Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/323830313a3161353a383a3a2f34382d3438203d3e20323733303431.roa
File: 323830313a3161353a383a3a2f34382d3438203d3e20323733303431.roa (raw, json)
Hash identifier: iolC5NcIFLeqToQkK2oTSzvRBy/bs//KuMhmmQ2w1vo=
Subject key identifier: 18:77:0C:73:01:C1:45:2A:EA:15:68:AF:3D:28:92:28:6B:1A:DE:B2
Certificate issuer: /CN=D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E
Certificate serial: 1068955E3CB51069D0EDDBF7EB9D45D5E4E03354
Authority key identifier: D8:B2:2F:03:33:B8:F6:4A:EF:4F:95:D7:6A:23:E4:5D:9D:53:0D:1E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/323830313a3161353a383a3a2f34382d3438203d3e20323733303431.roa
Signing time: Tue 04 Feb 2025 18:55:47 +0000
ROA not before: Tue 04 Feb 2025 18:50:47 +0000
ROA not after: Tue 03 Feb 2026 18:55:47 +0000
asID: 273041
IP address blocks: 2801:1a5:8::/48 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.crl
rsync://repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:68:95:5e:3c:b5:10:69:d0:ed:db:f7:eb:9d:45:d5:e4:e0:33:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E
Validity
Not Before: Feb 4 18:50:47 2025 GMT
Not After : Feb 3 18:55:47 2026 GMT
Subject: CN=18770C7301C1452AEA1568AF3D2892286B1ADEB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:1e:5b:23:2a:46:f3:13:ea:03:7a:16:d1:9f:
18:61:02:d5:cd:0d:78:f0:e3:c0:cc:e2:42:f0:74:
f3:21:83:02:b4:58:9f:77:f2:e2:cf:16:fa:91:f6:
8f:a8:b8:0c:e6:dc:93:c3:e7:b5:99:a6:27:82:71:
83:c0:8e:66:0a:b1:b4:10:be:79:19:43:0f:f8:18:
0f:84:c2:92:57:1f:b8:35:47:06:b1:a5:a8:8f:60:
c0:cd:e9:d6:d3:fb:f1:a6:b5:5e:26:fc:b8:18:b3:
4f:e4:58:71:ee:a8:8d:22:32:d8:d3:19:bd:8d:0a:
51:7c:14:07:3a:4e:a6:02:44:69:87:ff:b2:2d:99:
04:17:6c:4c:0c:53:9a:7f:53:5b:f7:04:fa:df:50:
e9:51:07:8c:fd:31:35:b9:ce:16:89:3e:7f:9f:ef:
44:32:e5:d9:95:99:16:3e:04:e5:b9:1f:03:83:6c:
ef:bd:03:0d:fd:35:48:23:e3:8f:b8:a0:36:12:f4:
a9:09:eb:67:31:f3:8d:ae:8c:01:47:8e:d5:71:17:
53:ea:1d:50:02:dc:b8:da:60:c6:c8:93:4a:5a:9e:
34:2c:b9:db:8c:cc:e3:06:a3:40:c8:e9:32:39:ee:
b4:29:41:a5:35:54:c3:fa:fc:4a:eb:9f:ba:22:18:
5d:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:77:0C:73:01:C1:45:2A:EA:15:68:AF:3D:28:92:28:6B:1A:DE:B2
X509v3 Authority Key Identifier:
keyid:D8:B2:2F:03:33:B8:F6:4A:EF:4F:95:D7:6A:23:E4:5D:9D:53:0D:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/323830313a3161353a383a3a2f34382d3438203d3e20323733303431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:1a5:8::/48
Signature Algorithm: sha256WithRSAEncryption
2c:38:03:6f:49:95:f4:8f:ca:81:5b:9b:66:dd:cd:8a:5b:13:
b8:87:a3:14:cf:32:36:0d:c3:41:4f:8b:4b:66:0f:07:8e:76:
91:7d:8c:df:b6:e0:1b:f8:30:f3:d7:06:e3:0d:85:de:4a:82:
5b:b9:9a:c6:87:a6:e4:eb:6e:3d:95:6d:30:69:c3:d2:fe:68:
13:4c:d0:c4:14:d9:64:f4:53:b4:45:21:56:9f:14:59:61:b2:
02:b0:67:3f:6f:9d:0a:2e:2a:36:11:53:71:67:90:ac:98:a8:
c1:24:d8:ef:31:d7:4f:25:d4:ed:8d:b1:61:bf:ff:c2:90:42:
5b:76:9d:46:ce:1e:7b:e0:66:a6:40:1e:25:54:49:0a:eb:a1:
be:26:1b:9a:8d:a7:00:90:b4:f6:7e:a4:7b:22:38:f7:e4:a1:
0e:02:f2:45:ee:10:0a:ff:e0:a3:b3:24:b3:8c:ff:5e:6a:d0:
8f:42:4a:27:7c:fe:80:2f:75:33:10:a0:e3:c8:f8:91:8e:b7:
10:8f:29:79:28:ad:5b:ea:17:a1:fa:a8:9c:0a:d0:3b:7e:b0:
1d:c3:a7:ac:40:6f:d6:ad:8e:8a:d3:6e:8c:f7:3d:44:af:75:
87:98:4b:41:71:1a:c0:46:6e:86:a6:d9:8b:81:f0:9d:6b:95:
cc:cb:fd:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 02:07:08 2025 by rpki-client