Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/323830333a633830303a3a2f33322d3438203d3e203233323433.roa
File: 323830333a633830303a3a2f33322d3438203d3e203233323433.roa (raw, json)
Hash identifier: mFKiYdL95AGKyIB4PVWwK5SLAY+P042EcZGI4cGr5Q8=
Subject key identifier: 8B:65:10:83:7C:54:1D:80:F8:0F:1A:32:97:31:64:E5:36:32:40:F7
Certificate issuer: /CN=8E1499D12067F2BEA1287B63425EA3B70FCAFFC1
Certificate serial: 7D67340B9166220C5AD5753B91580D398DCE0E59
Authority key identifier: 8E:14:99:D1:20:67:F2:BE:A1:28:7B:63:42:5E:A3:B7:0F:CA:FF:C1
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/323830333a633830303a3a2f33322d3438203d3e203233323433.roa
Signing time: Tue 04 Feb 2025 18:25:43 +0000
ROA not before: Tue 04 Feb 2025 18:20:43 +0000
ROA not after: Tue 03 Feb 2026 18:25:43 +0000
asID: 23243
IP address blocks: 2803:c800::/32 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.crl
rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 02:09:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:67:34:0b:91:66:22:0c:5a:d5:75:3b:91:58:0d:39:8d:ce:0e:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8E1499D12067F2BEA1287B63425EA3B70FCAFFC1
Validity
Not Before: Feb 4 18:20:43 2025 GMT
Not After : Feb 3 18:25:43 2026 GMT
Subject: CN=8B6510837C541D80F80F1A32973164E5363240F7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:86:96:d9:82:5b:87:27:4d:26:37:99:02:ef:
e1:61:23:6e:ad:8d:90:12:88:9b:1a:a8:2b:f1:1e:
79:f2:b7:f3:6c:80:7e:bd:02:d3:85:38:58:d1:64:
a8:55:3a:58:f0:6b:ef:01:57:b0:1a:d3:3a:97:a5:
1b:bf:9b:b0:ac:de:68:ee:af:98:1b:11:2f:12:d7:
78:98:dd:2f:9b:e4:45:d3:20:dc:4f:50:b8:e0:85:
2e:1e:70:f6:3e:52:e9:ef:f9:2b:f9:25:a0:08:aa:
7c:11:d3:c5:41:35:8f:63:15:45:cf:99:57:52:47:
75:04:85:56:cd:51:14:c0:f0:3c:a8:bc:ce:bd:14:
c2:36:af:d8:31:8e:15:ac:39:cc:ff:37:cd:62:a3:
07:c2:f3:fb:37:1d:e0:c9:f3:c8:81:ee:45:3f:73:
02:9b:21:5a:34:44:1c:62:18:77:3c:13:3a:2e:dc:
d5:82:35:f3:1e:fc:d2:b3:f2:ab:9a:f0:6e:63:c6:
b5:d1:cc:d5:c5:83:f7:c8:75:f9:5d:ea:07:3c:12:
1e:e0:df:7c:88:d7:5a:00:c8:5d:a2:df:7c:0f:db:
7d:38:92:4b:25:0c:9e:bb:6c:86:aa:d4:a1:ab:2c:
b8:3b:e3:f5:db:02:c9:83:36:f6:0b:c4:d7:61:a9:
23:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:65:10:83:7C:54:1D:80:F8:0F:1A:32:97:31:64:E5:36:32:40:F7
X509v3 Authority Key Identifier:
keyid:8E:14:99:D1:20:67:F2:BE:A1:28:7B:63:42:5E:A3:B7:0F:CA:FF:C1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/323830333a633830303a3a2f33322d3438203d3e203233323433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:c800::/32
Signature Algorithm: sha256WithRSAEncryption
72:9f:e2:b8:9e:4b:1a:1f:0c:f9:66:47:7e:18:89:3f:62:c0:
65:e7:40:57:b0:3e:4b:f8:10:38:86:f7:1d:a9:22:ec:dc:9c:
c7:50:a6:5d:c9:c6:ea:90:92:a7:54:88:57:4b:b2:06:c0:88:
e9:21:97:01:6d:22:59:26:f3:9e:9d:ee:f0:08:a7:61:10:42:
f9:f5:47:21:d7:df:81:f9:04:cc:cc:76:72:df:89:ff:a2:89:
ee:07:d1:91:4c:83:09:8d:32:19:ff:53:e3:8f:63:fb:51:7e:
3b:ca:7a:5b:45:c5:44:f0:22:1a:4c:00:dc:de:50:0a:c5:fb:
63:f8:d0:3a:20:5b:d0:8c:c6:50:bd:00:59:ac:77:74:4b:1b:
50:0c:8e:6f:21:ce:02:6e:36:5c:4c:02:3b:15:89:54:4b:7b:
ce:61:8a:9e:a9:42:6c:22:f3:7c:a2:a6:b7:5b:48:e0:e6:0b:
15:90:03:f9:63:1a:66:b7:cd:5c:97:a7:30:64:d4:62:82:26:
c2:88:72:91:63:e5:1f:49:b8:d9:67:36:db:27:a7:d0:ce:16:
5e:3c:49:6f:e8:d8:7d:4f:a0:a8:c0:3d:f7:0c:ca:3c:0b:d2:
3c:fe:ca:1d:4a:a6:37:46:77:8d:ad:54:56:6e:af:20:21:a3:
72:52:41:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 16:49:19 2025 by rpki-client