Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5AE7BDDB80FC5E9DE20624E93E7F65668F98B4369CB1616AA475344237A87FF4/0/3133312e3232312e342e302f32322d3232203d3e203436313938.roa
File: 3133312e3232312e342e302f32322d3232203d3e203436313938.roa (raw, json)
Hash identifier: K3cz4wetEBG3xQOuoz2whRSkSWMuk0Xe2vT4rAsmnNo=
Subject key identifier: 3B:2C:FE:C9:57:10:04:85:99:44:98:4D:26:4F:CA:67:B9:E6:DB:F5
Certificate issuer: /CN=BA1555F56F1EE9CECA76B3AD5D23EE829D006D98
Certificate serial: 623B1873274DB7101ED6EA2EF24F146826FC76C3
Authority key identifier: BA:15:55:F5:6F:1E:E9:CE:CA:76:B3:AD:5D:23:EE:82:9D:00:6D:98
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BA1555F56F1EE9CECA76B3AD5D23EE829D006D98.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5AE7BDDB80FC5E9DE20624E93E7F65668F98B4369CB1616AA475344237A87FF4/0/3133312e3232312e342e302f32322d3232203d3e203436313938.roa
Signing time: Tue 04 Feb 2025 18:09:32 +0000
ROA not before: Tue 04 Feb 2025 18:04:32 +0000
ROA not after: Tue 03 Feb 2026 18:09:32 +0000
asID: 46198
IP address blocks: 131.221.4.0/22 maxlen: 22
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/5AE7BDDB80FC5E9DE20624E93E7F65668F98B4369CB1616AA475344237A87FF4/0/BA1555F56F1EE9CECA76B3AD5D23EE829D006D98.crl
rsync://repository.lacnic.net/rpki/lacnic/5AE7BDDB80FC5E9DE20624E93E7F65668F98B4369CB1616AA475344237A87FF4/0/BA1555F56F1EE9CECA76B3AD5D23EE829D006D98.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BA1555F56F1EE9CECA76B3AD5D23EE829D006D98.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 17:51:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:3b:18:73:27:4d:b7:10:1e:d6:ea:2e:f2:4f:14:68:26:fc:76:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BA1555F56F1EE9CECA76B3AD5D23EE829D006D98
Validity
Not Before: Feb 4 18:04:32 2025 GMT
Not After : Feb 3 18:09:32 2026 GMT
Subject: CN=3B2CFEC9571004859944984D264FCA67B9E6DBF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ed:32:88:8b:21:54:5b:67:d1:17:1f:a2:7c:
2e:79:0c:c1:22:d1:9a:25:f8:41:6f:a2:ce:ab:9b:
a6:29:47:a0:b1:93:9c:e0:ec:cb:c9:16:4a:eb:7b:
38:d5:d3:dd:5c:c4:2a:99:c8:6b:85:b9:09:d6:87:
49:4f:41:b9:2d:03:66:b8:dc:cd:0f:73:d7:63:aa:
98:64:1e:0d:74:9d:3c:2a:e9:c7:08:12:53:0b:e8:
36:d8:be:02:d2:63:d6:b8:33:fd:53:de:c0:23:f6:
fe:bb:50:41:21:40:78:74:36:6d:59:49:95:8d:de:
9e:b0:fb:1e:7b:3e:73:78:55:bb:1c:80:89:8c:0d:
87:33:65:ef:2c:eb:b5:1c:35:f7:95:db:cc:20:1b:
34:56:e4:5c:a9:89:5b:be:c4:94:db:23:f7:10:76:
a2:2c:8e:6e:03:d7:a6:fc:20:d9:51:5c:43:50:db:
01:98:c9:c1:8d:36:a6:63:cd:6a:97:09:e4:f1:19:
c1:83:b0:b3:d2:67:57:b2:e3:7e:b9:5f:c0:14:63:
a0:e0:62:c3:bf:0b:1b:d3:21:04:00:be:09:37:db:
3b:35:1e:9a:f8:00:00:75:8a:0f:4c:9a:f5:13:3f:
bb:c5:06:55:56:76:fe:ee:88:fb:b9:1c:96:67:79:
16:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:2C:FE:C9:57:10:04:85:99:44:98:4D:26:4F:CA:67:B9:E6:DB:F5
X509v3 Authority Key Identifier:
keyid:BA:15:55:F5:6F:1E:E9:CE:CA:76:B3:AD:5D:23:EE:82:9D:00:6D:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5AE7BDDB80FC5E9DE20624E93E7F65668F98B4369CB1616AA475344237A87FF4/0/BA1555F56F1EE9CECA76B3AD5D23EE829D006D98.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BA1555F56F1EE9CECA76B3AD5D23EE829D006D98.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5AE7BDDB80FC5E9DE20624E93E7F65668F98B4369CB1616AA475344237A87FF4/0/3133312e3232312e342e302f32322d3232203d3e203436313938.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.221.4.0/22
Signature Algorithm: sha256WithRSAEncryption
85:a8:9d:7a:03:d6:b2:c0:21:c7:e1:f0:48:10:95:f8:48:80:
d7:23:28:63:98:c9:a8:86:b0:4a:08:bb:ac:59:14:a6:84:f1:
02:0b:2a:78:0e:d6:5e:7f:c9:8f:4b:07:ef:ce:0a:5f:c3:02:
06:a2:cc:c3:63:47:f4:6a:5e:09:2f:1c:67:d7:e5:2f:4c:32:
ec:5e:ed:06:2d:bc:e0:05:5d:14:aa:11:fb:7f:b7:76:e4:b7:
87:cc:27:67:b6:a3:96:79:c8:24:f4:3f:06:c8:4d:99:00:4c:
04:d4:72:95:a2:67:64:5d:fc:18:e0:b5:35:49:74:29:84:cb:
2b:9c:eb:fe:d3:bc:ac:a8:25:e0:05:c6:fb:a0:67:8a:d7:1c:
83:03:7e:3d:fa:1e:cd:ef:3b:04:26:51:9c:0f:28:2e:41:e4:
38:c7:f0:36:c8:9e:97:7d:83:26:e6:9c:f3:1c:6a:6f:8f:92:
ae:69:66:63:5c:f2:30:bc:45:5d:3f:a4:19:e6:a3:bc:5e:08:
56:6b:64:0e:c4:1a:25:2f:15:28:e1:a1:cb:8a:f4:e6:24:61:
dd:df:f7:b6:7b:fc:5b:8b:bb:8e:e8:05:e9:f4:0e:a7:7b:41:
d0:1f:a7:4b:6e:6a:4a:a3:c5:d0:43:fd:11:16:a7:e1:aa:73:
42:21:1b:6e
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIUYjsYcydNtxAe1uou8k8UaCb8dsMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQkExNTU1RjU2RjFFRTlDRUNBNzZCM0FENUQyM0VFODI5
RDAwNkQ5ODAeFw0yNTAyMDQxODA0MzJaFw0yNjAyMDMxODA5MzJaMDMxMTAvBgNV
BAMTKDNCMkNGRUM5NTcxMDA0ODU5OTQ0OTg0RDI2NEZDQTY3QjlFNkRCRjUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC27TKIiyFUW2fRFx+ifC55DMEi
0Zol+EFvos6rm6YpR6Cxk5zg7MvJFkrrezjV091cxCqZyGuFuQnWh0lPQbktA2a4
3M0Pc9djqphkHg10nTwq6ccIElML6DbYvgLSY9a4M/1T3sAj9v67UEEhQHh0Nm1Z
SZWN3p6w+x57PnN4VbscgImMDYczZe8s67UcNfeV28wgGzRW5FypiVu+xJTbI/cQ
dqIsjm4D16b8INlRXENQ2wGYycGNNqZjzWqXCeTxGcGDsLPSZ1ey4365X8AUY6Dg
YsO/CxvTIQQAvgk32zs1Hpr4AAB1ig9MmvUTP7vFBlVWdv7uiPu5HJZneRYRAgMB
AAGjggLGMIICwjAdBgNVHQ4EFgQUOyz+yVcQBIWZRJhNJk/KZ7nm2/UwHwYDVR0j
BBgwFoAUuhVV9W8e6c7KdrOtXSPugp0AbZgwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy81QUU3QkREQjgwRkM1RTlERTIwNjI0RTkzRTdGNjU2NjhG
OThCNDM2OUNCMTYxNkFBNDc1MzQ0MjM3QTg3RkY0LzAvQkExNTU1RjU2RjFFRTlD
RUNBNzZCM0FENUQyM0VFODI5RDAwNkQ5OC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9CQTE1NTVGNTZGMUVFOUNFQ0E3
NkIzQUQ1RDIzRUU4MjlEMDA2RDk4LmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNUFFN0JEREI4MEZDNUU5REUyMDYyNEU5M0U3RjY1NjY4Rjk4QjQzNjlD
QjE2MTZBQTQ3NTM0NDIzN0E4N0ZGNC8wLzMxMzMzMTJlMzIzMjMxMmUzNDJlMzAy
ZjMyMzIyZDMyMzIyMDNkM2UyMDM0MzYzMTM5Mzgucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKD3QQwDQYJ
KoZIhvcNAQELBQADggEBAIWonXoD1rLAIcfh8EgQlfhIgNcjKGOYyaiGsEoIu6xZ
FKaE8QILKngO1l5/yY9LB+/OCl/DAgaizMNjR/RqXgkvHGfX5S9MMuxe7QYtvOAF
XRSqEft/t3bkt4fMJ2e2o5Z5yCT0PwbITZkATATUcpWiZ2Rd/BjgtTVJdCmEyyuc
6/7TvKyoJeAFxvugZ4rXHIMDfj36Hs3vOwQmUZwPKC5B5DjH8DbInpd9gybmnPMc
am+Pkq5pZmNc8jC8RV0/pBnmo7xeCFZrZA7EGiUvFSjhocuK9OYkYd3f97Z7/FuL
u47oBen0Dqd7QdAfp0tuakqjxdBD/REWp+Gqc0IhG24=
-----END CERTIFICATE-----
Generated at Mon Apr 14 03:53:53 2025 by rpki-client