB1ofu+A+YaC3eRZ
cibuUPlSQJjtkDkKhVLuC5Z8jvmfMQeTaNLANmkaID7AW2etikzSR3F52F/n5gHf
Zt/4W5Mgl+mKebE1UZ+rgF+QTAYk4RUJL1F7YZREo6NZCXle/FTAIE57ihpebBUR
CvP3osSgy+CEqUc5P3ZQnpngiwDJDUMIa89IxLaUTeMQzztsritRjE5pv7pKcMm/
J7nlCnghOuP6AYU7/JC6N0+QBBy5uDEKXdicWQg0M5HR
-----END CERTIFICATE-----
Generated at Mon Apr 14 17:57:21 2025 by rpki-client