Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e3133352e302f32342d3234203d3e203232313232.roa
File: 3134382e3230392e3133352e302f32342d3234203d3e203232313232.roa (raw, json)
Hash identifier: 0GIqz1tO8boe2Wq8zTI5BHTAykpO76xXNpH/8ERW1xY=
Subject key identifier: 52:88:8B:1B:92:B8:B5:9A:0C:3B:92:E8:BF:02:5E:D5:C5:A7:BB:40
Certificate issuer: /CN=8D67A138567146B2E89E0918237CB2D076D67AFA
Certificate serial: 7F9CD5479BBB2D9CE89409FA19B578FD7C65CBE1
Authority key identifier: 8D:67:A1:38:56:71:46:B2:E8:9E:09:18:23:7C:B2:D0:76:D6:7A:FA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D67A138567146B2E89E0918237CB2D076D67AFA.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e3133352e302f32342d3234203d3e203232313232.roa
Signing time: Tue 04 Feb 2025 18:38:57 +0000
ROA not before: Tue 04 Feb 2025 18:33:57 +0000
ROA not after: Tue 03 Feb 2026 18:38:57 +0000
asID: 22122
IP address blocks: 148.209.135.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/8D67A138567146B2E89E0918237CB2D076D67AFA.crl
rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/8D67A138567146B2E89E0918237CB2D076D67AFA.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D67A138567146B2E89E0918237CB2D076D67AFA.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:9c:d5:47:9b:bb:2d:9c:e8:94:09:fa:19:b5:78:fd:7c:65:cb:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8D67A138567146B2E89E0918237CB2D076D67AFA
Validity
Not Before: Feb 4 18:33:57 2025 GMT
Not After : Feb 3 18:38:57 2026 GMT
Subject: CN=52888B1B92B8B59A0C3B92E8BF025ED5C5A7BB40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:7b:71:33:23:5b:4d:e6:ea:c6:6b:7b:06:40:
94:32:4f:84:36:da:89:b9:a4:95:b2:82:8f:f0:7b:
ae:47:7d:e5:15:d9:06:90:e8:53:8c:f5:d4:11:ac:
85:bc:6b:a7:74:a7:30:2f:f5:14:a8:90:7f:60:6b:
e2:50:1f:7b:f9:b2:4d:d8:2e:e6:ff:74:05:3a:dd:
a8:3d:79:d2:b2:d6:29:95:05:53:46:21:71:83:14:
6a:68:f1:f3:b0:23:4e:20:eb:ff:00:02:cf:67:cb:
b9:44:1b:e6:f4:ea:35:98:ba:c9:57:9e:f3:e8:5b:
41:17:90:9b:e4:f4:94:89:d8:d6:ec:81:8a:fa:5c:
6f:ad:68:57:11:21:4b:71:78:51:19:b9:77:bd:61:
ec:c4:f8:a2:1f:33:c1:07:53:34:f7:07:81:8b:8b:
8d:3f:ae:71:70:c3:28:e0:3d:48:6b:a7:11:bd:a4:
f0:b5:79:9a:f0:64:26:60:0a:6a:f4:8e:4b:af:b4:
07:f7:af:94:9d:1d:ca:a5:0b:c8:1d:e9:52:7d:09:
16:57:ba:1e:5e:1a:4d:b0:a9:ea:df:9d:d6:c2:5b:
36:a6:8d:fe:76:5b:30:f8:26:c4:34:85:80:c4:41:
03:ab:f8:bd:b6:6c:4c:e6:bd:ba:de:ae:58:74:d1:
e4:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:88:8B:1B:92:B8:B5:9A:0C:3B:92:E8:BF:02:5E:D5:C5:A7:BB:40
X509v3 Authority Key Identifier:
keyid:8D:67:A1:38:56:71:46:B2:E8:9E:09:18:23:7C:B2:D0:76:D6:7A:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/8D67A138567146B2E89E0918237CB2D076D67AFA.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D67A138567146B2E89E0918237CB2D076D67AFA.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e3133352e302f32342d3234203d3e203232313232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.209.135.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:d5:b6:ee:e8:00:45:bc:98:f5:8d:81:08:46:93:bf:a9:00:
fa:bf:f2:47:69:c1:85:02:d5:05:e4:9a:18:89:9d:3f:c9:7c:
15:0a:57:68:39:c3:da:68:07:47:77:e0:29:67:63:ee:16:79:
a6:ba:39:f4:39:0e:67:61:ed:75:d1:33:c0:9a:d1:65:24:3b:
00:41:94:cc:21:98:3f:f6:6c:3f:0f:a8:aa:b9:fd:55:b7:1e:
8c:1c:a4:39:d3:47:79:bc:18:54:42:40:77:f2:f5:ac:35:74:
65:58:51:72:55:b3:f9:69:34:79:8d:be:a3:ba:66:d2:7b:7d:
1a:94:53:d1:72:0b:ca:ca:5c:56:8c:2b:f6:9d:aa:13:b9:17:
88:fd:1d:aa:a9:f2:e8:5a:ea:b0:6e:e0:6d:50:ae:e3:2d:73:
19:6c:d2:c2:76:7c:5e:dd:6c:62:4b:0c:93:a4:49:d3:4f:9c:
e7:9b:9d:2f:7d:13:c3:3c:c4:90:1a:bd:5d:89:0d:09:21:7a:
44:73:d0:33:ee:3c:89:d8:36:54:01:3c:18:30:65:6b:42:2e:
4e:55:70:54:cc:3a:06:8f:93:56:eb:32:0e:d8:13:80:20:cd:
18:4a:49:85:63:aa:28:52:1e:ba:cb:86:60:e9:3a:30:54:8d:
ee:7f:fd:30
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUf5zVR5u7LZzolAn6GbV4/Xxly+EwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOEQ2N0ExMzg1NjcxNDZCMkU4OUUwOTE4MjM3Q0IyRDA3
NkQ2N0FGQTAeFw0yNTAyMDQxODMzNTdaFw0yNjAyMDMxODM4NTdaMDMxMTAvBgNV
BAMTKDUyODg4QjFCOTJCOEI1OUEwQzNCOTJFOEJGMDI1RUQ1QzVBN0JCNDAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDke3EzI1tN5urGa3sGQJQyT4Q2
2om5pJWygo/we65HfeUV2QaQ6FOM9dQRrIW8a6d0pzAv9RSokH9ga+JQH3v5sk3Y
Lub/dAU63ag9edKy1imVBVNGIXGDFGpo8fOwI04g6/8AAs9ny7lEG+b06jWYuslX
nvPoW0EXkJvk9JSJ2NbsgYr6XG+taFcRIUtxeFEZuXe9YezE+KIfM8EHUzT3B4GL
i40/rnFwwyjgPUhrpxG9pPC1eZrwZCZgCmr0jkuvtAf3r5SdHcqlC8gd6VJ9CRZX
uh5eGk2wqerfndbCWzamjf52WzD4JsQ0hYDEQQOr+L22bEzmvbrerlh00eQFAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUUoiLG5K4tZoMO5LovwJe1cWnu0AwHwYDVR0j
BBgwFoAUjWehOFZxRrLongkYI3yy0HbWevowDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy81NkZENjdEODlEOTZEMzlBMzk3MjRDNEFENjE0RjQ1N0Mw
OEZBMjc4NDQxNUJFMzk1MkM0OTFCRUJFNEJFMjA3LzAvOEQ2N0ExMzg1NjcxNDZC
MkU4OUUwOTE4MjM3Q0IyRDA3NkQ2N0FGQS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84RDY3QTEzODU2NzE0NkIyRTg5
RTA5MTgyMzdDQjJEMDc2RDY3QUZBLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNTZGRDY3RDg5RDk2RDM5QTM5NzI0QzRBRDYxNEY0NTdDMDhGQTI3ODQ0
MTVCRTM5NTJDNDkxQkVCRTRCRTIwNy8wLzMxMzQzODJlMzIzMDM5MmUzMTMzMzUy
ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMyMzEzMjMyLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAlNGH
MA0GCSqGSIb3DQEBCwUAA4IBAQB/1bbu6ABFvJj1jYEIRpO/qQD6v/JHacGFAtUF
5JoYiZ0/yXwVCldoOcPaaAdHd+ApZ2PuFnmmujn0OQ5nYe110TPAmtFlJDsAQZTM
IZg/9mw/D6iquf1Vtx6MHKQ500d5vBhUQkB38vWsNXRlWFFyVbP5aTR5jb6jumbS
e30alFPRcgvKylxWjCv2naoTuReI/R2qqfLoWuqwbuBtUK7jLXMZbNLCdnxe3Wxi
SwyTpEnTT5znm50vfRPDPMSQGr1diQ0JIXpEc9Az7jyJ2DZUATwYMGVrQi5OVXBU
zDoGj5NW6zIO2BOAIM0YSkmFY6ooUh66y4Zg6TowVI3uf/0w
-----END CERTIFICATE-----
Generated at Mon Apr 14 22:35:32 2025 by rpki-client