Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3138362e33322e37322e302f32312d3234203d3e203237373733.roa
File: 3138362e33322e37322e302f32312d3234203d3e203237373733.roa (raw, json)
Hash identifier: 0VlMsQqEtkCeiqwskhTOqV5axKwULcdHJl89mFg6qhA=
Subject key identifier: 9D:4B:EC:12:91:77:14:C9:10:33:F0:A2:09:24:2A:09:96:0B:D1:52
Certificate issuer: /CN=9BCCBD68EB22C37B886D81BDFC8BA77CD7312208
Certificate serial: 3D07E9D90D1595C84EFB0D37FBF23F5298509D9B
Authority key identifier: 9B:CC:BD:68:EB:22:C3:7B:88:6D:81:BD:FC:8B:A7:7C:D7:31:22:08
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3138362e33322e37322e302f32312d3234203d3e203237373733.roa
Signing time: Tue 04 Feb 2025 20:02:16 +0000
ROA not before: Tue 04 Feb 2025 19:57:16 +0000
ROA not after: Tue 03 Feb 2026 20:02:16 +0000
asID: 27773
IP address blocks: 186.32.72.0/21 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.crl
rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 23:02:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3d:07:e9:d9:0d:15:95:c8:4e:fb:0d:37:fb:f2:3f:52:98:50:9d:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9BCCBD68EB22C37B886D81BDFC8BA77CD7312208
Validity
Not Before: Feb 4 19:57:16 2025 GMT
Not After : Feb 3 20:02:16 2026 GMT
Subject: CN=9D4BEC12917714C91033F0A209242A09960BD152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:0a:f8:f2:43:6c:a9:94:4c:6d:f9:a8:4d:d6:
11:c4:57:d7:47:1d:cd:e7:e0:7b:99:18:64:e6:13:
2f:b6:cb:34:bb:a6:03:eb:4d:84:d9:bc:1c:20:b5:
e5:dc:2d:33:af:aa:6a:e4:16:34:2f:f5:91:48:17:
f1:1a:c2:3d:14:c1:55:a1:2b:5a:21:d7:15:18:6b:
8d:ca:f9:04:69:c2:aa:d4:c7:b4:2d:8f:de:06:10:
68:ec:6d:61:e1:87:33:ae:48:62:fe:7c:6f:3a:f0:
c4:6e:5c:12:45:ed:f9:00:c4:a5:64:cb:d5:39:62:
41:4e:a7:dd:7c:f8:25:eb:b9:69:f5:34:f9:7b:9a:
b0:0c:d8:b3:8f:82:4d:cc:b4:c1:0c:78:2b:36:2e:
eb:b2:b2:33:68:61:cc:cf:c2:63:04:e8:3f:75:08:
65:74:95:b8:9d:86:64:2a:81:ae:b4:92:70:cb:15:
51:c7:0a:b2:25:80:ff:82:22:48:db:c8:6e:2e:f0:
0e:dd:c8:4d:83:8c:8c:b9:7c:cf:14:4d:aa:40:34:
e0:54:e0:13:6d:42:58:f4:8f:db:6d:eb:1b:99:d5:
80:77:bd:70:9a:34:39:31:2e:ca:09:b7:95:14:71:
32:f2:23:37:90:7b:92:31:ad:fc:96:fa:ff:49:d9:
34:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:4B:EC:12:91:77:14:C9:10:33:F0:A2:09:24:2A:09:96:0B:D1:52
X509v3 Authority Key Identifier:
keyid:9B:CC:BD:68:EB:22:C3:7B:88:6D:81:BD:FC:8B:A7:7C:D7:31:22:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3138362e33322e37322e302f32312d3234203d3e203237373733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.32.72.0/21
Signature Algorithm: sha256WithRSAEncryption
27:93:4b:7d:d7:6c:a7:56:6e:d4:77:65:23:f5:0c:66:dc:52:
f3:c1:24:e9:c3:f7:ab:69:ea:8c:a5:f0:c8:02:0d:db:5b:7d:
4c:20:62:6b:27:03:a2:ce:4e:0d:9a:62:e7:5f:43:52:fe:db:
e6:81:b5:40:a5:1a:60:8e:32:88:1a:b7:32:03:47:ed:16:b1:
91:7c:86:11:56:9b:cb:3c:71:d9:12:c2:8a:b3:ab:c5:0d:98:
37:3f:d4:30:b8:f4:89:5b:54:a5:58:3c:5a:ec:03:5c:c0:15:
c1:cf:6a:71:c5:2b:f2:b7:fe:2c:15:00:11:ff:c2:02:fd:9f:
d8:77:3b:23:9c:c0:ca:9a:76:d3:eb:51:d5:b5:eb:d9:7c:63:
40:fe:48:10:34:3a:01:2c:36:49:9e:a7:49:1b:68:3c:7d:f3:
0d:1c:71:af:bc:8d:fc:ad:6b:b8:91:2f:67:9d:22:6a:dc:9c:
93:51:57:7b:9a:98:99:bc:14:79:d2:a3:e3:22:43:31:c9:e8:
03:e1:6d:c4:9d:dc:63:68:e1:25:c8:2c:bd:1a:b6:08:d5:2e:
46:7b:a5:14:bd:38:ff:8a:87:04:26:55:b4:59:66:8d:73:5e:
a7:fb:c0:a3:99:97:8d:96:1e:59:2b:fd:aa:76:a6:08:9b:30:
48:85:ad:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 01:36:07 2025 by rpki-client