Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139302e3132352e302e302f31362d3137203d3e203236363131.roa
File: 3139302e3132352e302e302f31362d3137203d3e203236363131.roa (raw, json)
Hash identifier: JdRQz6M2mxwjAgShpVcoyC8HS6eVP1QJ2X+7h+b3TyA=
Subject key identifier: 23:22:53:2F:38:10:01:33:98:71:83:A8:22:CA:A2:D2:FC:0E:72:60
Certificate issuer: /CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5
Certificate serial: 3E0D824E55D7B734C5CB269E2573596401AC612E
Authority key identifier: 43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139302e3132352e302e302f31362d3137203d3e203236363131.roa
Signing time: Tue 04 Feb 2025 18:05:03 +0000
ROA not before: Tue 04 Feb 2025 18:00:03 +0000
ROA not after: Tue 03 Feb 2026 18:05:03 +0000
asID: 26611
IP address blocks: 190.125.0.0/16 maxlen: 17
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.crl
rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:0d:82:4e:55:d7:b7:34:c5:cb:26:9e:25:73:59:64:01:ac:61:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5
Validity
Not Before: Feb 4 18:00:03 2025 GMT
Not After : Feb 3 18:05:03 2026 GMT
Subject: CN=2322532F38100133987183A822CAA2D2FC0E7260
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a6:b1:ad:63:8a:aa:fe:e1:be:fc:fb:ad:19:
d9:03:22:83:bf:88:9e:1e:8b:7f:56:05:a0:05:b0:
9a:58:0f:bc:7b:fc:72:5e:e0:94:4d:31:be:06:ff:
fb:dc:da:fb:d4:66:29:ce:f5:88:24:12:20:15:e0:
52:f4:86:86:50:7b:71:20:40:73:f2:8e:57:cb:a0:
6e:b1:9f:7a:8a:74:31:e7:5b:f4:32:fe:7c:32:2f:
7b:c4:22:ed:81:3c:a2:84:78:58:dd:36:bb:42:58:
c0:d3:64:93:ea:83:79:ae:47:ad:94:5c:f0:33:95:
85:96:71:f3:6a:a5:24:5c:e7:ec:c2:5f:32:a0:8f:
9a:f7:1c:52:7c:67:f4:d1:be:1e:da:35:b8:a8:c6:
a5:44:d1:b1:c6:19:db:30:d7:97:e0:a6:75:28:db:
c3:50:f8:84:55:46:4b:2b:f8:b1:b5:45:9e:2d:ed:
ea:4e:8f:94:26:92:38:7e:c9:be:a7:85:de:42:ce:
1c:5e:b9:fa:97:27:49:f0:68:bd:6d:39:2c:aa:79:
ef:3d:d2:84:8e:4b:53:24:72:a5:44:5b:8b:d7:45:
a1:02:d5:7c:c9:0b:bf:c6:a6:d7:5b:ee:46:9b:58:
3c:41:b6:6f:07:43:01:f2:e8:76:d8:9f:3e:65:af:
d3:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:22:53:2F:38:10:01:33:98:71:83:A8:22:CA:A2:D2:FC:0E:72:60
X509v3 Authority Key Identifier:
keyid:43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139302e3132352e302e302f31362d3137203d3e203236363131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.125.0.0/16
Signature Algorithm: sha256WithRSAEncryption
8f:b6:43:a8:fe:63:44:a2:21:b0:aa:c2:38:20:93:2a:6c:92:
e9:d2:d4:30:a7:ee:55:5d:cf:1b:f8:7f:8d:fa:0b:28:50:18:
9c:03:6f:e4:45:57:c1:4e:ab:27:c5:f0:59:31:4a:49:09:66:
9a:87:f0:bc:66:2d:4a:44:f3:b5:5a:ea:93:88:27:cd:85:9c:
d8:83:d2:11:d4:07:b4:3f:5c:84:e7:6c:bf:72:6c:8b:10:52:
ea:2a:3d:44:e4:23:01:51:12:28:5f:b2:2c:85:0c:66:34:0e:
f6:73:fe:a6:6b:63:b7:06:ac:97:f3:1c:c5:11:9e:99:5c:0b:
9e:be:78:88:67:0b:fe:b2:da:91:e4:9f:c1:c2:c9:e4:a2:2b:
1e:19:bb:1e:16:82:a8:c0:41:30:3e:b5:c8:f9:8e:75:af:69:
13:82:83:0f:ba:be:ac:3b:e4:d1:20:df:2c:a9:5d:f3:7f:ec:
15:df:fc:21:48:30:43:9c:72:24:74:ea:df:c9:23:cd:1d:c9:
4f:01:1d:38:a0:bc:d4:e0:e8:ca:40:4c:d1:49:ec:3d:5f:9e:
ce:9a:f7:06:9b:94:55:02:b5:a1:6d:f2:4c:a2:5b:6d:09:85:
b4:d2:1a:b8:a5:ba:9e:d8:5f:e4:9d:cb:63:ca:8b:6a:4d:9a:
29:0d:0d:79
-----BEGIN CERTIFICATE-----
MIIFuzCCBKOgAwIBAgIUPg2CTlXXtzTFyyaeJXNZZAGsYS4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDNGRjFDOEFFMEI0NzU3RTY4RUREMDhBRTFBRUIyQURB
RDg2NTNENTAeFw0yNTAyMDQxODAwMDNaFw0yNjAyMDMxODA1MDNaMDMxMTAvBgNV
BAMTKDIzMjI1MzJGMzgxMDAxMzM5ODcxODNBODIyQ0FBMkQyRkMwRTcyNjAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmprGtY4qq/uG+/PutGdkDIoO/
iJ4ei39WBaAFsJpYD7x7/HJe4JRNMb4G//vc2vvUZinO9YgkEiAV4FL0hoZQe3Eg
QHPyjlfLoG6xn3qKdDHnW/Qy/nwyL3vEIu2BPKKEeFjdNrtCWMDTZJPqg3muR62U
XPAzlYWWcfNqpSRc5+zCXzKgj5r3HFJ8Z/TRvh7aNbioxqVE0bHGGdsw15fgpnUo
28NQ+IRVRksr+LG1RZ4t7epOj5Qmkjh+yb6nhd5CzhxeufqXJ0nwaL1tOSyqee89
0oSOS1MkcqVEW4vXRaEC1XzJC7/Gptdb7kabWDxBtm8HQwHy6HbYnz5lr9ORAgMB
AAGjggLFMIICwTAdBgNVHQ4EFgQUIyJTLzgQATOYcYOoIsqi0vwOcmAwHwYDVR0j
BBgwFoAUQ/8ciuC0dX5o7dCK4a6yra2GU9UwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy81MTI0MEU3OTYyQjkzODBBM0U2MjdDOTQ0NDFFQTZCQjJD
Q0EzREIxRDIyRTkzNEI2Q0M5REM1QjYzNUVGNDkxLzAvNDNGRjFDOEFFMEI0NzU3
RTY4RUREMDhBRTFBRUIyQURBRDg2NTNENS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC80M0ZGMUM4QUUwQjQ3NTdFNjhF
REQwOEFFMUFFQjJBREFEODY1M0Q1LmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNTEyNDBFNzk2MkI5MzgwQTNFNjI3Qzk0NDQxRUE2QkIyQ0NBM0RCMUQy
MkU5MzRCNkNDOURDNUI2MzVFRjQ5MS8wLzMxMzkzMDJlMzEzMjM1MmUzMDJlMzAy
ZjMxMzYyZDMxMzcyMDNkM2UyMDMyMzYzNjMxMzEucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwC+fTANBgkq
hkiG9w0BAQsFAAOCAQEAj7ZDqP5jRKIhsKrCOCCTKmyS6dLUMKfuVV3PG/h/jfoL
KFAYnANv5EVXwU6rJ8XwWTFKSQlmmofwvGYtSkTztVrqk4gnzYWc2IPSEdQHtD9c
hOdsv3JsixBS6io9ROQjAVESKF+yLIUMZjQO9nP+pmtjtwasl/McxRGemVwLnr54
iGcL/rLakeSfwcLJ5KIrHhm7HhaCqMBBMD61yPmOda9pE4KDD7q+rDvk0SDfLKld
83/sFd/8IUgwQ5xyJHTq38kjzR3JTwEdOKC81ODoykBM0UnsPV+ezpr3BpuUVQK1
oW3yTKJbbQmFtNIauKW6nthf5J3LY8qLak2aKQ0NeQ==
-----END CERTIFICATE-----
Generated at Mon Apr 14 22:06:40 2025 by rpki-client