Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/826DDAB6E94D74BD3305EFCFD378BE88E3BCDDD7A71212766577BB69B230E898/0/3230302e3131342e38382e302f32312d3234203d3e203238313230.roa
File: 3230302e3131342e38382e302f32312d3234203d3e203238313230.roa (raw, json)
Hash identifier: E0pyWsPwDbvGYA6QVPw0NXtPPpUnz9WQSQupvhjqBWE=
Subject key identifier: BF:88:5D:78:C0:53:A2:14:EC:8E:93:2D:9E:B6:93:96:99:F8:F9:E9
Certificate issuer: /CN=FDCD3CF2DE710C85FB6B36F55702D04BF46316B3
Certificate serial: 2430F36BED05069A3107FEFF1534045A41800F30
Authority key identifier: FD:CD:3C:F2:DE:71:0C:85:FB:6B:36:F5:57:02:D0:4B:F4:63:16:B3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FDCD3CF2DE710C85FB6B36F55702D04BF46316B3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/826DDAB6E94D74BD3305EFCFD378BE88E3BCDDD7A71212766577BB69B230E898/0/3230302e3131342e38382e302f32312d3234203d3e203238313230.roa
Signing time: Tue 04 Feb 2025 18:23:37 +0000
ROA not before: Tue 04 Feb 2025 18:18:37 +0000
ROA not after: Tue 03 Feb 2026 18:23:37 +0000
asID: 28120
IP address blocks: 200.114.88.0/21 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/826DDAB6E94D74BD3305EFCFD378BE88E3BCDDD7A71212766577BB69B230E898/0/FDCD3CF2DE710C85FB6B36F55702D04BF46316B3.crl
rsync://repository.lacnic.net/rpki/lacnic/826DDAB6E94D74BD3305EFCFD378BE88E3BCDDD7A71212766577BB69B230E898/0/FDCD3CF2DE710C85FB6B36F55702D04BF46316B3.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FDCD3CF2DE710C85FB6B36F55702D04BF46316B3.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 04:27:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:30:f3:6b:ed:05:06:9a:31:07:fe:ff:15:34:04:5a:41:80:0f:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FDCD3CF2DE710C85FB6B36F55702D04BF46316B3
Validity
Not Before: Feb 4 18:18:37 2025 GMT
Not After : Feb 3 18:23:37 2026 GMT
Subject: CN=BF885D78C053A214EC8E932D9EB6939699F8F9E9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:26:78:19:de:c7:43:b8:8f:ea:08:45:e5:46:
09:be:22:77:3c:c8:34:ad:ae:a5:89:81:1a:05:35:
fd:d9:40:6b:d6:15:d7:44:a9:b4:e9:54:82:40:a8:
1c:b4:f5:f2:ca:23:26:d7:4f:ac:25:2c:19:77:0c:
b1:a1:44:18:fe:d7:a0:c5:b2:b9:22:72:c1:e1:86:
de:7d:33:8a:c6:1a:ea:4c:85:76:b7:eb:bb:18:8d:
4e:b9:96:7e:e3:d8:dc:3b:ea:65:2c:c7:f1:6e:10:
b2:cd:4c:69:53:4e:b7:a5:e4:b3:4e:0b:10:58:f1:
d3:4a:fc:13:96:f1:ee:15:9a:da:3b:1a:06:a0:42:
1b:7f:f4:77:69:c5:0e:a3:12:26:2a:c6:1f:e8:17:
e8:13:29:6a:a7:42:02:c5:f0:c3:b1:6b:8a:03:05:
fc:17:54:9c:f5:d5:27:41:80:0a:d8:b4:0d:f7:95:
4d:42:f5:e6:a7:16:c0:70:fc:8f:0d:ae:13:eb:66:
ff:42:6d:cf:e4:2b:20:ae:a5:cd:39:db:b8:b5:2e:
e5:ee:c7:33:48:09:99:93:bd:1e:63:57:e8:19:85:
07:f9:74:ee:ff:7e:e6:cc:aa:cc:48:4e:e6:df:4c:
6a:b4:98:3a:80:52:de:c2:32:c3:17:c4:68:d3:d2:
e8:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:88:5D:78:C0:53:A2:14:EC:8E:93:2D:9E:B6:93:96:99:F8:F9:E9
X509v3 Authority Key Identifier:
keyid:FD:CD:3C:F2:DE:71:0C:85:FB:6B:36:F5:57:02:D0:4B:F4:63:16:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/826DDAB6E94D74BD3305EFCFD378BE88E3BCDDD7A71212766577BB69B230E898/0/FDCD3CF2DE710C85FB6B36F55702D04BF46316B3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FDCD3CF2DE710C85FB6B36F55702D04BF46316B3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/826DDAB6E94D74BD3305EFCFD378BE88E3BCDDD7A71212766577BB69B230E898/0/3230302e3131342e38382e302f32312d3234203d3e203238313230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.114.88.0/21
Signature Algorithm: sha256WithRSAEncryption
65:7c:91:87:24:cc:a6:3f:1b:21:94:12:72:b1:7e:55:dd:35:
4c:4a:55:e2:c3:8f:62:00:11:3c:b9:66:e5:95:ae:65:21:52:
12:85:11:4a:9f:31:5a:a4:19:a5:f5:be:8a:c3:3a:70:9d:a4:
69:eb:e0:a6:d0:5e:40:d5:5c:8d:0e:69:3d:bf:a1:57:16:70:
1d:28:55:e3:e0:fb:b8:c2:c7:3f:c8:bd:99:bf:81:b4:88:58:
f3:0c:3d:69:88:bc:f8:22:50:8a:e9:66:2c:32:29:7a:9a:6d:
18:f5:49:fd:23:f7:d9:c8:47:a1:9c:09:53:78:b6:94:ad:b4:
51:49:b0:ef:d8:ff:ee:80:dd:d2:20:ac:35:a8:fc:6a:91:61:
75:a4:c1:7f:19:11:dd:79:26:ab:98:f3:72:54:ae:8f:12:1b:
b3:da:ff:12:bc:20:02:23:1b:c8:68:04:5e:12:aa:43:f7:3f:
85:2a:90:c8:66:7d:4a:c7:e8:1f:63:50:2b:cf:50:4b:72:7a:
00:14:44:4e:4a:a1:ce:99:20:e0:b5:85:95:1c:f6:99:b3:95:
63:be:ef:37:36:d8:55:fa:ff:a6:b8:00:64:f9:73:1b:c4:96:
12:64:c3:eb:29:b8:be:8e:08:e8:e1:18:a3:36:ef:bc:27:55:
83:9e:c8:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 19:37:55 2025 by rpki-client