Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6C75586242605424F667A25BC381216724D6B0FC965C0A00B80545AC2E09EEC0/0/3137392e302e32392e302f32342d3234203d3e203237383137.roa
File: 3137392e302e32392e302f32342d3234203d3e203237383137.roa (raw, json)
Hash identifier: bRLnmF1SfSAGKj04EaKRnHkHQYYUgUgLGeh7kIeW75k=
Subject key identifier: B3:85:6F:9D:C6:1B:D8:9A:40:8E:FC:6E:42:70:3B:41:45:6B:CE:8B
Certificate issuer: /CN=DFD71787713EDA0707BCCDDF43BC5652C2F0F998
Certificate serial: 03A6C2F8D7310AFD564AC49FD62BABC8D5FEFD00
Authority key identifier: DF:D7:17:87:71:3E:DA:07:07:BC:CD:DF:43:BC:56:52:C2:F0:F9:98
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DFD71787713EDA0707BCCDDF43BC5652C2F0F998.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/6C75586242605424F667A25BC381216724D6B0FC965C0A00B80545AC2E09EEC0/0/3137392e302e32392e302f32342d3234203d3e203237383137.roa
Signing time: Tue 04 Feb 2025 18:26:30 +0000
ROA not before: Tue 04 Feb 2025 18:21:30 +0000
ROA not after: Tue 03 Feb 2026 18:26:30 +0000
asID: 27817
IP address blocks: 179.0.29.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/6C75586242605424F667A25BC381216724D6B0FC965C0A00B80545AC2E09EEC0/0/DFD71787713EDA0707BCCDDF43BC5652C2F0F998.crl
rsync://repository.lacnic.net/rpki/lacnic/6C75586242605424F667A25BC381216724D6B0FC965C0A00B80545AC2E09EEC0/0/DFD71787713EDA0707BCCDDF43BC5652C2F0F998.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DFD71787713EDA0707BCCDDF43BC5652C2F0F998.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 14:48:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:a6:c2:f8:d7:31:0a:fd:56:4a:c4:9f:d6:2b:ab:c8:d5:fe:fd:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFD71787713EDA0707BCCDDF43BC5652C2F0F998
Validity
Not Before: Feb 4 18:21:30 2025 GMT
Not After : Feb 3 18:26:30 2026 GMT
Subject: CN=B3856F9DC61BD89A408EFC6E42703B41456BCE8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0f:c4:63:28:fb:1e:43:df:99:aa:61:49:94:
e1:bf:cc:26:25:36:f5:15:59:e9:08:a3:60:65:ed:
8e:cb:ca:86:9c:be:60:5f:c5:fa:0e:28:0e:db:a5:
cf:b9:bb:76:f0:fa:a6:ac:09:50:9c:54:e9:c7:48:
91:00:f4:51:1d:cb:09:8b:52:30:d4:4c:8c:4a:2d:
09:9e:e5:df:24:9b:50:9c:e6:eb:a8:f1:e5:15:a2:
fe:1c:bd:27:04:e5:f7:b1:3c:ed:84:a9:d3:50:ba:
e2:cb:8e:dd:97:0e:a9:4b:72:43:66:6a:5b:16:fa:
21:89:60:cb:20:31:1c:48:65:dc:5d:de:06:0f:08:
35:da:e2:2e:1a:36:fa:a3:82:f6:4c:f2:42:46:07:
fa:bf:2e:7b:96:d6:b6:44:95:c6:5b:8c:23:e1:24:
e0:f0:ef:2d:01:38:c6:b4:21:19:8c:88:c0:70:bb:
47:86:6d:2a:45:e9:8a:e9:89:ca:07:b8:cf:6a:37:
db:8d:6a:39:77:32:de:20:2a:e5:7d:11:34:8e:41:
b7:10:40:b1:e1:d9:78:60:1e:67:4a:82:ce:de:43:
b4:66:2d:f6:9e:c3:da:39:3c:4e:a7:f1:86:c6:7c:
0e:27:09:cb:e0:d3:5c:5a:b4:22:76:e8:d1:b8:29:
dc:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:85:6F:9D:C6:1B:D8:9A:40:8E:FC:6E:42:70:3B:41:45:6B:CE:8B
X509v3 Authority Key Identifier:
keyid:DF:D7:17:87:71:3E:DA:07:07:BC:CD:DF:43:BC:56:52:C2:F0:F9:98
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/6C75586242605424F667A25BC381216724D6B0FC965C0A00B80545AC2E09EEC0/0/DFD71787713EDA0707BCCDDF43BC5652C2F0F998.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DFD71787713EDA0707BCCDDF43BC5652C2F0F998.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6C75586242605424F667A25BC381216724D6B0FC965C0A00B80545AC2E09EEC0/0/3137392e302e32392e302f32342d3234203d3e203237383137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.0.29.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:78:86:24:13:2d:bf:e3:3c:55:6f:5c:15:1c:d5:c0:81:5b:
ef:3b:a1:03:1a:bf:6c:9d:a1:36:a9:48:43:66:d6:88:05:10:
62:2a:5d:04:b5:25:a0:8f:08:dc:c6:b0:5a:45:4c:04:93:33:
fb:c5:f5:6a:0a:39:0f:ad:14:33:af:f3:f4:ad:21:6c:ad:cb:
98:16:42:14:ee:92:a9:01:f1:66:5a:49:cf:19:3c:7f:59:28:
7a:4a:ea:11:d5:22:cf:2c:da:6c:7a:34:ca:3f:53:02:b6:29:
01:30:2a:d5:af:f6:f4:a5:38:45:bb:68:4c:4d:7a:df:03:1d:
29:a2:82:8c:f0:9c:d0:2f:70:6d:9e:06:c8:cd:04:ca:ad:17:
ea:6c:fe:fb:22:32:3b:8c:ee:f0:2c:fe:60:4a:5b:89:2d:af:
d3:f3:f5:c5:40:da:28:ae:32:0b:70:d7:3d:fe:26:97:5c:e1:
81:11:85:9f:91:92:59:30:11:27:57:0d:fd:d2:66:08:9a:60:
9d:3d:3b:4c:b5:8a:4d:36:3a:ff:0d:cc:04:38:54:cd:29:1c:
18:81:ab:25:b9:c6:21:f7:77:20:62:b8:67:4c:f1:61:d6:d6:
58:f8:05:42:5f:34:6e:ec:fa:1b:43:0f:5d:b9:4d:4f:68:21:
3b:23:a3:d0
-----BEGIN CERTIFICATE-----
MIIFujCCBKKgAwIBAgIUA6bC+NcxCv1WSsSf1iuryNX+/QAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoREZENzE3ODc3MTNFREEwNzA3QkNDRERGNDNCQzU2NTJD
MkYwRjk5ODAeFw0yNTAyMDQxODIxMzBaFw0yNjAyMDMxODI2MzBaMDMxMTAvBgNV
BAMTKEIzODU2RjlEQzYxQkQ4OUE0MDhFRkM2RTQyNzAzQjQxNDU2QkNFOEIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0D8RjKPseQ9+ZqmFJlOG/zCYl
NvUVWekIo2Bl7Y7LyoacvmBfxfoOKA7bpc+5u3bw+qasCVCcVOnHSJEA9FEdywmL
UjDUTIxKLQme5d8km1Cc5uuo8eUVov4cvScE5fexPO2EqdNQuuLLjt2XDqlLckNm
alsW+iGJYMsgMRxIZdxd3gYPCDXa4i4aNvqjgvZM8kJGB/q/LnuW1rZElcZbjCPh
JODw7y0BOMa0IRmMiMBwu0eGbSpF6YrpicoHuM9qN9uNajl3Mt4gKuV9ETSOQbcQ
QLHh2XhgHmdKgs7eQ7RmLfaew9o5PE6n8YbGfA4nCcvg01xatCJ26NG4KdwpAgMB
AAGjggLEMIICwDAdBgNVHQ4EFgQUs4VvncYb2JpAjvxuQnA7QUVrzoswHwYDVR0j
BBgwFoAU39cXh3E+2gcHvM3fQ7xWUsLw+ZgwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy82Qzc1NTg2MjQyNjA1NDI0RjY2N0EyNUJDMzgxMjE2NzI0
RDZCMEZDOTY1QzBBMDBCODA1NDVBQzJFMDlFRUMwLzAvREZENzE3ODc3MTNFREEw
NzA3QkNDRERGNDNCQzU2NTJDMkYwRjk5OC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9ERkQ3MTc4NzcxM0VEQTA3MDdC
Q0NEREY0M0JDNTY1MkMyRjBGOTk4LmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG
CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNkM3NTU4NjI0MjYwNTQyNEY2NjdBMjVCQzM4MTIxNjcyNEQ2QjBGQzk2
NUMwQTAwQjgwNTQ1QUMyRTA5RUVDMC8wLzMxMzczOTJlMzAyZTMyMzkyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzMjM3MzgzMTM3LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAswAdMA0GCSqG
SIb3DQEBCwUAA4IBAQCaeIYkEy2/4zxVb1wVHNXAgVvvO6EDGr9snaE2qUhDZtaI
BRBiKl0EtSWgjwjcxrBaRUwEkzP7xfVqCjkPrRQzr/P0rSFsrcuYFkIU7pKpAfFm
WknPGTx/WSh6SuoR1SLPLNpsejTKP1MCtikBMCrVr/b0pThFu2hMTXrfAx0pooKM
8JzQL3BtngbIzQTKrRfqbP77IjI7jO7wLP5gSluJLa/T8/XFQNoorjILcNc9/iaX
XOGBEYWfkZJZMBEnVw390mYImmCdPTtMtYpNNjr/DcwEOFTNKRwYgaslucYh93cg
YrhnTPFh1tZY+AVCXzRu7PobQw9duU1PaCE7I6PQ
-----END CERTIFICATE-----
Generated at Mon Apr 14 06:22:49 2025 by rpki-client