Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4922D158785AAB1704F70753BD4D5AFF990EA9B94829B1FDDE1D86BEB6680C5F/0/3139302e3138342e3230302e302f32342d3234203d3e203532333330.roa
File: 3139302e3138342e3230302e302f32342d3234203d3e203532333330.roa (raw, json)
Hash identifier: 5OlW+MnKsKl2R9usEnQLlxiOlHs+UEjrC8+w3dPxNWk=
Subject key identifier: BD:10:B1:6C:27:94:3B:B2:60:74:72:21:03:C1:BC:86:62:A5:85:D8
Certificate issuer: /CN=9EFB791A145582344954DF95067EBE4F7C567ECB
Certificate serial: 24CE272ECC257C4CE33AC791E45EB8ACBB552F5D
Authority key identifier: 9E:FB:79:1A:14:55:82:34:49:54:DF:95:06:7E:BE:4F:7C:56:7E:CB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9EFB791A145582344954DF95067EBE4F7C567ECB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4922D158785AAB1704F70753BD4D5AFF990EA9B94829B1FDDE1D86BEB6680C5F/0/3139302e3138342e3230302e302f32342d3234203d3e203532333330.roa
Signing time: Tue 04 Feb 2025 18:15:13 +0000
ROA not before: Tue 04 Feb 2025 18:10:13 +0000
ROA not after: Tue 03 Feb 2026 18:15:13 +0000
asID: 52330
IP address blocks: 190.184.200.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/4922D158785AAB1704F70753BD4D5AFF990EA9B94829B1FDDE1D86BEB6680C5F/0/9EFB791A145582344954DF95067EBE4F7C567ECB.crl
rsync://repository.lacnic.net/rpki/lacnic/4922D158785AAB1704F70753BD4D5AFF990EA9B94829B1FDDE1D86BEB6680C5F/0/9EFB791A145582344954DF95067EBE4F7C567ECB.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9EFB791A145582344954DF95067EBE4F7C567ECB.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:ce:27:2e:cc:25:7c:4c:e3:3a:c7:91:e4:5e:b8:ac:bb:55:2f:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9EFB791A145582344954DF95067EBE4F7C567ECB
Validity
Not Before: Feb 4 18:10:13 2025 GMT
Not After : Feb 3 18:15:13 2026 GMT
Subject: CN=BD10B16C27943BB26074722103C1BC8662A585D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:8b:4c:de:bb:58:79:42:86:b9:2b:16:95:3e:
89:a7:70:1b:02:0f:23:e9:1a:06:94:d5:1e:53:c1:
5b:80:aa:6a:04:da:de:0b:96:b5:63:35:55:df:a2:
db:d1:3d:97:df:20:32:20:5a:c3:72:47:f0:78:73:
39:82:b1:ca:60:47:8f:4f:a2:b1:80:ff:a1:7a:69:
6b:50:bd:e4:e1:ce:55:43:ba:7b:95:1f:ea:e2:02:
27:d5:3f:48:20:47:25:81:ea:0f:94:4c:aa:f1:97:
71:6f:7c:32:aa:87:c6:e5:50:52:2c:20:64:9f:91:
ad:d0:fa:b2:f4:4c:b1:e3:62:07:5e:d9:da:de:ed:
65:8f:3d:9f:f9:e1:d3:b1:81:25:e6:b5:e5:8e:ed:
36:f0:c6:66:6a:da:14:af:a7:7d:e8:23:a1:6a:03:
0d:ce:5b:94:37:9f:b5:a9:22:5d:a6:4c:81:dd:7a:
0e:0c:43:53:aa:c5:65:76:26:c3:3d:7c:ba:41:c0:
ed:df:71:05:8c:b1:55:1d:97:d5:fa:72:57:bd:1c:
0f:b8:c7:15:23:f4:d0:e6:82:f9:1d:89:59:02:89:
16:67:e9:01:83:a9:6c:da:7b:47:71:88:78:1d:07:
9b:9f:4f:25:66:80:ee:02:d7:19:51:ed:90:5a:7b:
e7:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:10:B1:6C:27:94:3B:B2:60:74:72:21:03:C1:BC:86:62:A5:85:D8
X509v3 Authority Key Identifier:
keyid:9E:FB:79:1A:14:55:82:34:49:54:DF:95:06:7E:BE:4F:7C:56:7E:CB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4922D158785AAB1704F70753BD4D5AFF990EA9B94829B1FDDE1D86BEB6680C5F/0/9EFB791A145582344954DF95067EBE4F7C567ECB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9EFB791A145582344954DF95067EBE4F7C567ECB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4922D158785AAB1704F70753BD4D5AFF990EA9B94829B1FDDE1D86BEB6680C5F/0/3139302e3138342e3230302e302f32342d3234203d3e203532333330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.184.200.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:11:58:36:0a:c0:c3:5f:3a:92:7e:25:da:c2:56:03:bc:e1:
cd:f9:b7:eb:84:47:ce:b5:a4:26:ed:66:6f:43:ce:e8:46:dc:
35:92:8e:29:be:b4:23:20:4a:54:fe:24:c6:b6:eb:df:48:0e:
1b:30:ef:28:55:14:80:51:0f:6a:c4:23:96:5b:0a:e4:e8:94:
94:3f:b6:16:6b:70:11:d0:35:e3:e3:1e:f8:e3:8d:7f:62:64:
94:37:b2:1f:1b:1f:b3:b8:8e:84:26:76:4f:b9:b4:b5:d6:b2:
9e:c0:2c:1d:5b:2c:5e:e5:41:dd:23:b7:33:6a:de:c9:68:74:
a8:4a:75:42:2d:5e:a9:c2:93:7f:44:4d:80:0a:55:ac:1e:5b:
9b:00:5b:92:9e:78:49:d7:02:9d:70:42:e8:3f:d8:69:e3:21:
21:6b:5c:d3:fb:9e:2a:3d:a7:eb:5d:ef:62:a0:96:2f:70:4f:
92:cb:43:79:b5:3a:47:8f:d8:d1:40:62:c9:0d:95:35:ce:dc:
3d:9c:69:b5:e9:67:ae:0e:90:d1:4d:2a:a5:4a:9b:71:21:cb:
8c:22:d6:62:ab:5e:0b:86:fe:ef:71:3c:ca:f7:3b:b6:53:a5:
49:ab:c1:c1:50:91:2f:76:8f:2e:56:81:b1:b2:6d:2f:26:55:
b2:15:4d:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 22:21:39 2025 by rpki-client