Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5EFC34274A3F89B390895198A56DEB5CF1A0BD26AC03C428A0593134D1010197/0/3139302e39392e3131322e302f32322d3234203d3e20323632323539.roa
File: 3139302e39392e3131322e302f32322d3234203d3e20323632323539.roa (raw, json)
Hash identifier: CY/4o43mWbxyy3HP0vnDJzlsc2gukqKumA4fjaWKPX4=
Subject key identifier: 85:63:5E:6D:55:B8:6C:CA:46:00:14:FD:44:E7:79:16:DC:AB:4D:16
Certificate issuer: /CN=D59DB064EA8D7FEBCAF7A212DAD3CC7D341F95B7
Certificate serial: 79B02310615F4FECB63E2206782026C9DDE17352
Authority key identifier: D5:9D:B0:64:EA:8D:7F:EB:CA:F7:A2:12:DA:D3:CC:7D:34:1F:95:B7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D59DB064EA8D7FEBCAF7A212DAD3CC7D341F95B7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5EFC34274A3F89B390895198A56DEB5CF1A0BD26AC03C428A0593134D1010197/0/3139302e39392e3131322e302f32322d3234203d3e20323632323539.roa
Signing time: Tue 04 Feb 2025 18:06:29 +0000
ROA not before: Tue 04 Feb 2025 18:01:29 +0000
ROA not after: Tue 03 Feb 2026 18:06:29 +0000
asID: 262259
IP address blocks: 190.99.112.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/5EFC34274A3F89B390895198A56DEB5CF1A0BD26AC03C428A0593134D1010197/0/D59DB064EA8D7FEBCAF7A212DAD3CC7D341F95B7.crl
rsync://repository.lacnic.net/rpki/lacnic/5EFC34274A3F89B390895198A56DEB5CF1A0BD26AC03C428A0593134D1010197/0/D59DB064EA8D7FEBCAF7A212DAD3CC7D341F95B7.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D59DB064EA8D7FEBCAF7A212DAD3CC7D341F95B7.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 11:51:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:b0:23:10:61:5f:4f:ec:b6:3e:22:06:78:20:26:c9:dd:e1:73:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D59DB064EA8D7FEBCAF7A212DAD3CC7D341F95B7
Validity
Not Before: Feb 4 18:01:29 2025 GMT
Not After : Feb 3 18:06:29 2026 GMT
Subject: CN=85635E6D55B86CCA460014FD44E77916DCAB4D16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:8d:db:24:f6:89:ba:80:ea:4b:70:af:4c:21:
e3:26:61:2b:da:6d:d4:2a:28:c9:c7:03:8e:c8:4f:
0e:46:a6:99:c7:1a:95:61:28:86:86:84:2f:40:4e:
dc:0c:11:c3:e3:f6:25:27:de:65:20:ee:b7:ca:6e:
4e:87:fc:c8:29:dd:51:d2:ff:1a:dd:72:ff:dd:1a:
e7:d9:49:b1:ee:00:0b:11:71:cd:14:d8:55:f3:68:
b6:e3:d6:24:50:52:24:18:1e:eb:c7:02:9c:32:e5:
6d:3c:68:2e:dd:7e:88:8a:68:21:43:1d:fe:8f:ca:
8e:63:54:40:44:cc:fd:89:28:0b:82:f6:c3:0a:24:
5d:25:5a:fe:5d:b9:13:e2:f4:36:3d:36:28:50:c6:
55:8b:2d:fa:5e:ed:e3:41:ba:f3:a9:5b:0a:eb:11:
fc:72:a4:aa:8a:d7:41:9e:91:fd:45:ff:bf:da:79:
5c:47:75:50:23:9e:0d:43:02:2b:c9:f9:e0:53:a7:
91:8d:b7:16:99:9f:09:8d:dc:3a:a2:14:b7:3b:cc:
ed:a4:ff:de:bb:09:8a:10:f0:3d:ae:bb:30:88:85:
06:6b:22:da:5a:08:c6:2a:db:ce:cd:3a:a1:22:d4:
2a:c0:4c:75:c8:b3:e9:58:8a:0c:e7:43:e6:27:89:
01:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:63:5E:6D:55:B8:6C:CA:46:00:14:FD:44:E7:79:16:DC:AB:4D:16
X509v3 Authority Key Identifier:
keyid:D5:9D:B0:64:EA:8D:7F:EB:CA:F7:A2:12:DA:D3:CC:7D:34:1F:95:B7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5EFC34274A3F89B390895198A56DEB5CF1A0BD26AC03C428A0593134D1010197/0/D59DB064EA8D7FEBCAF7A212DAD3CC7D341F95B7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D59DB064EA8D7FEBCAF7A212DAD3CC7D341F95B7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5EFC34274A3F89B390895198A56DEB5CF1A0BD26AC03C428A0593134D1010197/0/3139302e39392e3131322e302f32322d3234203d3e20323632323539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.99.112.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:89:7b:1c:3d:be:28:7d:42:ff:a6:c1:93:65:f1:0a:db:bb:
ed:ef:b8:6c:de:21:5d:6e:f7:b7:ed:92:4f:54:2b:9c:40:85:
79:52:26:dd:7f:24:0f:24:07:a9:61:b6:b5:82:02:98:98:c0:
58:66:3b:50:15:d2:b8:c5:20:8e:98:4d:47:f9:a2:88:b3:d9:
0b:c7:b6:ce:2c:89:af:ac:64:37:af:6e:a6:f9:2f:b9:3a:87:
cc:5e:95:5f:62:bc:c6:bf:2b:f0:24:b9:93:1d:b4:8d:0a:80:
b6:9a:5c:29:9a:fd:73:5e:e4:64:9f:29:52:a1:f0:8c:54:dd:
78:64:a5:43:7b:7b:92:d7:72:e2:cf:90:68:da:ff:ce:5f:a0:
2c:11:ce:2d:fe:1d:0b:af:5f:2e:dd:d5:7e:8e:1d:be:31:ee:
05:28:a3:cf:47:9e:11:c9:4e:e1:a8:ed:6a:e5:18:be:25:81:
0d:07:94:66:ab:d2:9e:16:b7:d1:42:47:12:f6:89:6c:8f:d1:
f4:8b:d1:0a:b0:1f:ed:fb:ce:33:97:6a:14:41:98:75:ad:3c:
de:9f:2e:ec:10:39:a3:31:55:bd:6c:c7:32:15:f1:b7:9f:6a:
2c:ee:06:3c:aa:19:63:65:42:1b:e0:2d:00:12:6c:fe:7f:2d:
05:9d:94:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 12:52:21 2025 by rpki-client