Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/843FB03203AC44517EFC4DC748A4F46090697FAD2B3624CD1D66DA1FC4EB29CA/0/3137302e3234342e3137302e302f32342d3234203d3e20323637383538.roa
File: 3137302e3234342e3137302e302f32342d3234203d3e20323637383538.roa (raw, json)
Hash identifier: OXALnWtl9796uv1tnaIZQhKvG4KWY2yqGRtSzSeUWx4=
Subject key identifier: 31:ED:08:E0:8F:9B:AB:C4:84:EB:C5:2E:01:E7:0C:F7:86:B5:90:36
Certificate issuer: /CN=5FAC4FA89218203214573AEA6EC449BC4CFD9640
Certificate serial: 7B4B60DC82586D69926FBF4ED5346FE3903F6B7B
Authority key identifier: 5F:AC:4F:A8:92:18:20:32:14:57:3A:EA:6E:C4:49:BC:4C:FD:96:40
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5FAC4FA89218203214573AEA6EC449BC4CFD9640.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/843FB03203AC44517EFC4DC748A4F46090697FAD2B3624CD1D66DA1FC4EB29CA/0/3137302e3234342e3137302e302f32342d3234203d3e20323637383538.roa
Signing time: Tue 04 Feb 2025 18:11:06 +0000
ROA not before: Tue 04 Feb 2025 18:06:06 +0000
ROA not after: Tue 03 Feb 2026 18:11:06 +0000
asID: 267858
IP address blocks: 170.244.170.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/843FB03203AC44517EFC4DC748A4F46090697FAD2B3624CD1D66DA1FC4EB29CA/0/5FAC4FA89218203214573AEA6EC449BC4CFD9640.crl
rsync://repository.lacnic.net/rpki/lacnic/843FB03203AC44517EFC4DC748A4F46090697FAD2B3624CD1D66DA1FC4EB29CA/0/5FAC4FA89218203214573AEA6EC449BC4CFD9640.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5FAC4FA89218203214573AEA6EC449BC4CFD9640.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 23:49:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:4b:60:dc:82:58:6d:69:92:6f:bf:4e:d5:34:6f:e3:90:3f:6b:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5FAC4FA89218203214573AEA6EC449BC4CFD9640
Validity
Not Before: Feb 4 18:06:06 2025 GMT
Not After : Feb 3 18:11:06 2026 GMT
Subject: CN=31ED08E08F9BABC484EBC52E01E70CF786B59036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:47:f7:62:e4:75:7d:0b:1c:cd:18:a4:38:d7:
09:be:bb:9a:2d:16:6a:43:ee:6f:f1:1a:ae:3d:7d:
6a:74:30:d1:b5:70:e4:f2:6a:c3:df:3c:c9:03:d2:
71:46:97:b9:6d:1c:ed:90:9c:ca:81:fb:e6:97:e7:
13:c6:0a:c7:35:ce:77:a6:7b:60:20:52:54:b5:ab:
52:8d:44:b7:e6:20:51:ee:69:c0:c7:6f:73:56:76:
37:b6:67:c5:97:aa:eb:f1:2f:6d:e7:5a:c4:f3:e5:
2a:09:d5:c2:0d:e2:0b:9a:65:b3:67:ad:c5:47:3f:
0b:1a:03:91:4a:9a:19:50:40:c7:86:12:e8:34:21:
12:53:ea:e3:79:12:15:2a:6a:e7:2a:a7:f6:8b:00:
7a:c7:e1:b7:66:ae:dd:b9:3c:13:2b:ab:c9:71:9c:
07:e7:7c:63:80:bc:67:35:af:3e:b6:a1:80:55:c7:
dc:e3:a2:5d:67:be:40:81:16:66:76:aa:8c:83:25:
88:05:db:64:81:34:66:33:99:8b:0a:06:f6:a0:a0:
65:65:c7:f2:7c:8a:6b:23:43:27:29:4a:67:fd:16:
a7:a6:92:22:ef:18:77:43:b4:3b:6e:e3:a6:34:96:
3d:3c:8a:aa:a5:64:b0:bc:c9:39:9a:58:08:ea:39:
98:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:ED:08:E0:8F:9B:AB:C4:84:EB:C5:2E:01:E7:0C:F7:86:B5:90:36
X509v3 Authority Key Identifier:
keyid:5F:AC:4F:A8:92:18:20:32:14:57:3A:EA:6E:C4:49:BC:4C:FD:96:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/843FB03203AC44517EFC4DC748A4F46090697FAD2B3624CD1D66DA1FC4EB29CA/0/5FAC4FA89218203214573AEA6EC449BC4CFD9640.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5FAC4FA89218203214573AEA6EC449BC4CFD9640.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/843FB03203AC44517EFC4DC748A4F46090697FAD2B3624CD1D66DA1FC4EB29CA/0/3137302e3234342e3137302e302f32342d3234203d3e20323637383538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.244.170.0/24
Signature Algorithm: sha256WithRSAEncryption
be:00:65:79:95:e3:7f:65:f5:e2:71:75:e9:f4:23:a5:b4:d0:
25:7a:9a:6a:57:f6:9a:c6:b2:7e:cc:9c:fb:e4:24:24:b1:7e:
b1:20:a8:af:3c:86:f6:0a:45:97:4d:da:de:ba:2c:09:3a:d4:
af:63:c1:e8:aa:f3:59:13:76:34:5d:45:1f:67:5a:c9:2b:80:
f7:82:fc:8e:d5:f5:c9:9a:fe:ca:95:e5:61:7f:8e:49:c0:58:
66:e3:00:8a:8b:22:95:9b:3f:2e:fc:bf:54:9e:0c:fe:7f:ab:
3d:5a:c4:7f:de:9d:e7:a0:d3:b3:45:b6:af:a1:16:4e:55:93:
bb:b1:5d:65:57:d9:e9:1e:99:dd:dd:98:78:ea:01:46:19:af:
05:dd:26:23:45:88:a8:c5:b7:93:1b:fa:ba:6b:72:43:62:82:
1a:8c:70:94:51:39:14:e5:f5:8a:1d:e1:0f:4c:da:e2:9f:4f:
ef:14:c9:0a:ee:21:76:23:1b:74:0a:1f:7c:86:1b:22:73:b7:
61:c8:c3:9a:f8:93:fc:0c:23:04:a7:21:a3:0a:30:81:fa:0a:
79:7b:a1:ec:be:aa:dd:98:30:0f:7b:ba:55:ea:67:8f:1d:99:
7c:3e:69:cc:1d:ae:b8:1a:a4:03:47:b1:29:c6:cc:23:7e:fb:
b3:0b:84:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 16:49:10 2025 by rpki-client