Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6B448B2F99F750DEE4FB3820BFDEEA5C070AC78AC1DDEAE4BA5B472B580DA264/0/3136382e3139342e3230342e302f32322d3234203d3e203238303735.roa
File: 3136382e3139342e3230342e302f32322d3234203d3e203238303735.roa (raw, json)
Hash identifier: QVWszj8Fa1k2IvnSAr3wuoO/bfr9cqFdllObCe8jYXI=
Subject key identifier: E6:39:DB:F5:C7:7A:5E:F0:F7:A8:6E:C0:FB:C4:BD:93:67:CC:D7:94
Certificate issuer: /CN=CCC7DFB2C7C9FCF2F114061476ECB87B573A4E18
Certificate serial: 54961817A916F46A6D43E49F39B92C30148E0FAA
Authority key identifier: CC:C7:DF:B2:C7:C9:FC:F2:F1:14:06:14:76:EC:B8:7B:57:3A:4E:18
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CCC7DFB2C7C9FCF2F114061476ECB87B573A4E18.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/6B448B2F99F750DEE4FB3820BFDEEA5C070AC78AC1DDEAE4BA5B472B580DA264/0/3136382e3139342e3230342e302f32322d3234203d3e203238303735.roa
Signing time: Tue 04 Feb 2025 19:58:59 +0000
ROA not before: Tue 04 Feb 2025 19:53:59 +0000
ROA not after: Tue 03 Feb 2026 19:58:59 +0000
asID: 28075
IP address blocks: 168.194.204.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/6B448B2F99F750DEE4FB3820BFDEEA5C070AC78AC1DDEAE4BA5B472B580DA264/0/CCC7DFB2C7C9FCF2F114061476ECB87B573A4E18.crl
rsync://repository.lacnic.net/rpki/lacnic/6B448B2F99F750DEE4FB3820BFDEEA5C070AC78AC1DDEAE4BA5B472B580DA264/0/CCC7DFB2C7C9FCF2F114061476ECB87B573A4E18.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CCC7DFB2C7C9FCF2F114061476ECB87B573A4E18.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 13:19:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:96:18:17:a9:16:f4:6a:6d:43:e4:9f:39:b9:2c:30:14:8e:0f:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CCC7DFB2C7C9FCF2F114061476ECB87B573A4E18
Validity
Not Before: Feb 4 19:53:59 2025 GMT
Not After : Feb 3 19:58:59 2026 GMT
Subject: CN=E639DBF5C77A5EF0F7A86EC0FBC4BD9367CCD794
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:89:71:14:47:73:55:bb:5b:85:46:51:b0:c1:
d4:14:95:a0:18:63:85:40:e9:d9:c1:a3:1d:06:c0:
fc:59:0c:0f:43:bc:06:3d:83:6d:8b:92:62:f3:b7:
be:9c:86:42:5c:5d:91:ed:d5:28:37:7e:0e:8c:67:
aa:9c:82:34:78:be:8b:63:95:05:ef:f8:51:1e:7f:
39:f1:d7:d6:93:e7:ec:26:47:3f:d6:44:e8:c8:85:
20:86:74:cd:a9:1b:82:83:26:4e:c5:89:6f:7b:c9:
67:0f:d8:ac:bc:be:4c:86:e1:16:d9:36:83:03:c9:
67:11:b1:9c:36:77:20:9a:7a:ce:13:48:f8:c4:a6:
58:25:17:4f:32:82:31:b0:76:78:68:eb:7a:66:24:
c1:82:fd:39:b5:5d:60:bb:fa:6e:5f:e0:3d:b6:6a:
fa:ea:ce:57:08:a5:35:26:5f:dc:59:2c:40:0b:7c:
0c:48:8a:75:a7:82:85:83:92:ba:df:e7:b7:25:4f:
28:ab:a0:94:0b:ac:7b:c5:01:a6:ce:5e:2d:fa:0d:
05:4f:6a:cd:4e:66:ce:1d:1c:b8:57:80:2f:06:45:
7c:92:a4:f9:56:9e:eb:26:c2:00:3b:99:73:30:c1:
93:7a:6e:17:b1:99:db:3e:0e:83:5f:a4:d2:78:51:
71:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:39:DB:F5:C7:7A:5E:F0:F7:A8:6E:C0:FB:C4:BD:93:67:CC:D7:94
X509v3 Authority Key Identifier:
keyid:CC:C7:DF:B2:C7:C9:FC:F2:F1:14:06:14:76:EC:B8:7B:57:3A:4E:18
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/6B448B2F99F750DEE4FB3820BFDEEA5C070AC78AC1DDEAE4BA5B472B580DA264/0/CCC7DFB2C7C9FCF2F114061476ECB87B573A4E18.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CCC7DFB2C7C9FCF2F114061476ECB87B573A4E18.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6B448B2F99F750DEE4FB3820BFDEEA5C070AC78AC1DDEAE4BA5B472B580DA264/0/3136382e3139342e3230342e302f32322d3234203d3e203238303735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.194.204.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:6f:b4:46:3c:67:e8:07:b5:5e:01:bb:f0:fe:71:be:04:b4:
ab:fd:36:f7:fc:ea:22:54:9e:67:9b:6b:0d:61:b8:c5:a0:09:
e2:bc:7e:fd:44:18:ea:e6:c0:ca:9b:78:cd:34:2b:83:d2:f2:
92:3d:14:c9:2b:ee:da:c2:25:51:0d:31:51:3c:85:6d:c4:09:
9d:48:e1:bc:76:6f:f4:13:25:f5:66:db:f6:12:2b:17:8b:6b:
5d:cb:6d:d8:96:65:2b:ec:0e:91:e5:f5:ee:2a:5c:b0:f4:b5:
47:e0:b7:0d:38:c3:cc:e7:1d:d5:a0:f1:a4:28:dd:b2:0d:d6:
4f:5b:45:e8:4e:04:64:f4:12:87:94:21:cb:44:27:4d:88:ab:
52:84:95:9b:fc:44:db:e0:76:c9:91:c0:95:6f:6f:d0:b3:03:
db:62:2d:09:e1:97:88:e3:b1:65:35:a4:4c:59:96:46:80:7b:
2f:44:1f:97:51:29:f4:55:08:63:22:a8:0f:bc:2b:9e:da:bb:
79:69:24:27:bf:82:b8:58:fd:45:c6:df:be:c7:1b:4b:5d:fa:
eb:17:10:0f:d6:f6:12:ed:37:50:a8:59:e7:33:90:48:25:d9:
8a:f7:1b:b1:59:05:b2:24:d0:1c:5a:67:8c:0f:2b:64:b3:97:
fe:d7:db:cb
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUVJYYF6kW9GptQ+SfObksMBSOD6owDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQ0NDN0RGQjJDN0M5RkNGMkYxMTQwNjE0NzZFQ0I4N0I1
NzNBNEUxODAeFw0yNTAyMDQxOTUzNTlaFw0yNjAyMDMxOTU4NTlaMDMxMTAvBgNV
BAMTKEU2MzlEQkY1Qzc3QTVFRjBGN0E4NkVDMEZCQzRCRDkzNjdDQ0Q3OTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXiXEUR3NVu1uFRlGwwdQUlaAY
Y4VA6dnBox0GwPxZDA9DvAY9g22LkmLzt76chkJcXZHt1Sg3fg6MZ6qcgjR4votj
lQXv+FEefznx19aT5+wmRz/WROjIhSCGdM2pG4KDJk7FiW97yWcP2Ky8vkyG4RbZ
NoMDyWcRsZw2dyCaes4TSPjEplglF08ygjGwdnho63pmJMGC/Tm1XWC7+m5f4D22
avrqzlcIpTUmX9xZLEALfAxIinWngoWDkrrf57clTyiroJQLrHvFAabOXi36DQVP
as1OZs4dHLhXgC8GRXySpPlWnusmwgA7mXMwwZN6bhexmds+DoNfpNJ4UXE1AgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQU5jnb9cd6XvD3qG7A+8S9k2fM15QwHwYDVR0j
BBgwFoAUzMffssfJ/PLxFAYUduy4e1c6ThgwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy82QjQ0OEIyRjk5Rjc1MERFRTRGQjM4MjBCRkRFRUE1QzA3
MEFDNzhBQzFEREVBRTRCQTVCNDcyQjU4MERBMjY0LzAvQ0NDN0RGQjJDN0M5RkNG
MkYxMTQwNjE0NzZFQ0I4N0I1NzNBNEUxOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DQ0M3REZCMkM3QzlGQ0YyRjEx
NDA2MTQ3NkVDQjg3QjU3M0E0RTE4LmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNkI0NDhCMkY5OUY3NTBERUU0RkIzODIwQkZERUVBNUMwNzBBQzc4QUMx
RERFQUU0QkE1QjQ3MkI1ODBEQTI2NC8wLzMxMzYzODJlMzEzOTM0MmUzMjMwMzQy
ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM4MzAzNzM1LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCqMLM
MA0GCSqGSIb3DQEBCwUAA4IBAQC6b7RGPGfoB7VeAbvw/nG+BLSr/Tb3/OoiVJ5n
m2sNYbjFoAnivH79RBjq5sDKm3jNNCuD0vKSPRTJK+7awiVRDTFRPIVtxAmdSOG8
dm/0EyX1Ztv2EisXi2tdy23YlmUr7A6R5fXuKlyw9LVH4LcNOMPM5x3VoPGkKN2y
DdZPW0XoTgRk9BKHlCHLRCdNiKtShJWb/ETb4HbJkcCVb2/QswPbYi0J4ZeI47Fl
NaRMWZZGgHsvRB+XUSn0VQhjIqgPvCue2rt5aSQnv4K4WP1Fxt++xxtLXfrrFxAP
1vYS7TdQqFnnM5BIJdmK9xuxWQWyJNAcWmeMDytks5f+19vL
-----END CERTIFICATE-----
Generated at Mon Apr 14 01:11:56 2025 by rpki-client