Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2E7B64309727F4467B68A76D90D305BFE3CCFC91518535BD875EE550381A1DFC/0/323830333a643730303a386130303a3a2f34302d3430203d3e203631343631.roa
File: 323830333a643730303a386130303a3a2f34302d3430203d3e203631343631.roa (raw, json)
Hash identifier: M6WtpjovCmMbkFlPd1wgesYZH51TlDXVcgiNqz02fEk=
Subject key identifier: 36:B3:25:7D:E9:1D:81:AE:B4:FF:19:9C:A4:82:A5:79:BA:BF:ED:AF
Certificate issuer: /CN=B137142754DED915D3341628E74A8B91AF0CB76A
Certificate serial: 2C2A17C8CD8E7E4CB257ECA01DC3D78FB17D5584
Authority key identifier: B1:37:14:27:54:DE:D9:15:D3:34:16:28:E7:4A:8B:91:AF:0C:B7:6A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B137142754DED915D3341628E74A8B91AF0CB76A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/2E7B64309727F4467B68A76D90D305BFE3CCFC91518535BD875EE550381A1DFC/0/323830333a643730303a386130303a3a2f34302d3430203d3e203631343631.roa
Signing time: Tue 04 Feb 2025 18:14:50 +0000
ROA not before: Tue 04 Feb 2025 18:09:50 +0000
ROA not after: Tue 03 Feb 2026 18:14:50 +0000
asID: 61461
IP address blocks: 2803:d700:8a00::/40 maxlen: 40
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/2E7B64309727F4467B68A76D90D305BFE3CCFC91518535BD875EE550381A1DFC/0/B137142754DED915D3341628E74A8B91AF0CB76A.crl
rsync://repository.lacnic.net/rpki/lacnic/2E7B64309727F4467B68A76D90D305BFE3CCFC91518535BD875EE550381A1DFC/0/B137142754DED915D3341628E74A8B91AF0CB76A.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B137142754DED915D3341628E74A8B91AF0CB76A.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 22:22:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:2a:17:c8:cd:8e:7e:4c:b2:57:ec:a0:1d:c3:d7:8f:b1:7d:55:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B137142754DED915D3341628E74A8B91AF0CB76A
Validity
Not Before: Feb 4 18:09:50 2025 GMT
Not After : Feb 3 18:14:50 2026 GMT
Subject: CN=36B3257DE91D81AEB4FF199CA482A579BABFEDAF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:be:eb:5d:4c:f1:28:98:1f:98:76:22:d1:70:
42:ed:02:d4:78:44:f2:af:d9:c9:94:a1:e8:7e:73:
b4:12:bd:82:08:59:1f:55:be:32:2c:5e:8c:12:a2:
fc:25:e9:10:68:bd:ef:6c:65:6a:9a:73:f8:f3:27:
7b:04:00:d5:70:18:a5:fc:a4:8e:c8:a8:0b:f0:cf:
19:dd:fa:f8:16:e6:5b:9d:5c:8e:0d:4b:1e:d2:3e:
68:2d:26:61:9d:2c:af:a2:78:1d:e4:08:fd:49:18:
e3:c4:c3:90:a3:1b:1d:c4:00:b9:b1:d1:88:46:81:
f0:ea:8a:75:d6:7f:59:b7:00:b4:95:f6:cd:e3:7f:
6b:5e:e9:02:3a:8e:f4:b5:eb:11:d5:60:9f:48:3a:
77:ba:3e:6b:64:64:e1:85:8b:9e:a5:8a:ff:a7:29:
17:07:57:22:2d:53:b0:c0:8c:aa:2a:a8:5b:09:67:
b7:3d:4d:cf:ad:e9:c4:b5:a4:cd:b3:4c:c8:bb:2e:
ce:ac:0a:99:d0:58:66:b1:8f:c0:36:67:88:6f:8b:
a6:de:d5:ba:10:a5:57:b9:2e:9b:5d:a9:cc:f2:d4:
1e:ab:dc:4a:a1:5c:a0:54:6b:59:36:25:ab:15:aa:
fe:1d:1c:8b:c4:a3:e6:57:f0:35:64:fd:16:d7:60:
b0:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:B3:25:7D:E9:1D:81:AE:B4:FF:19:9C:A4:82:A5:79:BA:BF:ED:AF
X509v3 Authority Key Identifier:
keyid:B1:37:14:27:54:DE:D9:15:D3:34:16:28:E7:4A:8B:91:AF:0C:B7:6A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/2E7B64309727F4467B68A76D90D305BFE3CCFC91518535BD875EE550381A1DFC/0/B137142754DED915D3341628E74A8B91AF0CB76A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B137142754DED915D3341628E74A8B91AF0CB76A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2E7B64309727F4467B68A76D90D305BFE3CCFC91518535BD875EE550381A1DFC/0/323830333a643730303a386130303a3a2f34302d3430203d3e203631343631.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:d700:8a00::/40
Signature Algorithm: sha256WithRSAEncryption
5a:15:29:01:ea:fc:5e:32:e9:01:d6:d1:20:85:3f:69:bb:b4:
fa:12:ff:7d:48:f9:27:74:f0:df:39:76:71:3b:e0:ad:54:2d:
44:ad:95:6c:da:f3:fc:4f:37:c9:d3:41:a9:b0:cb:43:99:64:
6b:87:f4:c9:12:3b:56:4f:e3:1b:55:66:66:29:0d:0e:a3:c6:
0d:24:f1:70:fe:da:b5:62:13:b2:8b:50:b8:60:c3:85:4d:e7:
5d:86:1d:7a:89:66:4f:ab:43:5e:53:5e:d4:13:e3:6f:32:a7:
9a:64:7b:08:f7:6f:78:8f:4a:64:3d:16:34:9a:68:b6:e3:64:
ce:e6:d2:ad:a4:d4:7f:2e:2b:78:8b:d1:a4:3e:c0:29:27:51:
d4:2c:ee:84:87:23:3d:e2:b8:dc:80:c3:88:0c:00:8a:26:c3:
6a:d8:f9:72:64:5b:b8:15:76:cd:48:f7:a0:5a:05:f6:78:a0:
b1:ca:b1:4c:aa:aa:f3:a4:67:08:8a:d8:aa:81:b8:bb:13:37:
53:bb:d2:09:ba:47:52:2f:24:8b:09:3c:9a:e9:71:50:0c:3e:
77:05:e7:fb:64:ac:ee:3f:6a:f7:4d:be:0b:85:7a:8d:f4:6e:
9b:a8:9c:24:38:00:50:fa:5e:1f:3e:87:cf:b6:ef:04:59:3d:
b3:b0:12:04
-----BEGIN CERTIFICATE-----
MIIFyDCCBLCgAwIBAgIULCoXyM2OfkyyV+ygHcPXj7F9VYQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjEzNzE0Mjc1NERFRDkxNUQzMzQxNjI4RTc0QThCOTFB
RjBDQjc2QTAeFw0yNTAyMDQxODA5NTBaFw0yNjAyMDMxODE0NTBaMDMxMTAvBgNV
BAMTKDM2QjMyNTdERTkxRDgxQUVCNEZGMTk5Q0E0ODJBNTc5QkFCRkVEQUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJvutdTPEomB+YdiLRcELtAtR4
RPKv2cmUoeh+c7QSvYIIWR9VvjIsXowSovwl6RBove9sZWqac/jzJ3sEANVwGKX8
pI7IqAvwzxnd+vgW5ludXI4NSx7SPmgtJmGdLK+ieB3kCP1JGOPEw5CjGx3EALmx
0YhGgfDqinXWf1m3ALSV9s3jf2te6QI6jvS16xHVYJ9IOne6PmtkZOGFi56liv+n
KRcHVyItU7DAjKoqqFsJZ7c9Tc+t6cS1pM2zTMi7Ls6sCpnQWGaxj8A2Z4hvi6be
1boQpVe5Lptdqczy1B6r3EqhXKBUa1k2JasVqv4dHIvEo+ZX8DVk/RbXYLBFAgMB
AAGjggLSMIICzjAdBgNVHQ4EFgQUNrMlfekdga60/xmcpIKlebq/7a8wHwYDVR0j
BBgwFoAUsTcUJ1Te2RXTNBYo50qLka8Mt2owDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8yRTdCNjQzMDk3MjdGNDQ2N0I2OEE3NkQ5MEQzMDVCRkUz
Q0NGQzkxNTE4NTM1QkQ4NzVFRTU1MDM4MUExREZDLzAvQjEzNzE0Mjc1NERFRDkx
NUQzMzQxNjI4RTc0QThCOTFBRjBDQjc2QS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9CMTM3MTQyNzU0REVEOTE1RDMz
NDE2MjhFNzRBOEI5MUFGMENCNzZBLmNlcjCBzwYIKwYBBQUHAQsEgcIwgb8wgbwG
CCsGAQUFBzALhoGvcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMkU3QjY0MzA5NzI3RjQ0NjdCNjhBNzZEOTBEMzA1QkZFM0NDRkM5MTUx
ODUzNUJEODc1RUU1NTAzODFBMURGQy8wLzMyMzgzMDMzM2E2NDM3MzAzMDNhMzg2
MTMwMzAzYTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzNjMxMzQzNjMxLnJvYTAYBgNV
HSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAI
AwYAKAPXAIowDQYJKoZIhvcNAQELBQADggEBAFoVKQHq/F4y6QHW0SCFP2m7tPoS
/31I+Sd08N85dnE74K1ULUStlWza8/xPN8nTQamwy0OZZGuH9MkSO1ZP4xtVZmYp
DQ6jxg0k8XD+2rViE7KLULhgw4VN512GHXqJZk+rQ15TXtQT428yp5pkewj3b3iP
SmQ9FjSaaLbjZM7m0q2k1H8uK3iL0aQ+wCknUdQs7oSHIz3iuNyAw4gMAIomw2rY
+XJkW7gVds1I96BaBfZ4oLHKsUyqqvOkZwiK2KqBuLsTN1O70gm6R1IvJIsJPJrp
cVAMPncF5/tkrO4/avdNvguFeo30bpuonCQ4AFD6Xh8+h8+27wRZPbOwEgQ=
-----END CERTIFICATE-----
Generated at Mon Apr 14 13:29:41 2025 by rpki-client