Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5278F37F1642B64D1FD578A67CF9C30558AFFBFD91E92CA601F8DEA9CF4D183F/0/323830333a396231303a383a3a2f34382d3438203d3e20323732303832.roa
File: 323830333a396231303a383a3a2f34382d3438203d3e20323732303832.roa (raw, json)
Hash identifier: C4LIBy4rIW1woM+mghARjRP05vgfK8p0EVIDieHMy/Y=
Subject key identifier: 23:B8:1F:79:00:CE:53:34:41:6A:76:FE:BF:3F:5D:23:22:B6:54:7D
Certificate issuer: /CN=2C415A98264D3E5779D52AFE687F01FA75663605
Certificate serial: 1369F89E4E851553A781710EF9092D7FCCEA1372
Authority key identifier: 2C:41:5A:98:26:4D:3E:57:79:D5:2A:FE:68:7F:01:FA:75:66:36:05
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2C415A98264D3E5779D52AFE687F01FA75663605.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5278F37F1642B64D1FD578A67CF9C30558AFFBFD91E92CA601F8DEA9CF4D183F/0/323830333a396231303a383a3a2f34382d3438203d3e20323732303832.roa
Signing time: Tue 04 Feb 2025 18:44:03 +0000
ROA not before: Tue 04 Feb 2025 18:39:03 +0000
ROA not after: Tue 03 Feb 2026 18:44:03 +0000
asID: 272082
IP address blocks: 2803:9b10:8::/48 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/5278F37F1642B64D1FD578A67CF9C30558AFFBFD91E92CA601F8DEA9CF4D183F/0/2C415A98264D3E5779D52AFE687F01FA75663605.crl
rsync://repository.lacnic.net/rpki/lacnic/5278F37F1642B64D1FD578A67CF9C30558AFFBFD91E92CA601F8DEA9CF4D183F/0/2C415A98264D3E5779D52AFE687F01FA75663605.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2C415A98264D3E5779D52AFE687F01FA75663605.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 20:30:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:69:f8:9e:4e:85:15:53:a7:81:71:0e:f9:09:2d:7f:cc:ea:13:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2C415A98264D3E5779D52AFE687F01FA75663605
Validity
Not Before: Feb 4 18:39:03 2025 GMT
Not After : Feb 3 18:44:03 2026 GMT
Subject: CN=23B81F7900CE5334416A76FEBF3F5D2322B6547D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9d:48:6e:d8:43:a0:d2:10:52:a8:e2:cb:9a:
27:55:03:fc:96:a5:93:6b:e4:6a:26:d7:40:15:c4:
3e:55:d6:ee:2f:ad:31:54:25:33:66:76:9c:3d:f6:
c7:4d:15:e7:15:a2:4e:b4:8f:eb:be:57:ca:60:f9:
0f:0c:e6:6c:5b:2d:f0:95:cc:4d:1b:3d:84:e9:b2:
e9:4a:d5:e6:8c:87:81:1b:07:1f:9a:f8:11:a7:81:
3a:49:02:49:1c:21:34:e5:42:02:81:08:52:d5:9f:
93:1c:43:03:85:a1:49:93:05:0a:8b:9e:fb:00:3a:
55:88:e9:88:84:cb:ed:7b:a5:23:5a:b1:b7:b8:2b:
05:c1:85:6c:79:82:9e:fd:12:de:65:e4:2b:8d:a9:
a6:0d:b7:6c:2f:2b:28:84:92:58:84:6c:ae:7f:63:
a0:2c:e1:21:a4:5a:55:f6:96:89:a1:ae:20:5b:62:
06:4c:f3:f6:d5:da:7a:7d:44:84:1d:52:fc:3a:1a:
8b:31:1d:07:99:af:ad:c3:2f:6a:4e:5f:c4:32:77:
09:57:1f:4a:82:7e:0f:bc:e3:01:7d:e0:42:db:14:
63:14:12:58:36:8a:aa:44:87:eb:4e:48:1b:50:d5:
f0:c4:ee:af:70:13:c9:3a:2b:35:51:7b:d0:59:06:
d7:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:B8:1F:79:00:CE:53:34:41:6A:76:FE:BF:3F:5D:23:22:B6:54:7D
X509v3 Authority Key Identifier:
keyid:2C:41:5A:98:26:4D:3E:57:79:D5:2A:FE:68:7F:01:FA:75:66:36:05
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5278F37F1642B64D1FD578A67CF9C30558AFFBFD91E92CA601F8DEA9CF4D183F/0/2C415A98264D3E5779D52AFE687F01FA75663605.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2C415A98264D3E5779D52AFE687F01FA75663605.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5278F37F1642B64D1FD578A67CF9C30558AFFBFD91E92CA601F8DEA9CF4D183F/0/323830333a396231303a383a3a2f34382d3438203d3e20323732303832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:9b10:8::/48
Signature Algorithm: sha256WithRSAEncryption
80:1b:b5:44:b6:c8:1b:14:a3:ae:bd:b7:d0:05:2a:03:42:79:
1c:93:26:4f:56:e5:0e:aa:1b:ae:db:a9:94:9d:37:c5:6a:9e:
5b:42:a3:8d:86:3f:f4:30:aa:12:aa:b8:ef:a3:68:6c:d8:3a:
88:f6:f4:a1:ef:84:9b:c5:6a:78:45:11:15:05:20:ec:12:fd:
ba:5c:09:99:ce:41:51:23:bf:34:df:d9:66:04:64:b3:2a:f7:
c2:21:3a:aa:c2:5b:9b:5a:df:7b:31:3a:f7:76:bf:87:b9:b3:
75:f7:4f:f0:f9:e2:f2:71:76:6f:1c:66:9a:f9:ae:d9:6e:e9:
f4:e1:fe:cf:53:93:b7:5c:c8:e0:8f:77:3a:10:84:64:68:cb:
43:bf:3d:a7:b6:45:44:e2:4e:a8:0b:17:8f:a1:f7:45:e2:67:
64:e8:d0:bc:88:33:b0:d6:a3:54:ae:50:d5:7b:67:b2:5e:e1:
b7:1e:3c:56:01:a6:49:88:5c:7c:94:fa:74:d1:46:cd:e7:7e:
c4:e6:67:88:d7:da:be:eb:a0:c3:cb:85:3d:fc:73:79:f3:14:
20:9f:25:c2:90:dd:26:89:38:ea:8f:b2:2d:f4:d6:14:dc:77:
72:e9:a0:37:b3:12:15:28:d9:cb:6c:bf:b1:06:8c:2b:09:9b:
f7:46:9d:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 10:11:14 2025 by rpki-client