Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/685A8A8C5FF1C0108DD37782678E510CF98541D9627870C6D3FC413CB70BF3C9/0/32342e3135322e35382e302f32342d3234203d3e20323637383233.roa
File: 32342e3135322e35382e302f32342d3234203d3e20323637383233.roa (raw, json)
Hash identifier: RT+1F99+p+oEvsYp15mC8h3HNyJc3wqAUciuoqYsX70=
Subject key identifier: 9E:E4:F1:31:8B:CE:10:32:C9:FC:6F:88:41:DA:34:D0:35:D7:EE:5A
Certificate issuer: /CN=CC09DFFD6BD84B6171B7627FBCF1287DAC4DC9E9
Certificate serial: 28C924A85548B894163804D234D61DDB00186196
Authority key identifier: CC:09:DF:FD:6B:D8:4B:61:71:B7:62:7F:BC:F1:28:7D:AC:4D:C9:E9
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CC09DFFD6BD84B6171B7627FBCF1287DAC4DC9E9.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/685A8A8C5FF1C0108DD37782678E510CF98541D9627870C6D3FC413CB70BF3C9/0/32342e3135322e35382e302f32342d3234203d3e20323637383233.roa
Signing time: Tue 18 Feb 2025 17:00:00 +0000
ROA not before: Tue 18 Feb 2025 16:55:00 +0000
ROA not after: Tue 17 Feb 2026 17:00:00 +0000
asID: 267823
IP address blocks: 24.152.58.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/685A8A8C5FF1C0108DD37782678E510CF98541D9627870C6D3FC413CB70BF3C9/0/CC09DFFD6BD84B6171B7627FBCF1287DAC4DC9E9.crl
rsync://repository.lacnic.net/rpki/lacnic/685A8A8C5FF1C0108DD37782678E510CF98541D9627870C6D3FC413CB70BF3C9/0/CC09DFFD6BD84B6171B7627FBCF1287DAC4DC9E9.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CC09DFFD6BD84B6171B7627FBCF1287DAC4DC9E9.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 15:36:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
28:c9:24:a8:55:48:b8:94:16:38:04:d2:34:d6:1d:db:00:18:61:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CC09DFFD6BD84B6171B7627FBCF1287DAC4DC9E9
Validity
Not Before: Feb 18 16:55:00 2025 GMT
Not After : Feb 17 17:00:00 2026 GMT
Subject: CN=9EE4F1318BCE1032C9FC6F8841DA34D035D7EE5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:dc:c0:08:f7:d9:ed:d4:e8:9e:b8:7a:cf:8b:
8a:4b:3f:10:01:9e:e8:4b:0c:5a:dd:1c:81:30:aa:
6a:e4:94:68:13:c6:a0:d3:6d:7b:9d:ab:6c:7d:3c:
36:b5:02:cf:e9:18:b0:e6:98:02:03:be:87:50:1e:
60:70:41:c0:d2:87:36:67:7e:9d:4b:55:aa:95:ec:
d4:28:c0:e6:bb:0d:3b:17:ee:d9:6e:38:56:8e:14:
db:b9:cd:dd:71:ac:04:06:40:ea:90:61:54:8d:3e:
d2:b8:cd:17:63:4e:30:85:dd:8b:91:4b:92:d4:9b:
ba:f3:89:24:5a:31:92:30:c6:53:5c:59:8c:40:53:
1f:5c:7c:da:6d:37:fc:37:17:9a:43:bf:e4:1d:fa:
4c:17:0e:a1:30:0d:dc:8f:04:e2:4b:db:a7:22:de:
27:9e:fb:bb:2f:48:7c:7e:98:62:5e:16:d3:46:2c:
26:78:3d:25:c3:ce:ed:be:04:86:a7:57:e2:56:25:
a3:d4:1f:61:3b:c0:ce:ce:cd:90:3a:2f:f6:2e:cc:
1b:ec:64:03:60:85:0a:a9:6d:c8:d4:e3:02:3b:15:
63:ec:0e:6c:76:2d:08:b4:cc:67:d0:bc:0c:82:8a:
87:e9:07:30:52:f6:a4:1d:b1:15:90:75:e4:ce:9c:
66:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:E4:F1:31:8B:CE:10:32:C9:FC:6F:88:41:DA:34:D0:35:D7:EE:5A
X509v3 Authority Key Identifier:
keyid:CC:09:DF:FD:6B:D8:4B:61:71:B7:62:7F:BC:F1:28:7D:AC:4D:C9:E9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/685A8A8C5FF1C0108DD37782678E510CF98541D9627870C6D3FC413CB70BF3C9/0/CC09DFFD6BD84B6171B7627FBCF1287DAC4DC9E9.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CC09DFFD6BD84B6171B7627FBCF1287DAC4DC9E9.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/685A8A8C5FF1C0108DD37782678E510CF98541D9627870C6D3FC413CB70BF3C9/0/32342e3135322e35382e302f32342d3234203d3e20323637383233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
24.152.58.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:34:d1:a6:2f:f6:de:02:5c:92:47:06:5a:69:32:58:93:83:
9b:41:28:61:9f:4d:bc:ba:a6:3c:0d:8e:a8:43:79:5a:6b:3b:
55:d5:9b:4f:af:79:80:f2:50:88:ea:4a:50:0c:72:b8:de:6f:
3c:b8:a6:17:e1:f1:17:e8:54:41:54:eb:1f:fc:70:97:2e:8f:
9b:3e:eb:4a:64:b2:70:e1:e9:c8:d1:90:e6:e1:8b:91:97:6a:
ac:11:70:98:91:f6:19:68:44:de:c6:6d:a6:cb:16:71:f2:79:
91:f6:df:07:94:ea:83:cc:94:e7:db:c1:67:e4:ec:f2:71:fe:
ba:8f:3f:3e:df:ad:60:0f:7d:36:cf:83:ba:ef:01:9c:ce:b9:
ca:cc:9c:15:f9:5e:39:ce:2f:8d:ae:c4:02:32:06:b3:20:74:
53:e1:3e:08:a0:7a:37:b2:1d:43:f2:2e:51:bb:11:3e:50:ce:
ee:c8:44:b6:91:0c:5b:9d:5a:b4:4b:c7:70:43:6a:5e:2d:0a:
f8:65:bb:d0:3c:61:f6:f1:bb:0a:35:aa:0f:93:bb:aa:00:c6:
4a:b4:0c:19:4c:12:d4:77:47:1f:55:ff:92:cf:24:1d:c9:44:
56:41:4d:26:3a:b8:fd:0f:2e:d7:92:09:08:26:16:6a:dd:c3:
a9:3f:a3:0d
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUKMkkqFVIuJQWOATSNNYd2wAYYZYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQ0MwOURGRkQ2QkQ4NEI2MTcxQjc2MjdGQkNGMTI4N0RB
QzREQzlFOTAeFw0yNTAyMTgxNjU1MDBaFw0yNjAyMTcxNzAwMDBaMDMxMTAvBgNV
BAMTKDlFRTRGMTMxOEJDRTEwMzJDOUZDNkY4ODQxREEzNEQwMzVEN0VFNUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx3MAI99nt1OieuHrPi4pLPxAB
nuhLDFrdHIEwqmrklGgTxqDTbXudq2x9PDa1As/pGLDmmAIDvodQHmBwQcDShzZn
fp1LVaqV7NQowOa7DTsX7tluOFaOFNu5zd1xrAQGQOqQYVSNPtK4zRdjTjCF3YuR
S5LUm7rziSRaMZIwxlNcWYxAUx9cfNptN/w3F5pDv+Qd+kwXDqEwDdyPBOJL26ci
3iee+7svSHx+mGJeFtNGLCZ4PSXDzu2+BIanV+JWJaPUH2E7wM7OzZA6L/YuzBvs
ZANghQqpbcjU4wI7FWPsDmx2LQi0zGfQvAyCiofpBzBS9qQdsRWQdeTOnGaPAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUnuTxMYvOEDLJ/G+IQdo00DXX7lowHwYDVR0j
BBgwFoAUzAnf/WvYS2Fxt2J/vPEofaxNyekwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy82ODVBOEE4QzVGRjFDMDEwOEREMzc3ODI2NzhFNTEwQ0Y5
ODU0MUQ5NjI3ODcwQzZEM0ZDNDEzQ0I3MEJGM0M5LzAvQ0MwOURGRkQ2QkQ4NEI2
MTcxQjc2MjdGQkNGMTI4N0RBQzREQzlFOS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DQzA5REZGRDZCRDg0QjYxNzFC
NzYyN0ZCQ0YxMjg3REFDNERDOUU5LmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNjg1QThBOEM1RkYxQzAxMDhERDM3NzgyNjc4RTUxMENGOTg1NDFEOTYy
Nzg3MEM2RDNGQzQxM0NCNzBCRjNDOS8wLzMyMzQyZTMxMzUzMjJlMzUzODJlMzAy
ZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzYzNzM4MzIzMy5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEABiYOjAN
BgkqhkiG9w0BAQsFAAOCAQEAHDTRpi/23gJckkcGWmkyWJODm0EoYZ9NvLqmPA2O
qEN5Wms7VdWbT695gPJQiOpKUAxyuN5vPLimF+HxF+hUQVTrH/xwly6Pmz7rSmSy
cOHpyNGQ5uGLkZdqrBFwmJH2GWhE3sZtpssWcfJ5kfbfB5Tqg8yU59vBZ+Ts8nH+
uo8/Pt+tYA99Ns+Duu8BnM65ysycFfleOc4vja7EAjIGsyB0U+E+CKB6N7IdQ/Iu
UbsRPlDO7shEtpEMW51atEvHcENqXi0K+GW70Dxh9vG7CjWqD5O7qgDGSrQMGUwS
1HdHH1X/ks8kHclEVkFNJjq4/Q8u15IJCCYWat3DqT+jDQ==
-----END CERTIFICATE-----
Generated at Mon Apr 14 02:37:35 2025 by rpki-client