Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/41723B0679130F659FD2BC970D21FAE11B92497391E79D8A864EC930F7D8EB6F/0/323830333a623663303a3a2f33322d3332203d3e20323635363539.roa
File: 323830333a623663303a3a2f33322d3332203d3e20323635363539.roa (raw, json)
Hash identifier: WmEvbvGpY5/nm8wvvlx92On5wsT0tYdAwcInvRwhJ64=
Subject key identifier: 0F:21:54:E0:6C:6A:86:88:FE:3E:DB:EB:D1:0D:08:8E:59:22:28:D8
Certificate issuer: /CN=259C857FBBE3D174F02EFBE0681691812000149A
Certificate serial: 7C8606E62BC2D50D2A199C64EF040AC2F9D5ADA5
Authority key identifier: 25:9C:85:7F:BB:E3:D1:74:F0:2E:FB:E0:68:16:91:81:20:00:14:9A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/259C857FBBE3D174F02EFBE0681691812000149A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/41723B0679130F659FD2BC970D21FAE11B92497391E79D8A864EC930F7D8EB6F/0/323830333a623663303a3a2f33322d3332203d3e20323635363539.roa
Signing time: Tue 04 Feb 2025 20:06:33 +0000
ROA not before: Tue 04 Feb 2025 20:01:33 +0000
ROA not after: Tue 03 Feb 2026 20:06:33 +0000
asID: 265659
IP address blocks: 2803:b6c0::/32 maxlen: 32
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/41723B0679130F659FD2BC970D21FAE11B92497391E79D8A864EC930F7D8EB6F/0/259C857FBBE3D174F02EFBE0681691812000149A.crl
rsync://repository.lacnic.net/rpki/lacnic/41723B0679130F659FD2BC970D21FAE11B92497391E79D8A864EC930F7D8EB6F/0/259C857FBBE3D174F02EFBE0681691812000149A.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/259C857FBBE3D174F02EFBE0681691812000149A.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 09:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:86:06:e6:2b:c2:d5:0d:2a:19:9c:64:ef:04:0a:c2:f9:d5:ad:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=259C857FBBE3D174F02EFBE0681691812000149A
Validity
Not Before: Feb 4 20:01:33 2025 GMT
Not After : Feb 3 20:06:33 2026 GMT
Subject: CN=0F2154E06C6A8688FE3EDBEBD10D088E592228D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2c:ed:c6:60:fb:17:b5:1d:38:bb:f9:c1:fe:
4d:6d:59:10:7c:5b:30:94:9f:5b:e7:74:34:b1:af:
f3:a8:4a:da:62:2b:33:e0:35:b5:ca:36:1b:92:db:
ea:e9:74:a7:e7:7a:62:18:7a:c2:f4:15:a3:f4:6f:
97:f2:ec:55:aa:e4:ee:c2:61:ea:50:63:fc:e9:14:
94:78:b8:0f:34:a1:3f:52:c7:62:17:f9:39:c7:ae:
a0:23:9f:e2:56:5f:59:83:c1:21:7d:c7:49:7a:2e:
76:cb:34:6e:2c:7e:26:0c:7b:96:d4:75:9f:86:23:
f1:5a:3e:fa:de:49:6b:0e:0e:bd:92:41:2f:40:80:
03:2a:6b:10:14:9f:1d:40:08:f6:94:97:11:fb:39:
d1:31:0c:0a:88:cc:f3:6a:39:4e:55:6d:d5:10:48:
95:6c:86:ff:61:3d:14:9f:5f:89:96:42:9a:60:da:
26:ae:f2:01:42:9a:00:8f:be:00:29:52:59:fd:d2:
ae:d3:b9:5d:81:f4:12:f4:d4:05:1e:d6:fd:4a:1a:
f2:4a:2b:13:43:af:16:19:f5:41:6b:b1:ef:a1:1f:
70:66:cb:3e:03:e4:b4:cc:38:d6:25:b6:ef:e9:b1:
4a:7e:de:6a:00:f6:fd:82:df:e0:eb:ed:5d:d2:4b:
33:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:21:54:E0:6C:6A:86:88:FE:3E:DB:EB:D1:0D:08:8E:59:22:28:D8
X509v3 Authority Key Identifier:
keyid:25:9C:85:7F:BB:E3:D1:74:F0:2E:FB:E0:68:16:91:81:20:00:14:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/41723B0679130F659FD2BC970D21FAE11B92497391E79D8A864EC930F7D8EB6F/0/259C857FBBE3D174F02EFBE0681691812000149A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/259C857FBBE3D174F02EFBE0681691812000149A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/41723B0679130F659FD2BC970D21FAE11B92497391E79D8A864EC930F7D8EB6F/0/323830333a623663303a3a2f33322d3332203d3e20323635363539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:b6c0::/32
Signature Algorithm: sha256WithRSAEncryption
4f:4d:9c:e9:cc:da:6f:68:cc:33:6c:2d:65:88:1f:cd:6d:4a:
f8:35:56:45:19:e7:8e:7f:4d:ca:5a:4f:78:6c:7a:80:bc:c5:
1c:90:05:5e:6f:ce:5a:fc:70:4d:8e:65:61:61:8d:d7:61:e0:
46:63:c9:41:c6:be:61:ba:af:c1:c6:87:6a:44:11:32:90:60:
49:0c:15:d8:17:71:5e:3e:43:1e:4c:46:97:8a:8c:61:bd:1f:
b0:32:02:8e:33:f5:24:1e:72:26:f7:7e:81:a8:40:c9:cf:a5:
e9:22:11:8e:6a:33:8a:b6:a6:96:94:73:54:39:58:99:ff:21:
a7:ca:2f:02:63:60:52:67:9e:39:e8:db:c6:0b:31:49:2e:ec:
f9:f5:9d:42:f3:a1:9e:eb:ee:25:b1:5f:d5:6d:fe:80:30:e0:
b9:cd:50:b4:6e:a7:51:54:ec:c3:9a:76:cf:22:08:9a:f8:35:
ef:b3:bc:e1:4a:bc:2d:0a:9e:31:13:54:df:9e:ec:44:34:fe:
04:c4:27:a4:87:94:e1:ee:a2:39:ba:25:c8:34:0d:3e:eb:78:
a9:bc:bf:29:3a:34:eb:77:9b:aa:5a:b7:42:5f:51:66:18:75:
54:29:e5:7e:a3:3f:77:8d:43:2b:02:1a:3c:57:d5:97:ca:f7:
fb:8d:50:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 02:47:35 2025 by rpki-client