Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/65BCAF86490DE69A6BD6C41D86A84F0C8B0DACD9C7587D9663DE98A60A368D10/0/323830313a3165383a3a2f34302d3536203d3e20323634363037.roa
File: 323830313a3165383a3a2f34302d3536203d3e20323634363037.roa (raw, json)
Hash identifier: mS1Egt8gFVvit5wXukv4pGEuAnetM0+dETUkL+9b34c=
Subject key identifier: CA:9A:99:2F:A8:21:E1:7A:7A:17:5D:1D:0F:68:DE:FA:FF:CB:6B:F9
Certificate issuer: /CN=91A405EDF63A9F2958C6B36662A6B3CEF476A89D
Certificate serial: 03A16A79D324B50CCA720B7E0154A48222BAAAAC
Authority key identifier: 91:A4:05:ED:F6:3A:9F:29:58:C6:B3:66:62:A6:B3:CE:F4:76:A8:9D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/91A405EDF63A9F2958C6B36662A6B3CEF476A89D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/65BCAF86490DE69A6BD6C41D86A84F0C8B0DACD9C7587D9663DE98A60A368D10/0/323830313a3165383a3a2f34302d3536203d3e20323634363037.roa
Signing time: Tue 04 Feb 2025 18:21:57 +0000
ROA not before: Tue 04 Feb 2025 18:16:57 +0000
ROA not after: Tue 03 Feb 2026 18:21:57 +0000
asID: 264607
IP address blocks: 2801:1e8::/40 maxlen: 56
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/65BCAF86490DE69A6BD6C41D86A84F0C8B0DACD9C7587D9663DE98A60A368D10/0/91A405EDF63A9F2958C6B36662A6B3CEF476A89D.crl
rsync://repository.lacnic.net/rpki/lacnic/65BCAF86490DE69A6BD6C41D86A84F0C8B0DACD9C7587D9663DE98A60A368D10/0/91A405EDF63A9F2958C6B36662A6B3CEF476A89D.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/91A405EDF63A9F2958C6B36662A6B3CEF476A89D.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 14:33:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:a1:6a:79:d3:24:b5:0c:ca:72:0b:7e:01:54:a4:82:22:ba:aa:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91A405EDF63A9F2958C6B36662A6B3CEF476A89D
Validity
Not Before: Feb 4 18:16:57 2025 GMT
Not After : Feb 3 18:21:57 2026 GMT
Subject: CN=CA9A992FA821E17A7A175D1D0F68DEFAFFCB6BF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:9c:fb:9b:16:59:46:8c:8f:0f:66:58:7c:39:
4b:69:02:13:b4:1c:1f:8f:25:83:b8:4c:80:f0:75:
71:b5:32:00:fd:d1:6a:72:15:c5:15:53:fb:98:17:
a4:06:ca:5a:88:03:1c:8f:88:e5:df:52:10:ac:0b:
39:93:e8:63:b6:06:3d:ac:69:c2:f4:45:58:9e:93:
ef:1b:7a:b7:c0:4c:41:1e:2a:8f:f4:e7:6d:5a:9b:
99:42:85:6e:4e:03:75:77:58:82:ab:97:49:cb:db:
12:3f:59:ca:b4:4d:49:04:e7:71:ac:d7:ce:12:1c:
de:7f:38:5c:cb:2f:48:69:04:2a:03:8e:35:b1:2f:
dc:da:a7:0e:d8:1b:44:34:b2:c6:73:3a:8a:14:db:
b3:dd:2d:b3:ba:db:a9:05:62:4a:fa:81:0f:1b:3c:
2f:8d:86:6f:30:33:ec:50:9c:33:9d:55:7a:59:dc:
9c:96:18:dd:b5:43:53:de:71:12:c0:ce:28:46:05:
3c:07:78:8c:8b:bf:b6:6d:22:b4:bc:06:f8:68:34:
74:23:f8:4e:d6:48:68:8f:80:b0:04:22:91:94:84:
75:da:6c:9d:36:98:a2:29:04:74:b5:57:3b:5f:4f:
d8:11:30:b9:0c:12:9f:c6:9b:1c:31:74:80:2f:39:
9d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:9A:99:2F:A8:21:E1:7A:7A:17:5D:1D:0F:68:DE:FA:FF:CB:6B:F9
X509v3 Authority Key Identifier:
keyid:91:A4:05:ED:F6:3A:9F:29:58:C6:B3:66:62:A6:B3:CE:F4:76:A8:9D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/65BCAF86490DE69A6BD6C41D86A84F0C8B0DACD9C7587D9663DE98A60A368D10/0/91A405EDF63A9F2958C6B36662A6B3CEF476A89D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/91A405EDF63A9F2958C6B36662A6B3CEF476A89D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/65BCAF86490DE69A6BD6C41D86A84F0C8B0DACD9C7587D9663DE98A60A368D10/0/323830313a3165383a3a2f34302d3536203d3e20323634363037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:1e8::/40
Signature Algorithm: sha256WithRSAEncryption
67:4f:4b:a2:be:6e:15:54:89:de:72:e2:f4:11:46:f0:c2:26:
9b:a3:59:b9:93:6e:c2:82:10:f2:78:2b:47:ca:d0:8b:0b:67:
a2:60:40:53:3c:99:d0:54:a5:13:c7:0d:29:6e:8a:16:da:41:
84:d3:dd:97:52:bd:ff:68:8a:df:7c:fa:31:a4:a8:70:7b:50:
c6:83:c9:03:43:ef:20:21:43:c2:61:a8:3c:c5:4e:0f:06:75:
5f:cb:fa:49:ed:bd:81:fc:db:03:cd:ca:a9:46:60:ad:b9:42:
d4:01:23:18:46:10:c2:c5:f8:89:94:e8:b4:32:91:75:c7:41:
83:be:c6:bf:6d:3d:03:2a:59:4a:6e:e7:4c:50:0f:0f:58:6f:
ef:a6:6a:e0:22:c5:5d:ff:a5:0b:fa:47:a3:28:d1:65:04:15:
85:2c:97:03:83:10:88:a2:31:78:14:29:2c:5f:0c:55:10:8f:
c7:c9:c8:53:c4:3a:12:d6:73:6a:cb:4b:9d:2c:bd:34:b0:9e:
06:a1:14:9c:38:49:cd:a6:23:50:d9:7b:63:9b:20:c8:cb:21:
d1:38:3a:ab:72:00:4b:97:db:0b:d0:4c:df:67:fa:8e:74:d2:
20:31:6e:f7:25:79:7f:02:67:72:2e:27:9a:ad:a3:e7:4d:45:
cb:dd:90:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 09:09:41 2025 by rpki-client