Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3230302e31332e3138372e302f32342d3234203d3e203233333833.roa
File: 3230302e31332e3138372e302f32342d3234203d3e203233333833.roa (raw, json)
Hash identifier: 2XC99Ee9K39gjLqtPyVtO8Ji5riQg1J/bdkIDYNSSeQ=
Subject key identifier: F0:10:68:9A:52:D7:AD:32:6E:A9:19:DB:6E:43:25:CF:12:4D:CB:59
Certificate issuer: /CN=9BCCBD68EB22C37B886D81BDFC8BA77CD7312208
Certificate serial: 0977D4816B45F797F48297D93249EBFEE8566EC9
Authority key identifier: 9B:CC:BD:68:EB:22:C3:7B:88:6D:81:BD:FC:8B:A7:7C:D7:31:22:08
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3230302e31332e3138372e302f32342d3234203d3e203233333833.roa
Signing time: Tue 04 Feb 2025 20:02:05 +0000
ROA not before: Tue 04 Feb 2025 19:57:05 +0000
ROA not after: Tue 03 Feb 2026 20:02:05 +0000
asID: 23383
IP address blocks: 200.13.187.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.crl
rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 23:02:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:77:d4:81:6b:45:f7:97:f4:82:97:d9:32:49:eb:fe:e8:56:6e:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9BCCBD68EB22C37B886D81BDFC8BA77CD7312208
Validity
Not Before: Feb 4 19:57:05 2025 GMT
Not After : Feb 3 20:02:05 2026 GMT
Subject: CN=F010689A52D7AD326EA919DB6E4325CF124DCB59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a4:ad:d9:3b:c4:61:1f:da:36:70:a1:1d:9b:
d2:64:09:12:e3:44:30:a5:c2:5d:91:19:f4:fa:0c:
75:fb:96:f5:44:7c:ed:49:cd:93:27:d4:c3:7a:6a:
c4:5c:c0:e3:1e:ca:54:6f:99:5f:93:21:6d:c9:21:
4c:5e:77:86:2f:7f:c4:54:37:05:2d:2d:be:64:92:
08:2f:d0:4b:43:ae:4d:14:01:92:22:83:74:a7:cc:
70:e6:c9:f0:c2:a3:2d:8b:72:3a:9c:41:1f:e2:81:
23:d6:8c:48:a8:65:15:05:19:fe:72:e6:80:bc:9c:
59:b9:65:be:00:2d:4b:38:3e:3e:e4:29:93:da:ab:
e1:b2:32:84:1e:da:11:85:c2:9e:e6:6f:f2:b8:1e:
39:95:e0:9b:8d:e9:57:63:85:11:b2:a6:41:2a:6d:
3f:30:bd:5d:f0:48:20:04:ab:c4:64:90:5d:20:ba:
dc:2d:4f:87:71:82:41:b6:68:5f:75:f1:00:f4:d5:
ea:b3:c4:21:11:09:b2:b8:10:8c:1e:4e:ed:8d:db:
51:8e:18:12:20:4f:16:0a:98:0d:f6:e0:bb:d2:26:
de:a0:61:c4:3e:61:fb:c3:e1:30:c5:64:b6:33:27:
6d:41:7a:dc:36:31:17:3f:93:b5:34:56:18:b6:b5:
d8:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:10:68:9A:52:D7:AD:32:6E:A9:19:DB:6E:43:25:CF:12:4D:CB:59
X509v3 Authority Key Identifier:
keyid:9B:CC:BD:68:EB:22:C3:7B:88:6D:81:BD:FC:8B:A7:7C:D7:31:22:08
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9BCCBD68EB22C37B886D81BDFC8BA77CD7312208.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3A5F2F87D11786FB3FCADAA043431EB013CDBAD00247EDB7A6502BFFD8B4CC24/0/3230302e31332e3138372e302f32342d3234203d3e203233333833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.13.187.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:14:54:f1:64:46:89:73:9b:52:fe:2b:7e:e4:7e:61:bc:ff:
a9:9c:f1:b3:94:b6:1a:ef:91:6c:2b:b0:e8:50:28:df:fb:41:
ba:08:03:23:58:2b:0d:41:d9:55:7f:22:53:2f:73:68:0b:b6:
87:14:13:16:53:3e:cb:25:82:e9:05:66:1d:7a:36:29:c7:08:
55:28:c3:06:71:01:65:d3:31:5c:af:3d:be:78:57:90:98:ac:
ec:9d:78:16:57:9a:7f:ee:e1:b2:39:d9:ae:b6:43:ad:19:56:
ff:b6:0c:d9:ac:f3:e7:31:df:2f:02:28:53:d3:ff:b3:a4:39:
03:7d:18:de:31:12:e1:27:1b:44:c5:83:7e:52:95:83:09:c7:
d6:42:8c:e9:4f:52:a1:6e:65:6b:1e:35:11:b3:d8:ba:87:28:
f0:f9:ce:eb:e3:2e:c2:e9:40:61:91:56:d8:05:23:eb:10:d0:
d8:c0:57:10:ae:a4:c5:78:c5:af:66:89:aa:d2:1b:a6:1d:f3:
22:c4:d5:a5:80:8a:a8:7b:75:21:4f:3f:66:12:d7:31:3d:77:
4a:30:b4:26:d4:e1:2f:f1:98:94:0a:4e:6d:40:cb:c1:c9:19:
9c:0a:77:50:c0:51:0a:8a:45:b5:ee:fc:cb:27:e6:68:02:ec:
1a:e6:10:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 01:56:34 2025 by rpki-client