Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/33CBD823A5E6A44B211094A157D298ADC4B9DFAFC39B05343297EFD40C5076FC/0/3230302e3131352e3137392e302f32342d3234203d3e20323632323338.roa
File: 3230302e3131352e3137392e302f32342d3234203d3e20323632323338.roa (raw, json)
Hash identifier: t0NXd0AZoax6j3Zx+zGAKvSkdzoQul8jv0P43Qt0bzM=
Subject key identifier: 4A:F1:4B:93:1F:02:7C:DE:EC:FA:4C:3A:3A:FD:53:92:AF:82:D0:24
Certificate issuer: /CN=2D00DE6856A46670E74CBC3380A84B75A4BD982C
Certificate serial: 0CC664B14C37E4E41C18C93D9DACCDF0B900A67A
Authority key identifier: 2D:00:DE:68:56:A4:66:70:E7:4C:BC:33:80:A8:4B:75:A4:BD:98:2C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D00DE6856A46670E74CBC3380A84B75A4BD982C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/33CBD823A5E6A44B211094A157D298ADC4B9DFAFC39B05343297EFD40C5076FC/0/3230302e3131352e3137392e302f32342d3234203d3e20323632323338.roa
Signing time: Tue 04 Feb 2025 18:01:42 +0000
ROA not before: Tue 04 Feb 2025 17:56:42 +0000
ROA not after: Tue 03 Feb 2026 18:01:42 +0000
asID: 262238
IP address blocks: 200.115.179.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/33CBD823A5E6A44B211094A157D298ADC4B9DFAFC39B05343297EFD40C5076FC/0/2D00DE6856A46670E74CBC3380A84B75A4BD982C.crl
rsync://repository.lacnic.net/rpki/lacnic/33CBD823A5E6A44B211094A157D298ADC4B9DFAFC39B05343297EFD40C5076FC/0/2D00DE6856A46670E74CBC3380A84B75A4BD982C.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D00DE6856A46670E74CBC3380A84B75A4BD982C.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 10:05:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:c6:64:b1:4c:37:e4:e4:1c:18:c9:3d:9d:ac:cd:f0:b9:00:a6:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D00DE6856A46670E74CBC3380A84B75A4BD982C
Validity
Not Before: Feb 4 17:56:42 2025 GMT
Not After : Feb 3 18:01:42 2026 GMT
Subject: CN=4AF14B931F027CDEECFA4C3A3AFD5392AF82D024
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:59:22:b7:96:0e:84:10:9d:85:d2:de:6f:27:
bd:47:d4:06:48:c0:ca:55:29:94:59:b3:d7:c5:bc:
2f:6e:c9:a2:48:58:b1:38:49:ad:34:7e:27:38:d2:
83:2c:0b:3e:9b:c7:7a:c1:ec:83:c7:d4:79:45:c7:
a6:1c:58:43:27:79:e5:1f:bf:df:16:68:6f:01:fa:
18:e0:df:bb:b2:9d:8e:ea:5d:18:2d:d6:76:ec:de:
ee:1a:b9:0c:fa:3a:1a:dd:e3:de:4c:f0:83:f4:90:
d5:a0:7a:4a:4b:6e:b4:6a:5a:22:56:6a:53:e7:47:
64:2c:e3:85:97:c8:e5:65:5c:6b:6b:ec:38:74:1e:
51:45:c4:e7:db:64:9b:d2:39:0f:19:a5:6d:b7:ed:
24:26:38:bc:78:ab:d8:f0:78:8a:35:ca:5e:c0:d7:
d0:f1:9f:8a:04:57:4d:94:c4:4b:56:40:8e:74:8c:
42:44:f3:da:2d:06:a1:5c:49:51:5a:17:1a:14:7c:
68:bc:2d:27:a8:91:50:16:2e:f1:7b:0b:ee:2c:de:
0e:00:10:3f:dc:98:2b:75:57:0a:1a:82:5f:0f:3c:
6e:5f:0a:d5:bb:ed:c9:9a:00:30:76:fc:0c:9f:80:
e1:55:2e:21:32:8f:fa:4e:19:02:46:ec:db:fa:ff:
31:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:F1:4B:93:1F:02:7C:DE:EC:FA:4C:3A:3A:FD:53:92:AF:82:D0:24
X509v3 Authority Key Identifier:
keyid:2D:00:DE:68:56:A4:66:70:E7:4C:BC:33:80:A8:4B:75:A4:BD:98:2C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/33CBD823A5E6A44B211094A157D298ADC4B9DFAFC39B05343297EFD40C5076FC/0/2D00DE6856A46670E74CBC3380A84B75A4BD982C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D00DE6856A46670E74CBC3380A84B75A4BD982C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/33CBD823A5E6A44B211094A157D298ADC4B9DFAFC39B05343297EFD40C5076FC/0/3230302e3131352e3137392e302f32342d3234203d3e20323632323338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.115.179.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:0c:a8:a2:cf:4e:33:9a:58:59:e5:9a:8c:e3:0f:2b:d5:4a:
ae:41:3d:77:fd:e6:f7:bc:0f:63:7e:ed:97:02:aa:57:f2:8b:
92:ae:51:c0:35:72:68:cf:63:4c:80:fd:fd:85:93:72:78:3c:
8e:5c:62:88:b0:a7:68:c9:6e:55:37:e7:6a:f7:4e:01:78:86:
7d:d9:73:0a:0b:e1:33:22:25:26:0e:20:19:d5:a4:b1:f7:6a:
1c:ae:6b:d2:05:6e:f0:47:c7:63:65:20:28:7d:76:f6:a9:a5:
a8:d1:68:14:0a:8c:e0:8f:2e:40:a3:2b:ac:75:b3:06:6b:73:
0f:43:8a:d7:b5:81:13:c6:4e:50:ef:b0:e8:b1:4a:87:6e:38:
cb:7e:32:a8:c2:79:23:c3:72:fa:79:07:92:2f:99:fa:1d:43:
fe:2e:df:53:76:73:49:8c:6c:92:86:bb:34:88:a1:65:80:8d:
f2:df:52:3c:05:50:29:3d:87:aa:ec:cf:fd:c8:ce:1e:9a:a2:
51:92:dc:94:80:7d:c7:56:82:69:f6:fc:ce:43:ba:81:18:93:
b4:74:4d:61:e6:41:40:a5:72:3c:92:b1:86:f9:2c:09:ff:69:
49:e1:b3:6b:d9:ff:72:c1:d6:e0:d4:95:6a:04:7b:85:2f:bb:
ba:06:d7:bd
-----BEGIN CERTIFICATE-----
MIIFwjCCBKqgAwIBAgIUDMZksUw35OQcGMk9nazN8LkApnowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMkQwMERFNjg1NkE0NjY3MEU3NENCQzMzODBBODRCNzVB
NEJEOTgyQzAeFw0yNTAyMDQxNzU2NDJaFw0yNjAyMDMxODAxNDJaMDMxMTAvBgNV
BAMTKDRBRjE0QjkzMUYwMjdDREVFQ0ZBNEMzQTNBRkQ1MzkyQUY4MkQwMjQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuWSK3lg6EEJ2F0t5vJ71H1AZI
wMpVKZRZs9fFvC9uyaJIWLE4Sa00fic40oMsCz6bx3rB7IPH1HlFx6YcWEMneeUf
v98WaG8B+hjg37uynY7qXRgt1nbs3u4auQz6Ohrd495M8IP0kNWgekpLbrRqWiJW
alPnR2Qs44WXyOVlXGtr7Dh0HlFFxOfbZJvSOQ8ZpW237SQmOLx4q9jweIo1yl7A
19Dxn4oEV02UxEtWQI50jEJE89otBqFcSVFaFxoUfGi8LSeokVAWLvF7C+4s3g4A
ED/cmCt1Vwoagl8PPG5fCtW77cmaADB2/AyfgOFVLiEyj/pOGQJG7Nv6/zHjAgMB
AAGjggLMMIICyDAdBgNVHQ4EFgQUSvFLkx8CfN7s+kw6Ov1Tkq+C0CQwHwYDVR0j
BBgwFoAULQDeaFakZnDnTLwzgKhLdaS9mCwwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8zM0NCRDgyM0E1RTZBNDRCMjExMDk0QTE1N0QyOThBREM0
QjlERkFGQzM5QjA1MzQzMjk3RUZENDBDNTA3NkZDLzAvMkQwMERFNjg1NkE0NjY3
MEU3NENCQzMzODBBODRCNzVBNEJEOTgyQy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yRDAwREU2ODU2QTQ2NjcwRTc0
Q0JDMzM4MEE4NEI3NUE0QkQ5ODJDLmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG
CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMzNDQkQ4MjNBNUU2QTQ0QjIxMTA5NEExNTdEMjk4QURDNEI5REZBRkMz
OUIwNTM0MzI5N0VGRDQwQzUwNzZGQy8wLzMyMzAzMDJlMzEzMTM1MmUzMTM3Mzky
ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM2MzIzMjMzMzgucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADI
c7MwDQYJKoZIhvcNAQELBQADggEBAEsMqKLPTjOaWFnlmozjDyvVSq5BPXf95ve8
D2N+7ZcCqlfyi5KuUcA1cmjPY0yA/f2Fk3J4PI5cYoiwp2jJblU352r3TgF4hn3Z
cwoL4TMiJSYOIBnVpLH3ahyua9IFbvBHx2NlICh9dvappajRaBQKjOCPLkCjK6x1
swZrcw9Dite1gRPGTlDvsOixSoduOMt+MqjCeSPDcvp5B5IvmfodQ/4u31N2c0mM
bJKGuzSIoWWAjfLfUjwFUCk9h6rsz/3Izh6aolGS3JSAfcdWgmn2/M5DuoEYk7R0
TWHmQUClcjySsYb5LAn/aUnhs2vZ/3LB1uDUlWoEe4Uvu7oG170=
-----END CERTIFICATE-----
Generated at Mon Apr 14 10:41:45 2025 by rpki-client