Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5D8F51B1D1657BF366614511A20581BDED03B32FBCD5E9D471AF986BA436211B/0/3230302e3132342e3132372e302f32342d3234203d3e203532323836.roa
File: 3230302e3132342e3132372e302f32342d3234203d3e203532323836.roa (raw, json)
Hash identifier: JB8KuRjJuEMdp+5kw8JLLC3DgUxJPYLDLdTnE5w25t8=
Subject key identifier: CD:5D:F2:CA:BE:F6:80:CE:97:21:AF:EB:02:00:B1:F7:C8:4C:BA:29
Certificate issuer: /CN=241DE049AC3C932631785D79E6569AB7CF57A340
Certificate serial: B7CE63895FEBB1AF0F65D4E20DB4A3000F18C6
Authority key identifier: 24:1D:E0:49:AC:3C:93:26:31:78:5D:79:E6:56:9A:B7:CF:57:A3:40
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/241DE049AC3C932631785D79E6569AB7CF57A340.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5D8F51B1D1657BF366614511A20581BDED03B32FBCD5E9D471AF986BA436211B/0/3230302e3132342e3132372e302f32342d3234203d3e203532323836.roa
Signing time: Tue 04 Feb 2025 18:01:11 +0000
ROA not before: Tue 04 Feb 2025 17:56:11 +0000
ROA not after: Tue 03 Feb 2026 18:01:11 +0000
asID: 52286
IP address blocks: 200.124.127.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/5D8F51B1D1657BF366614511A20581BDED03B32FBCD5E9D471AF986BA436211B/0/241DE049AC3C932631785D79E6569AB7CF57A340.crl
rsync://repository.lacnic.net/rpki/lacnic/5D8F51B1D1657BF366614511A20581BDED03B32FBCD5E9D471AF986BA436211B/0/241DE049AC3C932631785D79E6569AB7CF57A340.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/241DE049AC3C932631785D79E6569AB7CF57A340.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
b7:ce:63:89:5f:eb:b1:af:0f:65:d4:e2:0d:b4:a3:00:0f:18:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=241DE049AC3C932631785D79E6569AB7CF57A340
Validity
Not Before: Feb 4 17:56:11 2025 GMT
Not After : Feb 3 18:01:11 2026 GMT
Subject: CN=CD5DF2CABEF680CE9721AFEB0200B1F7C84CBA29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:13:cf:90:69:bf:87:06:20:b0:86:01:52:5a:
60:95:86:7d:0d:e6:ac:72:86:3f:a0:43:86:66:c1:
17:30:32:ae:54:9c:2d:89:bf:33:b6:a5:e7:11:18:
e5:94:f3:a1:64:24:19:cb:24:73:1e:d6:2b:3e:4c:
aa:5e:e4:5f:bd:d5:a0:c9:7a:c6:f8:c6:21:8b:6d:
bc:74:87:38:36:26:45:6a:1e:d6:ad:e2:be:98:d5:
1b:17:c9:bf:e8:87:2d:39:f2:65:a1:bb:34:bd:32:
ca:3e:4b:f3:32:86:18:22:42:d7:b0:2c:9a:6d:5d:
a3:1c:82:64:ba:e5:93:26:e6:ae:9c:95:ce:a7:03:
1b:9d:56:34:10:b7:11:6a:dc:00:80:84:a5:ae:fd:
83:83:0f:08:7b:5f:7a:ec:fd:bf:9a:0f:dd:2f:cd:
36:a9:a1:04:e3:3f:e8:69:e4:89:af:a8:bd:72:60:
cb:85:48:bd:80:4a:8a:7a:12:d6:f3:5f:de:e2:ef:
c9:36:45:ef:ff:95:8b:7b:b3:05:6d:3f:ac:71:1b:
1c:73:97:9d:7c:1b:50:46:c1:5f:c1:59:85:ad:91:
fb:22:3a:0c:36:52:f0:88:7a:94:3c:9d:c7:0c:68:
4e:5b:b7:d6:24:9a:72:bc:10:9f:b7:db:86:6c:cc:
7b:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:5D:F2:CA:BE:F6:80:CE:97:21:AF:EB:02:00:B1:F7:C8:4C:BA:29
X509v3 Authority Key Identifier:
keyid:24:1D:E0:49:AC:3C:93:26:31:78:5D:79:E6:56:9A:B7:CF:57:A3:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5D8F51B1D1657BF366614511A20581BDED03B32FBCD5E9D471AF986BA436211B/0/241DE049AC3C932631785D79E6569AB7CF57A340.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/241DE049AC3C932631785D79E6569AB7CF57A340.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5D8F51B1D1657BF366614511A20581BDED03B32FBCD5E9D471AF986BA436211B/0/3230302e3132342e3132372e302f32342d3234203d3e203532323836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.124.127.0/24
Signature Algorithm: sha256WithRSAEncryption
11:81:2f:4f:30:a9:20:ee:41:cc:fe:32:4c:02:cd:6f:b8:89:
9d:0f:3f:9f:b6:b1:35:27:d3:af:29:23:eb:d3:8d:62:8f:92:
65:37:2a:fd:08:9f:ef:83:56:a5:09:c1:83:4a:44:00:eb:36:
78:19:02:d4:c5:c0:df:1e:9d:e1:0d:c0:96:7d:e7:89:91:44:
44:e8:25:40:b9:17:aa:e2:c2:35:0e:ff:10:12:53:f7:5a:b1:
e1:5b:9c:71:a1:5f:09:7d:ea:64:1b:02:fd:1a:12:68:62:b1:
21:47:6a:e1:87:f0:cc:49:62:41:6d:2e:bf:ea:9f:9b:06:bb:
87:ee:ec:7f:de:3c:62:4a:b4:ab:2b:25:f7:21:1b:ea:41:34:
d4:4d:3a:7a:a6:fd:ab:53:c3:91:5b:91:28:04:51:0c:62:2c:
ce:92:29:3a:60:2b:b0:56:78:40:94:8a:9d:f6:32:07:ce:11:
05:9c:5a:41:0e:d6:de:01:ff:e2:f2:f4:5b:48:f7:12:68:0b:
fd:a1:7b:d8:b7:59:54:7b:39:7b:56:4a:e2:5c:21:0f:ec:8b:
89:4d:a2:be:4a:42:39:8c:05:1e:7f:7a:46:57:f6:ba:63:21:
19:1a:e3:79:4e:a6:96:4d:0c:a9:ee:2c:46:ac:7b:af:47:3c:
4e:78:0c:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 08:17:07 2025 by rpki-client