Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/843FB03203AC44517EFC4DC748A4F46090697FAD2B3624CD1D66DA1FC4EB29CA/0/3137302e3234342e3137312e302f32342d3234203d3e20323637383538.roa
File: 3137302e3234342e3137312e302f32342d3234203d3e20323637383538.roa (raw, json)
Hash identifier: 69gTd6YLo1Knvy/5Tj/1LsXBOkxpK4ufgwE5oV4ooIc=
Subject key identifier: 01:93:FB:3D:76:4D:70:CF:75:97:33:AB:90:29:84:DC:C2:85:49:C8
Certificate issuer: /CN=5FAC4FA89218203214573AEA6EC449BC4CFD9640
Certificate serial: 431C3D797E5FC8C7BD12508FE119159CDF24138E
Authority key identifier: 5F:AC:4F:A8:92:18:20:32:14:57:3A:EA:6E:C4:49:BC:4C:FD:96:40
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5FAC4FA89218203214573AEA6EC449BC4CFD9640.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/843FB03203AC44517EFC4DC748A4F46090697FAD2B3624CD1D66DA1FC4EB29CA/0/3137302e3234342e3137312e302f32342d3234203d3e20323637383538.roa
Signing time: Tue 04 Feb 2025 18:11:05 +0000
ROA not before: Tue 04 Feb 2025 18:06:05 +0000
ROA not after: Tue 03 Feb 2026 18:11:05 +0000
asID: 267858
IP address blocks: 170.244.171.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/843FB03203AC44517EFC4DC748A4F46090697FAD2B3624CD1D66DA1FC4EB29CA/0/5FAC4FA89218203214573AEA6EC449BC4CFD9640.crl
rsync://repository.lacnic.net/rpki/lacnic/843FB03203AC44517EFC4DC748A4F46090697FAD2B3624CD1D66DA1FC4EB29CA/0/5FAC4FA89218203214573AEA6EC449BC4CFD9640.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5FAC4FA89218203214573AEA6EC449BC4CFD9640.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 23:49:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:1c:3d:79:7e:5f:c8:c7:bd:12:50:8f:e1:19:15:9c:df:24:13:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5FAC4FA89218203214573AEA6EC449BC4CFD9640
Validity
Not Before: Feb 4 18:06:05 2025 GMT
Not After : Feb 3 18:11:05 2026 GMT
Subject: CN=0193FB3D764D70CF759733AB902984DCC28549C8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f0:26:d4:76:6e:1d:21:60:86:b5:be:31:12:
3d:6d:83:09:f7:c1:f1:c6:85:65:c2:9c:31:44:d6:
3c:0b:45:2f:56:bd:b1:03:c0:c1:c7:f8:2b:0c:bc:
cc:e5:5b:05:23:2d:82:07:69:f1:21:78:6c:2b:21:
d3:2c:2b:fe:90:00:ce:b9:ac:06:ed:2c:f5:2b:f3:
8e:68:ac:f4:5b:24:cf:aa:5e:6f:79:e7:09:96:2b:
8b:e9:f1:09:5f:34:8f:01:69:8a:90:71:20:fc:15:
0b:75:10:37:4d:78:ce:82:3a:d3:4c:f1:2c:ad:cb:
dd:03:0f:50:3c:16:c2:22:a5:4f:06:07:96:8f:7a:
8c:d8:70:29:da:0a:08:13:bd:21:ae:b7:ee:c2:b3:
a8:f4:f8:e3:cb:cd:13:fc:19:5d:6e:27:17:f8:ca:
65:9e:88:73:99:10:9f:1d:0b:ce:b1:22:c9:9c:b5:
9b:a4:c6:b2:f7:7b:52:f1:30:bd:b5:b1:54:e9:c1:
d3:f1:cb:c8:f1:6c:fe:26:d3:50:33:59:4a:cd:73:
7b:48:f2:19:f0:33:64:49:e5:49:ff:56:90:06:19:
0c:90:a7:f1:29:b9:5a:b3:a2:8e:05:f2:7d:13:ff:
1e:fb:8a:a4:5b:b6:d0:9e:aa:c9:3e:2c:2f:41:9f:
27:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:93:FB:3D:76:4D:70:CF:75:97:33:AB:90:29:84:DC:C2:85:49:C8
X509v3 Authority Key Identifier:
keyid:5F:AC:4F:A8:92:18:20:32:14:57:3A:EA:6E:C4:49:BC:4C:FD:96:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/843FB03203AC44517EFC4DC748A4F46090697FAD2B3624CD1D66DA1FC4EB29CA/0/5FAC4FA89218203214573AEA6EC449BC4CFD9640.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5FAC4FA89218203214573AEA6EC449BC4CFD9640.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/843FB03203AC44517EFC4DC748A4F46090697FAD2B3624CD1D66DA1FC4EB29CA/0/3137302e3234342e3137312e302f32342d3234203d3e20323637383538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.244.171.0/24
Signature Algorithm: sha256WithRSAEncryption
40:e4:d9:e3:8e:55:49:3e:2a:1f:df:be:65:5d:08:f0:34:e7:
d8:21:46:45:1f:e9:dc:c6:e6:68:b6:9b:9e:de:c0:34:8f:a4:
a7:3e:d4:fb:32:53:aa:01:d5:98:f1:84:f0:a3:a5:f4:5d:d4:
a6:3b:a1:99:62:e0:ec:4e:a0:7a:c7:ed:76:9e:35:25:71:cf:
4d:c0:f9:ff:f9:e2:d6:9c:46:4f:b5:c3:ba:96:24:33:f6:88:
23:a1:04:1e:58:f4:a3:8b:32:92:69:c0:11:98:e6:2a:67:69:
2b:d7:7e:45:41:48:2e:f6:55:fb:4e:ef:db:bc:13:9a:2b:e1:
d6:1a:f5:3e:85:de:f7:2d:c5:5d:f8:81:83:68:ca:d7:53:db:
75:6b:e0:83:fd:54:2e:8f:9b:e8:b1:5e:44:d1:53:74:a2:fb:
15:0d:c1:04:23:33:45:3e:99:aa:6f:69:94:83:9a:3b:03:ce:
53:21:37:13:53:34:de:49:4d:27:c7:c9:87:c1:13:63:15:bd:
d6:ed:59:f4:12:f4:90:06:01:c1:80:8a:88:1a:73:95:92:54:
2f:41:75:f9:55:b5:57:9f:c9:20:6f:8a:88:97:27:98:3b:68:
96:3b:b2:ce:d2:d7:84:ba:0b:0b:98:65:32:49:7c:1f:57:9f:
08:76:5e:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 15:38:13 2025 by rpki-client