Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e32342e302f32312d3234203d3e20323632313636.roa
File: 3136382e3233342e32342e302f32312d3234203d3e20323632313636.roa (raw, json)
Hash identifier: lKxbbXDe444oeRzP+7d4JE1xdhAgeJIhEPcl5uIaU7M=
Subject key identifier: 6A:99:52:25:E7:32:79:F0:7A:5C:95:95:39:33:A1:BB:B4:59:94:16
Certificate issuer: /CN=0D1797043F7F529F13952CEE646AE7365392BBC3
Certificate serial: 1C45A4238E83F3117BD7C2B1EAFF1C91F116A7CB
Authority key identifier: 0D:17:97:04:3F:7F:52:9F:13:95:2C:EE:64:6A:E7:36:53:92:BB:C3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D1797043F7F529F13952CEE646AE7365392BBC3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e32342e302f32312d3234203d3e20323632313636.roa
Signing time: Tue 04 Feb 2025 17:59:43 +0000
ROA not before: Tue 04 Feb 2025 17:54:43 +0000
ROA not after: Tue 03 Feb 2026 17:59:43 +0000
asID: 262166
IP address blocks: 168.234.24.0/21 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/0D1797043F7F529F13952CEE646AE7365392BBC3.crl
rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/0D1797043F7F529F13952CEE646AE7365392BBC3.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D1797043F7F529F13952CEE646AE7365392BBC3.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 20:38:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:45:a4:23:8e:83:f3:11:7b:d7:c2:b1:ea:ff:1c:91:f1:16:a7:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D1797043F7F529F13952CEE646AE7365392BBC3
Validity
Not Before: Feb 4 17:54:43 2025 GMT
Not After : Feb 3 17:59:43 2026 GMT
Subject: CN=6A995225E73279F07A5C95953933A1BBB4599416
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9b:d1:53:df:91:bd:71:30:c1:96:fc:89:99:
72:0e:29:48:bb:b1:7c:96:71:2f:82:33:7f:de:bf:
64:5e:77:c6:c5:39:77:88:61:c7:6a:cd:fc:79:8a:
45:c9:89:40:d3:0f:97:98:36:76:70:dd:0a:3a:89:
26:a5:d2:ff:0e:d6:b8:c5:ba:29:39:5d:d9:6c:dc:
bb:de:dd:29:a1:9a:1f:d7:1c:16:cc:96:83:cc:90:
3d:c3:74:60:3b:f9:95:72:e8:b4:00:0a:77:e9:29:
f1:a3:83:36:c1:ea:1d:1d:d5:77:73:92:17:bd:0f:
0d:0f:b3:1c:a6:6b:23:26:4e:0b:b6:75:a2:b0:a0:
06:67:c8:69:e4:b4:e3:94:d7:9e:16:c7:57:b8:c3:
db:ac:08:80:9d:f0:19:43:bc:21:e0:23:0f:09:44:
ea:85:67:e9:d2:ba:2b:18:1a:9d:e2:7a:fe:d3:6f:
a3:f3:3c:68:11:db:27:34:55:4b:93:eb:45:8b:fb:
ee:af:63:3f:e7:33:c2:09:48:2a:98:ab:10:e5:19:
29:6c:dc:e5:9e:d9:92:1e:44:1e:24:66:fe:c8:99:
34:0d:84:e2:d1:5f:7e:3a:df:a7:46:14:51:ac:f5:
c7:33:f2:be:af:49:1b:ee:a4:e0:2c:79:15:b2:65:
80:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:99:52:25:E7:32:79:F0:7A:5C:95:95:39:33:A1:BB:B4:59:94:16
X509v3 Authority Key Identifier:
keyid:0D:17:97:04:3F:7F:52:9F:13:95:2C:EE:64:6A:E7:36:53:92:BB:C3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/0D1797043F7F529F13952CEE646AE7365392BBC3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D1797043F7F529F13952CEE646AE7365392BBC3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/36354543D224272CF4722FF4D718198EB8E2FF8CBD6D9B7B97CDA860D9C1CD3B/0/3136382e3233342e32342e302f32312d3234203d3e20323632313636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.234.24.0/21
Signature Algorithm: sha256WithRSAEncryption
7a:e1:88:2f:61:2e:56:c2:c5:ad:04:c7:63:31:e7:33:0b:b3:
15:a4:74:e7:cc:28:2a:1c:1b:6f:f2:cf:9f:76:04:09:84:b5:
fe:45:ce:d2:b5:d0:14:3a:1f:34:46:41:b5:54:59:aa:fe:f1:
a1:04:0d:44:5e:96:ee:6a:41:97:b3:dd:f6:fc:78:b7:67:37:
bc:c3:a3:12:73:55:87:4b:d4:f1:9a:12:a3:a2:b4:41:96:17:
eb:81:d3:b6:63:ae:f3:de:53:b2:70:c5:80:0c:6c:7b:4d:a8:
a6:63:7a:a2:84:b7:69:49:eb:75:06:2e:0e:21:3c:37:3a:ad:
d8:2b:58:5c:b4:e4:72:63:f8:d7:f7:5c:e2:03:2d:32:2f:e9:
6f:00:ea:71:07:9c:0b:e0:4a:05:dc:8f:e5:46:89:46:e4:78:
a1:c8:26:aa:39:f5:cd:6b:24:33:4e:08:fe:9f:a3:08:97:7e:
50:e1:17:bc:0d:a2:0b:d8:22:dc:d2:13:2d:e7:bb:9e:51:ea:
6c:ab:da:64:37:a6:75:e7:1c:f4:2f:27:58:8f:1f:a4:14:88:
3a:d4:f0:c7:c2:3c:4d:84:9c:f3:57:45:b8:21:ad:5a:5c:85:
a2:d0:6c:11:a6:3c:1d:50:30:4c:bd:c7:e5:80:34:06:9f:92:
aa:46:8e:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 16:09:54 2025 by rpki-client