Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e3135362e31362e302f32342d3234203d3e203236363131.roa
File: 3139312e3135362e31362e302f32342d3234203d3e203236363131.roa (raw, json)
Hash identifier: 43CGLVzjA+xC9rgZQGGPMPCnKJ1CvOZ7EIO2hGDxEyQ=
Subject key identifier: 19:94:6F:63:0F:12:33:84:D4:94:4D:BC:C3:67:A9:B9:15:91:C7:A8
Certificate issuer: /CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5
Certificate serial: 3FA55F474D14988F012E2465A37D7B6A9B4F303B
Authority key identifier: 43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e3135362e31362e302f32342d3234203d3e203236363131.roa
Signing time: Tue 04 Feb 2025 18:05:12 +0000
ROA not before: Tue 04 Feb 2025 18:00:12 +0000
ROA not after: Tue 03 Feb 2026 18:05:12 +0000
asID: 26611
IP address blocks: 191.156.16.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.crl
rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:a5:5f:47:4d:14:98:8f:01:2e:24:65:a3:7d:7b:6a:9b:4f:30:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5
Validity
Not Before: Feb 4 18:00:12 2025 GMT
Not After : Feb 3 18:05:12 2026 GMT
Subject: CN=19946F630F123384D4944DBCC367A9B91591C7A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f4:3b:5c:5b:00:c4:e7:e8:d4:e0:01:7d:e2:
84:b5:5f:8b:4a:f9:85:b1:d0:4e:42:f2:26:c1:b3:
b4:b0:93:94:18:6e:84:f6:45:34:4e:78:5a:57:1d:
33:14:a8:99:af:72:3c:f6:bb:2b:84:48:ed:d0:32:
38:20:7d:39:69:d4:28:ab:3c:f1:13:c1:62:f4:b7:
52:9e:5a:97:a0:2c:8c:06:ba:84:54:6f:ec:42:ad:
ae:e5:39:80:4f:fc:bc:b7:3d:1d:fa:76:65:1a:97:
3c:c6:32:ed:95:7c:f5:2a:30:c0:f7:7a:29:24:ea:
79:27:b3:29:e0:63:9f:73:46:7a:60:cd:e7:88:ed:
bb:f4:b4:ca:de:48:bd:d1:24:78:2a:e0:b5:5e:5c:
e0:3b:8d:3a:51:38:40:ad:41:6a:29:f1:2b:63:d5:
59:1e:1d:fe:78:ca:f5:b5:4e:d3:26:ee:7d:ec:4b:
5a:03:cc:d3:78:96:3a:4c:26:7f:de:b7:ff:26:53:
50:4b:0a:41:a7:63:92:4c:87:17:82:92:0f:85:49:
b1:5d:0a:ed:f4:a4:ed:36:05:09:85:1c:7b:6d:cb:
6f:ec:94:a7:8d:82:96:48:d4:25:a2:c1:04:26:60:
03:df:12:bd:4b:ee:59:8f:29:b8:bd:c2:26:11:07:
53:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:94:6F:63:0F:12:33:84:D4:94:4D:BC:C3:67:A9:B9:15:91:C7:A8
X509v3 Authority Key Identifier:
keyid:43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/3139312e3135362e31362e302f32342d3234203d3e203236363131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
191.156.16.0/24
Signature Algorithm: sha256WithRSAEncryption
17:1b:e0:de:4d:94:e7:e8:8f:c7:9f:0c:00:67:84:1d:0a:d9:
76:09:e4:25:0a:e0:c5:0e:48:4c:18:59:d4:b4:ed:09:34:37:
c3:6f:f6:4c:87:ca:bf:51:4a:55:72:b9:68:20:c1:26:da:f7:
61:79:fc:f4:30:82:d8:88:19:68:54:af:3f:c2:2b:53:67:ff:
f6:75:d2:10:7e:b9:d6:9e:e7:b4:69:c8:4a:ff:f6:ca:c3:07:
d3:1b:b1:ca:b9:21:9d:3e:1a:da:79:c8:50:f3:01:82:60:f0:
9a:c7:cc:6b:99:d4:52:b7:e2:7a:48:26:5d:f8:b7:0f:19:ce:
e8:82:95:18:97:a7:31:53:1f:35:38:63:26:ba:b8:13:4b:07:
c9:8c:9f:22:e7:4e:71:3f:e8:a2:c2:9f:8d:2f:fd:f5:ea:cd:
56:d7:0c:15:1f:08:0b:1a:92:21:d2:c9:42:99:5d:f9:8c:19:
2a:ca:75:91:a3:33:e8:4f:f5:49:60:ad:f2:25:66:0c:1f:fc:
77:cf:0a:86:d7:00:90:06:14:69:53:97:e6:42:cf:d6:b3:78:
01:ab:4e:a0:fc:c4:1e:bb:a3:ff:b3:66:74:9a:fd:7c:d5:b7:
4a:f3:d6:40:27:7b:ee:a8:0b:bd:72:b1:db:d7:fa:b7:97:14:
59:3c:47:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 23:48:02 2025 by rpki-client