Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/3230302e33332e38322e302f32342d3234203d3e203532323735.roa
File: 3230302e33332e38322e302f32342d3234203d3e203532323735.roa (raw, json)
Hash identifier: 1hWXavLxbg5ZcRI6KSXx6UVRHH25FuaSKuwpwppkM3M=
Subject key identifier: DD:32:44:B8:69:1F:8F:68:EF:7D:0C:85:A6:90:86:7A:D8:83:BF:9C
Certificate issuer: /CN=1283B5F5ADDE2461E007DDCF79A4534AFC7A577F
Certificate serial: 5DE95DD537C2BE5FACE9FB1E05077D21710E7B14
Authority key identifier: 12:83:B5:F5:AD:DE:24:61:E0:07:DD:CF:79:A4:53:4A:FC:7A:57:7F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1283B5F5ADDE2461E007DDCF79A4534AFC7A577F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/3230302e33332e38322e302f32342d3234203d3e203532323735.roa
Signing time: Tue 04 Feb 2025 18:37:16 +0000
ROA not before: Tue 04 Feb 2025 18:32:16 +0000
ROA not after: Tue 03 Feb 2026 18:37:16 +0000
asID: 52275
IP address blocks: 200.33.82.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/1283B5F5ADDE2461E007DDCF79A4534AFC7A577F.crl
rsync://repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/1283B5F5ADDE2461E007DDCF79A4534AFC7A577F.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1283B5F5ADDE2461E007DDCF79A4534AFC7A577F.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:e9:5d:d5:37:c2:be:5f:ac:e9:fb:1e:05:07:7d:21:71:0e:7b:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1283B5F5ADDE2461E007DDCF79A4534AFC7A577F
Validity
Not Before: Feb 4 18:32:16 2025 GMT
Not After : Feb 3 18:37:16 2026 GMT
Subject: CN=DD3244B8691F8F68EF7D0C85A690867AD883BF9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8b:da:be:88:f9:75:85:75:9a:0f:8f:51:4c:
56:e6:20:21:b7:e1:eb:14:fb:48:d2:b6:a2:9f:2f:
74:5e:18:98:d9:74:54:b5:ef:32:03:67:62:7f:5a:
71:dd:0a:0e:bc:e0:34:73:45:f5:d0:7b:4d:9a:7b:
9c:ce:3b:19:13:a4:5f:2f:23:5a:cf:fa:8b:a9:96:
1c:26:10:1e:8d:9f:ee:65:a6:3f:06:c9:74:10:50:
8a:2c:49:18:dd:96:6d:fc:08:42:10:02:14:87:af:
75:dd:d1:67:b0:b1:ff:f9:38:fa:a7:9b:45:63:bc:
a1:c3:0f:cf:05:43:71:73:4d:cb:35:22:08:6d:c3:
84:0a:e9:6d:39:23:48:fc:24:67:1d:9f:c1:60:d0:
e2:23:e2:71:69:a2:5d:d8:d4:8a:6e:7d:c7:cb:08:
9c:4d:2c:6f:f5:22:fa:ed:3e:93:85:df:a2:4a:6b:
6e:1d:8e:59:4e:35:07:e5:45:a8:47:a6:72:10:88:
8f:4d:03:5c:09:d2:8c:29:e0:46:c5:0a:28:70:44:
5c:d7:2e:d9:aa:7d:8f:d4:be:16:23:fa:49:ca:78:
ee:7f:07:3b:61:62:0f:f1:60:2b:45:66:2d:a8:fd:
a8:8a:b3:ec:f6:00:72:24:10:a6:77:da:a2:96:3f:
fc:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:32:44:B8:69:1F:8F:68:EF:7D:0C:85:A6:90:86:7A:D8:83:BF:9C
X509v3 Authority Key Identifier:
keyid:12:83:B5:F5:AD:DE:24:61:E0:07:DD:CF:79:A4:53:4A:FC:7A:57:7F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/1283B5F5ADDE2461E007DDCF79A4534AFC7A577F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1283B5F5ADDE2461E007DDCF79A4534AFC7A577F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3D0A2E1FC44B53F4D030901CDCCEF61E49A84F99547F66F09342790BAE033B5D/0/3230302e33332e38322e302f32342d3234203d3e203532323735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.33.82.0/24
Signature Algorithm: sha256WithRSAEncryption
11:67:83:3a:87:08:3b:f0:3c:fb:af:fb:3d:ab:7d:a4:80:33:
d4:dd:3b:46:13:d8:f5:b3:2f:63:cd:73:fd:0b:f8:ad:40:43:
2c:41:84:ab:4c:d2:63:87:a1:8c:f5:52:48:f2:2f:7a:fb:2b:
e1:9b:64:22:7b:0c:0e:65:62:e0:a3:c2:2d:2a:92:1b:f8:8c:
27:23:90:15:bb:39:bb:22:a3:c0:05:36:af:84:74:eb:6f:8a:
4b:65:76:58:eb:56:a2:31:83:16:be:c3:d8:f5:fe:a2:f4:64:
c6:25:75:94:fc:56:bf:61:fe:55:87:ba:50:a0:e6:61:e3:31:
2a:ad:67:51:f6:eb:59:ff:30:04:f6:f8:8d:0d:99:3e:27:4b:
76:20:a9:c2:7d:3d:0c:49:48:e2:af:35:a8:0d:c2:77:ea:87:
42:12:91:f8:99:79:07:2c:9d:04:bd:33:80:c6:1f:25:82:e2:
96:27:2a:59:19:cb:63:ef:ad:b4:b4:7d:1c:42:d5:e7:60:e7:
92:ae:22:fb:6d:6a:18:11:16:f4:53:2e:27:f5:0c:79:e1:a2:
95:e4:f0:e5:26:f2:33:b5:08:3b:9c:86:be:3d:98:6b:18:d3:
64:45:b9:c3:26:90:89:c6:ed:04:82:e9:27:41:fe:6e:1f:84:
04:69:66:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 03:53:29 2025 by rpki-client