Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/33736D5D5E393875457D88576E47B08A70AA95ECE4FDDE5F6C07F16C8F7E553E/0/3138362e3138332e3132302e302f32312d3234203d3e203238313134.roa
File: 3138362e3138332e3132302e302f32312d3234203d3e203238313134.roa (raw, json)
Hash identifier: nSRHNfxQX9dN266z1v0tTWrEVvtiurWnn+1uH3gNKcw=
Subject key identifier: 2F:4B:0D:43:E2:5B:E2:88:A4:A9:90:EA:C6:76:3D:97:F6:32:BB:D6
Certificate issuer: /CN=6B07BD31AD3335573775A9552187C8DA46C5971C
Certificate serial: 56DD53B0702C216361EF137DDB60F5ACB277F518
Authority key identifier: 6B:07:BD:31:AD:33:35:57:37:75:A9:55:21:87:C8:DA:46:C5:97:1C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6B07BD31AD3335573775A9552187C8DA46C5971C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/33736D5D5E393875457D88576E47B08A70AA95ECE4FDDE5F6C07F16C8F7E553E/0/3138362e3138332e3132302e302f32312d3234203d3e203238313134.roa
Signing time: Tue 04 Feb 2025 18:07:43 +0000
ROA not before: Tue 04 Feb 2025 18:02:43 +0000
ROA not after: Tue 03 Feb 2026 18:07:43 +0000
asID: 28114
IP address blocks: 186.183.120.0/21 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/33736D5D5E393875457D88576E47B08A70AA95ECE4FDDE5F6C07F16C8F7E553E/0/6B07BD31AD3335573775A9552187C8DA46C5971C.crl
rsync://repository.lacnic.net/rpki/lacnic/33736D5D5E393875457D88576E47B08A70AA95ECE4FDDE5F6C07F16C8F7E553E/0/6B07BD31AD3335573775A9552187C8DA46C5971C.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6B07BD31AD3335573775A9552187C8DA46C5971C.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 20:38:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:dd:53:b0:70:2c:21:63:61:ef:13:7d:db:60:f5:ac:b2:77:f5:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6B07BD31AD3335573775A9552187C8DA46C5971C
Validity
Not Before: Feb 4 18:02:43 2025 GMT
Not After : Feb 3 18:07:43 2026 GMT
Subject: CN=2F4B0D43E25BE288A4A990EAC6763D97F632BBD6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ed:3d:63:60:d3:a1:dc:f8:6c:85:d8:65:33:
c5:f6:21:83:2f:4b:b1:8e:5d:13:a0:8c:60:65:da:
24:6d:94:1d:15:27:59:92:32:c5:37:8a:d5:53:6b:
72:76:17:5e:85:51:d2:0a:b3:69:b4:f5:e2:53:cf:
d4:1e:92:e1:42:e2:13:43:eb:25:c3:51:ca:94:5e:
ec:0f:3d:9a:13:ca:98:59:6a:43:c0:4f:0b:89:a6:
3b:fc:7a:fd:a9:51:1e:39:0e:b7:02:e0:50:14:c3:
73:c5:a0:6e:0c:ce:d2:39:b4:92:9a:c0:3f:95:34:
8d:c4:d5:9e:9b:00:61:9b:83:1e:c8:db:61:7d:8c:
fe:47:5f:c6:ba:90:0b:26:b6:15:6e:18:d8:a8:11:
21:56:4a:fe:e0:3e:42:9d:e4:6d:d8:eb:05:da:50:
92:2a:8a:0b:09:fd:aa:3f:2e:64:0d:df:71:f4:af:
29:cd:bb:2c:dd:f3:60:0d:1c:b6:43:b7:0b:e4:08:
c6:c6:87:82:34:48:f5:c8:b4:d2:fd:86:c8:ac:a8:
b8:89:90:cc:58:1d:1c:c1:00:37:71:f6:be:a5:11:
fd:5b:26:ab:d7:11:7a:54:8c:35:05:d3:55:fb:b5:
0e:74:9a:6b:c3:7c:0c:17:9d:68:3d:47:03:7f:42:
85:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:4B:0D:43:E2:5B:E2:88:A4:A9:90:EA:C6:76:3D:97:F6:32:BB:D6
X509v3 Authority Key Identifier:
keyid:6B:07:BD:31:AD:33:35:57:37:75:A9:55:21:87:C8:DA:46:C5:97:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/33736D5D5E393875457D88576E47B08A70AA95ECE4FDDE5F6C07F16C8F7E553E/0/6B07BD31AD3335573775A9552187C8DA46C5971C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6B07BD31AD3335573775A9552187C8DA46C5971C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/33736D5D5E393875457D88576E47B08A70AA95ECE4FDDE5F6C07F16C8F7E553E/0/3138362e3138332e3132302e302f32312d3234203d3e203238313134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.183.120.0/21
Signature Algorithm: sha256WithRSAEncryption
94:fb:e3:5c:10:be:34:81:b2:57:f4:64:8a:e7:cf:d7:cb:58:
84:b5:56:23:06:2a:5b:44:45:0b:40:42:d3:f3:2e:c7:05:61:
90:93:b4:e4:b3:19:54:a8:28:b1:09:60:de:96:25:72:57:2a:
ae:fb:e4:38:b2:d7:12:e6:8e:92:91:56:ca:89:7b:7c:b4:ff:
89:71:2f:a5:ec:d7:c9:dc:c0:5e:65:25:b2:d6:4e:f3:e1:10:
e5:35:bb:f8:48:9b:c8:91:1b:d0:e3:4a:90:a8:eb:7a:d8:0b:
41:66:62:52:dc:56:36:10:b3:52:e3:4a:61:56:c1:f2:e1:4a:
bc:50:ed:a3:c4:c8:37:26:b9:b6:90:24:72:50:8f:d0:a0:b0:
8a:fd:ff:f1:ee:31:04:21:b4:9f:54:0b:7f:5f:80:b5:39:b2:
e5:69:2e:7a:af:19:8a:52:a9:ff:cb:74:0b:c5:7a:b7:d2:69:
71:87:90:b7:3a:33:f9:a4:11:f0:61:5f:1b:98:0e:99:cc:21:
45:f1:2c:e2:08:32:e5:9c:17:d3:43:d7:91:17:d4:71:ea:38:
24:a4:97:16:f5:5b:24:ab:72:7e:de:c8:da:d8:70:e5:be:8f:
8b:b0:31:00:87:f2:fd:13:db:b6:92:dd:df:22:8b:b4:11:9c:
e3:cd:3c:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 15:12:05 2025 by rpki-client