Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/57E3E94907A4D524A56DA41D7235AE1F55C14D0B971BAE39F174104179A1BD0F/0/323830313a63343a32613a3a2f34382d3438203d3e20323730313237.roa
File: 323830313a63343a32613a3a2f34382d3438203d3e20323730313237.roa (raw, json)
Hash identifier: zz+ykG6PTIUfeyVW8QkHjl9sWUdAPa6Jxjy6RpuzCSA=
Subject key identifier: 04:1F:AA:D5:08:F3:A7:63:A0:9C:B6:E8:50:53:0B:E4:DF:49:85:4C
Certificate issuer: /CN=3CF3E435C7AF14892CAA1CB37514E4D15F6D852E
Certificate serial: 5A39168A3A801752778CF8E0D631ACC3597EE34C
Authority key identifier: 3C:F3:E4:35:C7:AF:14:89:2C:AA:1C:B3:75:14:E4:D1:5F:6D:85:2E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3CF3E435C7AF14892CAA1CB37514E4D15F6D852E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/57E3E94907A4D524A56DA41D7235AE1F55C14D0B971BAE39F174104179A1BD0F/0/323830313a63343a32613a3a2f34382d3438203d3e20323730313237.roa
Signing time: Tue 04 Feb 2025 18:44:45 +0000
ROA not before: Tue 04 Feb 2025 18:39:45 +0000
ROA not after: Tue 03 Feb 2026 18:44:45 +0000
asID: 270127
IP address blocks: 2801:c4:2a::/48 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/57E3E94907A4D524A56DA41D7235AE1F55C14D0B971BAE39F174104179A1BD0F/0/3CF3E435C7AF14892CAA1CB37514E4D15F6D852E.crl
rsync://repository.lacnic.net/rpki/lacnic/57E3E94907A4D524A56DA41D7235AE1F55C14D0B971BAE39F174104179A1BD0F/0/3CF3E435C7AF14892CAA1CB37514E4D15F6D852E.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3CF3E435C7AF14892CAA1CB37514E4D15F6D852E.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5a:39:16:8a:3a:80:17:52:77:8c:f8:e0:d6:31:ac:c3:59:7e:e3:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3CF3E435C7AF14892CAA1CB37514E4D15F6D852E
Validity
Not Before: Feb 4 18:39:45 2025 GMT
Not After : Feb 3 18:44:45 2026 GMT
Subject: CN=041FAAD508F3A763A09CB6E850530BE4DF49854C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b1:f1:3b:81:73:dd:ff:5a:06:9e:aa:a9:41:
ed:52:f4:22:0e:9d:9d:71:78:7f:f6:c8:a6:60:e3:
48:99:f0:60:cf:7a:2c:0f:81:d3:87:9d:20:35:41:
05:f3:9e:61:2f:5f:33:08:2a:82:86:2e:0d:e4:81:
bb:76:9b:cd:0f:17:7e:18:c9:78:39:88:e6:3e:3c:
d8:e2:3d:a7:14:90:a0:dc:75:12:cd:6f:d1:e6:c0:
ae:42:81:31:ce:dc:85:ac:0f:a4:77:e3:5a:c0:9c:
5c:5d:ae:80:99:d4:e8:fc:7c:19:8a:10:70:58:c7:
21:f2:09:44:19:bf:d6:c4:d0:94:96:82:aa:ea:b9:
1e:12:85:67:cd:20:f6:20:f7:6f:d5:33:00:b3:bf:
6c:e0:4f:58:29:f4:67:7d:90:c8:89:e7:7e:60:fd:
a9:9d:3a:66:1f:d8:7f:66:28:8c:a4:80:b4:26:4a:
6c:21:55:de:69:c3:58:df:33:42:90:b1:ba:56:ec:
79:74:ff:73:dc:29:50:7d:8b:07:9d:a3:b2:6e:da:
96:31:53:1b:2a:4f:83:69:33:15:3e:ca:22:5d:b1:
5c:4d:16:ba:5c:f4:93:93:bc:a1:b5:aa:5b:3c:10:
d3:08:c7:8c:05:11:bc:b9:2d:67:a6:0e:4e:0f:9f:
7a:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:1F:AA:D5:08:F3:A7:63:A0:9C:B6:E8:50:53:0B:E4:DF:49:85:4C
X509v3 Authority Key Identifier:
keyid:3C:F3:E4:35:C7:AF:14:89:2C:AA:1C:B3:75:14:E4:D1:5F:6D:85:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/57E3E94907A4D524A56DA41D7235AE1F55C14D0B971BAE39F174104179A1BD0F/0/3CF3E435C7AF14892CAA1CB37514E4D15F6D852E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3CF3E435C7AF14892CAA1CB37514E4D15F6D852E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/57E3E94907A4D524A56DA41D7235AE1F55C14D0B971BAE39F174104179A1BD0F/0/323830313a63343a32613a3a2f34382d3438203d3e20323730313237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:c4:2a::/48
Signature Algorithm: sha256WithRSAEncryption
7c:f0:b1:ab:4f:30:71:85:da:95:38:f2:f3:6e:53:64:e7:93:
ef:a6:0f:84:25:61:98:a2:1e:1c:86:aa:4a:d2:7f:14:e2:30:
ca:3b:f5:b4:6f:cf:6c:8f:b3:8c:ee:37:be:76:62:59:1a:84:
8d:0c:10:be:a1:60:bd:65:ff:e4:71:17:ac:27:07:8b:eb:91:
3c:9d:c3:46:28:3f:bc:3d:12:48:72:5c:57:70:98:b6:8e:f7:
9a:dd:a0:3a:44:bb:de:f6:30:a8:1e:a9:81:b2:9a:42:12:55:
b4:57:f6:1e:31:86:4f:ce:ad:0c:7d:7f:20:e9:07:cb:61:49:
41:26:ec:d5:64:5b:a1:48:0e:bf:95:72:55:11:18:48:1f:37:
68:69:d1:35:0c:f7:04:ed:5b:64:6d:62:d8:0d:47:3f:d4:f2:
0d:78:5b:d6:a5:9f:23:01:00:fa:ff:88:fb:38:ef:81:ca:9a:
3a:65:33:a8:a9:52:79:e2:d0:4a:1f:9d:1c:64:70:3c:03:cc:
d8:9a:32:09:81:ae:c8:5a:35:f5:c2:f2:7c:b3:e5:ea:7a:a9:
57:33:83:1f:97:c4:68:77:6f:97:e6:d9:60:b7:23:47:a7:a5:
b3:f5:c2:cc:9d:7b:b6:aa:28:01:07:84:cd:65:f7:39:6b:50:
41:1e:f6:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 06:35:56 2025 by rpki-client