Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3F1A903545248855FF2185F24A31F1FB9FEB25AFEE3ADB0CB82DC975846E8785/0/323830333a363239303a3a2f33322d3438203d3e20323732383539.roa
File: 323830333a363239303a3a2f33322d3438203d3e20323732383539.roa (raw, json)
Hash identifier: klNw1nZqutim71aOsjj3ACTiBo4bV6Nn0Rj4yTdFrV0=
Subject key identifier: A7:DD:05:5D:4B:AF:5E:39:93:F9:93:87:FC:2D:57:93:83:F4:49:2E
Certificate issuer: /CN=3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292
Certificate serial: 4BEEBD8E84B723754C57BD4C15220142A2CEDEAB
Authority key identifier: 3F:40:D9:6A:4F:BB:BE:F5:8B:DC:1A:8A:02:AB:0D:89:B2:B1:62:92
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3F1A903545248855FF2185F24A31F1FB9FEB25AFEE3ADB0CB82DC975846E8785/0/323830333a363239303a3a2f33322d3438203d3e20323732383539.roa
Signing time: Tue 04 Feb 2025 18:08:06 +0000
ROA not before: Tue 04 Feb 2025 18:03:06 +0000
ROA not after: Tue 03 Feb 2026 18:08:06 +0000
asID: 272859
IP address blocks: 2803:6290::/32 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/3F1A903545248855FF2185F24A31F1FB9FEB25AFEE3ADB0CB82DC975846E8785/0/3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292.crl
rsync://repository.lacnic.net/rpki/lacnic/3F1A903545248855FF2185F24A31F1FB9FEB25AFEE3ADB0CB82DC975846E8785/0/3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 00:28:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:ee:bd:8e:84:b7:23:75:4c:57:bd:4c:15:22:01:42:a2:ce:de:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292
Validity
Not Before: Feb 4 18:03:06 2025 GMT
Not After : Feb 3 18:08:06 2026 GMT
Subject: CN=A7DD055D4BAF5E3993F99387FC2D579383F4492E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:4f:af:fd:a4:c7:73:c4:9e:c2:52:dd:b1:16:
b9:00:57:84:93:43:44:f7:19:bd:a5:6d:cc:85:f2:
fe:12:d0:c1:5f:42:11:0f:b1:81:4d:81:fb:92:e3:
be:67:70:2e:a3:56:9b:3d:ec:64:58:d5:42:6c:b0:
4a:bc:29:4f:41:eb:88:40:db:ef:c9:4f:9b:bb:60:
80:ef:cb:2b:37:96:f3:7e:15:7a:a3:65:1e:fc:74:
ec:72:13:b2:76:21:0b:bd:96:b9:bd:2c:b8:4c:1c:
6e:12:d0:7d:35:d5:dd:b6:45:7e:ad:f0:e9:9d:75:
67:f5:95:4f:95:16:b8:8c:62:23:bc:d1:4a:b2:0e:
ca:42:10:23:a5:50:72:90:b1:d2:fe:40:a9:40:4f:
a2:64:f9:61:a7:9f:6b:9f:08:1d:a0:86:62:c9:0b:
27:70:aa:b1:fe:f6:6a:2d:98:44:e1:f3:63:61:08:
41:be:7d:17:44:3a:cc:1d:78:28:5a:8f:dc:ab:df:
ce:8f:f6:4a:60:5b:33:9c:29:3e:61:0d:2e:a4:96:
86:ed:e5:14:20:e2:a5:e2:71:7d:20:88:3c:f6:c6:
10:ff:40:88:db:21:0f:8e:1c:45:50:e9:cf:3c:17:
66:e8:12:03:f0:1e:b0:0b:5c:de:09:92:c2:87:71:
28:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:DD:05:5D:4B:AF:5E:39:93:F9:93:87:FC:2D:57:93:83:F4:49:2E
X509v3 Authority Key Identifier:
keyid:3F:40:D9:6A:4F:BB:BE:F5:8B:DC:1A:8A:02:AB:0D:89:B2:B1:62:92
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3F1A903545248855FF2185F24A31F1FB9FEB25AFEE3ADB0CB82DC975846E8785/0/3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3F1A903545248855FF2185F24A31F1FB9FEB25AFEE3ADB0CB82DC975846E8785/0/323830333a363239303a3a2f33322d3438203d3e20323732383539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:6290::/32
Signature Algorithm: sha256WithRSAEncryption
77:57:c5:d7:1c:a6:e3:1a:d3:3e:1d:1d:0e:fb:6c:ea:8c:69:
e4:dc:71:0e:ec:21:67:87:91:fd:37:d6:af:8b:9a:dd:55:25:
31:4e:77:35:da:b7:c8:0b:4c:54:ae:fe:9c:8a:9c:fb:4a:77:
75:c2:44:11:de:96:2b:3a:46:00:87:4e:15:38:94:77:08:78:
df:75:ae:53:b7:7f:b4:60:75:ca:a6:13:7f:94:d0:cd:11:01:
1d:bb:ef:40:b9:94:9c:04:f1:bc:5a:41:68:d4:14:25:88:be:
be:fe:dd:dc:3d:de:31:9f:ba:c0:1a:3d:a1:bb:43:d4:aa:6c:
72:be:9a:68:de:3f:13:33:69:76:03:44:51:45:39:e9:11:ce:
00:73:3d:e3:56:a2:42:9c:af:e7:c0:b8:7f:db:41:a4:6f:31:
a8:9f:bd:99:1b:ed:8a:df:b4:5f:b5:bb:f9:5a:64:b2:10:62:
a3:6b:f0:48:48:5c:26:11:82:6a:4c:3d:72:20:1d:ef:b5:ec:
5b:81:62:c4:76:70:45:b7:4e:47:6c:fa:04:7d:15:21:c1:3d:
26:2f:7f:d8:fd:f5:cc:58:84:21:39:36:3f:8d:e8:08:86:66:
6e:52:1d:9d:1b:b0:c3:bd:04:74:d4:f8:9b:93:61:f0:7d:23:
3c:cc:5f:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 06:22:45 2025 by rpki-client