Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3850C845AA8B21ABF52CFEE2238FD8AA0F02FDE56896A532259F1D20A4AD01A2/0/323830303a6133303a3a2f33322d3438203d3e20323632313837.roa
File: 323830303a6133303a3a2f33322d3438203d3e20323632313837.roa (raw, json)
Hash identifier: Xq0BuzXdoH2HE/DGU5fdqz+/E/GT9WaSCnObEkdotGY=
Subject key identifier: FD:96:B2:9F:6C:7E:B8:37:FB:CF:63:06:D5:D0:00:E5:7E:BD:A9:CD
Certificate issuer: /CN=6C7F5FF558448E94BE5C9035CCB3AACE6543C218
Certificate serial: 13AA3CE063DC313BE73F5E29B68AB02986DB904A
Authority key identifier: 6C:7F:5F:F5:58:44:8E:94:BE:5C:90:35:CC:B3:AA:CE:65:43:C2:18
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6C7F5FF558448E94BE5C9035CCB3AACE6543C218.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3850C845AA8B21ABF52CFEE2238FD8AA0F02FDE56896A532259F1D20A4AD01A2/0/323830303a6133303a3a2f33322d3438203d3e20323632313837.roa
Signing time: Tue 04 Feb 2025 18:39:51 +0000
ROA not before: Tue 04 Feb 2025 18:34:51 +0000
ROA not after: Tue 03 Feb 2026 18:39:51 +0000
asID: 262187
IP address blocks: 2800:a30::/32 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/3850C845AA8B21ABF52CFEE2238FD8AA0F02FDE56896A532259F1D20A4AD01A2/0/6C7F5FF558448E94BE5C9035CCB3AACE6543C218.crl
rsync://repository.lacnic.net/rpki/lacnic/3850C845AA8B21ABF52CFEE2238FD8AA0F02FDE56896A532259F1D20A4AD01A2/0/6C7F5FF558448E94BE5C9035CCB3AACE6543C218.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6C7F5FF558448E94BE5C9035CCB3AACE6543C218.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:aa:3c:e0:63:dc:31:3b:e7:3f:5e:29:b6:8a:b0:29:86:db:90:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6C7F5FF558448E94BE5C9035CCB3AACE6543C218
Validity
Not Before: Feb 4 18:34:51 2025 GMT
Not After : Feb 3 18:39:51 2026 GMT
Subject: CN=FD96B29F6C7EB837FBCF6306D5D000E57EBDA9CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:9f:64:7b:2c:9f:4a:ff:da:e0:44:e8:ae:89:
e1:4e:e7:95:ff:d6:f6:7d:a9:fe:25:3c:a6:1f:2b:
9a:1e:23:fc:29:1f:c6:1f:0e:b9:35:c1:17:1f:cf:
f2:92:5e:84:0c:0f:4e:f0:2c:49:d3:1c:f1:2c:b9:
7a:df:4d:37:94:58:18:b1:e3:5c:8e:50:41:19:49:
27:e2:57:c0:be:ad:1d:13:51:af:aa:3d:4c:6f:44:
87:5d:ae:2e:65:b1:4d:4d:56:27:96:5a:63:32:98:
b0:83:7d:98:e9:75:19:3a:63:cc:f6:95:9d:fc:45:
13:1c:bb:a5:6d:60:6b:0e:c0:11:4f:b7:9d:09:6d:
dd:3d:05:97:3e:7b:5c:72:94:72:63:4f:e9:80:b7:
57:04:56:f1:20:46:67:2c:a0:58:cf:f5:d2:cf:87:
d5:8b:d3:69:cd:81:f2:2c:b4:e4:04:c0:38:8d:97:
82:dd:aa:54:1d:d3:57:bb:89:a1:7a:70:65:92:39:
b1:01:9a:9c:cb:d0:85:18:73:7d:3d:90:d5:59:a8:
d1:c3:7d:bf:a8:85:df:44:a7:42:2d:fe:88:cf:59:
b6:e8:c6:4d:04:91:9e:15:00:7f:33:db:a7:17:ca:
3e:af:f7:38:c3:db:65:6d:63:13:f1:3b:a7:0a:e8:
9b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:96:B2:9F:6C:7E:B8:37:FB:CF:63:06:D5:D0:00:E5:7E:BD:A9:CD
X509v3 Authority Key Identifier:
keyid:6C:7F:5F:F5:58:44:8E:94:BE:5C:90:35:CC:B3:AA:CE:65:43:C2:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3850C845AA8B21ABF52CFEE2238FD8AA0F02FDE56896A532259F1D20A4AD01A2/0/6C7F5FF558448E94BE5C9035CCB3AACE6543C218.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6C7F5FF558448E94BE5C9035CCB3AACE6543C218.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3850C845AA8B21ABF52CFEE2238FD8AA0F02FDE56896A532259F1D20A4AD01A2/0/323830303a6133303a3a2f33322d3438203d3e20323632313837.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2800:a30::/32
Signature Algorithm: sha256WithRSAEncryption
c6:41:95:c5:3f:5c:e4:94:cc:ca:bd:72:6e:7e:33:ea:17:16:
39:6a:89:53:1a:00:ce:12:06:20:04:07:4f:cb:8a:28:d8:c8:
d3:57:2a:5a:10:a2:96:9a:26:d4:6f:84:f0:93:fe:9f:0a:f3:
cb:25:1e:b6:65:ec:10:cc:2b:95:b2:bd:6d:be:88:94:b9:55:
75:64:16:07:00:37:54:6a:e0:fc:c3:dc:ba:0c:b9:18:d8:52:
c9:41:ed:80:cb:7d:ef:1c:69:cd:d0:6f:e5:56:0e:36:e0:d8:
45:67:77:ed:b6:9e:eb:99:c9:dd:75:ea:ef:00:64:ea:e6:15:
74:18:64:19:b3:21:cd:8b:32:7d:e0:be:ce:0a:00:22:bf:9f:
d2:da:61:d5:e2:b1:71:9a:4c:e3:de:41:fd:7b:9e:71:cc:11:
e9:1a:5b:f4:eb:a2:8b:c6:bc:17:d1:1e:9a:a4:7e:8f:09:f6:
ad:fc:37:b0:76:0b:aa:7b:8c:ae:b1:f4:19:26:d3:3c:80:ee:
60:5e:10:7e:0a:4b:da:24:c6:59:ca:b9:bc:77:ef:fa:d3:2a:
4d:68:02:c1:a0:15:d6:af:db:37:ce:74:d0:a5:e1:cb:50:b8:
b5:d9:1c:6c:9d:be:1d:c2:c8:3b:a6:d6:53:53:db:e5:9c:aa:
da:22:92:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 19:08:50 2025 by rpki-client