Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/64BE182DE4657F29B77D19D907210D65D5419A77C6402515C05340E28FDCE5C2/0/3230312e3232312e39342e302f32342d3234203d3e203237373839.roa
File: 3230312e3232312e39342e302f32342d3234203d3e203237373839.roa (raw, json)
Hash identifier: odOAVYThkCgnEMybuMCwRnb/cucuugQxvkyGjZ4CTfg=
Subject key identifier: AF:C3:72:BD:98:E4:5D:13:36:3E:29:70:AC:57:27:64:DE:51:11:05
Certificate issuer: /CN=2E7374FD42831BDDB6286DA8B8A1D5DBADA59B26
Certificate serial: 786C3AE31508260A61732EFEFD5EE3F97A17D0EF
Authority key identifier: 2E:73:74:FD:42:83:1B:DD:B6:28:6D:A8:B8:A1:D5:DB:AD:A5:9B:26
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2E7374FD42831BDDB6286DA8B8A1D5DBADA59B26.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/64BE182DE4657F29B77D19D907210D65D5419A77C6402515C05340E28FDCE5C2/0/3230312e3232312e39342e302f32342d3234203d3e203237373839.roa
Signing time: Tue 04 Feb 2025 20:08:32 +0000
ROA not before: Tue 04 Feb 2025 20:03:32 +0000
ROA not after: Tue 03 Feb 2026 20:08:32 +0000
asID: 27789
IP address blocks: 201.221.94.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/64BE182DE4657F29B77D19D907210D65D5419A77C6402515C05340E28FDCE5C2/0/2E7374FD42831BDDB6286DA8B8A1D5DBADA59B26.crl
rsync://repository.lacnic.net/rpki/lacnic/64BE182DE4657F29B77D19D907210D65D5419A77C6402515C05340E28FDCE5C2/0/2E7374FD42831BDDB6286DA8B8A1D5DBADA59B26.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2E7374FD42831BDDB6286DA8B8A1D5DBADA59B26.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 14:20:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:6c:3a:e3:15:08:26:0a:61:73:2e:fe:fd:5e:e3:f9:7a:17:d0:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2E7374FD42831BDDB6286DA8B8A1D5DBADA59B26
Validity
Not Before: Feb 4 20:03:32 2025 GMT
Not After : Feb 3 20:08:32 2026 GMT
Subject: CN=AFC372BD98E45D13363E2970AC572764DE511105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:90:ce:15:9a:58:18:3f:6b:2f:0b:7b:1b:bf:
06:66:80:81:a4:2e:68:3e:0e:22:5e:33:56:df:a6:
fe:9c:57:20:bb:4b:54:8c:ab:1c:54:05:1d:c6:04:
05:68:dd:f2:2d:a6:0d:95:56:56:aa:59:ca:42:63:
79:37:ca:44:db:0a:e3:df:05:27:71:d7:c4:ea:f9:
f1:1e:6f:fc:dc:5c:81:19:f4:9a:4b:6f:93:47:d6:
71:2a:12:a1:cb:88:e5:79:71:be:1a:1d:32:37:c2:
e2:ca:c6:34:83:97:d6:5b:97:cc:6c:ac:48:ff:0e:
7b:1f:74:52:28:5f:f7:30:af:67:6e:e6:91:50:cf:
f4:da:01:af:ac:0d:93:ac:6f:6b:9d:37:bf:49:ea:
28:3d:77:32:dd:e0:9b:5d:45:a5:11:6b:29:95:09:
17:26:57:88:78:a7:78:1d:e0:8a:2c:d6:1d:a5:11:
e8:ac:ee:03:bf:16:7e:0f:03:88:47:d1:b4:93:ad:
d3:25:d2:80:60:18:ae:2d:dc:1e:06:9b:12:53:f8:
83:7f:1d:f1:93:f8:69:38:a0:31:9c:1f:7a:93:1f:
12:57:ef:3e:bd:75:6d:99:33:a3:ef:58:64:0f:e9:
00:5c:b1:ba:98:12:f7:89:fa:dd:7a:ae:4c:23:c8:
db:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:C3:72:BD:98:E4:5D:13:36:3E:29:70:AC:57:27:64:DE:51:11:05
X509v3 Authority Key Identifier:
keyid:2E:73:74:FD:42:83:1B:DD:B6:28:6D:A8:B8:A1:D5:DB:AD:A5:9B:26
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/64BE182DE4657F29B77D19D907210D65D5419A77C6402515C05340E28FDCE5C2/0/2E7374FD42831BDDB6286DA8B8A1D5DBADA59B26.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2E7374FD42831BDDB6286DA8B8A1D5DBADA59B26.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/64BE182DE4657F29B77D19D907210D65D5419A77C6402515C05340E28FDCE5C2/0/3230312e3232312e39342e302f32342d3234203d3e203237373839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.221.94.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:7f:29:fc:e7:49:ed:7d:e4:af:f1:1c:19:e4:12:47:9e:a9:
08:53:7b:8a:87:08:ba:1d:4c:9a:43:79:35:1a:b8:a9:e8:6d:
c1:04:9c:b0:bd:33:ba:13:21:a2:ba:66:fa:a5:e8:2f:07:d8:
95:f2:0f:27:b9:4a:c3:b8:89:88:fc:46:9f:ac:fc:8d:4c:1d:
bf:14:67:78:98:f4:bf:f0:8e:fc:e8:ce:1d:00:81:dd:df:16:
de:2d:94:0a:61:2d:c5:9f:0d:24:28:c9:de:a1:c1:d6:e3:eb:
7f:56:f9:34:30:c7:fa:84:1c:ec:5c:2f:33:ef:64:4a:bd:34:
03:b0:ee:d8:bb:2f:ee:19:5f:04:95:90:aa:7f:7d:f3:c0:04:
dc:97:59:91:47:47:de:59:f2:44:a0:8b:c3:12:00:df:04:36:
e2:8c:0d:04:6c:0a:19:96:a2:5f:23:61:15:4e:e0:fd:0e:24:
92:8c:87:97:c4:d5:3b:3e:34:2e:21:85:e3:07:6b:9d:c5:53:
91:30:29:17:84:e3:e9:1e:13:0d:e3:4c:c1:91:0a:e4:74:8a:
92:ac:3c:db:17:8f:b7:ee:bd:aa:99:ed:02:1a:49:e6:d9:bf:
24:f7:36:cf:48:6e:b7:26:8a:ad:6c:12:a3:2e:c8:b8:3b:f9:
1c:8f:38:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 13:29:41 2025 by rpki-client