Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/67236B4CCEFBC43821AA42D45D1AF2A3747087F6A0476701E6F0A871E1E15BBF/0/323830333a623065303a393939313a3a2f34382d3438203d3e20333939333832.roa
File: 323830333a623065303a393939313a3a2f34382d3438203d3e20333939333832.roa (raw, json)
Hash identifier: Pfw0CsDsm+4LdOQ6XKthFxxmjIWR5P2RweBmqE3gN4s=
Subject key identifier: 21:59:0E:B4:37:08:9B:15:50:DC:77:CF:61:E2:44:FB:5C:A1:70:27
Certificate issuer: /CN=B9661B0E7FC75ED767D18B56FC749BAED21FC195
Certificate serial: 1E203C595904B6DEA2435767581EEB9B2D0728F3
Authority key identifier: B9:66:1B:0E:7F:C7:5E:D7:67:D1:8B:56:FC:74:9B:AE:D2:1F:C1:95
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B9661B0E7FC75ED767D18B56FC749BAED21FC195.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/67236B4CCEFBC43821AA42D45D1AF2A3747087F6A0476701E6F0A871E1E15BBF/0/323830333a623065303a393939313a3a2f34382d3438203d3e20333939333832.roa
Signing time: Tue 04 Feb 2025 18:13:16 +0000
ROA not before: Tue 04 Feb 2025 18:08:16 +0000
ROA not after: Tue 03 Feb 2026 18:13:16 +0000
asID: 399382
IP address blocks: 2803:b0e0:9991::/48 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/67236B4CCEFBC43821AA42D45D1AF2A3747087F6A0476701E6F0A871E1E15BBF/0/B9661B0E7FC75ED767D18B56FC749BAED21FC195.crl
rsync://repository.lacnic.net/rpki/lacnic/67236B4CCEFBC43821AA42D45D1AF2A3747087F6A0476701E6F0A871E1E15BBF/0/B9661B0E7FC75ED767D18B56FC749BAED21FC195.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B9661B0E7FC75ED767D18B56FC749BAED21FC195.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:20:3c:59:59:04:b6:de:a2:43:57:67:58:1e:eb:9b:2d:07:28:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B9661B0E7FC75ED767D18B56FC749BAED21FC195
Validity
Not Before: Feb 4 18:08:16 2025 GMT
Not After : Feb 3 18:13:16 2026 GMT
Subject: CN=21590EB437089B1550DC77CF61E244FB5CA17027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5a:0f:58:e7:19:47:45:9b:3c:eb:75:57:c3:
78:62:33:c2:53:4b:8e:2b:89:70:12:47:a9:67:4f:
67:c2:7f:1d:07:82:a0:15:51:50:dd:0a:8f:ba:7c:
8d:62:90:4d:d5:ca:55:11:b0:b9:b4:d9:6a:9b:2c:
75:4e:45:77:d2:ff:6b:0d:c0:37:17:6d:74:b0:64:
82:ea:e5:48:db:83:09:ae:78:c4:12:02:58:a8:5a:
01:6d:e2:29:88:c6:b2:59:66:c8:8e:e9:0d:47:d5:
34:c7:74:ae:5a:5e:6d:92:24:1e:c6:64:39:05:d1:
aa:77:b4:56:ec:6a:da:59:5a:bb:bd:f7:9f:e5:b2:
3b:7f:74:8b:77:62:fd:a0:82:95:9d:1b:d0:e4:76:
6a:21:d4:40:89:71:c5:21:0b:55:6a:f2:34:91:02:
6f:37:c6:f9:21:e4:e8:07:2d:05:ee:ba:d7:a0:e3:
bb:05:a5:3e:9b:45:05:a8:c9:96:cc:54:9b:6f:bf:
2b:77:32:01:4b:e5:04:8d:9f:44:c7:22:8f:ff:a6:
01:e2:71:47:6a:a6:df:4b:c0:a5:11:68:20:9b:2a:
85:5e:43:dd:3b:7b:29:a2:98:e6:ca:48:95:84:88:
f3:95:ca:fe:a6:25:7a:3b:5d:8a:3d:ee:a5:a6:3b:
51:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:59:0E:B4:37:08:9B:15:50:DC:77:CF:61:E2:44:FB:5C:A1:70:27
X509v3 Authority Key Identifier:
keyid:B9:66:1B:0E:7F:C7:5E:D7:67:D1:8B:56:FC:74:9B:AE:D2:1F:C1:95
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/67236B4CCEFBC43821AA42D45D1AF2A3747087F6A0476701E6F0A871E1E15BBF/0/B9661B0E7FC75ED767D18B56FC749BAED21FC195.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B9661B0E7FC75ED767D18B56FC749BAED21FC195.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/67236B4CCEFBC43821AA42D45D1AF2A3747087F6A0476701E6F0A871E1E15BBF/0/323830333a623065303a393939313a3a2f34382d3438203d3e20333939333832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:b0e0:9991::/48
Signature Algorithm: sha256WithRSAEncryption
51:fc:72:82:fa:3b:18:09:d2:36:aa:df:07:a1:8e:49:52:da:
d4:1c:e4:08:73:8e:73:e5:68:ab:35:6f:41:99:b1:ad:de:f4:
32:17:3c:28:1a:8d:94:da:39:fd:f2:6b:93:9a:24:20:0f:b4:
c4:8b:88:de:00:82:50:1b:6f:79:36:60:fe:c9:c8:b9:83:17:
71:eb:7a:18:94:d3:85:ac:56:87:d9:f3:da:ed:03:c0:2b:00:
a3:f4:a4:5c:f5:b7:f4:36:34:8d:74:40:1d:70:fa:58:23:d2:
11:1e:5d:41:0e:23:d6:2b:ff:3f:06:68:f2:75:c4:e6:2f:e5:
44:88:80:83:6e:93:21:8d:0e:83:94:93:12:8b:cc:5d:24:de:
90:6c:f9:2b:d0:fe:a1:3e:14:3c:71:30:4f:9b:a7:45:d3:1d:
99:a8:31:43:9f:80:6e:9b:e4:33:a4:14:e7:43:75:59:13:e6:
89:88:49:70:c9:8e:2d:a2:d3:36:65:b5:15:34:c0:76:37:ea:
e6:14:97:1c:30:f5:9b:c1:53:67:7c:96:4d:9c:75:47:0c:d2:
c2:6c:ad:bb:64:aa:e9:d4:cf:c8:4b:ea:da:ec:b4:22:99:08:
e0:b3:ea:6c:90:c7:1f:30:1f:56:2f:eb:78:fc:48:a1:50:ff:
8c:9f:57:1d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Apr 14 11:42:33 2025 by rpki-client