Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/3230302e31312e3132382e302f31372d3234203d3e2038303438.roa
File: 3230302e31312e3132382e302f31372d3234203d3e2038303438.roa (raw, json)
Hash identifier: RtGr+/C1G1qEDBwdVdU/8IZ6RLKvd8VigEG9xyhV528=
Subject key identifier: 55:B4:31:63:6F:DB:9B:1A:29:F6:72:A5:60:2B:D0:DC:60:CC:23:B2
Certificate issuer: /CN=9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4
Certificate serial: 486FD71DF4CC86E714DB04F2674A781BC942C6B7
Authority key identifier: 9F:56:FC:23:A8:C5:FC:06:7B:7D:0B:FD:60:5C:0F:5A:33:D0:36:B4
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/3230302e31312e3132382e302f31372d3234203d3e2038303438.roa
Signing time: Tue 04 Feb 2025 18:55:39 +0000
ROA not before: Tue 04 Feb 2025 18:50:39 +0000
ROA not after: Tue 03 Feb 2026 18:55:39 +0000
asID: 8048
IP address blocks: 200.11.128.0/17 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4.crl
rsync://repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:6f:d7:1d:f4:cc:86:e7:14:db:04:f2:67:4a:78:1b:c9:42:c6:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4
Validity
Not Before: Feb 4 18:50:39 2025 GMT
Not After : Feb 3 18:55:39 2026 GMT
Subject: CN=55B431636FDB9B1A29F672A5602BD0DC60CC23B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3f:49:b8:9a:7c:eb:4d:25:ea:ff:86:c0:d5:
cd:9d:9a:db:e8:6f:ae:0b:a6:04:ad:6d:33:ec:42:
02:2a:89:12:7c:fc:2c:1f:78:ef:d9:67:e4:09:3d:
5e:ba:c3:71:c3:12:54:c8:46:2d:58:f3:e2:a2:bc:
7b:90:3e:bc:cd:ca:26:d0:92:09:47:c0:59:97:60:
eb:05:09:a9:91:43:98:5e:d8:23:9f:f5:79:d7:b2:
89:b1:aa:1f:b7:d5:fd:9f:06:12:01:7a:91:8d:8d:
4f:59:03:0d:5b:5b:13:05:00:70:55:6d:90:b0:83:
06:a2:6f:43:34:d2:d5:56:fd:e0:b9:b8:03:24:d6:
98:06:b3:bd:e2:46:e8:69:2b:7d:ba:11:59:b4:be:
5a:5f:72:ca:e0:9f:33:01:5a:51:8c:20:ad:38:5e:
32:60:1e:1f:fd:ed:ce:bd:78:4f:20:55:eb:8e:70:
1e:8f:2a:b3:c8:bc:be:1d:80:5b:01:10:88:cd:b7:
ee:18:e9:eb:ce:ab:ce:c0:50:b4:3c:6a:91:1a:f0:
d6:a8:db:99:17:ca:96:c9:60:9f:3a:ed:d0:49:a5:
06:a7:96:70:63:c7:a8:ac:69:eb:d0:f4:c2:1b:7f:
d7:ca:a5:a5:e2:c6:13:9d:07:9d:37:20:7d:5f:a4:
ea:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:B4:31:63:6F:DB:9B:1A:29:F6:72:A5:60:2B:D0:DC:60:CC:23:B2
X509v3 Authority Key Identifier:
keyid:9F:56:FC:23:A8:C5:FC:06:7B:7D:0B:FD:60:5C:0F:5A:33:D0:36:B4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F56FC23A8C5FC067B7D0BFD605C0F5A33D036B4.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/43CC570423FAF8163D86CC21F1BA03D89502AE9C124FEF89AF61F402EAEE8B83/0/3230302e31312e3132382e302f31372d3234203d3e2038303438.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.11.128.0/17
Signature Algorithm: sha256WithRSAEncryption
ad:80:d7:9a:76:31:32:bf:35:18:5f:8b:98:57:dd:4e:2f:99:
fd:6b:62:00:c6:da:b4:d5:f9:29:b3:f8:f0:ab:32:4c:61:31:
0b:af:bb:17:42:2f:b4:fa:7b:b6:e3:c3:9e:97:03:99:b4:6d:
25:e5:18:eb:13:a4:b3:26:4e:2d:a4:65:f9:36:3a:2f:84:aa:
ba:cf:1f:4c:83:fc:a1:33:53:d0:67:13:0d:a4:8e:69:22:85:
15:0d:e8:be:55:fb:2b:80:a0:3f:a9:b6:0c:31:b9:39:dd:95:
72:42:0f:72:e9:c8:4e:47:48:59:38:fc:2c:10:6d:3a:d4:f7:
9c:de:cd:8c:de:52:0f:eb:bf:a5:c8:92:bf:d4:49:06:54:57:
20:9d:24:4f:91:fd:1f:3f:02:cb:3f:c7:71:d4:1b:11:19:0a:
18:90:04:1f:63:fb:af:a9:95:46:04:c5:36:65:15:80:6a:88:
ec:f6:e5:32:42:f5:9d:4c:aa:23:62:79:e8:15:4e:4d:6e:4f:
75:52:a5:d9:10:8b:e6:2c:5b:5a:87:d5:6d:fe:9a:2b:7c:0d:
3d:ad:ec:a6:a9:52:b8:4c:b9:60:4f:03:0e:f6:89:ae:65:97:
fd:9e:e8:0b:64:96:f8:30:0e:c0:b3:74:ec:b7:a3:81:21:08:
fd:ee:01:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 12:38:14 2025 by rpki-client