Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3230302e3130362e3233322e302f32332d3234203d3e203237373733.roa
File: 3230302e3130362e3233322e302f32332d3234203d3e203237373733.roa (raw, json)
Hash identifier: vL28ajuQAdQmyR1HgX++rDq4PcUmdiRvxmkNml7bd/E=
Subject key identifier: 69:3A:28:EE:E6:BD:C0:D7:6E:A6:09:90:70:4D:6B:04:B1:CB:FB:6C
Certificate issuer: /CN=9BCCBD68EB22C37B886D81BDFC8BA77CD7312208
Certificate serial: 6036BCB494C771BFD3D67905499DE1A55CCA3704
Authority key identifier: 9B:CC:BD:68:EB:22:C3:7B:88:6D:81:BD:FC:8B:A7:7C:D7:31:22:08
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3230302e3130362e3233322e302f32332d3234203d3e203237373733.roa
Signing time: Tue 04 Feb 2025 20:02:07 +0000
ROA not before: Tue 04 Feb 2025 19:57:07 +0000
ROA not after: Tue 03 Feb 2026 20:02:07 +0000
asID: 27773
IP address blocks: 200.106.232.0/23 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.crl
rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 23:02:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:36:bc:b4:94:c7:71:bf:d3:d6:79:05:49:9d:e1:a5:5c:ca:37:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9BCCBD68EB22C37B886D81BDFC8BA77CD7312208
Validity
Not Before: Feb 4 19:57:07 2025 GMT
Not After : Feb 3 20:02:07 2026 GMT
Subject: CN=693A28EEE6BDC0D76EA60990704D6B04B1CBFB6C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:0b:0d:7a:04:5a:94:fa:a2:67:5d:9e:bc:f2:
90:b3:cc:76:38:7d:c6:f6:93:c1:37:48:9c:33:67:
e9:08:78:0c:62:62:e9:31:4b:dc:81:f7:b8:ae:7c:
df:e4:11:eb:9e:10:4f:41:e5:e8:d3:87:d8:ed:d1:
aa:b6:cb:13:1a:b1:9b:a3:d4:dc:ed:9b:db:49:07:
ba:54:f4:17:10:60:56:93:73:ae:50:6e:dd:52:b4:
9e:1f:65:d2:62:00:99:43:d7:11:98:66:97:09:74:
a8:e5:dd:40:ec:98:ab:57:bc:46:de:cc:56:17:e1:
cf:46:9b:2f:24:80:7f:ef:27:15:ef:b7:c2:ff:cd:
fd:49:b1:14:a6:78:cf:08:e9:08:41:65:2f:5e:fc:
a8:29:c5:b8:79:b9:84:ef:1d:71:26:93:56:3a:d4:
e4:ac:9d:b9:97:16:0d:b6:74:ed:7d:01:3e:71:4a:
02:20:7e:77:e2:85:85:f5:4d:63:ee:17:14:38:aa:
a6:8b:74:78:54:66:84:98:b1:f5:2b:93:af:14:81:
db:e5:af:f2:3a:f1:4b:87:2a:ec:5c:06:82:bd:fe:
db:71:4a:fc:cc:38:69:fe:de:75:7d:6d:ce:10:9a:
bb:11:07:f6:5f:80:a7:c5:71:75:f1:7a:4b:65:73:
0b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:3A:28:EE:E6:BD:C0:D7:6E:A6:09:90:70:4D:6B:04:B1:CB:FB:6C
X509v3 Authority Key Identifier:
keyid:9B:CC:BD:68:EB:22:C3:7B:88:6D:81:BD:FC:8B:A7:7C:D7:31:22:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3230302e3130362e3233322e302f32332d3234203d3e203237373733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.106.232.0/23
Signature Algorithm: sha256WithRSAEncryption
44:a0:a0:c7:e2:bf:75:7d:20:87:b5:5b:36:30:60:9f:7d:38:
d3:8c:6f:e7:fc:4e:33:7e:87:38:52:bf:14:a0:b6:5c:02:1a:
1f:5a:bb:7c:cc:01:6e:5a:26:b2:10:3a:f7:5b:3f:fa:40:9e:
f0:e5:c7:39:60:83:11:b3:73:67:a8:5a:f3:6f:b1:37:ad:49:
d0:6d:f4:12:45:21:ed:0d:e3:85:af:a8:f4:fe:9e:02:8d:10:
f3:04:83:df:5d:89:47:13:a8:8b:ef:af:63:07:db:01:09:fd:
0c:8a:93:f1:12:92:2c:72:24:b8:a1:b2:10:c6:d0:3f:c1:d8:
5d:4b:aa:32:e9:da:f8:e5:de:59:d7:f0:19:25:ad:ce:4a:b8:
77:14:39:ad:bf:20:41:75:c1:ee:b6:02:50:bd:e0:e2:00:aa:
ae:a4:5d:7b:d3:f4:1b:48:11:2d:30:c1:91:35:b1:7a:37:5f:
e3:04:a7:da:d1:e3:a1:21:56:4b:df:d6:fa:29:d4:2f:ff:86:
3a:04:1d:c3:a9:dd:5b:55:14:3a:4f:5f:d7:54:41:43:37:3f:
7e:a5:1f:0f:9e:b3:f5:ad:c3:ee:32:66:29:2d:82:d8:44:da:
6f:71:11:07:0f:47:b2:cb:42:5e:e7:bb:b8:d0:b1:a4:df:9b:
b5:c4:4e:b5
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUYDa8tJTHcb/T1nkFSZ3hpVzKNwQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOUJDQ0JENjhFQjIyQzM3Qjg4NkQ4MUJERkM4QkE3N0NE
NzMxMjIwODAeFw0yNTAyMDQxOTU3MDdaFw0yNjAyMDMyMDAyMDdaMDMxMTAvBgNV
BAMTKDY5M0EyOEVFRTZCREMwRDc2RUE2MDk5MDcwNEQ2QjA0QjFDQkZCNkMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKCw16BFqU+qJnXZ688pCzzHY4
fcb2k8E3SJwzZ+kIeAxiYukxS9yB97iufN/kEeueEE9B5ejTh9jt0aq2yxMasZuj
1Nztm9tJB7pU9BcQYFaTc65Qbt1StJ4fZdJiAJlD1xGYZpcJdKjl3UDsmKtXvEbe
zFYX4c9Gmy8kgH/vJxXvt8L/zf1JsRSmeM8I6QhBZS9e/Kgpxbh5uYTvHXEmk1Y6
1OSsnbmXFg22dO19AT5xSgIgfnfihYX1TWPuFxQ4qqaLdHhUZoSYsfUrk68Ugdvl
r/I68UuHKuxcBoK9/ttxSvzMOGn+3nV9bc4QmrsRB/ZfgKfFcXXxektlcwv3AgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUaToo7ua9wNdupgmQcE1rBLHL+2wwHwYDVR0j
BBgwFoAUm8y9aOsiw3uIbYG9/IunfNcxIggwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8zQTVGMkY4N0QxMTc4NkZCM0ZDQURBQTA0MzQzMUVCMDEz
Q0RCQUQwMDI0N0VEQjdBNjUwMkJGRkQ4QjRDQzI0LzAvOUJDQ0JENjhFQjIyQzM3
Qjg4NkQ4MUJERkM4QkE3N0NENzMxMjIwOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85QkNDQkQ2OEVCMjJDMzdCODg2
RDgxQkRGQzhCQTc3Q0Q3MzEyMjA4LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvM0E1RjJGODdEMTE3ODZGQjNGQ0FEQUEwNDM0MzFFQjAxM0NEQkFEMDAy
NDdFREI3QTY1MDJCRkZEOEI0Q0MyNC8wLzMyMzAzMDJlMzEzMDM2MmUzMjMzMzIy
ZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMjM3MzczNzMzLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQByGro
MA0GCSqGSIb3DQEBCwUAA4IBAQBEoKDH4r91fSCHtVs2MGCffTjTjG/n/E4zfoc4
Ur8UoLZcAhofWrt8zAFuWiayEDr3Wz/6QJ7w5cc5YIMRs3NnqFrzb7E3rUnQbfQS
RSHtDeOFr6j0/p4CjRDzBIPfXYlHE6iL769jB9sBCf0MipPxEpIsciS4obIQxtA/
wdhdS6oy6dr45d5Z1/AZJa3OSrh3FDmtvyBBdcHutgJQveDiAKqupF170/QbSBEt
MMGRNbF6N1/jBKfa0eOhIVZL39b6KdQv/4Y6BB3Dqd1bVRQ6T1/XVEFDNz9+pR8P
nrP1rcPuMmYpLYLYRNpvcREHD0eyy0Je57u40LGk35u1xE61
-----END CERTIFICATE-----
Generated at Mon Apr 14 06:35:55 2025 by rpki-client