Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5CE5CD9E42F98AC797D65E96A9D09E31F5FBC5884D1F802FAE80CF8FD50FDF9D/0/3133312e3139362e3231302e302f32342d3234203d3e20323635363936.roa
File: 3133312e3139362e3231302e302f32342d3234203d3e20323635363936.roa (raw, json)
Hash identifier: 1avXpDTER16XQmvdW9YybXnu3hOk8M6jUDm6diyXLZU=
Subject key identifier: A3:D3:F0:BB:5B:B2:F8:F9:09:80:E8:73:61:A9:3B:2A:EE:7A:F3:56
Certificate issuer: /CN=0D60903B8375FC5C2CB891635E0EA87B50DA3595
Certificate serial: 072FB86502181A215651FC019239877479190582
Authority key identifier: 0D:60:90:3B:83:75:FC:5C:2C:B8:91:63:5E:0E:A8:7B:50:DA:35:95
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D60903B8375FC5C2CB891635E0EA87B50DA3595.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5CE5CD9E42F98AC797D65E96A9D09E31F5FBC5884D1F802FAE80CF8FD50FDF9D/0/3133312e3139362e3231302e302f32342d3234203d3e20323635363936.roa
Signing time: Tue 04 Feb 2025 18:48:35 +0000
ROA not before: Tue 04 Feb 2025 18:43:35 +0000
ROA not after: Tue 03 Feb 2026 18:48:35 +0000
asID: 265696
IP address blocks: 131.196.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/5CE5CD9E42F98AC797D65E96A9D09E31F5FBC5884D1F802FAE80CF8FD50FDF9D/0/0D60903B8375FC5C2CB891635E0EA87B50DA3595.crl
rsync://repository.lacnic.net/rpki/lacnic/5CE5CD9E42F98AC797D65E96A9D09E31F5FBC5884D1F802FAE80CF8FD50FDF9D/0/0D60903B8375FC5C2CB891635E0EA87B50DA3595.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D60903B8375FC5C2CB891635E0EA87B50DA3595.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 00:35:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:2f:b8:65:02:18:1a:21:56:51:fc:01:92:39:87:74:79:19:05:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D60903B8375FC5C2CB891635E0EA87B50DA3595
Validity
Not Before: Feb 4 18:43:35 2025 GMT
Not After : Feb 3 18:48:35 2026 GMT
Subject: CN=A3D3F0BB5BB2F8F90980E87361A93B2AEE7AF356
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:30:11:15:a0:a7:e3:54:8a:54:36:d7:76:1c:
d7:e7:33:dc:2a:1a:97:0f:fe:9c:84:0d:3c:ea:0c:
6e:fd:d4:17:a8:3a:fa:87:70:ec:b2:d7:88:d0:82:
82:db:e0:a1:09:11:54:88:0c:1c:f0:82:92:3c:48:
4b:bb:12:fc:ac:fc:0b:0e:fc:46:25:bd:f1:2b:af:
1f:29:0c:66:6c:db:d2:a6:07:79:19:4b:12:1a:5c:
b3:52:ee:5a:8f:40:90:bd:d3:6b:e5:de:a2:f7:41:
a4:aa:16:ef:c1:b9:bd:ff:15:cf:ad:d5:da:ff:86:
65:7a:39:44:56:ea:9d:6b:5f:42:12:18:10:d6:d6:
f7:ad:5e:67:cc:f8:66:97:f5:5b:c3:65:9e:71:ce:
92:3f:86:a2:ec:ac:25:ea:8f:ed:80:05:3d:3e:4e:
b0:67:a4:06:73:42:e0:32:d8:c3:64:26:13:a7:f6:
b6:e2:f7:2e:64:42:dc:13:e2:a4:27:77:d3:20:f2:
73:83:b7:56:57:38:08:82:fa:f1:06:6f:0a:39:45:
da:63:cc:b2:79:f4:be:24:d7:0c:1d:09:60:88:50:
8c:06:c3:46:59:75:d8:f3:e5:69:c3:04:bf:6c:c7:
b4:fb:8f:73:86:e8:48:d5:d7:43:67:57:43:c2:73:
18:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:D3:F0:BB:5B:B2:F8:F9:09:80:E8:73:61:A9:3B:2A:EE:7A:F3:56
X509v3 Authority Key Identifier:
keyid:0D:60:90:3B:83:75:FC:5C:2C:B8:91:63:5E:0E:A8:7B:50:DA:35:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5CE5CD9E42F98AC797D65E96A9D09E31F5FBC5884D1F802FAE80CF8FD50FDF9D/0/0D60903B8375FC5C2CB891635E0EA87B50DA3595.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0D60903B8375FC5C2CB891635E0EA87B50DA3595.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5CE5CD9E42F98AC797D65E96A9D09E31F5FBC5884D1F802FAE80CF8FD50FDF9D/0/3133312e3139362e3231302e302f32342d3234203d3e20323635363936.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.196.210.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:07:ed:63:72:fa:18:cd:4b:0d:01:90:8e:72:ae:16:89:df:
f6:35:10:de:f3:f2:72:e9:0c:12:53:4f:b0:37:25:26:cb:0c:
65:2c:e2:91:e6:d0:ab:ee:41:0a:40:9f:68:03:e0:78:07:ec:
1b:91:c9:0b:26:64:1c:5f:7b:13:16:f5:0a:53:9e:5e:13:95:
b3:96:00:9c:12:4f:22:7a:0a:86:db:34:e9:cd:5b:fa:a1:85:
93:ac:2c:4b:2c:f6:df:bc:10:8f:69:d4:8a:37:ee:2e:52:07:
1e:c8:2c:97:fa:fe:10:68:06:d9:4d:a0:ee:5e:22:0d:4d:74:
b1:30:a7:35:94:8c:d3:24:50:e8:3f:c7:a3:71:8e:9c:8c:fa:
45:62:72:b1:d8:76:8b:27:ff:61:49:d7:31:4a:c3:d7:31:f9:
1b:b4:25:a4:78:34:c1:19:16:00:66:38:4b:37:36:63:6d:ef:
7a:76:e8:52:6c:1a:2b:e3:36:2e:07:7d:21:62:30:70:b3:b1:
08:07:9e:4c:17:1e:be:59:3d:42:2d:6a:27:3a:0c:29:e4:81:
b5:8c:41:9d:ee:06:2e:67:31:3b:1b:a9:5a:ed:cc:99:f4:67:
60:57:bd:fa:73:c5:9a:fa:86:3c:3c:aa:ca:e0:84:2d:6e:41:
76:49:1a:d1
-----BEGIN CERTIFICATE-----
MIIFwjCCBKqgAwIBAgIUBy+4ZQIYGiFWUfwBkjmHdHkZBYIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMEQ2MDkwM0I4Mzc1RkM1QzJDQjg5MTYzNUUwRUE4N0I1
MERBMzU5NTAeFw0yNTAyMDQxODQzMzVaFw0yNjAyMDMxODQ4MzVaMDMxMTAvBgNV
BAMTKEEzRDNGMEJCNUJCMkY4RjkwOTgwRTg3MzYxQTkzQjJBRUU3QUYzNTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdMBEVoKfjVIpUNtd2HNfnM9wq
GpcP/pyEDTzqDG791BeoOvqHcOyy14jQgoLb4KEJEVSIDBzwgpI8SEu7Evys/AsO
/EYlvfErrx8pDGZs29KmB3kZSxIaXLNS7lqPQJC902vl3qL3QaSqFu/Bub3/Fc+t
1dr/hmV6OURW6p1rX0ISGBDW1vetXmfM+GaX9VvDZZ5xzpI/hqLsrCXqj+2ABT0+
TrBnpAZzQuAy2MNkJhOn9rbi9y5kQtwT4qQnd9Mg8nODt1ZXOAiC+vEGbwo5Rdpj
zLJ59L4k1wwdCWCIUIwGw0ZZddjz5WnDBL9sx7T7j3OG6EjV10NnV0PCcxgVAgMB
AAGjggLMMIICyDAdBgNVHQ4EFgQUo9Pwu1uy+PkJgOhzYak7Ku5681YwHwYDVR0j
BBgwFoAUDWCQO4N1/FwsuJFjXg6oe1DaNZUwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy81Q0U1Q0Q5RTQyRjk4QUM3OTdENjVFOTZBOUQwOUUzMUY1
RkJDNTg4NEQxRjgwMkZBRTgwQ0Y4RkQ1MEZERjlELzAvMEQ2MDkwM0I4Mzc1RkM1
QzJDQjg5MTYzNUUwRUE4N0I1MERBMzU5NS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8wRDYwOTAzQjgzNzVGQzVDMkNC
ODkxNjM1RTBFQTg3QjUwREEzNTk1LmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG
CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNUNFNUNEOUU0MkY5OEFDNzk3RDY1RTk2QTlEMDlFMzFGNUZCQzU4ODRE
MUY4MDJGQUU4MENGOEZENTBGREY5RC8wLzMxMzMzMTJlMzEzOTM2MmUzMjMxMzAy
ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM2MzUzNjM5MzYucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACD
xNIwDQYJKoZIhvcNAQELBQADggEBAKUH7WNy+hjNSw0BkI5yrhaJ3/Y1EN7z8nLp
DBJTT7A3JSbLDGUs4pHm0KvuQQpAn2gD4HgH7BuRyQsmZBxfexMW9QpTnl4TlbOW
AJwSTyJ6CobbNOnNW/qhhZOsLEss9t+8EI9p1Io37i5SBx7ILJf6/hBoBtlNoO5e
Ig1NdLEwpzWUjNMkUOg/x6NxjpyM+kVicrHYdosn/2FJ1zFKw9cx+Ru0JaR4NMEZ
FgBmOEs3NmNt73p26FJsGivjNi4HfSFiMHCzsQgHnkwXHr5ZPUItaic6DCnkgbWM
QZ3uBi5nMTsbqVrtzJn0Z2BXvfpzxZr6hjw8qsrghC1uQXZJGtE=
-----END CERTIFICATE-----
Generated at Mon Apr 14 09:55:04 2025 by rpki-client