Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3E0D795654DD4FDA70FBE3FF898D88BF9C9C967CEA19E732E49E766FEA22C9A7/0/323830333a336636303a3a2f33322d3438203d3e20323634373434.roa
File: 323830333a336636303a3a2f33322d3438203d3e20323634373434.roa (raw, json)
Hash identifier: vDg3ioGeKrNcWUeXzjHREBR/yCY/NQaHZQrpYH9tykw=
Subject key identifier: 4D:9D:B0:4D:D3:16:76:AF:49:04:54:EA:EB:50:2B:4D:F0:78:AD:48
Certificate issuer: /CN=32B04C79CB485E8D05BD3A73D9DD3F9F028D7184
Certificate serial: 17DAE811EC6684792BFD51219DCDDB8531C3E8D7
Authority key identifier: 32:B0:4C:79:CB:48:5E:8D:05:BD:3A:73:D9:DD:3F:9F:02:8D:71:84
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/32B04C79CB485E8D05BD3A73D9DD3F9F028D7184.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3E0D795654DD4FDA70FBE3FF898D88BF9C9C967CEA19E732E49E766FEA22C9A7/0/323830333a336636303a3a2f33322d3438203d3e20323634373434.roa
Signing time: Tue 04 Feb 2025 18:28:05 +0000
ROA not before: Tue 04 Feb 2025 18:23:05 +0000
ROA not after: Tue 03 Feb 2026 18:28:05 +0000
asID: 264744
IP address blocks: 2803:3f60::/32 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/3E0D795654DD4FDA70FBE3FF898D88BF9C9C967CEA19E732E49E766FEA22C9A7/0/32B04C79CB485E8D05BD3A73D9DD3F9F028D7184.crl
rsync://repository.lacnic.net/rpki/lacnic/3E0D795654DD4FDA70FBE3FF898D88BF9C9C967CEA19E732E49E766FEA22C9A7/0/32B04C79CB485E8D05BD3A73D9DD3F9F028D7184.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/32B04C79CB485E8D05BD3A73D9DD3F9F028D7184.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 20:38:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:da:e8:11:ec:66:84:79:2b:fd:51:21:9d:cd:db:85:31:c3:e8:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32B04C79CB485E8D05BD3A73D9DD3F9F028D7184
Validity
Not Before: Feb 4 18:23:05 2025 GMT
Not After : Feb 3 18:28:05 2026 GMT
Subject: CN=4D9DB04DD31676AF490454EAEB502B4DF078AD48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:6b:1a:00:7b:da:68:3a:70:0a:1e:f4:f5:ca:
85:c6:a1:ff:77:f8:ae:01:3a:77:69:21:31:61:a0:
79:a7:39:30:a0:a3:d7:fc:e3:1c:69:cb:b8:f0:ed:
5d:66:68:6d:7b:e6:06:af:06:6c:0a:3c:3b:91:81:
ef:f8:17:12:3e:96:83:4e:08:e2:d5:38:cd:05:b6:
be:c8:df:5c:b2:c2:06:ce:9a:4c:e5:ef:e0:05:58:
68:99:4a:84:ac:0c:d1:22:42:62:25:18:39:c1:3b:
5b:99:a5:75:d3:c2:91:a0:4b:7f:87:e5:9e:45:0e:
61:b7:9c:c5:15:52:da:f6:dd:0c:bf:7e:2e:bc:d9:
8b:2c:b3:d8:97:4d:ae:89:53:db:0f:e1:a4:1d:e4:
ed:01:1d:63:7c:d8:f0:18:46:4a:67:03:c7:00:a4:
9c:86:a6:a6:01:58:ef:c1:ab:14:30:49:c0:c3:b1:
c6:31:40:f8:59:31:65:34:fd:32:9f:2e:c7:a9:48:
43:c8:da:db:36:88:55:bb:ab:3d:d3:a8:f8:a3:fc:
4c:7e:b5:ce:2d:7e:93:8a:f6:a6:8f:56:9b:be:fc:
74:7f:1e:32:56:73:c9:c2:41:fb:f1:34:ef:d2:9f:
81:fc:34:a1:95:88:e6:6d:77:6b:16:ab:34:f8:b8:
47:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:9D:B0:4D:D3:16:76:AF:49:04:54:EA:EB:50:2B:4D:F0:78:AD:48
X509v3 Authority Key Identifier:
keyid:32:B0:4C:79:CB:48:5E:8D:05:BD:3A:73:D9:DD:3F:9F:02:8D:71:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3E0D795654DD4FDA70FBE3FF898D88BF9C9C967CEA19E732E49E766FEA22C9A7/0/32B04C79CB485E8D05BD3A73D9DD3F9F028D7184.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/32B04C79CB485E8D05BD3A73D9DD3F9F028D7184.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3E0D795654DD4FDA70FBE3FF898D88BF9C9C967CEA19E732E49E766FEA22C9A7/0/323830333a336636303a3a2f33322d3438203d3e20323634373434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:3f60::/32
Signature Algorithm: sha256WithRSAEncryption
21:0c:39:e1:71:8a:4a:3c:41:d4:3e:3f:3b:08:1d:2d:8f:ba:
0d:13:de:7f:9d:0f:c3:6f:37:c9:a6:ee:93:4d:62:81:dd:07:
b7:30:05:e4:c6:79:ad:62:ad:31:7f:e9:ae:82:97:01:83:5e:
04:b4:a0:ff:04:6e:95:02:b0:bd:0d:ab:c9:fc:1a:5e:73:91:
01:6d:e0:e9:96:b1:98:ae:a9:2b:63:ab:f6:de:37:5d:7a:c8:
fb:19:c7:6e:5b:36:60:17:4b:69:21:a7:47:1a:52:6e:91:cc:
b7:69:5c:80:06:73:dd:03:f3:74:36:f6:8c:5a:e2:bd:24:57:
51:c3:2e:5f:b7:cf:c7:c8:3f:d2:14:ea:ee:d7:c7:d2:bd:6b:
60:61:71:46:19:e3:e3:95:a4:a8:b6:1e:4d:0e:9e:a4:dd:db:
cd:8e:1a:a8:86:6c:6a:f3:32:21:e8:69:77:58:48:b0:0c:ef:
37:a2:1f:6d:e2:38:80:83:e6:07:04:ef:9e:7c:df:f5:26:e7:
c9:9e:01:c7:62:6e:aa:b8:cd:ed:7a:9b:10:32:4c:30:f8:21:
3e:e0:51:2a:88:00:c7:36:6b:7b:3a:f4:56:23:e6:02:26:22:
58:f1:91:62:5d:a3:61:3d:2b:30:13:84:5e:28:b6:ac:31:d5:
d3:47:08:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 21:18:24 2025 by rpki-client