Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/3138312e3137342e3132302e302f32322d3234203d3e203233323433.roa
File: 3138312e3137342e3132302e302f32322d3234203d3e203233323433.roa (raw, json)
Hash identifier: YcPDQ/zvljRDfXIr5r1LrjBBhNRFgBp7IRQftD/6PSo=
Subject key identifier: 2B:10:FC:91:7B:D5:1C:6C:B8:94:94:3E:65:7C:E9:88:C3:CD:5B:2A
Certificate issuer: /CN=8E1499D12067F2BEA1287B63425EA3B70FCAFFC1
Certificate serial: 5742E8BEFB3D2DF633F76D0E8A9392678BADC42F
Authority key identifier: 8E:14:99:D1:20:67:F2:BE:A1:28:7B:63:42:5E:A3:B7:0F:CA:FF:C1
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/3138312e3137342e3132302e302f32322d3234203d3e203233323433.roa
Signing time: Tue 04 Feb 2025 18:25:40 +0000
ROA not before: Tue 04 Feb 2025 18:20:40 +0000
ROA not after: Tue 03 Feb 2026 18:25:40 +0000
asID: 23243
IP address blocks: 181.174.120.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.crl
rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 02:09:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
57:42:e8:be:fb:3d:2d:f6:33:f7:6d:0e:8a:93:92:67:8b:ad:c4:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8E1499D12067F2BEA1287B63425EA3B70FCAFFC1
Validity
Not Before: Feb 4 18:20:40 2025 GMT
Not After : Feb 3 18:25:40 2026 GMT
Subject: CN=2B10FC917BD51C6CB894943E657CE988C3CD5B2A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:05:27:ab:b7:6a:fc:98:63:a6:a9:d7:27:be:
c3:b8:a0:4c:f8:68:08:ad:f1:df:59:63:1e:81:85:
57:b8:42:1b:b9:a7:52:f3:cd:03:f8:15:02:9a:17:
a1:a0:58:b2:b8:35:f8:27:38:15:da:2d:19:06:5b:
f1:12:e6:52:60:9f:15:6e:0e:73:03:d7:9d:dc:31:
92:63:6b:7e:c2:22:8b:2a:b0:ff:b6:f3:c6:36:0f:
72:ab:3c:c5:f3:a8:8c:3a:d1:79:8b:4b:4e:bd:29:
f8:e2:f9:fa:a3:4f:9e:3f:88:c3:d2:60:25:9c:67:
b4:e4:ed:76:5a:64:21:e8:9b:e6:ac:9c:80:00:25:
44:3b:26:0f:0e:e6:44:98:b0:d0:f3:28:3a:0c:fc:
cd:d2:c4:ec:bf:77:d2:d8:e6:08:8f:85:02:59:21:
56:6c:c4:8f:54:9d:1e:9f:cc:52:8c:99:a9:b3:da:
dc:da:fc:24:cc:5a:b1:ba:e3:e4:5e:ce:81:45:82:
02:97:c2:a1:f7:0c:d0:a8:aa:4f:e9:5c:b0:89:97:
01:e7:a6:82:e6:43:1c:5b:52:19:4a:5b:03:4e:26:
d0:4c:bc:6c:ee:11:e4:54:2e:f8:cf:b1:5c:4a:95:
45:03:5a:39:d6:da:cc:ad:4d:9c:b0:e7:4c:fe:ff:
a3:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:10:FC:91:7B:D5:1C:6C:B8:94:94:3E:65:7C:E9:88:C3:CD:5B:2A
X509v3 Authority Key Identifier:
keyid:8E:14:99:D1:20:67:F2:BE:A1:28:7B:63:42:5E:A3:B7:0F:CA:FF:C1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/3138312e3137342e3132302e302f32322d3234203d3e203233323433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.174.120.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:01:46:28:84:e4:e8:8f:54:64:6e:fe:e8:db:50:9d:d8:f6:
53:04:17:89:aa:35:96:a3:91:bd:d5:0f:a8:90:bc:99:f0:85:
af:77:09:50:b1:65:94:a7:cd:91:43:9a:55:b6:de:c6:b2:98:
34:c3:54:34:bd:29:fd:78:c5:58:4a:79:f7:13:32:52:be:e6:
a5:73:ae:53:6d:cd:92:bc:6c:bf:f1:30:1c:da:b0:8b:ac:8e:
eb:43:9c:2a:7a:02:1f:5f:6a:31:d0:80:5d:87:a6:df:12:a8:
c1:b4:ab:55:da:f6:3e:e1:6a:71:be:26:d3:03:59:f2:e2:05:
e7:42:d0:79:bb:bb:ad:2c:ce:5f:56:9d:45:98:2e:63:0a:c5:
cb:eb:ce:28:ce:92:95:f5:ae:65:b3:31:17:c3:2c:55:a4:04:
42:07:a3:e6:6a:27:ed:7b:21:bd:0a:31:40:52:fa:35:56:f7:
81:c7:17:bc:e3:db:0c:ca:98:6d:a9:29:3e:1e:b6:a0:67:e6:
c5:24:1e:f8:3d:3b:7f:dc:07:f7:db:85:a9:5d:6d:cc:8a:67:
dc:72:ab:7b:b1:0c:ab:9c:b0:25:08:ed:1f:0c:17:67:41:d8:
1f:6c:e2:be:08:d8:11:1e:d6:7e:d4:18:ad:a9:ff:3e:a6:f6:
e2:2c:64:2d
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUV0Lovvs9LfYz920OipOSZ4utxC8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOEUxNDk5RDEyMDY3RjJCRUExMjg3QjYzNDI1RUEzQjcw
RkNBRkZDMTAeFw0yNTAyMDQxODIwNDBaFw0yNjAyMDMxODI1NDBaMDMxMTAvBgNV
BAMTKDJCMTBGQzkxN0JENTFDNkNCODk0OTQzRTY1N0NFOTg4QzNDRDVCMkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUBSert2r8mGOmqdcnvsO4oEz4
aAit8d9ZYx6BhVe4Qhu5p1LzzQP4FQKaF6GgWLK4NfgnOBXaLRkGW/ES5lJgnxVu
DnMD153cMZJja37CIosqsP+288Y2D3KrPMXzqIw60XmLS069Kfji+fqjT54/iMPS
YCWcZ7Tk7XZaZCHom+asnIAAJUQ7Jg8O5kSYsNDzKDoM/M3SxOy/d9LY5giPhQJZ
IVZsxI9UnR6fzFKMmamz2tza/CTMWrG64+RezoFFggKXwqH3DNCoqk/pXLCJlwHn
poLmQxxbUhlKWwNOJtBMvGzuEeRULvjPsVxKlUUDWjnW2sytTZyw50z+/6OtAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUKxD8kXvVHGy4lJQ+ZXzpiMPNWyowHwYDVR0j
BBgwFoAUjhSZ0SBn8r6hKHtjQl6jtw/K/8EwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy83NTdENjU5ODQ4M0IwRDFFNTJFMjJERkU2N0IzN0YwM0VB
RTE4QTMzQUVDQzZFQzFCQzM2NDg2MUIxQjIxNENCLzAvOEUxNDk5RDEyMDY3RjJC
RUExMjg3QjYzNDI1RUEzQjcwRkNBRkZDMS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84RTE0OTlEMTIwNjdGMkJFQTEy
ODdCNjM0MjVFQTNCNzBGQ0FGRkMxLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNzU3RDY1OTg0ODNCMEQxRTUyRTIyREZFNjdCMzdGMDNFQUUxOEEzM0FF
Q0M2RUMxQkMzNjQ4NjFCMUIyMTRDQi8wLzMxMzgzMTJlMzEzNzM0MmUzMTMyMzAy
ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjMzMzIzNDMzLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCta54
MA0GCSqGSIb3DQEBCwUAA4IBAQB7AUYohOToj1Rkbv7o21Cd2PZTBBeJqjWWo5G9
1Q+okLyZ8IWvdwlQsWWUp82RQ5pVtt7Gspg0w1Q0vSn9eMVYSnn3EzJSvualc65T
bc2SvGy/8TAc2rCLrI7rQ5wqegIfX2ox0IBdh6bfEqjBtKtV2vY+4WpxvibTA1ny
4gXnQtB5u7utLM5fVp1FmC5jCsXL684ozpKV9a5lszEXwyxVpARCB6PmaifteyG9
CjFAUvo1VveBxxe849sMyphtqSk+HragZ+bFJB74PTt/3Af324WpXW3Mimfccqt7
sQyrnLAlCO0fDBdnQdgfbOK+CNgRHtZ+1Bitqf8+pvbiLGQt
-----END CERTIFICATE-----
Generated at Mon Apr 14 14:33:15 2025 by rpki-client