Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4A3C65E01138A797CC1CD88B7B32A80F15642316087C29513D3DAC2B1117A368/0/3139302e3131332e33332e302f32342d3234203d3e20323731383634.roa
File: 3139302e3131332e33332e302f32342d3234203d3e20323731383634.roa (raw, json)
Hash identifier: azN9pRvg5DpbUa7YhuECMfpkA3UkUWDg8qQJHMhMr7A=
Subject key identifier: 3C:3D:0D:E6:E8:34:0E:6B:F7:8A:05:D2:19:8E:96:F5:6A:6C:9A:C1
Certificate issuer: /CN=EA517D4BAAB85D3C8F5008F40BC48B21CBEA72B8
Certificate serial: 50569EBFFF38568B8140CE5C450CCD0AC3FB8AC0
Authority key identifier: EA:51:7D:4B:AA:B8:5D:3C:8F:50:08:F4:0B:C4:8B:21:CB:EA:72:B8
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EA517D4BAAB85D3C8F5008F40BC48B21CBEA72B8.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4A3C65E01138A797CC1CD88B7B32A80F15642316087C29513D3DAC2B1117A368/0/3139302e3131332e33332e302f32342d3234203d3e20323731383634.roa
Signing time: Tue 04 Feb 2025 19:58:15 +0000
ROA not before: Tue 04 Feb 2025 19:53:15 +0000
ROA not after: Tue 03 Feb 2026 19:58:15 +0000
asID: 271864
IP address blocks: 190.113.33.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/4A3C65E01138A797CC1CD88B7B32A80F15642316087C29513D3DAC2B1117A368/0/EA517D4BAAB85D3C8F5008F40BC48B21CBEA72B8.crl
rsync://repository.lacnic.net/rpki/lacnic/4A3C65E01138A797CC1CD88B7B32A80F15642316087C29513D3DAC2B1117A368/0/EA517D4BAAB85D3C8F5008F40BC48B21CBEA72B8.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EA517D4BAAB85D3C8F5008F40BC48B21CBEA72B8.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 22:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:56:9e:bf:ff:38:56:8b:81:40:ce:5c:45:0c:cd:0a:c3:fb:8a:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EA517D4BAAB85D3C8F5008F40BC48B21CBEA72B8
Validity
Not Before: Feb 4 19:53:15 2025 GMT
Not After : Feb 3 19:58:15 2026 GMT
Subject: CN=3C3D0DE6E8340E6BF78A05D2198E96F56A6C9AC1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:0e:fe:d9:43:f3:1d:70:92:c6:09:d4:c5:70:
be:b9:fa:56:81:88:04:5c:13:c4:f9:e8:f9:e5:7c:
39:99:59:1d:94:c4:3d:5c:49:13:01:f4:a4:d4:75:
1c:4e:12:0a:e8:78:87:06:04:2e:6c:7a:5f:e3:4d:
66:91:12:78:33:1c:54:42:c8:6a:50:39:6f:91:c2:
de:67:3c:38:e4:ed:57:07:52:3b:11:3b:99:53:7a:
cc:f7:a9:d2:10:cd:9b:bc:9d:79:8e:d5:e0:05:a6:
27:d3:52:c5:ed:5a:71:e5:d0:09:a5:5f:c2:35:0d:
e1:0b:b2:57:71:0b:aa:b1:f5:fb:f3:a4:f4:db:06:
97:84:82:70:8d:ff:26:88:1a:ec:12:59:21:cc:e0:
a4:b9:70:8d:b9:c3:49:8f:02:73:3d:d9:39:b6:3f:
68:91:60:74:a4:1a:7e:41:58:1c:3d:72:62:ac:a4:
a8:61:35:2d:d9:1a:a1:f8:59:2f:45:29:1c:0a:5b:
c9:de:4e:b9:ea:46:10:bd:c2:06:59:5a:5a:72:ad:
7c:70:21:94:f5:03:23:78:1d:0f:e7:1f:ea:08:79:
65:37:83:95:8c:12:10:b1:a1:5e:ce:b1:47:67:b9:
14:41:87:2d:df:03:8e:8f:4a:f3:b4:de:5d:6a:2b:
7b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:3D:0D:E6:E8:34:0E:6B:F7:8A:05:D2:19:8E:96:F5:6A:6C:9A:C1
X509v3 Authority Key Identifier:
keyid:EA:51:7D:4B:AA:B8:5D:3C:8F:50:08:F4:0B:C4:8B:21:CB:EA:72:B8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4A3C65E01138A797CC1CD88B7B32A80F15642316087C29513D3DAC2B1117A368/0/EA517D4BAAB85D3C8F5008F40BC48B21CBEA72B8.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/EA517D4BAAB85D3C8F5008F40BC48B21CBEA72B8.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4A3C65E01138A797CC1CD88B7B32A80F15642316087C29513D3DAC2B1117A368/0/3139302e3131332e33332e302f32342d3234203d3e20323731383634.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.113.33.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:81:2a:61:9b:cc:c4:11:46:e2:e9:07:2e:91:5b:1d:d6:90:
e9:1b:c0:04:44:31:77:b1:05:30:1b:62:2b:4d:e3:ee:d2:a6:
5c:d6:06:61:f2:2d:cc:b4:cf:1a:f0:c8:fb:7f:97:0c:e8:2b:
a9:c9:f5:f2:da:63:22:18:78:f7:c1:93:04:2c:7b:6a:98:d1:
cb:33:37:f5:66:47:81:9b:af:dc:92:17:67:a4:c6:47:bd:d7:
bd:65:e9:64:94:82:20:b9:64:b1:61:b8:56:c8:04:ae:00:ed:
6b:09:04:e7:df:62:f5:86:88:55:12:ce:87:9f:e0:26:1d:72:
7e:a0:0c:f3:bb:c7:fb:46:02:69:2d:82:eb:40:fa:6f:16:42:
21:19:c6:66:75:ca:03:60:b4:2d:42:ee:12:7b:c7:7c:1f:0c:
d5:e0:95:8b:b0:a6:d6:04:0d:14:5c:a2:95:23:69:9c:72:81:
f9:b3:a1:a9:ec:9e:68:38:9e:69:b4:3e:fd:77:6e:c1:e8:05:
b4:a4:19:6e:f2:2f:5f:8c:e4:92:2a:4c:a8:b6:af:ad:17:64:
2d:aa:3e:f2:fd:12:ad:b6:41:1b:3f:71:a3:42:41:dc:cb:ef:
15:05:c8:fd:4c:ef:86:e7:61:e5:e3:91:67:43:68:e0:79:40:
66:1c:82:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 18:17:07 2025 by rpki-client