Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/826DDAB6E94D74BD3305EFCFD378BE88E3BCDDD7A71212766577BB69B230E898/0/3230302e3131342e38382e302f32312d3234203d3e20323635383331.roa
File: 3230302e3131342e38382e302f32312d3234203d3e20323635383331.roa (raw, json)
Hash identifier: LSBHm7Och1KLERTRJ0IhpkF2kSioSAtI3SryhKRBXqs=
Subject key identifier: 9F:42:33:9F:BE:1E:86:E9:BE:DF:46:E2:04:D1:ED:6A:80:0D:D6:43
Certificate issuer: /CN=FDCD3CF2DE710C85FB6B36F55702D04BF46316B3
Certificate serial: 2FD8ABDB3D52E335E496ACCD5DF7545BA2E074CF
Authority key identifier: FD:CD:3C:F2:DE:71:0C:85:FB:6B:36:F5:57:02:D0:4B:F4:63:16:B3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FDCD3CF2DE710C85FB6B36F55702D04BF46316B3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/826DDAB6E94D74BD3305EFCFD378BE88E3BCDDD7A71212766577BB69B230E898/0/3230302e3131342e38382e302f32312d3234203d3e20323635383331.roa
Signing time: Tue 04 Feb 2025 18:23:37 +0000
ROA not before: Tue 04 Feb 2025 18:18:37 +0000
ROA not after: Tue 03 Feb 2026 18:23:37 +0000
asID: 265831
IP address blocks: 200.114.88.0/21 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/826DDAB6E94D74BD3305EFCFD378BE88E3BCDDD7A71212766577BB69B230E898/0/FDCD3CF2DE710C85FB6B36F55702D04BF46316B3.crl
rsync://repository.lacnic.net/rpki/lacnic/826DDAB6E94D74BD3305EFCFD378BE88E3BCDDD7A71212766577BB69B230E898/0/FDCD3CF2DE710C85FB6B36F55702D04BF46316B3.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FDCD3CF2DE710C85FB6B36F55702D04BF46316B3.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 04:27:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:d8:ab:db:3d:52:e3:35:e4:96:ac:cd:5d:f7:54:5b:a2:e0:74:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FDCD3CF2DE710C85FB6B36F55702D04BF46316B3
Validity
Not Before: Feb 4 18:18:37 2025 GMT
Not After : Feb 3 18:23:37 2026 GMT
Subject: CN=9F42339FBE1E86E9BEDF46E204D1ED6A800DD643
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9f:3a:aa:69:05:6b:e3:76:f5:42:42:4b:de:
f0:ec:8b:3c:81:fe:1d:7f:46:be:63:10:c9:ef:6a:
a3:e0:fc:3e:8a:49:ec:ba:4f:c8:a6:fb:92:82:fd:
8f:e9:ff:a3:05:9b:ed:dc:f7:fc:be:8b:61:24:15:
1e:69:49:46:d3:14:f7:93:cb:30:20:2b:29:0a:c5:
ae:72:5f:99:94:89:9a:30:c2:06:a7:a9:67:5e:da:
e6:f2:ee:54:c5:fc:12:e8:33:4f:bf:d0:c7:d4:9c:
db:22:75:c9:82:4d:6d:c4:a1:13:01:58:97:2a:e5:
3d:e3:24:42:e5:6f:54:c6:24:54:18:2b:56:d7:7c:
70:6a:dc:70:be:c7:33:77:4a:8f:db:a1:d2:98:34:
31:25:ba:c7:06:d4:e5:af:b9:71:3f:2e:b8:31:99:
ec:a0:da:96:51:92:54:35:45:d8:ee:c5:d2:8a:33:
73:da:e7:cf:42:bd:08:52:86:d3:f3:de:c7:e5:4b:
db:bf:fb:5a:f1:6e:56:37:7c:1d:71:83:09:2d:9e:
55:95:c1:73:50:6b:55:05:2b:a2:c9:16:6d:a6:f9:
7b:dd:9d:49:1b:11:84:68:61:f1:56:ca:bb:62:21:
80:a1:99:5c:7c:3d:23:fd:75:10:48:43:9e:cd:57:
cd:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:42:33:9F:BE:1E:86:E9:BE:DF:46:E2:04:D1:ED:6A:80:0D:D6:43
X509v3 Authority Key Identifier:
keyid:FD:CD:3C:F2:DE:71:0C:85:FB:6B:36:F5:57:02:D0:4B:F4:63:16:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/826DDAB6E94D74BD3305EFCFD378BE88E3BCDDD7A71212766577BB69B230E898/0/FDCD3CF2DE710C85FB6B36F55702D04BF46316B3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FDCD3CF2DE710C85FB6B36F55702D04BF46316B3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/826DDAB6E94D74BD3305EFCFD378BE88E3BCDDD7A71212766577BB69B230E898/0/3230302e3131342e38382e302f32312d3234203d3e20323635383331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.114.88.0/21
Signature Algorithm: sha256WithRSAEncryption
2d:e3:24:4a:b8:c0:55:17:fc:e6:4a:99:b2:0d:68:1f:04:c6:
d1:a1:41:f9:e6:da:87:5f:94:1c:e1:2e:b5:f3:12:a2:70:c3:
1a:3c:36:cc:b5:e8:33:48:3c:1b:19:86:d5:e8:bc:ad:40:00:
f5:61:c4:71:9e:45:77:fe:b8:fb:cb:3b:86:dc:2a:90:93:d2:
19:58:c8:fb:c7:e3:f8:e9:04:06:25:d7:4b:b7:26:3e:ae:2e:
fc:d9:c0:ab:60:8f:d3:2d:4c:7a:79:64:57:e3:e6:39:74:eb:
1c:74:97:30:af:c7:cb:32:bc:b8:24:ba:6a:94:bb:5a:df:a5:
3d:a6:1d:0f:39:26:8c:ac:33:41:67:26:1c:98:40:3f:97:f0:
6f:40:83:ae:2c:69:44:51:16:90:0b:91:95:0d:14:fb:93:d9:
2b:42:9e:fc:9d:7d:03:02:a4:8f:1d:8b:89:f9:03:ac:3b:fd:
84:44:1a:1e:52:29:37:28:79:2a:a0:ca:17:37:d1:6c:9e:99:
87:d1:b3:99:77:24:91:2e:c1:c4:50:b8:28:ee:4c:04:9e:c3:
0d:8e:13:33:12:ab:03:bf:6c:fc:e5:45:bf:0e:a0:cd:50:3d:
a1:37:10:07:46:87:1a:da:87:62:e8:2b:43:4a:78:f1:7f:90:
58:10:15:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 19:57:36 2025 by rpki-client