Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/64B0A40F11547A1880CB4465F57270B879E0ACAB83F42F6C2674A4166EF87ACC/0/323830333a666535303a3a2f33322d3438203d3e20323733323335.roa
File: 323830333a666535303a3a2f33322d3438203d3e20323733323335.roa (raw, json)
Hash identifier: o5bmLGfwATGQe5Qs3QJwE8ySNbxP5YiSruceSJmjC6s=
Subject key identifier: 15:9A:5F:6C:05:9F:C6:E9:54:1F:09:49:D5:43:3C:3F:0C:E1:B4:80
Certificate issuer: /CN=DF7BA6674A1C6C4D2CC18E914BC6A3AD8A01755B
Certificate serial: 5980DE61347E437D9F14051C174BC4DF06527108
Authority key identifier: DF:7B:A6:67:4A:1C:6C:4D:2C:C1:8E:91:4B:C6:A3:AD:8A:01:75:5B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DF7BA6674A1C6C4D2CC18E914BC6A3AD8A01755B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/64B0A40F11547A1880CB4465F57270B879E0ACAB83F42F6C2674A4166EF87ACC/0/323830333a666535303a3a2f33322d3438203d3e20323733323335.roa
Signing time: Wed 02 Apr 2025 05:13:39 +0000
ROA not before: Wed 02 Apr 2025 05:08:39 +0000
ROA not after: Wed 01 Apr 2026 05:13:39 +0000
asID: 273235
IP address blocks: 2803:fe50::/32 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/64B0A40F11547A1880CB4465F57270B879E0ACAB83F42F6C2674A4166EF87ACC/0/DF7BA6674A1C6C4D2CC18E914BC6A3AD8A01755B.crl
rsync://repository.lacnic.net/rpki/lacnic/64B0A40F11547A1880CB4465F57270B879E0ACAB83F42F6C2674A4166EF87ACC/0/DF7BA6674A1C6C4D2CC18E914BC6A3AD8A01755B.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DF7BA6674A1C6C4D2CC18E914BC6A3AD8A01755B.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:80:de:61:34:7e:43:7d:9f:14:05:1c:17:4b:c4:df:06:52:71:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DF7BA6674A1C6C4D2CC18E914BC6A3AD8A01755B
Validity
Not Before: Apr 2 05:08:39 2025 GMT
Not After : Apr 1 05:13:39 2026 GMT
Subject: CN=159A5F6C059FC6E9541F0949D5433C3F0CE1B480
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:4e:60:59:5b:1a:d7:b9:e6:ea:d7:41:68:9f:
4f:a3:06:c8:5b:6a:17:aa:fb:24:a7:01:dc:ad:4f:
e0:ed:06:6b:31:7b:d5:d7:05:aa:92:3a:0a:d9:63:
10:19:29:90:74:96:d3:b4:87:88:2b:0a:bd:c7:4b:
b5:8f:ed:2f:d2:64:33:08:3b:f4:23:2a:8e:81:d6:
e9:c6:51:93:82:3e:8d:9a:31:e4:ad:50:d1:3c:46:
0e:fd:fa:72:64:19:19:03:ab:7c:36:f2:fb:13:9c:
43:2f:c6:8f:f5:59:85:04:89:42:54:06:c9:e0:0d:
4f:26:01:b5:40:ab:cc:36:09:c9:12:58:88:f7:87:
42:8d:9b:8e:a1:49:91:89:99:b3:70:84:b4:71:c6:
2b:ab:da:62:0c:69:b9:85:95:7a:2a:f0:e0:a6:ef:
d0:f4:a1:a2:7f:b1:ac:d7:93:90:aa:41:2b:96:e3:
70:0a:19:ae:61:9c:0c:67:88:a7:97:26:1b:e9:93:
61:4e:7c:09:ae:86:73:b7:04:37:81:34:0c:ba:91:
79:6c:ca:e2:f8:4e:b4:0e:47:b2:06:2f:47:d8:26:
01:8b:9f:c8:f3:75:5c:60:9e:47:d7:07:4f:9f:88:
03:91:c3:bc:90:1a:fc:59:b5:e6:ec:3a:01:7c:18:
15:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:9A:5F:6C:05:9F:C6:E9:54:1F:09:49:D5:43:3C:3F:0C:E1:B4:80
X509v3 Authority Key Identifier:
keyid:DF:7B:A6:67:4A:1C:6C:4D:2C:C1:8E:91:4B:C6:A3:AD:8A:01:75:5B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/64B0A40F11547A1880CB4465F57270B879E0ACAB83F42F6C2674A4166EF87ACC/0/DF7BA6674A1C6C4D2CC18E914BC6A3AD8A01755B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DF7BA6674A1C6C4D2CC18E914BC6A3AD8A01755B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/64B0A40F11547A1880CB4465F57270B879E0ACAB83F42F6C2674A4166EF87ACC/0/323830333a666535303a3a2f33322d3438203d3e20323733323335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:fe50::/32
Signature Algorithm: sha256WithRSAEncryption
26:7d:64:e5:fa:5b:a1:fe:25:57:75:e2:38:6c:53:80:0f:b7:
d9:ac:0b:00:58:13:48:17:4b:51:a7:67:5c:fc:5a:bb:51:9c:
56:1a:c8:95:55:37:2b:8c:1d:c0:5e:54:d6:df:c8:6a:c8:b2:
16:40:22:8c:63:83:44:12:a5:7c:de:4a:e8:c7:fc:cb:76:18:
b3:76:e0:77:a2:7a:bc:53:84:0e:8b:ff:f4:11:72:4c:c7:18:
e3:62:50:d1:09:2f:7b:d1:ba:43:9a:86:bd:c6:81:ad:a6:59:
8c:6f:c8:66:79:03:c5:7a:e9:8b:ac:d6:fc:47:16:b4:da:c4:
03:6e:9f:c6:99:09:5e:fa:76:e6:66:d0:85:64:df:af:1c:e2:
2a:a3:d8:0c:fb:32:6e:e7:a7:0a:6c:ad:14:0c:59:22:40:dd:
d9:76:a1:a1:84:bd:f3:56:56:e3:a0:e9:28:02:0b:3d:ca:5e:
fb:ff:54:08:01:3c:8e:c8:d1:af:ff:6b:12:26:62:b0:c6:9f:
60:21:04:8a:ec:53:d0:07:5a:15:fa:71:0e:74:69:30:47:e3:
47:1f:fc:b9:87:be:7b:5b:88:f7:94:cf:d7:06:59:85:dd:2a:
37:ec:5e:c2:02:75:a1:1c:e2:1a:4f:b4:58:45:2b:18:da:b1:
9b:68:2a:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 15:20:12 2025 by rpki-client