Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/3138312e3138392e3133362e302f32312d3234203d3e203233323433.roa
File: 3138312e3138392e3133362e302f32312d3234203d3e203233323433.roa (raw, json)
Hash identifier: ICZg//yyVoa6Nnx6hERvKx2h8gKSW7LHjfOnMqUmG18=
Subject key identifier: 1F:24:07:DF:DE:BA:9B:BA:E0:1E:15:B8:A6:9E:EE:5F:7A:04:05:EC
Certificate issuer: /CN=8E1499D12067F2BEA1287B63425EA3B70FCAFFC1
Certificate serial: 1DE440EFEF44FF670222BB4B677508B7DBB51D8E
Authority key identifier: 8E:14:99:D1:20:67:F2:BE:A1:28:7B:63:42:5E:A3:B7:0F:CA:FF:C1
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/3138312e3138392e3133362e302f32312d3234203d3e203233323433.roa
Signing time: Tue 04 Feb 2025 18:25:37 +0000
ROA not before: Tue 04 Feb 2025 18:20:37 +0000
ROA not after: Tue 03 Feb 2026 18:25:37 +0000
asID: 23243
IP address blocks: 181.189.136.0/21 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.crl
rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 02:09:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:e4:40:ef:ef:44:ff:67:02:22:bb:4b:67:75:08:b7:db:b5:1d:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8E1499D12067F2BEA1287B63425EA3B70FCAFFC1
Validity
Not Before: Feb 4 18:20:37 2025 GMT
Not After : Feb 3 18:25:37 2026 GMT
Subject: CN=1F2407DFDEBA9BBAE01E15B8A69EEE5F7A0405EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:1d:ee:0b:c8:e6:59:49:f4:c0:39:9d:96:b0:
d2:8d:c1:25:c3:58:6a:29:bf:31:54:91:22:7d:a8:
af:c5:ec:49:67:e1:91:a1:cf:87:e4:71:37:23:76:
a3:d4:e0:41:a4:81:ba:65:90:10:f8:dc:22:1d:26:
ad:60:66:6a:d8:39:73:12:4c:8c:16:3f:2d:fb:f1:
6b:4b:a8:ff:05:10:1c:6d:ae:70:3d:51:e8:51:74:
55:1f:e5:34:16:30:55:88:df:e4:18:ff:1b:6e:23:
4d:7c:15:c7:41:48:e2:db:b3:23:7c:e5:f0:d5:e2:
17:69:83:37:c2:3f:a3:2b:91:30:db:a0:f7:9d:87:
b0:ff:a7:76:30:bd:cf:a4:bc:c1:06:5a:e5:43:d7:
a6:1f:f3:e1:0c:cd:60:4a:4d:d0:78:a9:fe:c6:17:
cb:c3:23:16:a1:65:85:90:ed:c7:40:d9:2e:16:6f:
4a:80:a9:e6:23:55:0c:4c:10:06:b7:ba:c9:4c:55:
90:7c:da:b2:31:70:8c:86:9f:52:31:85:0f:20:71:
09:bc:c5:02:a0:e5:9e:ce:31:10:45:e8:0d:e3:41:
d8:e0:77:77:ae:34:48:bd:46:5e:d6:d0:31:76:8f:
1c:65:a5:cc:f1:eb:f8:6d:84:af:49:c7:9a:fc:2b:
1c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:24:07:DF:DE:BA:9B:BA:E0:1E:15:B8:A6:9E:EE:5F:7A:04:05:EC
X509v3 Authority Key Identifier:
keyid:8E:14:99:D1:20:67:F2:BE:A1:28:7B:63:42:5E:A3:B7:0F:CA:FF:C1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/3138312e3138392e3133362e302f32312d3234203d3e203233323433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.189.136.0/21
Signature Algorithm: sha256WithRSAEncryption
79:59:7e:ed:16:e7:99:35:78:8c:31:ad:9e:be:2e:9a:db:e6:
67:01:0a:08:e5:32:ef:2f:d5:db:54:a8:a9:60:dc:ec:52:cd:
1c:8c:a1:e5:a5:50:74:2e:70:ca:06:f1:bc:88:9d:9f:9b:65:
09:f6:c2:79:ef:7d:5a:75:b2:53:52:d4:9c:64:34:b2:15:50:
b7:0c:e5:e7:df:10:6f:12:bf:f8:f6:db:cb:b7:01:f6:dc:85:
49:ca:52:5f:50:8d:df:7a:14:aa:ae:c2:70:00:02:b1:9a:40:
7c:6a:06:f2:3d:5f:ca:77:fe:18:aa:c3:9c:d0:dd:10:81:88:
11:da:77:ac:a5:a7:59:64:c2:37:67:0c:c6:94:94:1c:1a:2c:
40:78:65:2c:bc:20:68:1c:6a:e4:61:66:03:49:e8:e4:bc:76:
38:0d:19:78:13:3f:33:be:5e:7b:bf:a6:9f:0d:b2:9e:64:f4:
68:7d:c6:df:7d:75:81:f6:9a:81:91:ad:92:24:bf:19:25:58:
c9:15:be:61:40:46:3b:f1:72:96:11:04:d5:c6:f5:f7:7b:95:
13:b7:a2:98:1b:70:ff:eb:5f:f8:24:57:03:c3:59:a7:aa:b3:
52:9e:1d:61:40:f6:64:79:39:ca:64:ff:16:49:1a:18:5e:5b:
a1:0f:30:9d
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUHeRA7+9E/2cCIrtLZ3UIt9u1HY4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOEUxNDk5RDEyMDY3RjJCRUExMjg3QjYzNDI1RUEzQjcw
RkNBRkZDMTAeFw0yNTAyMDQxODIwMzdaFw0yNjAyMDMxODI1MzdaMDMxMTAvBgNV
BAMTKDFGMjQwN0RGREVCQTlCQkFFMDFFMTVCOEE2OUVFRTVGN0EwNDA1RUMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcHe4LyOZZSfTAOZ2WsNKNwSXD
WGopvzFUkSJ9qK/F7Eln4ZGhz4fkcTcjdqPU4EGkgbplkBD43CIdJq1gZmrYOXMS
TIwWPy378WtLqP8FEBxtrnA9UehRdFUf5TQWMFWI3+QY/xtuI018FcdBSOLbsyN8
5fDV4hdpgzfCP6MrkTDboPedh7D/p3Ywvc+kvMEGWuVD16Yf8+EMzWBKTdB4qf7G
F8vDIxahZYWQ7cdA2S4Wb0qAqeYjVQxMEAa3uslMVZB82rIxcIyGn1IxhQ8gcQm8
xQKg5Z7OMRBF6A3jQdjgd3euNEi9Rl7W0DF2jxxlpczx6/hthK9Jx5r8KxwlAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUHyQH3966m7rgHhW4pp7uX3oEBewwHwYDVR0j
BBgwFoAUjhSZ0SBn8r6hKHtjQl6jtw/K/8EwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy83NTdENjU5ODQ4M0IwRDFFNTJFMjJERkU2N0IzN0YwM0VB
RTE4QTMzQUVDQzZFQzFCQzM2NDg2MUIxQjIxNENCLzAvOEUxNDk5RDEyMDY3RjJC
RUExMjg3QjYzNDI1RUEzQjcwRkNBRkZDMS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84RTE0OTlEMTIwNjdGMkJFQTEy
ODdCNjM0MjVFQTNCNzBGQ0FGRkMxLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNzU3RDY1OTg0ODNCMEQxRTUyRTIyREZFNjdCMzdGMDNFQUUxOEEzM0FF
Q0M2RUMxQkMzNjQ4NjFCMUIyMTRDQi8wLzMxMzgzMTJlMzEzODM5MmUzMTMzMzYy
ZTMwMmYzMjMxMmQzMjM0MjAzZDNlMjAzMjMzMzIzNDMzLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDtb2I
MA0GCSqGSIb3DQEBCwUAA4IBAQB5WX7tFueZNXiMMa2evi6a2+ZnAQoI5TLvL9Xb
VKipYNzsUs0cjKHlpVB0LnDKBvG8iJ2fm2UJ9sJ5731adbJTUtScZDSyFVC3DOXn
3xBvEr/49tvLtwH23IVJylJfUI3fehSqrsJwAAKxmkB8agbyPV/Kd/4YqsOc0N0Q
gYgR2nespadZZMI3ZwzGlJQcGixAeGUsvCBoHGrkYWYDSejkvHY4DRl4Ez8zvl57
v6afDbKeZPRofcbffXWB9pqBka2SJL8ZJVjJFb5hQEY78XKWEQTVxvX3e5UTt6KY
G3D/61/4JFcDw1mnqrNSnh1hQPZkeTnKZP8WSRoYXluhDzCd
-----END CERTIFICATE-----
Generated at Mon Apr 14 16:58:39 2025 by rpki-client