Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/3230302e33332e38322e302f32342d3234203d3e203130343831.roa
File: 3230302e33332e38322e302f32342d3234203d3e203130343831.roa (raw, json)
Hash identifier: l20g29wuvGT/lr04VRkwuvRguqQuCzxVncJqQxEsMKI=
Subject key identifier: 11:D6:0D:41:78:16:12:63:09:88:2D:15:E5:83:9A:CB:27:87:DB:D0
Certificate issuer: /CN=1283B5F5ADDE2461E007DDCF79A4534AFC7A577F
Certificate serial: 228B4F7B660990AAB5D546801B3EDCBAF6AD9F13
Authority key identifier: 12:83:B5:F5:AD:DE:24:61:E0:07:DD:CF:79:A4:53:4A:FC:7A:57:7F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1283B5F5ADDE2461E007DDCF79A4534AFC7A577F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/3230302e33332e38322e302f32342d3234203d3e203130343831.roa
Signing time: Tue 04 Feb 2025 18:37:15 +0000
ROA not before: Tue 04 Feb 2025 18:32:15 +0000
ROA not after: Tue 03 Feb 2026 18:37:15 +0000
asID: 10481
IP address blocks: 200.33.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/1283B5F5ADDE2461E007DDCF79A4534AFC7A577F.crl
rsync://repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/1283B5F5ADDE2461E007DDCF79A4534AFC7A577F.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1283B5F5ADDE2461E007DDCF79A4534AFC7A577F.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:8b:4f:7b:66:09:90:aa:b5:d5:46:80:1b:3e:dc:ba:f6:ad:9f:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1283B5F5ADDE2461E007DDCF79A4534AFC7A577F
Validity
Not Before: Feb 4 18:32:15 2025 GMT
Not After : Feb 3 18:37:15 2026 GMT
Subject: CN=11D60D417816126309882D15E5839ACB2787DBD0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:9d:bf:4c:8a:c3:f7:7b:36:18:d1:ef:96:33:
12:6a:9e:26:34:57:f7:38:0a:28:6a:6b:6e:35:5b:
42:ef:39:e3:43:6e:0b:48:2b:3e:b1:e0:ab:ee:72:
5c:d7:0b:56:ed:32:ba:7a:ed:a4:fd:08:cd:2c:80:
a8:9a:27:24:65:45:6c:b7:a0:b9:6a:a8:f2:75:64:
35:c7:26:d6:d6:6f:af:59:cc:16:2c:38:67:81:a2:
77:c3:bc:a5:0d:79:52:59:29:47:d0:a1:83:18:bb:
fb:b0:5c:6d:57:79:5e:4a:50:2e:dc:48:ea:6e:3d:
59:5d:4c:8a:4d:7d:61:7d:4d:fa:49:5d:68:0f:08:
e5:37:ae:b6:b3:f5:4b:99:8a:01:30:48:b6:5f:ed:
58:42:5c:76:4a:16:c9:c3:86:53:91:a8:f3:05:6e:
32:b8:cb:ef:5d:43:2c:f5:5f:1c:f5:65:d3:1b:08:
30:64:a2:d9:06:b1:cb:0b:92:d2:15:d6:9f:5e:c0:
d1:da:d7:27:31:10:e0:82:7e:d9:6f:d5:b6:98:dc:
ab:88:fa:91:9f:6d:70:ec:fe:f1:8f:74:97:94:85:
9f:03:08:29:a0:e6:38:80:64:41:d7:41:d3:01:bb:
4a:5e:f8:3c:2e:29:72:93:17:75:c4:51:6b:62:48:
94:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:D6:0D:41:78:16:12:63:09:88:2D:15:E5:83:9A:CB:27:87:DB:D0
X509v3 Authority Key Identifier:
keyid:12:83:B5:F5:AD:DE:24:61:E0:07:DD:CF:79:A4:53:4A:FC:7A:57:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/1283B5F5ADDE2461E007DDCF79A4534AFC7A577F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1283B5F5ADDE2461E007DDCF79A4534AFC7A577F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/3230302e33332e38322e302f32342d3234203d3e203130343831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.33.82.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:71:94:ef:07:7b:8a:1b:bb:de:4e:22:cc:ac:ba:5a:2a:e0:
95:f3:53:7c:4b:de:2d:6a:c9:07:86:be:46:19:af:46:16:fb:
4a:b1:3c:8a:cc:a7:21:97:46:e3:4d:80:97:a3:50:39:80:4d:
84:1e:5e:55:34:5e:01:74:e7:aa:6e:14:03:1f:b0:36:07:db:
c2:bd:e2:47:54:46:e7:4b:5f:72:7f:90:a4:0d:11:8d:cf:50:
06:e8:6e:6c:65:be:7b:c9:d8:52:0f:12:20:0d:58:a8:8f:7e:
c2:83:94:93:94:35:02:b8:bd:5b:ec:60:a7:a4:40:8a:79:b9:
fb:3f:e4:64:ee:bf:37:e7:84:34:57:95:c6:d2:6e:32:98:42:
69:8f:a4:ee:74:ad:11:a9:78:d7:63:72:15:ac:46:11:ce:3f:
84:c1:72:6d:b3:40:95:1d:3a:74:6a:93:a8:f8:35:3b:cf:e4:
89:e3:39:82:a5:58:40:f5:e4:34:d0:d7:7c:09:5b:cb:46:c0:
d0:a5:a3:63:e9:2b:70:00:9f:f3:42:d0:87:39:01:8d:18:a0:
3b:25:25:d0:0a:ef:d5:1e:c5:20:6d:b9:28:1d:15:ec:78:21:
49:03:42:70:f8:2b:8e:eb:87:fb:1e:42:82:20:f2:11:a9:a9:
86:73:9d:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 04:06:26 2025 by rpki-client