Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3F1A903545248855FF2185F24A31F1FB9FEB25AFEE3ADB0CB82DC975846E8785/0/323830333a363239303a3a2f33322d3438203d3e20323632353839.roa
File: 323830333a363239303a3a2f33322d3438203d3e20323632353839.roa (raw, json)
Hash identifier: KYAan4yBbnUS/a31gPdBaKLS2+DyKm4O9NJzapnDqWw=
Subject key identifier: 9C:37:C0:A5:83:64:ED:F5:73:AA:56:F0:0F:11:C9:9D:83:65:50:01
Certificate issuer: /CN=3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292
Certificate serial: 39EE7E1D6F9655BCB2AFA90D2055874495F8BCF5
Authority key identifier: 3F:40:D9:6A:4F:BB:BE:F5:8B:DC:1A:8A:02:AB:0D:89:B2:B1:62:92
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3F1A903545248855FF2185F24A31F1FB9FEB25AFEE3ADB0CB82DC975846E8785/0/323830333a363239303a3a2f33322d3438203d3e20323632353839.roa
Signing time: Tue 04 Feb 2025 18:08:07 +0000
ROA not before: Tue 04 Feb 2025 18:03:07 +0000
ROA not after: Tue 03 Feb 2026 18:08:07 +0000
asID: 262589
IP address blocks: 2803:6290::/32 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/3F1A903545248855FF2185F24A31F1FB9FEB25AFEE3ADB0CB82DC975846E8785/0/3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292.crl
rsync://repository.lacnic.net/rpki/lacnic/3F1A903545248855FF2185F24A31F1FB9FEB25AFEE3ADB0CB82DC975846E8785/0/3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 00:28:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
39:ee:7e:1d:6f:96:55:bc:b2:af:a9:0d:20:55:87:44:95:f8:bc:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292
Validity
Not Before: Feb 4 18:03:07 2025 GMT
Not After : Feb 3 18:08:07 2026 GMT
Subject: CN=9C37C0A58364EDF573AA56F00F11C99D83655001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6f:c7:46:84:0a:7e:5a:d2:3c:50:41:7d:32:
da:99:3e:98:60:ec:b5:71:ca:05:a8:bb:64:82:4d:
98:99:6a:ea:b9:40:09:d9:4a:3c:4b:70:8f:98:7d:
ae:73:0c:7f:b1:21:6f:63:90:bc:2e:64:3d:46:f3:
3a:7d:17:64:6e:42:34:3d:ae:78:68:32:5e:a3:db:
2e:11:a9:ec:d3:bc:61:99:6f:0c:74:44:98:7d:1a:
9f:02:16:98:fd:84:33:17:eb:8a:e3:46:af:36:ab:
7e:75:34:8c:b3:8e:33:31:12:6b:be:1b:16:90:84:
ab:58:a8:31:b7:3d:0c:2c:94:11:24:76:71:4f:f4:
15:46:1b:1b:47:00:1b:6e:4b:17:c1:24:97:f4:95:
f5:68:24:5c:2a:4c:86:c2:aa:cf:58:4a:49:02:6b:
a6:80:64:96:8a:03:73:89:87:55:76:5b:73:4b:4a:
5e:9e:f6:3e:3c:c4:2f:5f:39:7f:3a:24:d9:f6:49:
da:18:fe:bc:63:d8:0b:1c:98:79:f9:5a:37:cb:99:
c2:de:cc:a7:39:9e:9b:86:68:6d:4d:65:5a:44:a4:
0d:5b:e3:f8:ec:9e:dc:4c:0c:01:4a:eb:b9:08:b0:
8c:10:93:4b:ac:0f:39:35:28:5a:5d:5e:60:8d:49:
8a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:37:C0:A5:83:64:ED:F5:73:AA:56:F0:0F:11:C9:9D:83:65:50:01
X509v3 Authority Key Identifier:
keyid:3F:40:D9:6A:4F:BB:BE:F5:8B:DC:1A:8A:02:AB:0D:89:B2:B1:62:92
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3F1A903545248855FF2185F24A31F1FB9FEB25AFEE3ADB0CB82DC975846E8785/0/3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3F1A903545248855FF2185F24A31F1FB9FEB25AFEE3ADB0CB82DC975846E8785/0/323830333a363239303a3a2f33322d3438203d3e20323632353839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:6290::/32
Signature Algorithm: sha256WithRSAEncryption
2e:7d:ba:53:4b:fa:98:2a:c2:f8:15:c1:f8:00:5e:b9:30:b9:
d0:e8:ba:57:db:f0:52:95:63:b0:46:6c:89:44:8c:44:2e:2f:
e1:ae:d5:36:b4:c9:08:b2:bc:48:e4:be:78:ef:c4:7a:60:93:
d8:a4:31:94:bb:6a:a9:d7:32:5e:b8:40:96:3d:8f:ea:a5:c0:
01:f6:f6:6a:4f:48:e8:b1:87:5f:04:a5:65:93:ea:7c:43:81:
bf:4c:96:8d:83:bb:cd:d3:14:fe:98:ee:64:8f:ca:7a:74:26:
69:64:5f:c1:a0:7f:52:53:68:d3:8a:9f:6b:db:56:6e:46:c3:
d9:75:c2:55:1f:df:83:6e:1d:40:36:00:6e:f3:b2:17:76:87:
4a:ff:21:d3:bc:ad:d7:67:f9:27:e9:7c:fa:fd:71:60:6f:92:
69:8c:65:ae:d2:e8:a5:d7:b0:10:ef:c4:c4:d3:67:9c:4f:59:
ff:31:9e:13:51:70:46:c2:65:7b:92:f2:18:09:39:b3:b6:df:
71:dc:88:0c:6c:91:6b:17:24:05:3b:60:92:29:e3:8d:5b:ad:
94:3d:1a:d7:6a:2b:fa:a6:53:c7:41:4f:52:d6:63:a7:1d:77:
92:dc:6c:35:0b:03:12:e6:a7:e1:d9:cf:8a:68:d0:cb:91:88:
75:83:2d:d5
-----BEGIN CERTIFICATE-----
MIIFvzCCBKegAwIBAgIUOe5+HW+WVbyyr6kNIFWHRJX4vPUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoM0Y0MEQ5NkE0RkJCQkVGNThCREMxQThBMDJBQjBEODlC
MkIxNjI5MjAeFw0yNTAyMDQxODAzMDdaFw0yNjAyMDMxODA4MDdaMDMxMTAvBgNV
BAMTKDlDMzdDMEE1ODM2NEVERjU3M0FBNTZGMDBGMTFDOTlEODM2NTUwMDEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+b8dGhAp+WtI8UEF9MtqZPphg
7LVxygWou2SCTZiZauq5QAnZSjxLcI+Yfa5zDH+xIW9jkLwuZD1G8zp9F2RuQjQ9
rnhoMl6j2y4RqezTvGGZbwx0RJh9Gp8CFpj9hDMX64rjRq82q351NIyzjjMxEmu+
GxaQhKtYqDG3PQwslBEkdnFP9BVGGxtHABtuSxfBJJf0lfVoJFwqTIbCqs9YSkkC
a6aAZJaKA3OJh1V2W3NLSl6e9j48xC9fOX86JNn2SdoY/rxj2AscmHn5WjfLmcLe
zKc5npuGaG1NZVpEpA1b4/jsntxMDAFK67kIsIwQk0usDzk1KFpdXmCNSYoBAgMB
AAGjggLJMIICxTAdBgNVHQ4EFgQUnDfApYNk7fVzqlbwDxHJnYNlUAEwHwYDVR0j
BBgwFoAUP0DZak+7vvWL3BqKAqsNibKxYpIwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8zRjFBOTAzNTQ1MjQ4ODU1RkYyMTg1RjI0QTMxRjFGQjlG
RUIyNUFGRUUzQURCMENCODJEQzk3NTg0NkU4Nzg1LzAvM0Y0MEQ5NkE0RkJCQkVG
NThCREMxQThBMDJBQjBEODlCMkIxNjI5Mi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8zRjQwRDk2QTRGQkJCRUY1OEJE
QzFBOEEwMkFCMEQ4OUIyQjE2MjkyLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvM0YxQTkwMzU0NTI0ODg1NUZGMjE4NUYyNEEzMUYxRkI5RkVCMjVBRkVF
M0FEQjBDQjgyREM5NzU4NDZFODc4NS8wLzMyMzgzMDMzM2EzNjMyMzkzMDNhM2Ey
ZjMzMzIyZDM0MzgyMDNkM2UyMDMyMzYzMjM1MzgzOS5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACgDYpAw
DQYJKoZIhvcNAQELBQADggEBAC59ulNL+pgqwvgVwfgAXrkwudDoulfb8FKVY7BG
bIlEjEQuL+Gu1Ta0yQiyvEjkvnjvxHpgk9ikMZS7aqnXMl64QJY9j+qlwAH29mpP
SOixh18EpWWT6nxDgb9Mlo2Du83TFP6Y7mSPynp0JmlkX8Ggf1JTaNOKn2vbVm5G
w9l1wlUf34NuHUA2AG7zshd2h0r/IdO8rddn+SfpfPr9cWBvkmmMZa7S6KXXsBDv
xMTTZ5xPWf8xnhNRcEbCZXuS8hgJObO233HciAxskWsXJAU7YJIp441brZQ9Gtdq
K/qmU8dBT1LWY6cdd5LcbDULAxLmp+HZz4po0MuRiHWDLdU=
-----END CERTIFICATE-----
Generated at Mon Apr 14 10:55:01 2025 by rpki-client