Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/3138312e3137342e39362e302f32322d3234203d3e203233323433.roa
File: 3138312e3137342e39362e302f32322d3234203d3e203233323433.roa (raw, json)
Hash identifier: dBSiLkB1qskqbxD6YMdRKI3wJLeLOzb7Du2y6JHd+qA=
Subject key identifier: BD:3E:76:1A:92:DB:AF:FF:C6:55:44:09:9D:BF:EE:73:40:E8:8F:39
Certificate issuer: /CN=8E1499D12067F2BEA1287B63425EA3B70FCAFFC1
Certificate serial: 20B95B45B068F3C09E5EAAD65D6A6EA8EB75A010
Authority key identifier: 8E:14:99:D1:20:67:F2:BE:A1:28:7B:63:42:5E:A3:B7:0F:CA:FF:C1
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/3138312e3137342e39362e302f32322d3234203d3e203233323433.roa
Signing time: Tue 04 Feb 2025 18:25:44 +0000
ROA not before: Tue 04 Feb 2025 18:20:44 +0000
ROA not after: Tue 03 Feb 2026 18:25:44 +0000
asID: 23243
IP address blocks: 181.174.96.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.crl
rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 02:09:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:b9:5b:45:b0:68:f3:c0:9e:5e:aa:d6:5d:6a:6e:a8:eb:75:a0:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8E1499D12067F2BEA1287B63425EA3B70FCAFFC1
Validity
Not Before: Feb 4 18:20:44 2025 GMT
Not After : Feb 3 18:25:44 2026 GMT
Subject: CN=BD3E761A92DBAFFFC65544099DBFEE7340E88F39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:b3:33:10:1c:fd:51:0c:fb:7b:1c:1f:f2:f9:
3b:73:0f:97:fa:79:00:5e:48:37:f3:cb:de:99:5b:
4c:7a:fa:e4:04:4d:9c:ac:28:0f:c8:35:36:f8:ab:
61:52:f0:e0:a9:1e:b0:1c:53:8f:9c:b0:f2:d0:4a:
4b:1b:6b:af:3e:e6:4c:0e:63:a1:2c:3e:c4:83:1c:
05:59:e4:85:6a:bd:57:58:52:4c:6d:df:ed:7d:7a:
5f:89:42:8f:51:7d:99:a5:ca:b2:32:3d:25:31:62:
dc:46:4a:9c:f4:77:e6:54:4e:fe:ff:45:02:9f:76:
a6:b1:37:7d:bf:18:af:12:73:fa:7b:3a:93:02:36:
48:58:50:5c:20:03:f5:2d:27:42:22:f3:ce:e8:50:
35:7a:8e:39:67:b3:ae:a3:50:7c:1d:78:df:7e:c5:
d4:53:d6:95:b0:01:c0:5a:26:34:04:af:db:3f:38:
b1:6e:f7:68:ea:d8:09:58:94:4c:c9:64:88:e2:eb:
dd:14:95:81:05:b6:10:57:18:68:0a:c1:d5:51:bb:
fd:be:d6:97:78:9d:27:35:42:b4:d4:b8:7c:0f:ca:
e9:fd:48:31:47:c0:4b:e7:8c:dd:30:83:0c:92:e9:
dc:c2:96:67:b1:77:41:30:d6:cf:51:a5:8c:66:41:
e7:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:3E:76:1A:92:DB:AF:FF:C6:55:44:09:9D:BF:EE:73:40:E8:8F:39
X509v3 Authority Key Identifier:
keyid:8E:14:99:D1:20:67:F2:BE:A1:28:7B:63:42:5E:A3:B7:0F:CA:FF:C1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/3138312e3137342e39362e302f32322d3234203d3e203233323433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.174.96.0/22
Signature Algorithm: sha256WithRSAEncryption
32:2e:7e:ae:20:94:dc:f8:eb:55:67:0c:df:f0:47:1e:d5:fa:
01:69:57:fa:e2:75:51:46:84:68:c2:57:1c:9f:39:dd:55:2a:
e3:b4:0e:56:4c:19:d1:ef:b5:38:86:6b:07:73:00:31:a3:be:
25:e1:76:d7:f0:10:8d:42:ca:f3:64:85:cf:bc:7b:e2:fb:00:
0a:86:4d:7a:e1:1f:3b:16:92:2d:03:3f:f1:fb:d1:97:d8:c9:
dd:ad:ef:9d:40:28:7a:3e:5f:05:9d:cb:db:d8:cb:77:da:6b:
a1:70:d8:6b:fb:dc:91:d4:84:09:6f:e2:44:0f:38:b0:5a:76:
e3:76:2a:9f:42:60:f7:55:db:55:c8:a1:6e:d8:f3:86:88:60:
da:0a:04:fe:91:9c:89:14:ca:2b:79:d6:de:51:af:7f:1a:14:
63:a2:b5:4a:98:91:82:e6:24:75:f7:eb:0d:14:ff:3c:e3:13:
12:c2:fa:73:9d:fa:42:c5:4d:b0:84:af:05:3b:74:54:8f:71:
10:05:fa:97:55:12:c8:ed:18:c2:59:db:b1:52:5d:07:53:f1:
99:ed:42:7d:cf:04:c3:af:b1:9e:f6:f3:a0:eb:14:10:c3:17:
02:34:a9:ee:cf:46:d3:a6:45:81:d0:d9:11:6a:35:51:c0:ea:
40:47:64:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 14:45:22 2025 by rpki-client