Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5AC33D4AC844439D945F2FA9F7BB78F06468E22C8BF5834A568CC00049AC3A7B/0/3137392e302e3135362e302f32322d3234203d3e203238303030.roa
File: 3137392e302e3135362e302f32322d3234203d3e203238303030.roa (raw, json)
Hash identifier: M9x4fSbD88CFp1FctiAbATJlmmE1KOIZqXlRc1ox+64=
Subject key identifier: DF:03:93:F2:C4:B7:14:20:F8:1E:03:E3:A7:4E:85:52:11:28:8D:71
Certificate issuer: /CN=1F56B9011AE8C9ADDD96803DECE1D1F9306D81DE
Certificate serial: 4BED381A0DEDCA5FF7E2AD5E1AA533EFB0428876
Authority key identifier: 1F:56:B9:01:1A:E8:C9:AD:DD:96:80:3D:EC:E1:D1:F9:30:6D:81:DE
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1F56B9011AE8C9ADDD96803DECE1D1F9306D81DE.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5AC33D4AC844439D945F2FA9F7BB78F06468E22C8BF5834A568CC00049AC3A7B/0/3137392e302e3135362e302f32322d3234203d3e203238303030.roa
Signing time: Tue 04 Feb 2025 18:19:41 +0000
ROA not before: Tue 04 Feb 2025 18:14:41 +0000
ROA not after: Tue 03 Feb 2026 18:19:41 +0000
asID: 28000
IP address blocks: 179.0.156.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/5AC33D4AC844439D945F2FA9F7BB78F06468E22C8BF5834A568CC00049AC3A7B/0/1F56B9011AE8C9ADDD96803DECE1D1F9306D81DE.crl
rsync://repository.lacnic.net/rpki/lacnic/5AC33D4AC844439D945F2FA9F7BB78F06468E22C8BF5834A568CC00049AC3A7B/0/1F56B9011AE8C9ADDD96803DECE1D1F9306D81DE.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1F56B9011AE8C9ADDD96803DECE1D1F9306D81DE.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:ed:38:1a:0d:ed:ca:5f:f7:e2:ad:5e:1a:a5:33:ef:b0:42:88:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1F56B9011AE8C9ADDD96803DECE1D1F9306D81DE
Validity
Not Before: Feb 4 18:14:41 2025 GMT
Not After : Feb 3 18:19:41 2026 GMT
Subject: CN=DF0393F2C4B71420F81E03E3A74E855211288D71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:44:fa:30:0e:23:6c:f7:ee:5d:21:89:7d:8f:
1a:ec:d0:34:6e:07:b2:28:d2:4e:19:e8:1e:f2:b0:
12:61:5d:6e:0c:bd:58:62:ef:9f:52:bd:6d:95:d2:
c1:4a:91:82:9b:a2:b4:8d:af:a6:72:19:31:15:6a:
10:dd:78:ce:1a:ad:3a:8a:f2:f9:f5:d3:5b:58:4e:
9c:c7:e9:60:d9:96:37:c4:51:c4:7f:07:87:00:15:
8d:e3:02:1a:4b:f0:1b:65:5c:b6:d1:13:fb:22:ae:
9b:c7:1b:94:f9:cd:5e:16:59:fc:9c:1d:89:b5:be:
0f:82:26:b6:77:7e:db:b9:e9:91:54:9e:4f:d5:82:
9f:2e:55:64:8c:6d:93:77:c6:e4:a2:4d:56:fd:d9:
67:d0:8b:21:ae:92:43:17:dd:9f:c4:f5:35:03:22:
c0:3a:2e:e1:5e:1d:25:0a:e0:21:4e:16:18:07:37:
06:75:0e:dd:04:76:bc:d6:10:e8:88:9d:20:1a:88:
62:20:33:43:e5:ee:fb:d3:dd:95:53:12:4f:6f:2c:
29:8d:3a:09:a2:fd:a9:94:5e:fc:84:22:b5:87:ec:
32:09:0e:b5:14:64:2f:04:ce:8a:bf:e3:fd:ef:02:
f8:07:41:3a:ae:c5:4f:3b:75:91:92:07:64:1e:4d:
ae:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:03:93:F2:C4:B7:14:20:F8:1E:03:E3:A7:4E:85:52:11:28:8D:71
X509v3 Authority Key Identifier:
keyid:1F:56:B9:01:1A:E8:C9:AD:DD:96:80:3D:EC:E1:D1:F9:30:6D:81:DE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5AC33D4AC844439D945F2FA9F7BB78F06468E22C8BF5834A568CC00049AC3A7B/0/1F56B9011AE8C9ADDD96803DECE1D1F9306D81DE.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1F56B9011AE8C9ADDD96803DECE1D1F9306D81DE.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5AC33D4AC844439D945F2FA9F7BB78F06468E22C8BF5834A568CC00049AC3A7B/0/3137392e302e3135362e302f32322d3234203d3e203238303030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.0.156.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:bb:07:37:9f:ba:73:e2:88:fe:2d:24:af:80:df:15:c0:26:
eb:1e:9a:f7:b1:c1:4d:22:07:af:6b:32:53:2f:dc:11:e0:87:
f1:9e:38:01:5a:bb:93:c8:e5:b4:fa:4c:eb:c2:a6:e2:8b:f7:
2d:02:72:e6:4c:e8:be:e0:c4:5a:eb:61:bd:2e:b2:94:80:db:
f4:0b:96:fc:80:39:2c:b8:87:9d:4c:dc:e3:0c:2b:2d:87:3e:
b1:0a:98:2e:91:f9:af:73:ee:e3:14:a8:4b:bc:8b:63:d7:6b:
24:79:2a:48:36:b2:20:00:9d:0c:f0:0b:08:d1:a0:5f:b7:19:
35:1e:e9:20:e6:e8:28:98:e3:8a:45:27:dd:65:20:da:93:13:
b4:4f:7d:80:09:c9:67:53:53:32:77:e2:69:8f:2f:f6:f1:d3:
b5:6b:5f:6f:87:e6:73:f7:de:11:34:1c:af:a3:3f:81:80:38:
d7:a8:08:0c:e1:8e:25:d8:b4:1a:b8:24:ce:e1:35:e8:cf:0b:
f5:0a:44:3d:9f:cf:10:31:ec:8a:40:90:1b:ea:56:58:56:e9:
26:b7:3d:ff:9b:ae:75:ab:30:7d:ef:ba:77:e5:b6:db:00:b7:
2d:fc:f0:03:26:39:ff:03:00:82:0d:49:79:e9:4f:59:ab:a8:
9a:87:bc:04
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIUS+04Gg3tyl/34q1eGqUz77BCiHYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMUY1NkI5MDExQUU4QzlBREREOTY4MDNERUNFMUQxRjkz
MDZEODFERTAeFw0yNTAyMDQxODE0NDFaFw0yNjAyMDMxODE5NDFaMDMxMTAvBgNV
BAMTKERGMDM5M0YyQzRCNzE0MjBGODFFMDNFM0E3NEU4NTUyMTEyODhENzEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCTRPowDiNs9+5dIYl9jxrs0DRu
B7Io0k4Z6B7ysBJhXW4MvVhi759SvW2V0sFKkYKborSNr6ZyGTEVahDdeM4arTqK
8vn101tYTpzH6WDZljfEUcR/B4cAFY3jAhpL8BtlXLbRE/sirpvHG5T5zV4WWfyc
HYm1vg+CJrZ3ftu56ZFUnk/Vgp8uVWSMbZN3xuSiTVb92WfQiyGukkMX3Z/E9TUD
IsA6LuFeHSUK4CFOFhgHNwZ1Dt0EdrzWEOiInSAaiGIgM0Pl7vvT3ZVTEk9vLCmN
Ogmi/amUXvyEIrWH7DIJDrUUZC8Ezoq/4/3vAvgHQTquxU87dZGSB2QeTa65AgMB
AAGjggLGMIICwjAdBgNVHQ4EFgQU3wOT8sS3FCD4HgPjp06FUhEojXEwHwYDVR0j
BBgwFoAUH1a5ARroya3dloA97OHR+TBtgd4wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy81QUMzM0Q0QUM4NDQ0MzlEOTQ1RjJGQTlGN0JCNzhGMDY0
NjhFMjJDOEJGNTgzNEE1NjhDQzAwMDQ5QUMzQTdCLzAvMUY1NkI5MDExQUU4QzlB
REREOTY4MDNERUNFMUQxRjkzMDZEODFERS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8xRjU2QjkwMTFBRThDOUFEREQ5
NjgwM0RFQ0UxRDFGOTMwNkQ4MURFLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNUFDMzNENEFDODQ0NDM5RDk0NUYyRkE5RjdCQjc4RjA2NDY4RTIyQzhC
RjU4MzRBNTY4Q0MwMDA0OUFDM0E3Qi8wLzMxMzczOTJlMzAyZTMxMzUzNjJlMzAy
ZjMyMzIyZDMyMzQyMDNkM2UyMDMyMzgzMDMwMzAucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKzAJwwDQYJ
KoZIhvcNAQELBQADggEBAHq7BzefunPiiP4tJK+A3xXAJusemvexwU0iB69rMlMv
3BHgh/GeOAFau5PI5bT6TOvCpuKL9y0CcuZM6L7gxFrrYb0uspSA2/QLlvyAOSy4
h51M3OMMKy2HPrEKmC6R+a9z7uMUqEu8i2PXayR5Kkg2siAAnQzwCwjRoF+3GTUe
6SDm6CiY44pFJ91lINqTE7RPfYAJyWdTUzJ34mmPL/bx07VrX2+H5nP33hE0HK+j
P4GAONeoCAzhjiXYtBq4JM7hNejPC/UKRD2fzxAx7IpAkBvqVlhW6Sa3Pf+brnWr
MH3vunflttsAty388AMmOf8DAIINSXnpT1mrqJqHvAQ=
-----END CERTIFICATE-----
Generated at Mon Apr 14 08:17:08 2025 by rpki-client