Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/493E05FBD6A91A2B3C82526B6436CA955938E08DE56045DC4BB6FC7D11AB872A/0/323830313a3138393a3a2f34342d3434203d3e2033353439.roa
File: 323830313a3138393a3a2f34342d3434203d3e2033353439.roa (raw, json)
Hash identifier: W5mRB4EimG+qZNXZQklh50f558SlUyT5LbgDojez96c=
Subject key identifier: DD:03:2F:82:91:9E:CD:40:1B:E3:BE:77:4A:CA:1B:92:A6:EA:6C:30
Certificate issuer: /CN=BDFE2F793030C65A8091475B67EF5A8CC19F1953
Certificate serial: 29644B8A353EFA729B38B4E3454997FEBC7C555E
Authority key identifier: BD:FE:2F:79:30:30:C6:5A:80:91:47:5B:67:EF:5A:8C:C1:9F:19:53
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BDFE2F793030C65A8091475B67EF5A8CC19F1953.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/493E05FBD6A91A2B3C82526B6436CA955938E08DE56045DC4BB6FC7D11AB872A/0/323830313a3138393a3a2f34342d3434203d3e2033353439.roa
Signing time: Tue 04 Feb 2025 18:49:46 +0000
ROA not before: Tue 04 Feb 2025 18:44:46 +0000
ROA not after: Tue 03 Feb 2026 18:49:46 +0000
asID: 3549
IP address blocks: 2801:189::/44 maxlen: 44
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/493E05FBD6A91A2B3C82526B6436CA955938E08DE56045DC4BB6FC7D11AB872A/0/BDFE2F793030C65A8091475B67EF5A8CC19F1953.crl
rsync://repository.lacnic.net/rpki/lacnic/493E05FBD6A91A2B3C82526B6436CA955938E08DE56045DC4BB6FC7D11AB872A/0/BDFE2F793030C65A8091475B67EF5A8CC19F1953.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BDFE2F793030C65A8091475B67EF5A8CC19F1953.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 12:43:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:64:4b:8a:35:3e:fa:72:9b:38:b4:e3:45:49:97:fe:bc:7c:55:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDFE2F793030C65A8091475B67EF5A8CC19F1953
Validity
Not Before: Feb 4 18:44:46 2025 GMT
Not After : Feb 3 18:49:46 2026 GMT
Subject: CN=DD032F82919ECD401BE3BE774ACA1B92A6EA6C30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:bf:50:e2:f2:a8:f3:e4:2f:c9:e1:29:12:96:
28:1f:df:81:39:33:25:7f:60:8a:ce:99:1b:2d:cd:
bb:58:66:ae:ce:a6:c9:0a:ac:b0:f9:b9:00:6e:0a:
a2:48:12:fb:be:0b:54:3b:eb:7e:8a:c3:4d:07:63:
02:a8:47:74:5b:0d:98:28:31:54:30:45:70:05:a0:
95:b1:ab:53:fb:83:f9:e6:16:7a:e2:bc:96:56:88:
69:19:51:e6:f8:8c:89:81:be:eb:b0:1f:03:64:90:
55:60:c0:94:4f:c3:cb:2e:39:73:e6:05:cc:0e:d5:
36:64:2c:b8:a2:b4:6c:b9:32:28:b9:ee:11:ed:54:
42:50:73:34:87:28:7c:7b:01:b5:23:c0:d9:45:8a:
a7:0c:2d:ba:82:cc:3b:d8:3b:44:ad:df:9a:2d:cd:
9d:6e:bb:bb:79:a1:c6:3e:45:21:a8:1e:8b:8d:ac:
d5:a2:27:08:31:68:58:1a:82:d8:1f:f5:7c:b3:a8:
5f:15:d1:1f:d5:1d:cc:2c:12:01:3b:49:a8:7f:3d:
9f:76:68:d3:f5:86:fc:1f:6f:5c:db:4f:3b:c5:6e:
83:9d:a8:00:a1:36:ee:30:ff:f1:34:eb:16:bb:ed:
03:e0:ed:4d:f7:18:0b:f8:06:86:f0:73:1f:4f:eb:
f9:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:03:2F:82:91:9E:CD:40:1B:E3:BE:77:4A:CA:1B:92:A6:EA:6C:30
X509v3 Authority Key Identifier:
keyid:BD:FE:2F:79:30:30:C6:5A:80:91:47:5B:67:EF:5A:8C:C1:9F:19:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/493E05FBD6A91A2B3C82526B6436CA955938E08DE56045DC4BB6FC7D11AB872A/0/BDFE2F793030C65A8091475B67EF5A8CC19F1953.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BDFE2F793030C65A8091475B67EF5A8CC19F1953.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/493E05FBD6A91A2B3C82526B6436CA955938E08DE56045DC4BB6FC7D11AB872A/0/323830313a3138393a3a2f34342d3434203d3e2033353439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:189::/44
Signature Algorithm: sha256WithRSAEncryption
4c:66:15:df:40:0c:e1:46:3b:1d:6b:0e:f4:a7:55:33:55:7a:
03:71:b3:8e:f7:10:4c:9c:23:87:5e:23:1c:17:05:4d:62:a0:
74:43:41:9d:d9:19:12:7c:6b:75:b1:e3:d4:18:de:51:ec:57:
08:07:a8:0b:cf:11:dc:a1:06:29:95:5f:9a:66:0b:81:45:df:
b9:ed:94:94:c2:33:a4:80:b1:c7:2c:98:a2:42:76:ef:a2:f4:
5c:fe:2f:60:56:2f:33:fe:55:9a:96:07:ed:3a:95:c7:89:77:
c7:e6:0d:63:4d:ec:e9:f9:df:28:05:0f:36:60:b6:3d:b7:ba:
b2:03:f9:18:93:b9:41:84:b3:8e:b5:cb:2d:3c:7c:cd:5f:34:
17:77:37:5a:eb:95:48:f9:80:05:6e:31:45:79:90:f9:3e:f3:
3a:fb:e1:e5:15:cb:a2:fd:f0:49:07:04:22:6e:98:bc:8b:c9:
85:cb:ae:0a:c1:ca:7d:6d:eb:16:da:89:19:6c:c3:5c:ed:c6:
eb:f2:2b:74:f0:95:a9:4a:65:67:c6:57:9a:d8:e6:f6:3f:62:
fe:98:11:51:7e:2e:bb:78:da:29:c1:c9:e2:1e:cf:cb:6f:fd:
3b:4d:31:81:6f:11:eb:cb:f4:d3:8b:d9:5c:16:fa:05:24:76:
05:70:e2:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 13:42:59 2025 by rpki-client