Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/323830313a3161353a323a3a2f34382d3438203d3e20323733303431.roa
File: 323830313a3161353a323a3a2f34382d3438203d3e20323733303431.roa (raw, json)
Hash identifier: 30Ma9sOEcCqpf2sPAuY8IiuxPp9bbyOjhkYHw3pXnRY=
Subject key identifier: 3D:72:3F:89:44:B8:94:7E:9D:AE:E7:CF:82:2F:86:1D:AE:F1:14:18
Certificate issuer: /CN=D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E
Certificate serial: 501D1FF9CAC4BC63440522D8ADE54375DAF60325
Authority key identifier: D8:B2:2F:03:33:B8:F6:4A:EF:4F:95:D7:6A:23:E4:5D:9D:53:0D:1E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/323830313a3161353a323a3a2f34382d3438203d3e20323733303431.roa
Signing time: Tue 04 Feb 2025 18:55:49 +0000
ROA not before: Tue 04 Feb 2025 18:50:49 +0000
ROA not after: Tue 03 Feb 2026 18:55:49 +0000
asID: 273041
IP address blocks: 2801:1a5:2::/48 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.crl
rsync://repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:1d:1f:f9:ca:c4:bc:63:44:05:22:d8:ad:e5:43:75:da:f6:03:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E
Validity
Not Before: Feb 4 18:50:49 2025 GMT
Not After : Feb 3 18:55:49 2026 GMT
Subject: CN=3D723F8944B8947E9DAEE7CF822F861DAEF11418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:20:b3:25:87:8e:db:15:c0:d6:60:d5:ea:db:
5d:fc:40:9a:db:58:06:dd:ce:29:87:1a:bb:38:11:
1f:83:f6:f2:ef:01:6b:4d:ce:b1:47:ad:b3:00:d6:
b4:5b:e0:7b:ce:65:a8:74:bb:99:79:6c:8d:eb:2f:
2f:f6:dc:9e:0d:22:9b:7a:be:83:de:83:cc:4e:d6:
65:61:9a:4d:bf:90:3d:e9:f6:fd:a4:02:0f:39:d1:
a4:2b:81:e7:91:fd:70:9c:71:30:2e:bb:89:a1:ef:
4e:1a:cf:77:ba:b1:dc:6f:0b:c2:9c:bd:f2:6a:4b:
15:60:c5:74:98:3f:79:e9:d4:79:8f:0e:20:af:1d:
fc:b1:ae:91:f1:4c:b3:d2:e8:7d:bb:86:e9:82:53:
c4:70:13:5d:e6:7f:9f:e0:29:13:6c:e3:fd:86:89:
95:e7:7c:8e:94:39:5b:77:fe:66:e0:e9:0c:36:4b:
21:aa:ff:34:c8:9c:ef:c0:8e:ba:28:76:71:aa:7c:
8c:1f:05:8c:f0:d4:22:0f:4b:4c:83:97:43:89:00:
e7:9d:e4:3e:1a:4e:7e:75:e7:ac:fb:fa:3e:eb:1c:
a3:89:af:ae:06:48:57:cf:c9:5c:18:f6:c2:0b:07:
9b:f0:4b:15:49:7f:c9:3a:11:11:84:13:30:e6:27:
aa:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:72:3F:89:44:B8:94:7E:9D:AE:E7:CF:82:2F:86:1D:AE:F1:14:18
X509v3 Authority Key Identifier:
keyid:D8:B2:2F:03:33:B8:F6:4A:EF:4F:95:D7:6A:23:E4:5D:9D:53:0D:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/323830313a3161353a323a3a2f34382d3438203d3e20323733303431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:1a5:2::/48
Signature Algorithm: sha256WithRSAEncryption
31:24:f8:6d:18:af:d6:19:8f:ae:b0:e4:74:1f:22:0a:52:51:
52:e3:64:51:04:36:c9:2c:fd:57:af:bf:fe:d2:f2:b4:61:3b:
3d:66:28:8b:00:90:5b:19:c8:c7:fb:cb:3c:3c:a4:2f:39:9d:
54:6a:24:99:7a:f2:99:5b:68:3e:31:cf:7c:ed:41:b4:77:7a:
7b:9d:61:10:78:e5:73:c4:be:7c:75:67:85:cc:4f:a7:d5:95:
40:99:81:6f:6a:ce:42:e5:54:5f:55:18:bd:e6:f4:d0:00:28:
bb:ae:5c:4d:b7:1a:3f:a9:35:9c:08:ca:85:9f:7a:25:d2:f1:
a9:df:59:c3:49:d7:90:d2:49:84:66:e1:4e:3c:5a:61:75:69:
57:3f:ac:c5:e8:00:fb:c4:36:c6:45:a6:6a:30:94:e1:ee:6b:
3b:58:c8:5d:11:6c:87:c2:bb:85:8c:41:58:72:92:05:47:31:
78:dd:6f:fa:21:fe:cd:60:2d:4e:e8:8d:7c:b9:c8:ab:69:91:
8b:2a:bd:ea:70:7c:fe:df:67:6c:77:ca:ac:e6:f1:41:c0:a6:
ef:ac:fc:e0:eb:f1:7c:12:09:43:66:76:3b:2a:c9:d0:f9:45:
bf:48:90:8a:b8:c5:bf:a2:56:26:ba:9f:f5:48:c8:28:09:49:
e6:30:ac:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 02:07:12 2025 by rpki-client