Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3133382e3138362e3235302e302f32332d3234203d3e203237373733.roa
File: 3133382e3138362e3235302e302f32332d3234203d3e203237373733.roa (raw, json)
Hash identifier: Bgc1Q6N9rsCb08u+XimDs0BDjJQu4ttY7e7lUCq2aSU=
Subject key identifier: AA:5E:3C:30:71:58:67:33:67:43:ED:A5:03:A7:B2:4F:9E:16:DB:A8
Certificate issuer: /CN=9BCCBD68EB22C37B886D81BDFC8BA77CD7312208
Certificate serial: 738A5503D5E8634733FCF600AFDCE818CE714F0E
Authority key identifier: 9B:CC:BD:68:EB:22:C3:7B:88:6D:81:BD:FC:8B:A7:7C:D7:31:22:08
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3133382e3138362e3235302e302f32332d3234203d3e203237373733.roa
Signing time: Tue 04 Feb 2025 20:02:03 +0000
ROA not before: Tue 04 Feb 2025 19:57:03 +0000
ROA not after: Tue 03 Feb 2026 20:02:03 +0000
asID: 27773
IP address blocks: 138.186.250.0/23 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.crl
rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 23:02:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:8a:55:03:d5:e8:63:47:33:fc:f6:00:af:dc:e8:18:ce:71:4f:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9BCCBD68EB22C37B886D81BDFC8BA77CD7312208
Validity
Not Before: Feb 4 19:57:03 2025 GMT
Not After : Feb 3 20:02:03 2026 GMT
Subject: CN=AA5E3C30715867336743EDA503A7B24F9E16DBA8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:43:87:a2:1d:e9:82:31:3f:c2:b1:1f:d7:7f:
2b:20:b9:0e:16:2e:af:b4:f5:66:56:66:8b:e4:68:
48:ae:05:16:19:30:78:4d:ff:2e:34:04:69:9d:07:
60:b5:be:c7:85:73:b1:bd:7d:18:2d:d4:03:66:d0:
b6:0b:3b:78:1e:cc:2a:80:b8:0e:e9:fc:33:e1:c2:
cf:21:78:b8:4f:0a:9a:7c:44:5c:a6:df:6b:f6:59:
a8:b4:14:41:0d:46:21:31:0f:3f:be:0a:c8:56:bd:
a5:64:4c:4d:1b:5a:b4:0c:f1:16:e9:83:97:1a:2a:
b9:8e:04:11:fb:28:51:82:c8:30:e9:05:d5:71:fa:
4a:a4:d5:fa:13:13:c1:62:b0:34:11:86:fa:7a:8e:
70:e7:9e:03:74:6a:48:db:11:4b:ef:ac:ba:74:ae:
23:b4:bc:af:f5:2a:56:55:e3:7c:32:0b:6d:b4:e9:
11:fe:9d:a6:ac:cc:e8:82:cc:6a:3b:54:42:7e:c2:
73:33:5d:d6:de:0c:cd:f0:42:37:9e:dc:8d:db:07:
f3:0b:1c:6c:4d:d2:f1:4f:8f:43:09:f6:dd:b9:c3:
d7:c0:ba:5d:28:c3:6a:68:55:84:bc:50:32:7e:b2:
51:7d:82:ec:8a:55:5d:d6:1b:3d:f9:c1:f3:e7:0d:
0a:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:5E:3C:30:71:58:67:33:67:43:ED:A5:03:A7:B2:4F:9E:16:DB:A8
X509v3 Authority Key Identifier:
keyid:9B:CC:BD:68:EB:22:C3:7B:88:6D:81:BD:FC:8B:A7:7C:D7:31:22:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3133382e3138362e3235302e302f32332d3234203d3e203237373733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.186.250.0/23
Signature Algorithm: sha256WithRSAEncryption
7c:f8:41:90:79:c1:f5:33:e0:ab:fc:36:83:6b:fd:a8:3b:2a:
6c:50:08:06:05:e5:8c:73:a8:0e:f1:d4:e3:ad:55:85:83:23:
a6:2b:aa:f9:6f:ba:76:94:a6:28:03:0a:1b:f1:43:c8:89:ef:
a8:05:97:00:6e:07:e6:de:2a:85:21:22:88:df:98:38:c9:24:
19:13:8d:93:e2:4f:2c:d1:eb:2b:ba:ce:6e:b2:08:8e:f0:95:
04:cf:d6:2c:e6:fc:01:e2:6e:f2:33:af:40:cf:a9:81:5d:23:
ca:10:78:b7:7b:69:47:60:f7:5b:7f:ad:93:c9:c9:12:d8:83:
be:db:d1:51:cb:1b:44:ea:05:53:16:a2:17:b3:37:c5:cb:ca:
d2:81:71:9e:b5:61:77:31:24:ad:e0:46:94:6b:a8:c1:9a:b0:
f8:d5:98:ff:87:88:e7:0c:ac:35:19:2a:04:99:cd:5e:9e:cc:
c1:4d:90:ca:81:5e:6d:dc:25:00:10:86:9e:79:e1:5d:bb:aa:
e7:8b:31:a4:07:fc:c1:4c:c0:b1:0f:e3:e7:8c:74:80:64:5e:
1e:8f:6c:78:f3:15:9d:00:c9:9e:e3:11:4e:1c:0d:31:72:6e:
ba:6f:8d:f2:ad:2f:d6:d2:b2:e2:f5:3a:c9:c7:d8:92:e1:2c:
8d:22:49:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 06:35:30 2025 by rpki-client