Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/75859C85FD10CCA9A24A8B24EA8EF3324B8C37F6E01CE243E6BF656F9A2EF744/0/3133312e3130382e342e302f32322d3234203d3e203238303037.roa
File: 3133312e3130382e342e302f32322d3234203d3e203238303037.roa (raw, json)
Hash identifier: dxZR4tc2v0yD0+g2TI1ITYA6cHWTpFdNqFEA73P265A=
Subject key identifier: 12:B5:1C:B2:8F:16:FF:88:3D:08:FD:EE:3A:A5:D3:AB:DB:DD:AD:22
Certificate issuer: /CN=DC17BDE9178A893A0E44505700003A43E9C81665
Certificate serial: 1E989E7E86AAC5946AB425BFF76328E201D6D4A8
Authority key identifier: DC:17:BD:E9:17:8A:89:3A:0E:44:50:57:00:00:3A:43:E9:C8:16:65
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DC17BDE9178A893A0E44505700003A43E9C81665.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/75859C85FD10CCA9A24A8B24EA8EF3324B8C37F6E01CE243E6BF656F9A2EF744/0/3133312e3130382e342e302f32322d3234203d3e203238303037.roa
Signing time: Tue 04 Feb 2025 18:44:42 +0000
ROA not before: Tue 04 Feb 2025 18:39:42 +0000
ROA not after: Tue 03 Feb 2026 18:44:42 +0000
asID: 28007
IP address blocks: 131.108.4.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/75859C85FD10CCA9A24A8B24EA8EF3324B8C37F6E01CE243E6BF656F9A2EF744/0/DC17BDE9178A893A0E44505700003A43E9C81665.crl
rsync://repository.lacnic.net/rpki/lacnic/75859C85FD10CCA9A24A8B24EA8EF3324B8C37F6E01CE243E6BF656F9A2EF744/0/DC17BDE9178A893A0E44505700003A43E9C81665.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DC17BDE9178A893A0E44505700003A43E9C81665.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:98:9e:7e:86:aa:c5:94:6a:b4:25:bf:f7:63:28:e2:01:d6:d4:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DC17BDE9178A893A0E44505700003A43E9C81665
Validity
Not Before: Feb 4 18:39:42 2025 GMT
Not After : Feb 3 18:44:42 2026 GMT
Subject: CN=12B51CB28F16FF883D08FDEE3AA5D3ABDBDDAD22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:20:3d:fa:f5:c0:ce:6b:3a:36:c5:84:dc:72:
62:8b:19:b9:c7:10:58:be:2c:db:b9:50:28:10:99:
8f:eb:57:45:e3:6a:a2:33:a4:62:b5:79:f3:a9:93:
d1:a6:4e:35:a4:a1:8b:26:85:bc:0a:55:30:6b:4a:
c9:13:20:d4:6d:ec:a5:c5:e0:95:05:a9:ff:10:9c:
ff:fd:c7:65:4c:78:ae:7a:b4:0c:18:a7:a7:31:9e:
fe:db:db:78:84:ab:41:18:37:be:ec:da:78:0a:98:
f6:70:e0:1a:5d:1f:d9:f2:44:e2:21:1c:2a:66:e6:
bb:0b:c2:78:1b:7b:d5:4c:44:83:b3:30:0d:e1:90:
89:72:46:c1:44:d8:76:22:4c:90:96:33:8f:ae:ce:
a9:74:c8:ff:18:ec:32:10:c4:45:21:45:d0:b4:1d:
3e:ca:7f:3c:dd:1c:50:aa:6d:b4:32:4c:a5:fb:6f:
4e:6a:0b:b0:7f:6a:23:da:14:82:65:94:f6:c3:65:
54:28:4b:d4:0d:61:ca:21:11:0c:31:58:1c:d1:0f:
a0:85:37:e8:3b:e2:74:27:11:89:d6:d7:11:1f:24:
03:32:74:6d:cc:f9:6a:db:f8:e7:10:a0:ba:c4:24:
99:28:88:e4:7f:c1:0d:6f:bf:f0:fd:f7:0c:88:4a:
64:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:B5:1C:B2:8F:16:FF:88:3D:08:FD:EE:3A:A5:D3:AB:DB:DD:AD:22
X509v3 Authority Key Identifier:
keyid:DC:17:BD:E9:17:8A:89:3A:0E:44:50:57:00:00:3A:43:E9:C8:16:65
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/75859C85FD10CCA9A24A8B24EA8EF3324B8C37F6E01CE243E6BF656F9A2EF744/0/DC17BDE9178A893A0E44505700003A43E9C81665.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DC17BDE9178A893A0E44505700003A43E9C81665.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/75859C85FD10CCA9A24A8B24EA8EF3324B8C37F6E01CE243E6BF656F9A2EF744/0/3133312e3130382e342e302f32322d3234203d3e203238303037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.108.4.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:e9:cc:2f:cd:c1:77:f3:10:a6:37:dd:76:3f:ba:cc:ba:7b:
62:f5:63:21:6f:1c:9d:d2:f9:ef:86:8a:6b:58:f1:ea:43:d8:
50:e4:11:89:1b:f1:c3:f7:c5:8c:56:36:c6:ec:20:ce:bf:69:
09:3e:d2:3d:ec:01:97:d7:60:0c:3e:ec:f8:e8:54:b1:4b:cb:
7f:4b:48:40:aa:94:01:cd:e7:36:3a:14:9f:31:c5:da:89:b4:
db:5e:fd:d4:71:b0:ee:0c:b9:7d:b7:ae:71:a0:d0:19:31:40:
4d:e2:0d:79:94:59:e0:45:bc:b7:b2:86:69:82:96:1c:6f:35:
63:c9:64:9c:9f:02:da:cd:1c:5f:69:37:7b:ac:af:35:69:a5:
bc:b9:bc:28:2b:83:22:35:55:4d:f1:75:b2:ee:ef:ea:25:8f:
3d:c2:c5:36:5a:88:68:46:05:dc:81:db:79:b1:91:7c:aa:28:
3e:8c:46:51:48:17:f9:61:66:d1:96:ec:41:77:22:43:71:8a:
3b:bd:08:83:c2:1b:ca:6d:0b:35:da:9b:d4:c8:87:31:58:42:
6e:ef:bf:02:90:0d:e5:f2:62:e0:99:23:87:86:4f:a0:26:42:
83:cb:20:a0:69:f2:42:30:7b:1d:ed:36:11:c1:0f:bd:63:af:
cb:f6:79:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 06:22:54 2025 by rpki-client