Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e3234302e302f32322d3232203d3e203232313232.roa
File: 3134382e3230392e3234302e302f32322d3232203d3e203232313232.roa (raw, json)
Hash identifier: MqaYw8NDw+v4aS/OJ5J9dlXKUR15Na2R2bq/iRwg0hU=
Subject key identifier: 07:EF:30:62:70:E2:A7:12:36:77:B0:BE:C7:14:75:D6:0C:97:16:7B
Certificate issuer: /CN=8D67A138567146B2E89E0918237CB2D076D67AFA
Certificate serial: 3570930E6FDD47F3F623F128A09449BE9D388102
Authority key identifier: 8D:67:A1:38:56:71:46:B2:E8:9E:09:18:23:7C:B2:D0:76:D6:7A:FA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D67A138567146B2E89E0918237CB2D076D67AFA.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e3234302e302f32322d3232203d3e203232313232.roa
Signing time: Tue 04 Feb 2025 18:38:53 +0000
ROA not before: Tue 04 Feb 2025 18:33:53 +0000
ROA not after: Tue 03 Feb 2026 18:38:53 +0000
asID: 22122
IP address blocks: 148.209.240.0/22 maxlen: 22
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/8D67A138567146B2E89E0918237CB2D076D67AFA.crl
rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/8D67A138567146B2E89E0918237CB2D076D67AFA.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D67A138567146B2E89E0918237CB2D076D67AFA.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:70:93:0e:6f:dd:47:f3:f6:23:f1:28:a0:94:49:be:9d:38:81:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8D67A138567146B2E89E0918237CB2D076D67AFA
Validity
Not Before: Feb 4 18:33:53 2025 GMT
Not After : Feb 3 18:38:53 2026 GMT
Subject: CN=07EF306270E2A7123677B0BEC71475D60C97167B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:85:27:be:11:0e:ea:f5:78:4a:a0:92:4a:c4:
35:4b:55:d7:04:de:e8:70:21:6e:ba:dd:58:a6:ab:
a5:3b:53:fe:bb:9c:7e:2e:6c:9d:63:43:df:43:c5:
c9:08:bd:d8:5f:f4:82:c7:ad:6c:dd:6b:49:5d:9f:
a1:d3:9d:42:84:12:88:91:94:8c:30:c4:2e:0b:67:
74:6f:62:e9:81:17:8a:00:e4:48:fb:84:00:3c:98:
04:f2:fd:f6:6e:9c:93:55:a5:ef:25:17:86:35:50:
49:47:8f:19:5e:52:57:fa:b4:5a:be:10:9c:13:9e:
d4:06:b6:b1:df:98:87:0b:dc:53:63:e3:e0:2b:a7:
72:64:d0:d7:91:7b:51:89:92:c9:b1:fa:08:df:b0:
83:da:3a:15:ce:16:dc:9a:49:b8:d8:bb:b1:75:9b:
fc:22:4a:c9:c0:6d:ba:8e:d0:18:4a:6c:49:c5:6e:
55:8b:32:d4:b5:ec:fa:47:89:1d:46:ee:75:e5:ae:
ad:70:7b:07:e1:02:9d:e9:c9:96:45:9d:4a:ed:c4:
eb:ca:61:46:dc:ea:b0:b9:da:c7:2d:2a:17:ce:a9:
a1:17:d4:bd:84:73:83:44:44:2b:c7:15:de:25:d7:
c2:48:37:68:fa:90:67:68:6e:32:45:13:b7:bc:17:
aa:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:EF:30:62:70:E2:A7:12:36:77:B0:BE:C7:14:75:D6:0C:97:16:7B
X509v3 Authority Key Identifier:
keyid:8D:67:A1:38:56:71:46:B2:E8:9E:09:18:23:7C:B2:D0:76:D6:7A:FA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/8D67A138567146B2E89E0918237CB2D076D67AFA.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8D67A138567146B2E89E0918237CB2D076D67AFA.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/56FD67D89D96D39A39724C4AD614F457C08FA2784415BE3952C491BEBE4BE207/0/3134382e3230392e3234302e302f32322d3232203d3e203232313232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.209.240.0/22
Signature Algorithm: sha256WithRSAEncryption
08:15:8f:b8:3a:d3:08:b0:e2:b2:b3:aa:81:e5:7c:46:ef:5e:
0a:10:2f:3c:7b:9b:89:3b:44:8f:54:84:29:e3:ac:ab:ed:3b:
f1:f7:93:a2:e9:a4:f9:5e:97:62:88:7a:3f:8a:e9:8d:d5:d1:
a6:67:ac:3c:c3:cf:37:78:c1:3d:eb:b3:8c:ac:51:c5:21:74:
42:96:d8:02:67:ae:5d:e4:c0:6b:2f:98:03:f2:b1:2e:7c:31:
ba:1a:f1:1a:7c:bb:a1:80:f6:c9:d8:cd:52:81:0b:78:40:1d:
94:1a:88:d5:63:22:2b:46:de:6f:f1:98:6c:35:9b:d6:04:c1:
18:74:9d:a9:b9:78:f4:3e:30:02:39:6e:91:2a:3d:ba:14:90:
70:6e:4e:c3:7e:85:83:c8:aa:32:38:aa:a3:9d:12:57:3a:1a:
62:34:4b:b0:d4:08:d6:90:ec:ac:82:2e:d0:2f:9f:c5:ac:64:
98:f8:f1:74:2d:67:dc:df:18:f3:2c:fe:b0:ea:97:8c:3c:b6:
c9:27:0c:d6:12:aa:ca:4b:31:64:6f:a7:f8:70:22:da:a0:19:
20:cd:7c:87:ce:76:85:88:0c:9e:c2:e5:3f:df:90:8a:51:f0:
f7:46:a8:b2:07:21:d1:5a:64:47:97:10:51:9a:6b:d8:56:33:
ec:69:a4:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 22:21:57 2025 by rpki-client