Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/597EBC297BBD824DD56B6F5C398686DA66CAC830FA9CBD54BD8F24CE3AA7A50F/0/3230302e3131352e3132302e302f32342d3234203d3e20323732383332.roa
File: 3230302e3131352e3132302e302f32342d3234203d3e20323732383332.roa (raw, json)
Hash identifier: bTWHrhbj8daSS8wZzL5JtpQhOsXA/VRJWwJBbJEZYDk=
Subject key identifier: 61:AC:17:AC:5C:D0:C4:41:F0:51:11:D8:21:41:FB:88:E8:C8:21:AB
Certificate issuer: /CN=4D56876B86897911DD0C6CF938CF6E3FEB03C360
Certificate serial: 2C80EB41EB4845FC40D2A1FF952D5432A0EBAE29
Authority key identifier: 4D:56:87:6B:86:89:79:11:DD:0C:6C:F9:38:CF:6E:3F:EB:03:C3:60
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4D56876B86897911DD0C6CF938CF6E3FEB03C360.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/597EBC297BBD824DD56B6F5C398686DA66CAC830FA9CBD54BD8F24CE3AA7A50F/0/3230302e3131352e3132302e302f32342d3234203d3e20323732383332.roa
Signing time: Tue 04 Feb 2025 18:18:20 +0000
ROA not before: Tue 04 Feb 2025 18:13:20 +0000
ROA not after: Tue 03 Feb 2026 18:18:20 +0000
asID: 272832
IP address blocks: 200.115.120.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/597EBC297BBD824DD56B6F5C398686DA66CAC830FA9CBD54BD8F24CE3AA7A50F/0/4D56876B86897911DD0C6CF938CF6E3FEB03C360.crl
rsync://repository.lacnic.net/rpki/lacnic/597EBC297BBD824DD56B6F5C398686DA66CAC830FA9CBD54BD8F24CE3AA7A50F/0/4D56876B86897911DD0C6CF938CF6E3FEB03C360.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4D56876B86897911DD0C6CF938CF6E3FEB03C360.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 05:51:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:80:eb:41:eb:48:45:fc:40:d2:a1:ff:95:2d:54:32:a0:eb:ae:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4D56876B86897911DD0C6CF938CF6E3FEB03C360
Validity
Not Before: Feb 4 18:13:20 2025 GMT
Not After : Feb 3 18:18:20 2026 GMT
Subject: CN=61AC17AC5CD0C441F05111D82141FB88E8C821AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:20:6c:34:8b:04:b6:1d:a3:f8:fa:f0:68:14:
a9:8f:b3:6c:33:b9:b9:41:47:85:83:cd:32:2b:8a:
45:24:8c:29:38:83:99:a0:cc:36:d6:4e:a7:68:56:
1c:f6:d9:9a:aa:1d:09:6e:9f:da:a2:00:72:8d:92:
26:60:f6:ad:3c:73:82:d8:00:9d:40:67:14:9d:7b:
4f:c3:86:8e:17:56:94:fe:cc:f0:0a:0d:06:9c:dd:
b9:ed:52:9b:9d:3c:30:b5:7f:c1:d5:cf:cd:d6:fd:
04:55:04:b3:2f:45:ac:43:17:c5:ad:3c:b8:ab:5c:
6a:94:a2:1c:56:b6:0c:8f:67:43:93:7e:05:79:ca:
af:11:a4:29:92:6d:01:fc:99:7b:fa:d6:58:25:20:
75:bc:fd:54:2c:ca:8d:91:16:23:21:33:ec:d0:1e:
b8:16:83:bf:72:ae:59:58:bb:94:a7:ff:25:23:d6:
82:c9:34:7f:f8:62:25:46:f4:20:49:58:39:6a:32:
f3:d5:b9:72:79:95:d1:6c:51:84:5a:ad:8f:86:4a:
0a:21:52:db:0a:69:10:6b:8d:2c:ba:d5:c4:02:92:
2d:4c:2d:24:e9:99:52:a7:16:1d:ef:9d:3e:f1:1a:
bc:61:7f:8d:f2:dd:b0:9a:df:c8:c4:44:fd:0a:44:
21:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:AC:17:AC:5C:D0:C4:41:F0:51:11:D8:21:41:FB:88:E8:C8:21:AB
X509v3 Authority Key Identifier:
keyid:4D:56:87:6B:86:89:79:11:DD:0C:6C:F9:38:CF:6E:3F:EB:03:C3:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/597EBC297BBD824DD56B6F5C398686DA66CAC830FA9CBD54BD8F24CE3AA7A50F/0/4D56876B86897911DD0C6CF938CF6E3FEB03C360.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4D56876B86897911DD0C6CF938CF6E3FEB03C360.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/597EBC297BBD824DD56B6F5C398686DA66CAC830FA9CBD54BD8F24CE3AA7A50F/0/3230302e3131352e3132302e302f32342d3234203d3e20323732383332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.115.120.0/24
Signature Algorithm: sha256WithRSAEncryption
15:63:67:66:03:93:92:04:2f:da:60:62:bc:79:8b:2c:92:0a:
b4:bb:bf:ee:4f:4f:70:9c:43:51:ea:d2:ec:54:13:6b:a5:d5:
7c:72:33:dc:a9:38:f1:bf:c3:b7:a4:b5:e7:29:57:ae:2b:45:
46:62:c0:be:4c:60:c5:0a:c9:31:be:66:91:25:03:28:ea:d4:
8d:47:97:ff:cf:14:65:67:a6:dd:52:e9:d9:1f:ac:81:f5:59:
b6:02:8c:ab:8b:78:3f:20:fa:36:8f:09:21:7f:01:f2:ed:b6:
29:53:93:3e:92:07:3e:6f:08:5f:49:4b:d4:2e:de:05:f4:ea:
e1:0a:c1:5c:84:e8:12:88:10:5d:d1:d3:1b:af:43:9f:91:2e:
72:64:3b:08:ae:67:07:93:f3:b3:91:93:52:58:92:6a:df:63:
8b:30:a9:a1:f6:5b:12:1f:c2:5e:ae:4b:e7:ae:d4:0a:0f:16:
bd:4f:b5:4d:d6:8a:e6:1d:67:3a:26:a9:8c:6a:d6:df:93:60:
da:a4:6c:59:60:f6:d5:27:01:cc:be:a9:3d:a6:f2:eb:c3:dc:
a7:07:db:8c:02:1f:d6:a7:9d:a1:8f:ed:80:03:48:40:de:15:
3d:51:a4:35:a2:6a:27:f0:de:e7:09:32:cd:30:3f:9e:82:69:
e0:9a:6d:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 18:34:13 2025 by rpki-client