Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/34909CE0FDEE7CDD67BAEAD7B789A18145065F72F93F1E18044B4A1A485C64A1/0/3139302e31342e31362e302f32332d3234203d3e20323632323438.roa
File: 3139302e31342e31362e302f32332d3234203d3e20323632323438.roa (raw, json)
Hash identifier: 1//x2J58LvJ9xpJTCTfZ8gmvOberRM4xgubKcZB9BGs=
Subject key identifier: 9B:62:EA:21:D4:B1:30:B2:7D:F3:13:50:63:24:4C:D4:44:47:50:3B
Certificate issuer: /CN=EF6406F2A9DBB08A9EE3AC2B4F78EC25F2DFD72D
Certificate serial: 1D726CDD2AE217244DF4E863D4BDCD42B9D269CC
Authority key identifier: EF:64:06:F2:A9:DB:B0:8A:9E:E3:AC:2B:4F:78:EC:25:F2:DF:D7:2D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EF6406F2A9DBB08A9EE3AC2B4F78EC25F2DFD72D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/34909CE0FDEE7CDD67BAEAD7B789A18145065F72F93F1E18044B4A1A485C64A1/0/3139302e31342e31362e302f32332d3234203d3e20323632323438.roa
Signing time: Fri 27 Dec 2024 19:50:00 +0000
ROA not before: Fri 27 Dec 2024 19:45:00 +0000
ROA not after: Fri 26 Dec 2025 19:50:00 +0000
asID: 262248
IP address blocks: 190.14.16.0/23 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/34909CE0FDEE7CDD67BAEAD7B789A18145065F72F93F1E18044B4A1A485C64A1/0/EF6406F2A9DBB08A9EE3AC2B4F78EC25F2DFD72D.crl
rsync://repository.lacnic.net/rpki/lacnic/34909CE0FDEE7CDD67BAEAD7B789A18145065F72F93F1E18044B4A1A485C64A1/0/EF6406F2A9DBB08A9EE3AC2B4F78EC25F2DFD72D.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EF6406F2A9DBB08A9EE3AC2B4F78EC25F2DFD72D.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 14:46:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:72:6c:dd:2a:e2:17:24:4d:f4:e8:63:d4:bd:cd:42:b9:d2:69:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EF6406F2A9DBB08A9EE3AC2B4F78EC25F2DFD72D
Validity
Not Before: Dec 27 19:45:00 2024 GMT
Not After : Dec 26 19:50:00 2025 GMT
Subject: CN=9B62EA21D4B130B27DF3135063244CD44447503B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:2e:da:48:64:4a:57:6a:eb:25:4c:ef:d5:6d:
5e:ec:a4:b8:68:62:fd:6a:a2:c8:23:c8:e0:08:da:
82:a7:60:3e:8f:7e:96:c3:09:ee:c5:eb:24:40:40:
82:9e:d8:20:84:36:99:0f:27:59:ae:b8:da:35:5d:
40:69:ce:1f:3e:85:91:34:86:f8:6d:26:0e:57:ea:
8c:e7:3a:96:96:1f:53:83:ea:9a:c1:da:5c:23:ef:
33:f5:88:30:f3:90:19:9d:14:6d:9c:4f:78:1f:d3:
21:2b:79:ee:d7:0d:ac:b7:e2:8f:75:f7:34:b2:73:
e7:ab:8a:82:ab:01:22:77:c9:86:7f:74:4b:70:13:
74:4e:b5:82:34:7a:8b:65:60:bb:f7:52:c3:09:bc:
a5:54:40:22:cc:20:bf:7b:41:ea:a6:bb:8d:66:34:
d6:04:94:d1:3a:2b:29:42:eb:30:b2:5c:31:ab:11:
b1:ff:15:92:90:bb:b2:b4:27:26:14:8e:47:5c:f8:
66:d2:99:8e:68:f7:7a:9e:93:9a:47:3e:90:c9:27:
0e:8d:73:24:5e:b5:36:53:5b:79:41:59:30:2e:7c:
4b:f0:8d:a0:97:bd:df:e4:23:6e:d7:c9:08:c8:b6:
77:ec:81:18:c6:71:da:88:f8:34:10:d0:e2:6d:ad:
db:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:62:EA:21:D4:B1:30:B2:7D:F3:13:50:63:24:4C:D4:44:47:50:3B
X509v3 Authority Key Identifier:
keyid:EF:64:06:F2:A9:DB:B0:8A:9E:E3:AC:2B:4F:78:EC:25:F2:DF:D7:2D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/34909CE0FDEE7CDD67BAEAD7B789A18145065F72F93F1E18044B4A1A485C64A1/0/EF6406F2A9DBB08A9EE3AC2B4F78EC25F2DFD72D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EF6406F2A9DBB08A9EE3AC2B4F78EC25F2DFD72D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/34909CE0FDEE7CDD67BAEAD7B789A18145065F72F93F1E18044B4A1A485C64A1/0/3139302e31342e31362e302f32332d3234203d3e20323632323438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.14.16.0/23
Signature Algorithm: sha256WithRSAEncryption
45:8d:9f:e7:2b:d6:c5:31:95:02:99:c4:4f:3f:f4:e7:13:49:
2c:d9:a2:bb:b5:73:a6:ff:15:61:b6:1b:ac:a1:53:af:16:ee:
83:4d:27:49:37:f6:15:12:f7:3b:eb:e2:6e:32:0d:12:97:2e:
5e:dc:62:cd:4b:c0:3a:49:83:1e:db:cd:b5:65:3f:16:df:3f:
a6:2e:33:8c:81:09:1d:c3:8f:55:7c:9c:c2:c4:a0:a5:2c:e7:
76:4d:b6:b0:00:08:ae:09:9a:cd:07:a0:0a:ae:52:95:dc:6c:
2e:5b:30:56:84:ef:ba:ea:fe:5c:13:af:4a:ef:7f:42:54:b3:
b2:a1:ba:53:52:5d:fe:9d:f8:d5:a8:c8:86:33:0d:b3:c9:c7:
0c:84:36:69:af:30:6a:bd:93:dd:7c:0a:d8:dc:46:33:31:e6:
00:fd:47:0c:45:b9:e6:17:0c:ad:23:58:34:84:91:d3:ef:e2:
d2:59:b8:df:ca:4b:3a:ab:84:c7:28:75:c0:2d:05:94:4b:66:
32:63:b0:de:26:01:7b:03:51:4f:47:ac:05:50:9a:48:0e:8a:
ad:a4:89:3b:5e:1f:ad:b5:b2:df:51:a3:83:ee:32:9d:14:93:
6d:40:42:ee:b5:c2:91:2b:f4:fc:e3:c7:ec:ab:2b:64:21:bf:
a8:e0:b0:ce
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUHXJs3SriFyRN9Ohj1L3NQrnSacwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRUY2NDA2RjJBOURCQjA4QTlFRTNBQzJCNEY3OEVDMjVG
MkRGRDcyRDAeFw0yNDEyMjcxOTQ1MDBaFw0yNTEyMjYxOTUwMDBaMDMxMTAvBgNV
BAMTKDlCNjJFQTIxRDRCMTMwQjI3REYzMTM1MDYzMjQ0Q0Q0NDQ0NzUwM0IwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaLtpIZEpXauslTO/VbV7spLho
Yv1qosgjyOAI2oKnYD6PfpbDCe7F6yRAQIKe2CCENpkPJ1muuNo1XUBpzh8+hZE0
hvhtJg5X6oznOpaWH1OD6prB2lwj7zP1iDDzkBmdFG2cT3gf0yEree7XDay34o91
9zSyc+erioKrASJ3yYZ/dEtwE3ROtYI0eotlYLv3UsMJvKVUQCLMIL97Qeqmu41m
NNYElNE6KylC6zCyXDGrEbH/FZKQu7K0JyYUjkdc+GbSmY5o93qek5pHPpDJJw6N
cyRetTZTW3lBWTAufEvwjaCXvd/kI27XyQjItnfsgRjGcdqI+DQQ0OJtrdtPAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUm2LqIdSxMLJ98xNQYyRM1ERHUDswHwYDVR0j
BBgwFoAU72QG8qnbsIqe46wrT3jsJfLf1y0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8zNDkwOUNFMEZERUU3Q0RENjdCQUVBRDdCNzg5QTE4MTQ1
MDY1RjcyRjkzRjFFMTgwNDRCNEExQTQ4NUM2NEExLzAvRUY2NDA2RjJBOURCQjA4
QTlFRTNBQzJCNEY3OEVDMjVGMkRGRDcyRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9FRjY0MDZGMkE5REJCMDhBOUVF
M0FDMkI0Rjc4RUMyNUYyREZENzJELmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMzQ5MDlDRTBGREVFN0NERDY3QkFFQUQ3Qjc4OUExODE0NTA2NUY3MkY5
M0YxRTE4MDQ0QjRBMUE0ODVDNjRBMS8wLzMxMzkzMDJlMzEzNDJlMzEzNjJlMzAy
ZjMyMzMyZDMyMzQyMDNkM2UyMDMyMzYzMjMyMzQzOC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAb4OEDAN
BgkqhkiG9w0BAQsFAAOCAQEARY2f5yvWxTGVApnETz/05xNJLNmiu7Vzpv8VYbYb
rKFTrxbug00nSTf2FRL3O+vibjINEpcuXtxizUvAOkmDHtvNtWU/Ft8/pi4zjIEJ
HcOPVXycwsSgpSzndk22sAAIrgmazQegCq5SldxsLlswVoTvuur+XBOvSu9/QlSz
sqG6U1Jd/p341ajIhjMNs8nHDIQ2aa8war2T3XwK2NxGMzHmAP1HDEW55hcMrSNY
NISR0+/i0lm438pLOquExyh1wC0FlEtmMmOw3iYBewNRT0esBVCaSA6KraSJO14f
rbWy31Gjg+4ynRSTbUBC7rXCkSv0/OPH7KsrZCG/qOCwzg==
-----END CERTIFICATE-----
Generated at Mon Apr 14 13:29:49 2025 by rpki-client