Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5297B7078FB1B521006D751A32A2AC35F614617522484F887E5E77A2CFC75257/0/323830333a613339303a3a2f33322d3438203d3e20323733303135.roa
File: 323830333a613339303a3a2f33322d3438203d3e20323733303135.roa (raw, json)
Hash identifier: 2oSwKrz6vwox7aQCuIM+FoLcJChYMj4MeA8HE/N/tRY=
Subject key identifier: 47:7B:25:92:84:0E:F6:FE:FD:E5:AB:F5:3F:94:D9:93:35:0C:54:63
Certificate issuer: /CN=5021716DB872AFEA302E881734C3D03B1DCE1384
Certificate serial: 52A51A527EE59CFA8BBBD1513390B92606472E38
Authority key identifier: 50:21:71:6D:B8:72:AF:EA:30:2E:88:17:34:C3:D0:3B:1D:CE:13:84
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5021716DB872AFEA302E881734C3D03B1DCE1384.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5297B7078FB1B521006D751A32A2AC35F614617522484F887E5E77A2CFC75257/0/323830333a613339303a3a2f33322d3438203d3e20323733303135.roa
Signing time: Tue 04 Feb 2025 18:13:26 +0000
ROA not before: Tue 04 Feb 2025 18:08:26 +0000
ROA not after: Tue 03 Feb 2026 18:13:26 +0000
asID: 273015
IP address blocks: 2803:a390::/32 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/5297B7078FB1B521006D751A32A2AC35F614617522484F887E5E77A2CFC75257/0/5021716DB872AFEA302E881734C3D03B1DCE1384.crl
rsync://repository.lacnic.net/rpki/lacnic/5297B7078FB1B521006D751A32A2AC35F614617522484F887E5E77A2CFC75257/0/5021716DB872AFEA302E881734C3D03B1DCE1384.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5021716DB872AFEA302E881734C3D03B1DCE1384.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 17:43:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
52:a5:1a:52:7e:e5:9c:fa:8b:bb:d1:51:33:90:b9:26:06:47:2e:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5021716DB872AFEA302E881734C3D03B1DCE1384
Validity
Not Before: Feb 4 18:08:26 2025 GMT
Not After : Feb 3 18:13:26 2026 GMT
Subject: CN=477B2592840EF6FEFDE5ABF53F94D993350C5463
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:2d:b6:cb:90:52:8d:f5:b2:f4:56:06:b3:45:
7b:f9:51:8b:fe:b4:2d:6e:e4:e0:e2:cb:cc:73:b0:
ec:40:37:4e:e8:38:3d:00:92:45:4a:77:7a:d8:2f:
2e:85:b9:3f:9d:c2:98:63:3d:cf:ec:be:3f:b6:6a:
d8:76:e1:88:ec:60:4c:10:2f:62:f3:18:00:e9:e1:
ac:a3:90:15:4e:ce:12:58:e4:b2:b1:df:fc:ed:9d:
1e:53:00:f4:8e:22:60:76:bb:c5:b6:e9:39:79:bd:
bf:4f:73:db:81:71:2e:34:d3:3e:b8:df:b9:d6:12:
aa:7a:fb:3a:4f:7d:3e:7e:83:71:47:9f:22:ea:45:
80:d1:88:d9:19:a9:96:cd:1c:0c:d9:36:bf:f5:af:
dc:83:fe:13:56:7e:e9:95:9e:a0:bd:fe:a7:f8:5c:
31:69:65:0e:a2:46:fe:db:b6:7b:80:6c:bd:25:c6:
35:a6:d1:5d:97:c9:ab:18:6b:71:1a:7d:51:2e:44:
ba:40:ce:eb:ec:b4:40:0a:9e:c6:01:98:3b:86:d3:
e3:6e:91:0c:55:7c:94:f1:d6:ad:d4:2a:03:ce:30:
1e:a9:95:a4:41:d8:2c:10:84:19:49:24:fe:eb:23:
99:e6:91:a7:3b:2c:38:b7:54:45:74:ea:fa:05:10:
90:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:7B:25:92:84:0E:F6:FE:FD:E5:AB:F5:3F:94:D9:93:35:0C:54:63
X509v3 Authority Key Identifier:
keyid:50:21:71:6D:B8:72:AF:EA:30:2E:88:17:34:C3:D0:3B:1D:CE:13:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5297B7078FB1B521006D751A32A2AC35F614617522484F887E5E77A2CFC75257/0/5021716DB872AFEA302E881734C3D03B1DCE1384.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5021716DB872AFEA302E881734C3D03B1DCE1384.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5297B7078FB1B521006D751A32A2AC35F614617522484F887E5E77A2CFC75257/0/323830333a613339303a3a2f33322d3438203d3e20323733303135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:a390::/32
Signature Algorithm: sha256WithRSAEncryption
5c:f2:00:ca:f6:3a:32:c8:a6:0e:81:e8:89:f5:2d:06:5d:0f:
d1:61:fe:b7:93:f3:8a:8f:fb:94:35:25:6a:3b:7e:8d:65:8b:
c2:96:81:1d:62:ff:ee:09:c2:79:5b:da:01:a0:97:cc:39:e3:
2e:52:ff:04:74:ae:02:0b:e6:df:03:c8:50:46:57:18:4e:f8:
eb:05:60:03:f0:07:3e:59:fa:df:81:b3:5f:19:d9:19:05:75:
6c:2f:55:52:1e:83:a9:f0:f2:3f:fd:5f:01:ef:76:93:fb:52:
5b:96:6d:0c:b0:2f:b1:c6:93:4e:88:0b:99:f8:62:c5:f1:30:
5b:ca:1b:3e:3f:d3:ee:a5:f4:dd:46:09:90:0f:c7:b6:91:79:
4c:5f:ae:da:7f:f0:9f:f9:dc:41:73:85:d9:44:da:9c:f9:3e:
71:d5:97:09:83:f0:d3:63:27:bd:11:53:d9:53:15:81:c9:5f:
98:f2:2d:93:21:1d:14:50:6f:0f:db:33:85:f7:c4:67:ca:74:
00:27:27:1d:11:95:74:58:af:ad:f1:fa:86:f0:dc:30:0d:6c:
1d:55:56:16:69:10:6e:ca:70:17:75:20:43:66:73:de:eb:70:
87:58:36:e5:b7:81:a4:2f:7b:c7:67:08:2e:6d:08:73:96:fb:
47:71:f3:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 06:22:52 2025 by rpki-client