Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/748D698B243A0964A4ECEB7F9337590AF93C138D8656A80896B6E416B9B1FD9C/0/323830303a3961333a363030303a3a2f34302d3430203d3e203134353232.roa
File: 323830303a3961333a363030303a3a2f34302d3430203d3e203134353232.roa (raw, json)
Hash identifier: axQgQGb1HfOgcO2VcEia1TFfaIfbTrpxYGSNY5ixNkE=
Subject key identifier: 19:CD:FE:ED:6A:BE:18:12:F3:47:39:C2:08:8F:6E:D2:41:CF:99:40
Certificate issuer: /CN=822F4455E9726CC3D6DCD4143A6D9F1773F8A36F
Certificate serial: 77F4E431F9EFC2E4E8750A97C8EC4A1DBA85C5D7
Authority key identifier: 82:2F:44:55:E9:72:6C:C3:D6:DC:D4:14:3A:6D:9F:17:73:F8:A3:6F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/822F4455E9726CC3D6DCD4143A6D9F1773F8A36F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/748D698B243A0964A4ECEB7F9337590AF93C138D8656A80896B6E416B9B1FD9C/0/323830303a3961333a363030303a3a2f34302d3430203d3e203134353232.roa
Signing time: Tue 04 Feb 2025 20:08:46 +0000
ROA not before: Tue 04 Feb 2025 20:03:46 +0000
ROA not after: Tue 03 Feb 2026 20:08:46 +0000
asID: 14522
IP address blocks: 2800:9a3:6000::/40 maxlen: 40
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/748D698B243A0964A4ECEB7F9337590AF93C138D8656A80896B6E416B9B1FD9C/0/822F4455E9726CC3D6DCD4143A6D9F1773F8A36F.crl
rsync://repository.lacnic.net/rpki/lacnic/748D698B243A0964A4ECEB7F9337590AF93C138D8656A80896B6E416B9B1FD9C/0/822F4455E9726CC3D6DCD4143A6D9F1773F8A36F.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/822F4455E9726CC3D6DCD4143A6D9F1773F8A36F.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 22:04:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:f4:e4:31:f9:ef:c2:e4:e8:75:0a:97:c8:ec:4a:1d:ba:85:c5:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=822F4455E9726CC3D6DCD4143A6D9F1773F8A36F
Validity
Not Before: Feb 4 20:03:46 2025 GMT
Not After : Feb 3 20:08:46 2026 GMT
Subject: CN=19CDFEED6ABE1812F34739C2088F6ED241CF9940
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:37:77:53:56:92:46:be:20:da:49:fc:ab:72:
84:ea:e3:86:fd:4b:ec:1c:d4:b2:10:8b:33:ab:3a:
34:d3:77:6e:e2:91:bd:74:16:f7:00:72:97:36:8a:
2d:c1:94:f8:eb:cb:c2:ea:57:d0:90:20:cb:bc:0f:
d4:e7:f5:2d:16:2c:6a:c6:a4:d8:69:48:59:fa:48:
3d:c5:ef:b6:32:54:9c:72:10:d2:76:11:14:6b:66:
06:0f:5e:2c:ca:bd:44:13:01:6c:a7:55:27:f2:da:
2a:0f:01:64:d3:8c:b5:43:1e:50:4c:24:4e:dd:49:
c9:55:75:8c:91:56:00:ad:fd:3f:55:bf:f3:fe:fe:
43:e6:e6:28:23:29:07:a4:b0:9a:11:c2:63:06:4a:
76:45:93:ad:09:64:c5:60:ca:ef:2d:8d:75:13:3b:
f2:91:3a:9f:b3:d7:63:c6:65:54:67:02:a6:07:b9:
f1:46:7f:4d:25:b1:64:09:2b:df:1c:76:3d:c7:8a:
36:c6:ff:4d:bf:53:d0:16:00:bb:b5:fc:63:0f:f1:
08:4d:3f:55:e9:f1:d3:1d:6a:7f:34:9a:0c:f5:7a:
d4:37:8f:05:c6:dc:6c:52:cb:a6:7e:28:62:32:4c:
a5:63:1e:6c:89:7c:3b:d1:b2:a3:73:bc:da:2f:8a:
6e:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:CD:FE:ED:6A:BE:18:12:F3:47:39:C2:08:8F:6E:D2:41:CF:99:40
X509v3 Authority Key Identifier:
keyid:82:2F:44:55:E9:72:6C:C3:D6:DC:D4:14:3A:6D:9F:17:73:F8:A3:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/748D698B243A0964A4ECEB7F9337590AF93C138D8656A80896B6E416B9B1FD9C/0/822F4455E9726CC3D6DCD4143A6D9F1773F8A36F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/822F4455E9726CC3D6DCD4143A6D9F1773F8A36F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/748D698B243A0964A4ECEB7F9337590AF93C138D8656A80896B6E416B9B1FD9C/0/323830303a3961333a363030303a3a2f34302d3430203d3e203134353232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2800:9a3:6000::/40
Signature Algorithm: sha256WithRSAEncryption
2c:3e:d8:f9:75:fd:90:45:b7:30:98:fd:92:77:8d:ec:13:18:
8b:43:4b:07:5f:8c:08:9e:8f:90:50:53:cc:55:cc:7b:9f:c3:
9f:79:92:c4:7c:ad:37:2f:83:08:06:14:71:8f:f2:14:c1:f2:
cd:5b:5c:8d:69:75:10:66:3b:8f:35:e3:23:17:f8:0f:5c:e8:
7b:a5:01:7a:96:12:1e:66:c1:41:ff:4b:8f:de:5e:5b:c4:2f:
e3:36:2c:b6:7e:ab:24:bc:a4:8b:32:f0:08:e2:3e:7f:b1:35:
99:18:68:22:9b:55:fd:87:d8:af:b1:ba:33:4d:80:d8:9b:2b:
1d:ad:d2:3d:90:07:01:26:6b:2b:34:18:3f:48:19:35:3e:5f:
02:06:73:97:80:20:3f:71:03:23:73:9d:f5:7a:ea:d0:eb:86:
98:50:b5:d6:b9:3e:cb:f7:4b:77:97:3e:ab:d3:13:bd:2a:de:
48:63:d0:75:98:8a:da:7e:5c:e9:64:a0:41:8e:57:80:03:9e:
fd:4a:71:bb:0f:d2:a1:41:ef:e3:6c:b1:00:7f:9b:09:20:35:
7b:13:e1:6b:db:9b:88:42:6f:d0:af:da:47:2d:01:f4:8d:c0:
31:d0:de:3e:fa:91:5b:1c:9a:d3:f8:33:1f:51:c8:4f:97:a7:
f0:9c:19:3a
-----BEGIN CERTIFICATE-----
MIIFxjCCBK6gAwIBAgIUd/TkMfnvwuTodQqXyOxKHbqFxdcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODIyRjQ0NTVFOTcyNkNDM0Q2RENENDE0M0E2RDlGMTc3
M0Y4QTM2RjAeFw0yNTAyMDQyMDAzNDZaFw0yNjAyMDMyMDA4NDZaMDMxMTAvBgNV
BAMTKDE5Q0RGRUVENkFCRTE4MTJGMzQ3MzlDMjA4OEY2RUQyNDFDRjk5NDAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgN3dTVpJGviDaSfyrcoTq44b9
S+wc1LIQizOrOjTTd27ikb10FvcAcpc2ii3BlPjry8LqV9CQIMu8D9Tn9S0WLGrG
pNhpSFn6SD3F77YyVJxyENJ2ERRrZgYPXizKvUQTAWynVSfy2ioPAWTTjLVDHlBM
JE7dSclVdYyRVgCt/T9Vv/P+/kPm5igjKQeksJoRwmMGSnZFk60JZMVgyu8tjXUT
O/KROp+z12PGZVRnAqYHufFGf00lsWQJK98cdj3HijbG/02/U9AWALu1/GMP8QhN
P1Xp8dMdan80mgz1etQ3jwXG3GxSy6Z+KGIyTKVjHmyJfDvRsqNzvNovim5rAgMB
AAGjggLQMIICzDAdBgNVHQ4EFgQUGc3+7Wq+GBLzRznCCI9u0kHPmUAwHwYDVR0j
BBgwFoAUgi9EVelybMPW3NQUOm2fF3P4o28wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy83NDhENjk4QjI0M0EwOTY0QTRFQ0VCN0Y5MzM3NTkwQUY5
M0MxMzhEODY1NkE4MDg5NkI2RTQxNkI5QjFGRDlDLzAvODIyRjQ0NTVFOTcyNkND
M0Q2RENENDE0M0E2RDlGMTc3M0Y4QTM2Ri5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84MjJGNDQ1NUU5NzI2Q0MzRDZE
Q0Q0MTQzQTZEOUYxNzczRjhBMzZGLmNlcjCBzQYIKwYBBQUHAQsEgcAwgb0wgboG
CCsGAQUFBzALhoGtcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNzQ4RDY5OEIyNDNBMDk2NEE0RUNFQjdGOTMzNzU5MEFGOTNDMTM4RDg2
NTZBODA4OTZCNkU0MTZCOUIxRkQ5Qy8wLzMyMzgzMDMwM2EzOTYxMzMzYTM2MzAz
MDMwM2EzYTJmMzQzMDJkMzQzMDIwM2QzZTIwMzEzNDM1MzIzMi5yb2EwGAYDVR0g
AQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMG
ACgACaNgMA0GCSqGSIb3DQEBCwUAA4IBAQAsPtj5df2QRbcwmP2Sd43sExiLQ0sH
X4wIno+QUFPMVcx7n8OfeZLEfK03L4MIBhRxj/IUwfLNW1yNaXUQZjuPNeMjF/gP
XOh7pQF6lhIeZsFB/0uP3l5bxC/jNiy2fqskvKSLMvAI4j5/sTWZGGgim1X9h9iv
sbozTYDYmysdrdI9kAcBJmsrNBg/SBk1Pl8CBnOXgCA/cQMjc531eurQ64aYULXW
uT7L90t3lz6r0xO9Kt5IY9B1mIraflzpZKBBjleAA579SnG7D9KhQe/jbLEAf5sJ
IDV7E+Fr25uIQm/Qr9pHLQH0jcAx0N4++pFbHJrT+DMfUchPl6fwnBk6
-----END CERTIFICATE-----
Generated at Mon Apr 14 11:28:18 2025 by rpki-client