Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e3230362e302f32332d3234203d3e203232313232.roa
File: 3134382e3230392e3230362e302f32332d3234203d3e203232313232.roa (raw, json)
Hash identifier: YFfDkuTumHqq+bL+K87tg9ND5xQBC9uT/QTilhhbcmU=
Subject key identifier: 86:17:EE:FE:7B:AA:E3:4B:1E:DB:B1:46:F9:CB:DC:80:95:87:B9:14
Certificate issuer: /CN=8D67A138567146B2E89E0918237CB2D076D67AFA
Certificate serial: 4D0523590A018DB9C2F34FD6DAB31237735BBC1D
Authority key identifier: 8D:67:A1:38:56:71:46:B2:E8:9E:09:18:23:7C:B2:D0:76:D6:7A:FA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D67A138567146B2E89E0918237CB2D076D67AFA.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e3230362e302f32332d3234203d3e203232313232.roa
Signing time: Tue 04 Feb 2025 18:38:44 +0000
ROA not before: Tue 04 Feb 2025 18:33:44 +0000
ROA not after: Tue 03 Feb 2026 18:38:44 +0000
asID: 22122
IP address blocks: 148.209.206.0/23 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/8D67A138567146B2E89E0918237CB2D076D67AFA.crl
rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/8D67A138567146B2E89E0918237CB2D076D67AFA.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D67A138567146B2E89E0918237CB2D076D67AFA.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4d:05:23:59:0a:01:8d:b9:c2:f3:4f:d6:da:b3:12:37:73:5b:bc:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8D67A138567146B2E89E0918237CB2D076D67AFA
Validity
Not Before: Feb 4 18:33:44 2025 GMT
Not After : Feb 3 18:38:44 2026 GMT
Subject: CN=8617EEFE7BAAE34B1EDBB146F9CBDC809587B914
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c9:7c:ba:0b:b7:8d:50:ea:a6:65:5a:36:90:
7f:aa:a2:da:1a:8c:29:c7:2b:93:02:fe:da:9b:04:
3d:59:a0:2e:8e:9d:d0:8c:a6:73:bb:c0:da:9c:7b:
bd:23:db:e2:45:80:e4:01:a1:2b:34:29:2b:a8:6f:
be:fa:4b:52:eb:37:75:fa:28:ca:1a:e1:9c:68:3c:
ca:22:af:5f:6f:5c:e3:53:37:ae:15:e4:85:91:08:
77:d7:e0:19:0e:ab:f8:ae:65:71:94:f0:f7:3d:f9:
05:01:20:00:43:c1:61:d6:a1:f0:25:8d:a6:95:16:
22:0b:14:b8:62:fc:c0:3e:89:a8:30:9c:62:6c:ff:
fd:f3:ac:33:b6:16:8c:58:8c:b7:c6:9b:aa:92:73:
24:2a:6b:8e:8a:8b:df:e4:9c:b0:13:2e:0f:3a:ec:
4c:26:68:fa:e5:2c:c9:f0:69:c9:2d:ef:b8:95:44:
eb:83:69:8d:26:7e:3f:f8:c5:fe:28:8d:e7:24:4c:
d4:19:a5:2c:d4:c1:ff:1e:f9:d8:04:a9:b9:92:a0:
98:07:a5:6e:a5:d2:95:76:96:5d:c3:42:f4:9a:2e:
96:9a:06:e4:3b:5a:58:c1:6c:5f:14:f6:d8:d9:f7:
87:8c:5d:db:d6:33:a6:b0:76:7d:b5:e8:87:03:b7:
6b:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:17:EE:FE:7B:AA:E3:4B:1E:DB:B1:46:F9:CB:DC:80:95:87:B9:14
X509v3 Authority Key Identifier:
keyid:8D:67:A1:38:56:71:46:B2:E8:9E:09:18:23:7C:B2:D0:76:D6:7A:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/8D67A138567146B2E89E0918237CB2D076D67AFA.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D67A138567146B2E89E0918237CB2D076D67AFA.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e3230362e302f32332d3234203d3e203232313232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.209.206.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:ba:98:3e:b7:c1:d8:a6:93:cc:5d:84:e2:d7:6f:83:1f:cd:
98:e3:47:77:f2:ba:5e:56:96:ef:d6:09:72:b6:9f:5b:25:a3:
ea:45:c1:81:ff:f9:5c:7f:d2:59:91:25:fa:56:c0:56:d7:af:
04:eb:42:3b:3e:83:f7:1a:92:82:c8:92:57:18:49:85:f5:d9:
06:cb:6d:5b:a6:5f:3b:b5:4c:3d:a6:ac:73:9f:a0:45:66:3d:
e0:25:70:f6:1a:ba:58:60:e2:83:5f:ca:5a:c0:da:01:50:a6:
57:f0:00:ea:bc:51:33:50:20:e1:48:52:2f:a1:04:3b:39:b0:
a8:4c:f7:f9:71:0b:a6:81:50:d7:d9:4c:a6:5d:b9:6d:d8:65:
62:b0:32:50:46:9c:83:5c:13:14:4e:c6:82:44:96:5f:e8:94:
fb:38:24:4e:82:90:31:0f:14:6d:10:bb:3f:f8:bd:e6:d2:43:
b4:64:5c:60:43:db:a7:c9:d2:6c:b2:e1:7d:64:05:bc:83:f2:
99:b7:b8:9a:f1:83:61:1f:a8:27:cf:cd:b0:0f:23:44:0d:c6:
56:fc:db:c4:a3:86:fe:e6:d1:31:b5:48:ee:21:f2:ff:ce:c2:
aa:1c:fe:79:76:45:a2:30:2a:a9:f0:41:77:65:71:6e:3b:4d:
a4:f5:4c:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 23:47:44 2025 by rpki-client