Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/636FF6D8D8EC63E16B2FEC4411B685E89C831C4E1924C0D16A5BF1D9FFD965EE/0/3139302e3130382e3139382e302f32342d3234203d3e203532323533.roa
File: 3139302e3130382e3139382e302f32342d3234203d3e203532323533.roa (raw, json)
Hash identifier: kq3EgniFKPWDNKT1+3414sGiLh3YzVdU+UsglLqfImk=
Subject key identifier: 52:0E:90:58:A6:A6:F7:31:37:8B:85:65:8B:85:E3:B0:8A:F3:15:6C
Certificate issuer: /CN=430B8CC1EC30DC6EF3BF59369DAA6F85C022BC14
Certificate serial: 262ADE07D224DDE956D4C63E19CAD31BB0CFA710
Authority key identifier: 43:0B:8C:C1:EC:30:DC:6E:F3:BF:59:36:9D:AA:6F:85:C0:22:BC:14
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/430B8CC1EC30DC6EF3BF59369DAA6F85C022BC14.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/636FF6D8D8EC63E16B2FEC4411B685E89C831C4E1924C0D16A5BF1D9FFD965EE/0/3139302e3130382e3139382e302f32342d3234203d3e203532323533.roa
Signing time: Tue 04 Feb 2025 18:28:36 +0000
ROA not before: Tue 04 Feb 2025 18:23:36 +0000
ROA not after: Tue 03 Feb 2026 18:28:36 +0000
asID: 52253
IP address blocks: 190.108.198.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/636FF6D8D8EC63E16B2FEC4411B685E89C831C4E1924C0D16A5BF1D9FFD965EE/0/430B8CC1EC30DC6EF3BF59369DAA6F85C022BC14.crl
rsync://repository.lacnic.net/rpki/lacnic/636FF6D8D8EC63E16B2FEC4411B685E89C831C4E1924C0D16A5BF1D9FFD965EE/0/430B8CC1EC30DC6EF3BF59369DAA6F85C022BC14.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/430B8CC1EC30DC6EF3BF59369DAA6F85C022BC14.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 15:39:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:2a:de:07:d2:24:dd:e9:56:d4:c6:3e:19:ca:d3:1b:b0:cf:a7:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=430B8CC1EC30DC6EF3BF59369DAA6F85C022BC14
Validity
Not Before: Feb 4 18:23:36 2025 GMT
Not After : Feb 3 18:28:36 2026 GMT
Subject: CN=520E9058A6A6F731378B85658B85E3B08AF3156C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6a:72:c7:48:63:47:13:64:9c:2d:91:1b:9f:
a7:81:09:89:95:ac:9e:1b:d6:e6:68:25:8c:7a:65:
3e:7d:c3:a3:94:58:ca:41:c9:90:08:bd:5c:e0:98:
4c:89:be:dc:80:f0:79:46:83:48:8f:30:aa:44:bb:
ca:5f:a3:f7:c8:87:ea:61:40:4f:c0:24:72:41:c1:
08:2e:18:f2:39:d0:82:5f:97:ed:2b:31:07:2f:00:
f6:69:48:98:aa:42:bd:e8:cc:9c:76:75:a0:ab:08:
23:89:f7:c2:f4:97:d4:c2:91:bc:f5:1c:1c:82:e7:
50:57:55:88:b8:86:1f:be:41:9a:2e:d2:4b:6d:65:
64:e4:aa:51:7a:18:c5:0f:93:85:3e:7c:b5:5d:ca:
0d:3b:dc:a9:f7:39:03:ba:fa:15:f6:4b:2b:af:a7:
07:c5:52:0b:f7:f6:e3:ce:b4:ea:ff:1f:e0:a2:63:
a0:40:c7:27:44:4e:37:c8:8a:3b:a4:79:fa:4c:24:
20:2a:43:7a:3b:95:83:16:69:da:70:4c:d8:c4:6d:
89:43:81:a1:a2:a3:76:21:88:dd:e4:b4:f5:8d:49:
b5:54:7f:fb:9b:0c:43:4b:dc:31:11:3a:43:d7:3f:
38:20:41:c4:10:c7:d5:14:a3:6d:01:ca:35:c1:a2:
b5:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:0E:90:58:A6:A6:F7:31:37:8B:85:65:8B:85:E3:B0:8A:F3:15:6C
X509v3 Authority Key Identifier:
keyid:43:0B:8C:C1:EC:30:DC:6E:F3:BF:59:36:9D:AA:6F:85:C0:22:BC:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/636FF6D8D8EC63E16B2FEC4411B685E89C831C4E1924C0D16A5BF1D9FFD965EE/0/430B8CC1EC30DC6EF3BF59369DAA6F85C022BC14.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/430B8CC1EC30DC6EF3BF59369DAA6F85C022BC14.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/636FF6D8D8EC63E16B2FEC4411B685E89C831C4E1924C0D16A5BF1D9FFD965EE/0/3139302e3130382e3139382e302f32342d3234203d3e203532323533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.108.198.0/24
Signature Algorithm: sha256WithRSAEncryption
11:0e:67:3d:04:ea:9f:22:da:90:18:20:a1:c1:3d:84:a7:04:
ec:b2:43:8b:bf:d4:3c:07:6a:e2:b8:0e:49:9d:79:43:16:9f:
e4:b2:15:d3:4b:7f:5a:9f:23:22:c7:1d:95:80:2d:ff:10:2f:
3a:73:f6:e0:03:7e:74:12:d6:25:d8:28:7b:97:1f:05:22:80:
e0:9d:b7:38:61:95:ed:b6:b1:7b:36:12:19:e6:fb:b6:f7:b7:
21:2b:35:a0:8f:c8:71:dc:a2:15:00:80:46:15:2f:ba:60:31:
4b:21:aa:58:91:f6:11:6a:d1:16:ec:30:c9:2f:68:f5:2b:f4:
3e:4d:df:0a:bc:49:34:69:86:6e:c3:91:78:2f:2d:b5:32:b3:
8b:1f:96:c0:be:7b:5f:b0:de:fd:49:5e:a4:81:22:90:2c:49:
51:ad:84:02:a9:f0:3b:ca:df:1a:c5:cd:03:54:24:0a:58:b0:
f6:a9:e3:70:d3:7b:ec:91:cb:4e:94:53:0c:91:d7:cd:62:e3:
0d:a7:94:71:bb:d1:51:dd:df:a3:9c:b7:41:04:25:63:53:7c:
13:f6:f0:ad:69:48:fa:7a:a6:23:3a:b1:22:50:80:ae:fd:e1:
b8:3f:b2:04:b1:3c:ec:e9:70:b6:eb:b2:c1:4a:a5:5f:fe:8e:
1a:80:9b:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 10:55:08 2025 by rpki-client