Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3CDDD6ECCAF5CA850AB1E4B433FB47DFAC78429FFC0C61A4E54482609CE9B09D/0/3137302e3234362e33362e302f32322d3232203d3e20323635363533.roa
File: 3137302e3234362e33362e302f32322d3232203d3e20323635363533.roa (raw, json)
Hash identifier: YkXu65dGeep7YmLumklDUEdWb8eWMx8s+V7u715pdlk=
Subject key identifier: 09:B4:79:7E:A7:F4:6C:21:CC:8B:B7:BD:7D:29:4C:57:95:51:81:4B
Certificate issuer: /CN=C0F6964EC633B0BAF89882075AF904AE53B0AD07
Certificate serial: 69E1D1E2B98F2C19D184D7F9EF765CC116B94B16
Authority key identifier: C0:F6:96:4E:C6:33:B0:BA:F8:98:82:07:5A:F9:04:AE:53:B0:AD:07
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C0F6964EC633B0BAF89882075AF904AE53B0AD07.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3CDDD6ECCAF5CA850AB1E4B433FB47DFAC78429FFC0C61A4E54482609CE9B09D/0/3137302e3234362e33362e302f32322d3232203d3e20323635363533.roa
Signing time: Tue 04 Feb 2025 18:19:47 +0000
ROA not before: Tue 04 Feb 2025 18:14:47 +0000
ROA not after: Tue 03 Feb 2026 18:19:47 +0000
asID: 265653
IP address blocks: 170.246.36.0/22 maxlen: 22
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/3CDDD6ECCAF5CA850AB1E4B433FB47DFAC78429FFC0C61A4E54482609CE9B09D/0/C0F6964EC633B0BAF89882075AF904AE53B0AD07.crl
rsync://repository.lacnic.net/rpki/lacnic/3CDDD6ECCAF5CA850AB1E4B433FB47DFAC78429FFC0C61A4E54482609CE9B09D/0/C0F6964EC633B0BAF89882075AF904AE53B0AD07.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C0F6964EC633B0BAF89882075AF904AE53B0AD07.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 22:35:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:e1:d1:e2:b9:8f:2c:19:d1:84:d7:f9:ef:76:5c:c1:16:b9:4b:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C0F6964EC633B0BAF89882075AF904AE53B0AD07
Validity
Not Before: Feb 4 18:14:47 2025 GMT
Not After : Feb 3 18:19:47 2026 GMT
Subject: CN=09B4797EA7F46C21CC8BB7BD7D294C579551814B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:b8:b5:62:63:d1:f6:21:83:7f:f9:b9:ce:ac:
78:4c:a4:20:58:05:53:e7:5a:1b:13:e1:41:c3:7d:
6e:f0:77:5a:6e:02:d3:73:eb:25:08:df:58:d4:fe:
1c:56:e9:0b:d4:14:af:33:8b:70:53:4f:2a:33:57:
61:63:85:cd:eb:98:c4:8c:bf:ab:d6:70:e0:8a:18:
df:0a:34:10:0b:82:59:2f:e7:34:98:1c:a3:44:98:
c7:17:36:2e:75:1f:e6:b0:af:d9:e3:e8:b8:46:eb:
ef:6a:d5:96:6e:73:51:d1:39:e7:39:a8:a5:56:74:
b4:f2:dc:11:38:4d:a6:93:d1:ac:5e:af:37:b1:a6:
4c:79:61:7a:92:6d:b2:cd:4f:03:ff:b9:87:64:52:
ff:ad:6f:3a:92:1d:5a:eb:bc:a5:89:e5:b6:23:4b:
26:5d:e1:c4:71:7a:6f:5e:c0:81:8e:a3:d1:f8:9b:
da:af:e8:e0:b8:17:39:ad:47:dc:54:89:3a:a7:8a:
47:b9:42:1b:1f:67:d6:5d:0d:90:fa:2d:ce:34:09:
10:c1:96:48:72:a3:66:d2:6a:1d:6e:b8:b8:31:98:
c6:43:c3:1e:1c:6f:79:ec:f0:39:fd:9b:3d:22:af:
78:b4:13:4d:9a:44:2f:08:ee:9f:2a:a4:a2:24:b8:
26:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:B4:79:7E:A7:F4:6C:21:CC:8B:B7:BD:7D:29:4C:57:95:51:81:4B
X509v3 Authority Key Identifier:
keyid:C0:F6:96:4E:C6:33:B0:BA:F8:98:82:07:5A:F9:04:AE:53:B0:AD:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3CDDD6ECCAF5CA850AB1E4B433FB47DFAC78429FFC0C61A4E54482609CE9B09D/0/C0F6964EC633B0BAF89882075AF904AE53B0AD07.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C0F6964EC633B0BAF89882075AF904AE53B0AD07.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3CDDD6ECCAF5CA850AB1E4B433FB47DFAC78429FFC0C61A4E54482609CE9B09D/0/3137302e3234362e33362e302f32322d3232203d3e20323635363533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.246.36.0/22
Signature Algorithm: sha256WithRSAEncryption
10:bb:60:f0:d6:cc:05:34:90:eb:c2:9a:80:9e:de:81:da:25:
80:11:ec:05:69:3c:0a:bf:8b:d9:97:10:c9:d7:26:09:fe:a9:
55:d6:d8:a4:67:67:65:6c:d3:30:d9:39:e7:f7:17:f9:63:bb:
5d:ce:f1:09:46:21:e2:93:57:4d:e6:cd:6b:e3:6c:31:f1:8b:
e9:e0:e0:12:8b:2a:2d:7d:88:5d:ca:da:54:1b:01:3a:d0:db:
f6:48:ce:d0:5f:33:79:fd:74:b4:1d:78:68:b5:37:59:50:00:
1e:e2:a8:44:ec:d2:83:34:16:a6:01:86:90:64:19:c0:fd:96:
e4:57:c0:10:9c:43:78:ca:77:ee:a9:ac:08:4e:b1:8b:03:f2:
83:b0:36:61:a5:6b:14:68:66:01:df:43:c4:18:ed:e4:d0:d7:
98:ca:27:99:91:57:13:c3:23:00:92:94:e1:e6:38:05:d1:9d:
50:c9:81:5d:ae:03:1e:a3:77:5b:d2:f6:7c:0a:b9:06:59:58:
bf:40:6d:eb:aa:53:fc:81:8a:96:7b:30:dd:53:db:d7:ae:4f:
66:46:0b:34:f8:33:a8:e5:65:c2:f7:f4:a8:cf:c0:de:b1:63:
04:51:22:e1:5c:aa:ec:d1:41:e4:9a:34:57:81:e2:cb:2e:5f:
06:e7:5b:5e
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUaeHR4rmPLBnRhNf573ZcwRa5SxYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzBGNjk2NEVDNjMzQjBCQUY4OTg4MjA3NUFGOTA0QUU1
M0IwQUQwNzAeFw0yNTAyMDQxODE0NDdaFw0yNjAyMDMxODE5NDdaMDMxMTAvBgNV
BAMTKDA5QjQ3OTdFQTdGNDZDMjFDQzhCQjdCRDdEMjk0QzU3OTU1MTgxNEIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjuLViY9H2IYN/+bnOrHhMpCBY
BVPnWhsT4UHDfW7wd1puAtNz6yUI31jU/hxW6QvUFK8zi3BTTyozV2Fjhc3rmMSM
v6vWcOCKGN8KNBALglkv5zSYHKNEmMcXNi51H+awr9nj6LhG6+9q1ZZuc1HROec5
qKVWdLTy3BE4TaaT0axerzexpkx5YXqSbbLNTwP/uYdkUv+tbzqSHVrrvKWJ5bYj
SyZd4cRxem9ewIGOo9H4m9qv6OC4FzmtR9xUiTqnike5QhsfZ9ZdDZD6Lc40CRDB
lkhyo2bSah1uuLgxmMZDwx4cb3ns8Dn9mz0ir3i0E02aRC8I7p8qpKIkuCZ1AgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUCbR5fqf0bCHMi7e9fSlMV5VRgUswHwYDVR0j
BBgwFoAUwPaWTsYzsLr4mIIHWvkErlOwrQcwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8zQ0RERDZFQ0NBRjVDQTg1MEFCMUU0QjQzM0ZCNDdERkFD
Nzg0MjlGRkMwQzYxQTRFNTQ0ODI2MDlDRTlCMDlELzAvQzBGNjk2NEVDNjMzQjBC
QUY4OTg4MjA3NUFGOTA0QUU1M0IwQUQwNy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DMEY2OTY0RUM2MzNCMEJBRjg5
ODgyMDc1QUY5MDRBRTUzQjBBRDA3LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvM0NEREQ2RUNDQUY1Q0E4NTBBQjFFNEI0MzNGQjQ3REZBQzc4NDI5RkZD
MEM2MUE0RTU0NDgyNjA5Q0U5QjA5RC8wLzMxMzczMDJlMzIzNDM2MmUzMzM2MmUz
MDJmMzIzMjJkMzIzMjIwM2QzZTIwMzIzNjM1MzYzNTMzLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCqvYk
MA0GCSqGSIb3DQEBCwUAA4IBAQAQu2Dw1swFNJDrwpqAnt6B2iWAEewFaTwKv4vZ
lxDJ1yYJ/qlV1tikZ2dlbNMw2Tnn9xf5Y7tdzvEJRiHik1dN5s1r42wx8Yvp4OAS
iyotfYhdytpUGwE60Nv2SM7QXzN5/XS0HXhotTdZUAAe4qhE7NKDNBamAYaQZBnA
/ZbkV8AQnEN4ynfuqawITrGLA/KDsDZhpWsUaGYB30PEGO3k0NeYyieZkVcTwyMA
kpTh5jgF0Z1QyYFdrgMeo3db0vZ8CrkGWVi/QG3rqlP8gYqWezDdU9vXrk9mRgs0
+DOo5WXC9/Soz8DesWMEUSLhXKrs0UHkmjRXgeLLLl8G51te
-----END CERTIFICATE-----
Generated at Mon Apr 14 14:16:09 2025 by rpki-client