Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4DF3799E9FC491DB3AFE70B5EC6AC722EF341769438D04AD580EFCD76A8D03F2/0/323830313a3161393a323a3a2f34382d3438203d3e203133343839.roa
File: 323830313a3161393a323a3a2f34382d3438203d3e203133343839.roa (raw, json)
Hash identifier: 4pqXtyNR1cdBXvl8jwrUrWGiszl1G1HyLjHhjjvJYUg=
Subject key identifier: 1C:4D:D9:F5:96:6A:68:93:C6:F5:08:91:0D:73:BA:10:41:48:47:03
Certificate issuer: /CN=BDDC3BF7FCA3B086A7E32760A12D6D60036CC131
Certificate serial: 38BD52D80F0F1F82E64DD8D67057755D185F2688
Authority key identifier: BD:DC:3B:F7:FC:A3:B0:86:A7:E3:27:60:A1:2D:6D:60:03:6C:C1:31
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BDDC3BF7FCA3B086A7E32760A12D6D60036CC131.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4DF3799E9FC491DB3AFE70B5EC6AC722EF341769438D04AD580EFCD76A8D03F2/0/323830313a3161393a323a3a2f34382d3438203d3e203133343839.roa
Signing time: Tue 04 Feb 2025 18:40:38 +0000
ROA not before: Tue 04 Feb 2025 18:35:38 +0000
ROA not after: Tue 03 Feb 2026 18:40:38 +0000
asID: 13489
IP address blocks: 2801:1a9:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/4DF3799E9FC491DB3AFE70B5EC6AC722EF341769438D04AD580EFCD76A8D03F2/0/BDDC3BF7FCA3B086A7E32760A12D6D60036CC131.crl
rsync://repository.lacnic.net/rpki/lacnic/4DF3799E9FC491DB3AFE70B5EC6AC722EF341769438D04AD580EFCD76A8D03F2/0/BDDC3BF7FCA3B086A7E32760A12D6D60036CC131.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BDDC3BF7FCA3B086A7E32760A12D6D60036CC131.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 11:03:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:bd:52:d8:0f:0f:1f:82:e6:4d:d8:d6:70:57:75:5d:18:5f:26:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDDC3BF7FCA3B086A7E32760A12D6D60036CC131
Validity
Not Before: Feb 4 18:35:38 2025 GMT
Not After : Feb 3 18:40:38 2026 GMT
Subject: CN=1C4DD9F5966A6893C6F508910D73BA1041484703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b0:c7:35:a6:02:81:d0:fd:7a:bf:5c:3e:aa:
42:63:6a:3a:b5:e4:64:81:cc:b7:34:1d:16:92:a7:
d9:41:65:cf:55:df:30:15:53:8f:ac:96:04:21:a1:
c9:be:7a:2b:07:1e:50:df:b9:79:53:3f:47:90:9a:
a7:e8:a2:cf:89:33:b1:a6:cc:27:55:e8:d5:34:c7:
7e:ec:59:9b:6e:6a:a3:ff:38:af:ea:e0:76:90:44:
1d:9a:c1:12:af:63:18:77:b7:2d:5b:da:cb:ff:c4:
41:8b:a0:62:d2:65:29:9d:a5:de:9a:57:f1:fa:12:
20:56:e0:e7:14:a3:dc:40:52:66:9e:95:e9:bd:56:
08:e4:de:09:bc:cf:12:6e:0e:ae:af:09:eb:c7:f8:
3f:f9:df:0b:c5:30:ba:78:05:0d:bc:13:9c:58:2c:
c8:8b:cd:33:f9:e3:8b:ee:47:f2:a6:03:19:00:88:
ed:b5:9e:26:f4:ad:26:b1:aa:d6:04:c0:ab:58:27:
6a:dc:d7:80:5a:93:6b:80:3f:bc:2c:89:db:56:54:
13:c7:65:49:47:e5:d8:8e:04:f2:ae:fe:ac:d4:e9:
d9:02:7d:7d:72:24:42:7d:7d:79:19:8f:46:ab:6b:
a4:aa:b5:6c:6b:f1:2b:fd:19:bd:27:0c:b4:9e:45:
19:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:4D:D9:F5:96:6A:68:93:C6:F5:08:91:0D:73:BA:10:41:48:47:03
X509v3 Authority Key Identifier:
keyid:BD:DC:3B:F7:FC:A3:B0:86:A7:E3:27:60:A1:2D:6D:60:03:6C:C1:31
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4DF3799E9FC491DB3AFE70B5EC6AC722EF341769438D04AD580EFCD76A8D03F2/0/BDDC3BF7FCA3B086A7E32760A12D6D60036CC131.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BDDC3BF7FCA3B086A7E32760A12D6D60036CC131.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4DF3799E9FC491DB3AFE70B5EC6AC722EF341769438D04AD580EFCD76A8D03F2/0/323830313a3161393a323a3a2f34382d3438203d3e203133343839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:1a9:2::/48
Signature Algorithm: sha256WithRSAEncryption
65:99:72:67:f7:a6:00:a9:63:b8:58:01:90:e8:ac:79:08:f7:
25:8b:82:c1:8d:30:ee:28:f6:27:1c:1d:06:a8:22:64:ca:40:
4c:56:88:37:6c:7b:11:f5:2a:39:8a:50:34:e2:25:bd:94:f7:
0b:25:68:46:a7:e1:62:0a:82:f3:c2:a1:0f:7f:45:7a:ee:0f:
45:76:e4:69:37:62:b5:26:b3:9f:e7:30:a4:aa:99:79:83:f2:
8b:c4:e3:d1:9f:4f:40:5b:a6:10:55:dd:39:29:7b:45:e2:fc:
f1:27:91:ba:9d:84:75:c0:db:ef:f8:20:c6:12:fa:58:ce:d5:
c9:33:2a:1c:b8:3a:9b:4c:49:fa:87:3b:4a:59:40:c3:7e:56:
23:df:b1:01:c1:0a:ca:f1:21:c5:43:6f:7f:de:a4:f1:3b:1a:
b5:37:ad:47:97:a2:dd:7a:ac:aa:97:5f:29:2b:7e:01:1a:57:
f0:cf:ff:52:d2:01:4a:84:90:94:e9:0f:6b:26:1a:63:03:ba:
3b:a4:fe:7e:62:9a:cd:75:06:53:a5:76:fe:47:66:65:cb:2a:
d4:6b:91:72:24:3f:b0:8c:c9:13:82:85:91:68:f1:42:dc:53:
aa:8f:72:d8:e7:6c:34:37:9e:8b:6c:bf:aa:c2:73:c4:9e:ef:
e0:83:84:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 11:57:20 2025 by rpki-client