Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/54002EB3EC2BBE4384251AB2E4F211EF7DD07E7F3A927E356B79C45938598F64/0/323830333a646461303a3a2f33322d3438203d3e20323731373935.roa
File: 323830333a646461303a3a2f33322d3438203d3e20323731373935.roa (raw, json)
Hash identifier: /lpkc1SEFYG/hqiBQeVwyMMXVVaSU26c07bDKvEFbRo=
Subject key identifier: FA:F4:F8:54:6C:F9:DF:CD:53:EC:16:C9:4F:FA:55:CF:09:95:62:6A
Certificate issuer: /CN=DD2D25C642478D5D4DCAB0135DBBD87109D394CC
Certificate serial: 5CED94D5F9161D643868B572E42CBAD4D883BFD9
Authority key identifier: DD:2D:25:C6:42:47:8D:5D:4D:CA:B0:13:5D:BB:D8:71:09:D3:94:CC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DD2D25C642478D5D4DCAB0135DBBD87109D394CC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/54002EB3EC2BBE4384251AB2E4F211EF7DD07E7F3A927E356B79C45938598F64/0/323830333a646461303a3a2f33322d3438203d3e20323731373935.roa
Signing time: Tue 04 Feb 2025 19:58:35 +0000
ROA not before: Tue 04 Feb 2025 19:53:35 +0000
ROA not after: Tue 03 Feb 2026 19:58:35 +0000
asID: 271795
IP address blocks: 2803:dda0::/32 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/54002EB3EC2BBE4384251AB2E4F211EF7DD07E7F3A927E356B79C45938598F64/0/DD2D25C642478D5D4DCAB0135DBBD87109D394CC.crl
rsync://repository.lacnic.net/rpki/lacnic/54002EB3EC2BBE4384251AB2E4F211EF7DD07E7F3A927E356B79C45938598F64/0/DD2D25C642478D5D4DCAB0135DBBD87109D394CC.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DD2D25C642478D5D4DCAB0135DBBD87109D394CC.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 23:57:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5c:ed:94:d5:f9:16:1d:64:38:68:b5:72:e4:2c:ba:d4:d8:83:bf:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DD2D25C642478D5D4DCAB0135DBBD87109D394CC
Validity
Not Before: Feb 4 19:53:35 2025 GMT
Not After : Feb 3 19:58:35 2026 GMT
Subject: CN=FAF4F8546CF9DFCD53EC16C94FFA55CF0995626A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:f1:9b:82:99:9d:82:20:58:ea:cc:66:a3:cc:
46:32:98:c0:89:89:73:f5:fd:48:3f:7f:68:10:37:
e0:5b:06:5c:9a:b1:2f:fe:35:c0:88:30:08:77:da:
55:ee:90:e1:3a:62:dd:ad:e3:96:96:f3:de:8a:91:
80:09:67:3a:36:ec:10:fa:97:f1:0c:0d:d3:1d:c4:
63:ec:fb:ae:05:be:7e:38:d7:c1:3a:e0:c5:b1:16:
12:b2:07:4c:42:91:87:f2:d2:16:6b:20:53:72:b4:
4a:d8:db:32:bf:7f:a6:99:b6:da:7a:52:7a:a3:d5:
0b:58:d4:87:55:e0:a9:26:cb:56:a8:39:07:a5:86:
64:1e:9d:de:b3:a3:ef:3a:ea:b3:dd:33:f7:31:e1:
90:32:05:31:c8:ce:d5:f4:99:f0:e8:11:03:d5:2c:
19:79:56:3b:0a:ab:59:7d:10:11:8a:b8:98:57:37:
ba:07:31:11:1d:21:31:70:d0:95:1f:57:e7:40:71:
cc:1a:f9:82:d3:e3:2b:6b:82:59:97:ed:19:42:8d:
d7:c0:ad:8d:d2:94:d4:ee:7d:ab:b9:50:6e:e8:61:
c3:3a:7e:a1:13:13:f6:2d:10:5d:ff:cc:da:88:4c:
a5:cc:56:94:27:1f:cc:99:ae:fe:03:b1:3f:37:1e:
14:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:F4:F8:54:6C:F9:DF:CD:53:EC:16:C9:4F:FA:55:CF:09:95:62:6A
X509v3 Authority Key Identifier:
keyid:DD:2D:25:C6:42:47:8D:5D:4D:CA:B0:13:5D:BB:D8:71:09:D3:94:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/54002EB3EC2BBE4384251AB2E4F211EF7DD07E7F3A927E356B79C45938598F64/0/DD2D25C642478D5D4DCAB0135DBBD87109D394CC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DD2D25C642478D5D4DCAB0135DBBD87109D394CC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/54002EB3EC2BBE4384251AB2E4F211EF7DD07E7F3A927E356B79C45938598F64/0/323830333a646461303a3a2f33322d3438203d3e20323731373935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:dda0::/32
Signature Algorithm: sha256WithRSAEncryption
46:55:46:d7:40:d0:d9:e3:96:8b:42:ce:21:e4:6f:69:52:c8:
14:8d:c0:3f:ae:63:74:7e:55:06:64:99:cb:9c:2b:4d:0f:f7:
6d:d9:a3:1d:5c:63:06:54:51:9f:81:01:9a:4d:1d:89:93:a6:
a1:dc:8c:4a:fa:8c:22:9c:25:4e:21:ab:c5:0f:f1:97:a8:12:
11:aa:78:80:af:39:99:a1:6b:fc:76:ae:12:78:e8:da:d8:da:
0b:b7:8d:d9:7a:be:8f:d8:8b:b6:04:6a:61:5b:b5:c7:a6:d7:
58:0f:2b:cd:2c:f2:05:9f:3b:40:2f:c1:d2:9b:0e:db:76:de:
29:08:2c:92:d2:31:7b:8c:ca:36:ec:ec:27:cb:a6:62:f8:af:
57:36:65:8b:1d:b4:b4:5d:98:01:f7:62:65:e0:d3:0b:d9:2e:
5c:cd:f4:8b:31:ef:00:da:c7:28:c7:d3:f5:34:9b:b8:c9:63:
3d:f5:2a:24:fb:bd:0a:d4:54:9e:9b:c7:b8:66:f1:32:89:b3:
82:70:b8:36:8f:39:94:0f:66:56:b7:e4:db:83:63:80:55:b1:
ea:a8:85:c6:2f:30:6c:4b:bb:0d:ca:71:09:d1:18:6e:f6:8a:
52:fb:9d:c1:b3:44:1f:50:c2:2f:3c:0c:be:6d:a4:a8:40:6c:
2d:89:4e:1d
-----BEGIN CERTIFICATE-----
MIIFvzCCBKegAwIBAgIUXO2U1fkWHWQ4aLVy5Cy61NiDv9kwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoREQyRDI1QzY0MjQ3OEQ1RDREQ0FCMDEzNURCQkQ4NzEw
OUQzOTRDQzAeFw0yNTAyMDQxOTUzMzVaFw0yNjAyMDMxOTU4MzVaMDMxMTAvBgNV
BAMTKEZBRjRGODU0NkNGOURGQ0Q1M0VDMTZDOTRGRkE1NUNGMDk5NTYyNkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCV8ZuCmZ2CIFjqzGajzEYymMCJ
iXP1/Ug/f2gQN+BbBlyasS/+NcCIMAh32lXukOE6Yt2t45aW896KkYAJZzo27BD6
l/EMDdMdxGPs+64Fvn4418E64MWxFhKyB0xCkYfy0hZrIFNytErY2zK/f6aZttp6
Unqj1QtY1IdV4Kkmy1aoOQelhmQend6zo+866rPdM/cx4ZAyBTHIztX0mfDoEQPV
LBl5VjsKq1l9EBGKuJhXN7oHMREdITFw0JUfV+dAccwa+YLT4ytrglmX7RlCjdfA
rY3SlNTufau5UG7oYcM6fqETE/YtEF3/zNqITKXMVpQnH8yZrv4DsT83HhR7AgMB
AAGjggLJMIICxTAdBgNVHQ4EFgQU+vT4VGz5381T7BbJT/pVzwmVYmowHwYDVR0j
BBgwFoAU3S0lxkJHjV1NyrATXbvYcQnTlMwwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy81NDAwMkVCM0VDMkJCRTQzODQyNTFBQjJFNEYyMTFFRjdE
RDA3RTdGM0E5MjdFMzU2Qjc5QzQ1OTM4NTk4RjY0LzAvREQyRDI1QzY0MjQ3OEQ1
RDREQ0FCMDEzNURCQkQ4NzEwOUQzOTRDQy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9ERDJEMjVDNjQyNDc4RDVENERD
QUIwMTM1REJCRDg3MTA5RDM5NENDLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNTQwMDJFQjNFQzJCQkU0Mzg0MjUxQUIyRTRGMjExRUY3REQwN0U3RjNB
OTI3RTM1NkI3OUM0NTkzODU5OEY2NC8wLzMyMzgzMDMzM2E2NDY0NjEzMDNhM2Ey
ZjMzMzIyZDM0MzgyMDNkM2UyMDMyMzczMTM3MzkzNS5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACgD3aAw
DQYJKoZIhvcNAQELBQADggEBAEZVRtdA0NnjlotCziHkb2lSyBSNwD+uY3R+VQZk
mcucK00P923Zox1cYwZUUZ+BAZpNHYmTpqHcjEr6jCKcJU4hq8UP8ZeoEhGqeICv
OZmha/x2rhJ46NrY2gu3jdl6vo/Yi7YEamFbtcem11gPK80s8gWfO0AvwdKbDtt2
3ikILJLSMXuMyjbs7CfLpmL4r1c2ZYsdtLRdmAH3YmXg0wvZLlzN9Isx7wDaxyjH
0/U0m7jJYz31KiT7vQrUVJ6bx7hm8TKJs4JwuDaPOZQPZla35NuDY4BVseqohcYv
MGxLuw3KcQnRGG72ilL7ncGzRB9Qwi88DL5tpKhAbC2JTh0=
-----END CERTIFICATE-----
Generated at Mon Apr 14 12:52:27 2025 by rpki-client