Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/58FFE40F3167FFF6A31CE6E9E4FCDE8F2D51B8BFF895CE2D6215C29B73FC1DC8/0/323830333a3261303a3a2f33322d3332203d3e203135383330.roa
File: 323830333a3261303a3a2f33322d3332203d3e203135383330.roa (raw, json)
Hash identifier: FinVDUnkz/2J0I+Wwphci+vFr8uTAAULrMYfWm5GuWU=
Subject key identifier: 71:46:52:E5:A8:4D:20:F4:90:37:6D:94:3B:B1:A1:CC:7E:E3:85:4A
Certificate issuer: /CN=85E8329CBFB72C73936DE19616620415214EDD8A
Certificate serial: 346D094E8E9D84780FC10213137B93C4916C850A
Authority key identifier: 85:E8:32:9C:BF:B7:2C:73:93:6D:E1:96:16:62:04:15:21:4E:DD:8A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85E8329CBFB72C73936DE19616620415214EDD8A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/58FFE40F3167FFF6A31CE6E9E4FCDE8F2D51B8BFF895CE2D6215C29B73FC1DC8/0/323830333a3261303a3a2f33322d3332203d3e203135383330.roa
Signing time: Sat 25 Jan 2025 23:15:00 +0000
ROA not before: Sat 25 Jan 2025 23:10:00 +0000
ROA not after: Sat 24 Jan 2026 23:15:00 +0000
asID: 15830
IP address blocks: 2803:2a0::/32 maxlen: 32
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/58FFE40F3167FFF6A31CE6E9E4FCDE8F2D51B8BFF895CE2D6215C29B73FC1DC8/0/85E8329CBFB72C73936DE19616620415214EDD8A.crl
rsync://repository.lacnic.net/rpki/lacnic/58FFE40F3167FFF6A31CE6E9E4FCDE8F2D51B8BFF895CE2D6215C29B73FC1DC8/0/85E8329CBFB72C73936DE19616620415214EDD8A.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85E8329CBFB72C73936DE19616620415214EDD8A.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 04:19:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:6d:09:4e:8e:9d:84:78:0f:c1:02:13:13:7b:93:c4:91:6c:85:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85E8329CBFB72C73936DE19616620415214EDD8A
Validity
Not Before: Jan 25 23:10:00 2025 GMT
Not After : Jan 24 23:15:00 2026 GMT
Subject: CN=714652E5A84D20F490376D943BB1A1CC7EE3854A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c4:47:7e:5d:39:d5:04:a2:6c:9f:05:ca:94:
2c:0d:a6:d9:18:68:bc:e7:2f:ad:7c:c7:3e:fd:f5:
8c:c3:9b:e4:a0:90:ac:ba:87:dc:92:ca:2f:05:2b:
30:3d:53:2c:dd:01:84:d5:f4:36:98:1d:9d:e2:ec:
eb:e0:58:24:71:55:fd:2e:7c:ca:f3:3e:f7:ea:3a:
ec:d5:27:7f:f9:3f:b6:dd:8c:60:1b:d5:c4:ec:3e:
6a:42:f5:06:21:73:90:d1:32:1f:da:a9:e5:09:25:
ce:30:75:bf:a9:07:ba:db:51:b9:0f:da:ae:5e:bd:
f9:38:53:cc:4d:af:83:d7:60:30:41:e0:5f:1c:db:
0e:96:08:bf:29:c6:e9:8f:9c:1e:9c:56:46:58:49:
ec:ed:8c:6b:ec:0c:2d:06:74:ff:f1:ee:6f:9c:75:
96:59:72:2e:c1:59:bd:bb:3b:34:c9:f8:d1:e0:11:
b0:3f:17:11:63:d7:89:2c:4c:a3:7f:9c:14:c6:a1:
54:21:eb:29:ef:de:53:e9:20:86:7a:dd:27:7b:ea:
94:84:3d:fc:89:b6:1e:a8:a4:d2:3b:85:85:f0:47:
75:37:37:f0:4d:02:7d:b9:48:ec:f3:2c:12:5b:07:
8d:27:15:84:91:6c:9e:53:00:74:24:26:83:79:8f:
39:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:46:52:E5:A8:4D:20:F4:90:37:6D:94:3B:B1:A1:CC:7E:E3:85:4A
X509v3 Authority Key Identifier:
keyid:85:E8:32:9C:BF:B7:2C:73:93:6D:E1:96:16:62:04:15:21:4E:DD:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/58FFE40F3167FFF6A31CE6E9E4FCDE8F2D51B8BFF895CE2D6215C29B73FC1DC8/0/85E8329CBFB72C73936DE19616620415214EDD8A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/85E8329CBFB72C73936DE19616620415214EDD8A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/58FFE40F3167FFF6A31CE6E9E4FCDE8F2D51B8BFF895CE2D6215C29B73FC1DC8/0/323830333a3261303a3a2f33322d3332203d3e203135383330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:2a0::/32
Signature Algorithm: sha256WithRSAEncryption
56:65:eb:ea:49:10:98:1e:e7:3a:a4:79:bd:e0:ba:b6:ad:54:
a6:66:13:9b:b6:76:4e:89:c5:58:05:ff:ff:34:e3:b0:f7:93:
8d:4a:f7:38:cb:6c:24:e6:c0:1b:a5:50:d6:73:af:c5:06:de:
99:29:a1:83:85:ab:fb:fb:b2:cd:40:6c:a6:61:95:45:f0:1d:
f5:54:df:bb:7f:a5:4c:d7:8f:24:82:eb:97:a9:7d:3f:42:58:
d5:14:39:87:7d:47:6b:6b:5c:6d:17:f3:89:f7:40:a1:67:54:
4d:4d:8e:98:4c:0b:61:06:ed:1e:8e:9d:31:d2:e3:0e:49:f5:
1d:4c:f6:33:00:f3:7f:35:5d:45:40:82:34:08:76:28:6f:78:
f1:68:5d:fa:9d:c3:a0:38:dd:fc:9b:89:ad:29:f1:64:be:7f:
c8:39:82:ee:1d:75:96:ca:90:1e:5b:02:7a:78:70:a5:10:19:
a2:35:f3:4f:37:93:c5:b8:3e:6d:d0:65:9b:29:24:97:ef:a9:
56:d6:26:59:7a:80:f3:70:c9:61:55:af:64:7b:9d:04:57:a1:
30:5e:8c:7a:22:fb:c8:e3:40:19:a7:01:61:26:4a:20:b1:61:
ec:26:dd:a3:61:8c:a7:4d:ef:a8:6e:ae:13:68:cc:a4:49:66:
ff:6b:5a:01
-----BEGIN CERTIFICATE-----
MIIFuzCCBKOgAwIBAgIUNG0JTo6dhHgPwQITE3uTxJFshQowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODVFODMyOUNCRkI3MkM3MzkzNkRFMTk2MTY2MjA0MTUy
MTRFREQ4QTAeFw0yNTAxMjUyMzEwMDBaFw0yNjAxMjQyMzE1MDBaMDMxMTAvBgNV
BAMTKDcxNDY1MkU1QTg0RDIwRjQ5MDM3NkQ5NDNCQjFBMUNDN0VFMzg1NEEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJxEd+XTnVBKJsnwXKlCwNptkY
aLznL618xz799YzDm+SgkKy6h9ySyi8FKzA9UyzdAYTV9DaYHZ3i7OvgWCRxVf0u
fMrzPvfqOuzVJ3/5P7bdjGAb1cTsPmpC9QYhc5DRMh/aqeUJJc4wdb+pB7rbUbkP
2q5evfk4U8xNr4PXYDBB4F8c2w6WCL8pxumPnB6cVkZYSeztjGvsDC0GdP/x7m+c
dZZZci7BWb27OzTJ+NHgEbA/FxFj14ksTKN/nBTGoVQh6ynv3lPpIIZ63Sd76pSE
PfyJth6opNI7hYXwR3U3N/BNAn25SOzzLBJbB40nFYSRbJ5TAHQkJoN5jzmZAgMB
AAGjggLFMIICwTAdBgNVHQ4EFgQUcUZS5ahNIPSQN22UO7GhzH7jhUowHwYDVR0j
BBgwFoAUhegynL+3LHOTbeGWFmIEFSFO3YowDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy81OEZGRTQwRjMxNjdGRkY2QTMxQ0U2RTlFNEZDREU4RjJE
NTFCOEJGRjg5NUNFMkQ2MjE1QzI5QjczRkMxREM4LzAvODVFODMyOUNCRkI3MkM3
MzkzNkRFMTk2MTY2MjA0MTUyMTRFREQ4QS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84NUU4MzI5Q0JGQjcyQzczOTM2
REUxOTYxNjYyMDQxNTIxNEVERDhBLmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG
CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNThGRkU0MEYzMTY3RkZGNkEzMUNFNkU5RTRGQ0RFOEYyRDUxQjhCRkY4
OTVDRTJENjIxNUMyOUI3M0ZDMURDOC8wLzMyMzgzMDMzM2EzMjYxMzAzYTNhMmYz
MzMyMmQzMzMyMjAzZDNlMjAzMTM1MzgzMzMwLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKAMCoDANBgkq
hkiG9w0BAQsFAAOCAQEAVmXr6kkQmB7nOqR5veC6tq1UpmYTm7Z2TonFWAX//zTj
sPeTjUr3OMtsJObAG6VQ1nOvxQbemSmhg4Wr+/uyzUBspmGVRfAd9VTfu3+lTNeP
JILrl6l9P0JY1RQ5h31Ha2tcbRfzifdAoWdUTU2OmEwLYQbtHo6dMdLjDkn1HUz2
MwDzfzVdRUCCNAh2KG948Whd+p3DoDjd/JuJrSnxZL5/yDmC7h11lsqQHlsCenhw
pRAZojXzTzeTxbg+bdBlmykkl++pVtYmWXqA83DJYVWvZHudBFehMF6MeiL7yONA
GacBYSZKILFh7Cbdo2GMp03vqG6uE2jMpElm/2taAQ==
-----END CERTIFICATE-----
Generated at Mon Apr 14 04:26:42 2025 by rpki-client