Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3F1A903545248855FF2185F24A31F1FB9FEB25AFEE3ADB0CB82DC975846E8785/0/323830333a363239303a3a2f33322d3438203d3e203532343638.roa
File: 323830333a363239303a3a2f33322d3438203d3e203532343638.roa (raw, json)
Hash identifier: NyQpJ6JuIl0kmA6+iXTMZlYH09vbNzRGL+GZD/knMCs=
Subject key identifier: 43:BF:F1:22:78:A6:B1:55:00:55:64:C8:AA:81:93:C9:BC:92:9C:76
Certificate issuer: /CN=3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292
Certificate serial: 49D4F00747A5E3DCE74D9AEC57EE132169A29B79
Authority key identifier: 3F:40:D9:6A:4F:BB:BE:F5:8B:DC:1A:8A:02:AB:0D:89:B2:B1:62:92
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3F1A903545248855FF2185F24A31F1FB9FEB25AFEE3ADB0CB82DC975846E8785/0/323830333a363239303a3a2f33322d3438203d3e203532343638.roa
Signing time: Tue 04 Feb 2025 18:08:07 +0000
ROA not before: Tue 04 Feb 2025 18:03:07 +0000
ROA not after: Tue 03 Feb 2026 18:08:07 +0000
asID: 52468
IP address blocks: 2803:6290::/32 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/3F1A903545248855FF2185F24A31F1FB9FEB25AFEE3ADB0CB82DC975846E8785/0/3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292.crl
rsync://repository.lacnic.net/rpki/lacnic/3F1A903545248855FF2185F24A31F1FB9FEB25AFEE3ADB0CB82DC975846E8785/0/3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 00:28:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:d4:f0:07:47:a5:e3:dc:e7:4d:9a:ec:57:ee:13:21:69:a2:9b:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292
Validity
Not Before: Feb 4 18:03:07 2025 GMT
Not After : Feb 3 18:08:07 2026 GMT
Subject: CN=43BFF12278A6B155005564C8AA8193C9BC929C76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:0e:2c:af:c0:83:92:2a:35:13:18:1e:a4:2b:
12:ae:c5:09:03:1d:08:9c:56:4b:95:8b:a8:ce:35:
63:a9:f3:41:ae:6e:ff:b8:8c:dc:7e:84:16:a2:25:
5e:74:7a:35:ee:34:81:e0:02:bf:c9:e8:90:83:3c:
c9:0d:b8:32:d9:b1:ad:64:a1:94:ad:ee:9e:11:4f:
8b:cb:49:16:41:36:9a:0d:78:33:59:d5:d4:bd:18:
28:00:a3:c4:36:0a:15:33:ba:18:5a:a2:6e:c8:98:
da:1d:d5:95:61:f3:c8:bf:18:9b:b3:30:2c:96:ab:
3c:d7:f3:b4:d3:1c:19:6f:5e:24:68:17:82:26:f9:
55:51:f3:de:cf:99:97:03:b3:80:a7:24:10:d9:db:
e9:6c:93:59:89:48:cb:80:c8:80:89:a5:2d:69:d8:
76:9b:9a:09:2b:0e:b8:aa:83:3d:df:b3:bf:71:6f:
57:98:dd:a3:91:26:88:e5:9c:cb:22:2b:53:e3:de:
fd:67:47:f6:28:71:30:b6:f2:9b:c4:4b:9d:51:3e:
bf:96:fc:88:d3:8b:f8:da:27:5a:a4:09:48:28:88:
84:61:65:1c:5a:3b:f7:bb:08:23:55:41:e7:c4:cc:
ce:f9:db:90:c6:36:24:81:75:93:26:5b:99:79:ce:
de:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:BF:F1:22:78:A6:B1:55:00:55:64:C8:AA:81:93:C9:BC:92:9C:76
X509v3 Authority Key Identifier:
keyid:3F:40:D9:6A:4F:BB:BE:F5:8B:DC:1A:8A:02:AB:0D:89:B2:B1:62:92
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3F1A903545248855FF2185F24A31F1FB9FEB25AFEE3ADB0CB82DC975846E8785/0/3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3F40D96A4FBBBEF58BDC1A8A02AB0D89B2B16292.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3F1A903545248855FF2185F24A31F1FB9FEB25AFEE3ADB0CB82DC975846E8785/0/323830333a363239303a3a2f33322d3438203d3e203532343638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:6290::/32
Signature Algorithm: sha256WithRSAEncryption
8e:f3:2d:70:c2:6d:62:e0:59:74:c6:db:b0:83:ee:8d:31:e8:
c6:84:e5:9a:2b:0e:a7:fa:b2:21:85:42:5e:45:1b:23:f4:75:
ce:30:42:f0:fd:72:2d:50:39:d8:70:a0:25:dd:0b:c8:39:e4:
a1:25:4a:eb:4d:5d:af:66:17:f7:16:d6:d3:a1:95:62:1e:a6:
1c:13:2f:1c:9e:78:aa:10:4b:17:4c:79:2c:ac:c9:8b:12:af:
85:b7:3d:2e:89:ba:0e:cc:53:4d:71:36:a9:05:ba:cd:22:e9:
1e:6d:55:c1:4f:1f:56:94:17:6a:1f:1f:a7:20:e3:b6:04:58:
4e:45:f1:5d:74:77:91:63:e8:17:62:e9:20:27:e5:bc:98:7f:
a0:ac:75:e3:20:8b:1b:e8:51:6c:50:e8:30:e9:de:c1:ea:ce:
76:5e:79:f8:1b:58:42:f9:69:e8:02:c1:dc:1e:a4:9d:46:e0:
8f:71:e7:0e:bb:8a:a6:4a:aa:24:7b:52:98:05:6c:d6:09:3b:
66:36:04:0d:3b:8f:0e:e9:e1:83:e6:68:2e:7a:f6:4a:9d:31:
16:41:19:d7:06:8e:6e:c0:fd:fd:b7:63:70:7e:15:be:4e:65:
56:6c:81:65:d6:01:30:c2:c3:d4:29:32:1c:30:ce:ed:f7:78:
f5:e5:bc:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 10:28:50 2025 by rpki-client