Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7E835C58180B24482B48EC2C796754600CEE6F3B18B69BC4BBDFFDC2285EC48A/0/3133382e3132312e3134302e302f32322d3234203d3e203238313130.roa
File: 3133382e3132312e3134302e302f32322d3234203d3e203238313130.roa (raw, json)
Hash identifier: PV5Dezr71UNoXvNJ5wXu1+2re5lzLi+aWeehrqAWqA8=
Subject key identifier: 10:7B:EE:7E:47:FE:C6:D7:91:FE:07:68:BE:9A:E7:4F:73:2E:CB:3E
Certificate issuer: /CN=858889372446EF678E35E9D349C0785A81B8FBB7
Certificate serial: 3CF302318135EBE1A60AC97D541B1B2310875C67
Authority key identifier: 85:88:89:37:24:46:EF:67:8E:35:E9:D3:49:C0:78:5A:81:B8:FB:B7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/858889372446EF678E35E9D349C0785A81B8FBB7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7E835C58180B24482B48EC2C796754600CEE6F3B18B69BC4BBDFFDC2285EC48A/0/3133382e3132312e3134302e302f32322d3234203d3e203238313130.roa
Signing time: Wed 18 Dec 2024 16:40:00 +0000
ROA not before: Wed 18 Dec 2024 16:35:00 +0000
ROA not after: Wed 17 Dec 2025 16:40:00 +0000
asID: 28110
IP address blocks: 138.121.140.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/7E835C58180B24482B48EC2C796754600CEE6F3B18B69BC4BBDFFDC2285EC48A/0/858889372446EF678E35E9D349C0785A81B8FBB7.crl
rsync://repository.lacnic.net/rpki/lacnic/7E835C58180B24482B48EC2C796754600CEE6F3B18B69BC4BBDFFDC2285EC48A/0/858889372446EF678E35E9D349C0785A81B8FBB7.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/858889372446EF678E35E9D349C0785A81B8FBB7.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 01:23:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3c:f3:02:31:81:35:eb:e1:a6:0a:c9:7d:54:1b:1b:23:10:87:5c:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=858889372446EF678E35E9D349C0785A81B8FBB7
Validity
Not Before: Dec 18 16:35:00 2024 GMT
Not After : Dec 17 16:40:00 2025 GMT
Subject: CN=107BEE7E47FEC6D791FE0768BE9AE74F732ECB3E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:c4:71:40:84:94:ea:70:2e:a9:f9:dd:10:b5:
41:79:27:9a:c6:2e:de:91:83:7e:c7:c6:c2:76:56:
78:2f:8e:17:f5:85:d4:af:03:ca:db:25:69:9c:1c:
c3:1c:98:0c:70:6e:e3:e7:b9:09:06:6e:cf:0b:66:
3a:d2:29:34:26:d1:5d:41:65:f1:c2:0a:55:d1:dc:
38:b0:3e:98:4b:51:02:c5:3e:50:43:eb:97:91:06:
32:33:60:9e:49:07:6b:1d:95:4a:3a:f4:26:26:81:
01:c9:a5:6d:34:35:42:be:35:16:3f:e6:a1:5d:cb:
80:44:51:f1:1e:06:ab:3a:82:25:88:54:52:9d:12:
71:7d:8b:6d:03:a3:60:3e:33:35:c0:ff:a7:3a:18:
b4:e9:8c:9d:54:1c:dc:59:ce:0f:0b:07:7d:ab:80:
d5:ad:8c:9f:70:e8:b5:0f:74:c1:f4:37:ee:c6:be:
37:d6:06:76:d3:08:c9:08:2b:8e:b6:d4:2d:f9:f5:
d7:f7:31:26:11:97:72:3b:60:53:c6:2b:c4:ad:fe:
d6:f9:bc:a2:d5:7e:3c:5c:8a:70:2b:b6:83:a0:10:
41:30:fc:77:a1:88:e2:e9:4c:7c:22:29:30:8a:da:
c5:b0:8d:22:27:0d:f9:ad:f9:70:19:81:6a:48:35:
42:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:7B:EE:7E:47:FE:C6:D7:91:FE:07:68:BE:9A:E7:4F:73:2E:CB:3E
X509v3 Authority Key Identifier:
keyid:85:88:89:37:24:46:EF:67:8E:35:E9:D3:49:C0:78:5A:81:B8:FB:B7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7E835C58180B24482B48EC2C796754600CEE6F3B18B69BC4BBDFFDC2285EC48A/0/858889372446EF678E35E9D349C0785A81B8FBB7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/858889372446EF678E35E9D349C0785A81B8FBB7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7E835C58180B24482B48EC2C796754600CEE6F3B18B69BC4BBDFFDC2285EC48A/0/3133382e3132312e3134302e302f32322d3234203d3e203238313130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.121.140.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:80:84:9b:b6:e8:07:d1:f9:7c:50:5d:4e:4d:d7:83:4c:3a:
b9:db:3e:5b:d2:09:41:1f:3b:15:a8:66:bd:b2:21:05:bc:35:
b3:b1:51:fc:f9:c0:5d:02:79:0f:09:f0:03:11:ff:84:ba:4d:
33:f5:07:1d:47:9f:13:24:d7:a1:c2:61:90:99:00:c4:14:64:
81:4c:b9:5f:10:e6:db:6f:14:c1:20:8a:34:0d:5e:cb:58:88:
8f:39:30:0a:26:76:2d:7c:cd:e9:80:84:66:19:9f:5f:18:8e:
61:a0:3b:ff:ed:52:c2:7a:b6:ae:0c:92:69:c7:2c:e0:79:ec:
cd:cf:57:70:77:2f:66:e3:c6:12:ee:4e:39:a8:72:76:9d:b2:
66:5d:3e:bc:b0:13:7c:b1:39:ff:94:ae:b5:bc:e0:c7:eb:62:
bf:36:0a:05:84:a5:c8:84:c6:94:1e:91:4f:67:b4:7d:f0:d3:
4b:be:10:29:a8:43:19:6c:39:2d:3c:98:ef:87:ad:1c:54:aa:
2c:4b:cf:bf:39:f8:71:93:47:8a:f6:f9:dd:41:70:ea:42:d7:
94:38:ab:0a:53:3b:e2:ea:1a:3f:a8:a9:bd:10:19:ef:c8:2e:
8a:1d:74:af:fc:17:f1:39:dd:1a:2c:cd:77:a2:d8:4f:4b:43:
38:20:f2:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 18:05:53 2025 by rpki-client