Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/870C83D25E7FA67388832052309332085572C074B86F60E54C9F48F630BD5AA6/0/323830333a333431303a3a2f33322d3332203d3e203634313239.roa
File: 323830333a333431303a3a2f33322d3332203d3e203634313239.roa (raw, json)
Hash identifier: MNwJ++tkFh6VNReh8V+wVTXcWeUqO1HCqBzdEE7mGx4=
Subject key identifier: A9:ED:72:89:29:5A:8A:56:19:A9:BF:79:C3:62:55:9E:00:42:62:16
Certificate issuer: /CN=367EAE467C8B549D5E6615661A70C865954F55EE
Certificate serial: 78B3EF1080A561B7445F6D2D9A9530C05B44FC76
Authority key identifier: 36:7E:AE:46:7C:8B:54:9D:5E:66:15:66:1A:70:C8:65:95:4F:55:EE
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/367EAE467C8B549D5E6615661A70C865954F55EE.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/870C83D25E7FA67388832052309332085572C074B86F60E54C9F48F630BD5AA6/0/323830333a333431303a3a2f33322d3332203d3e203634313239.roa
Signing time: Tue 04 Feb 2025 20:01:53 +0000
ROA not before: Tue 04 Feb 2025 19:56:53 +0000
ROA not after: Tue 03 Feb 2026 20:01:53 +0000
asID: 64129
IP address blocks: 2803:3410::/32 maxlen: 32
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/870C83D25E7FA67388832052309332085572C074B86F60E54C9F48F630BD5AA6/0/367EAE467C8B549D5E6615661A70C865954F55EE.crl
rsync://repository.lacnic.net/rpki/lacnic/870C83D25E7FA67388832052309332085572C074B86F60E54C9F48F630BD5AA6/0/367EAE467C8B549D5E6615661A70C865954F55EE.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/367EAE467C8B549D5E6615661A70C865954F55EE.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:b3:ef:10:80:a5:61:b7:44:5f:6d:2d:9a:95:30:c0:5b:44:fc:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=367EAE467C8B549D5E6615661A70C865954F55EE
Validity
Not Before: Feb 4 19:56:53 2025 GMT
Not After : Feb 3 20:01:53 2026 GMT
Subject: CN=A9ED7289295A8A5619A9BF79C362559E00426216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f1:29:1e:08:c9:64:f9:3a:f3:91:36:11:ad:
81:d4:f7:98:50:85:0f:c5:25:a3:8a:ca:7d:3a:c4:
0b:2d:87:a9:4e:21:f6:48:cf:19:23:68:3d:0c:07:
d3:8f:90:e0:a7:a9:d3:31:b5:91:6d:d3:a3:c6:04:
2b:85:75:56:b1:d9:a8:b5:26:18:1f:d2:fe:67:64:
06:6e:2b:4c:02:cd:23:0e:aa:2f:74:2c:e2:cd:dd:
a6:0e:a2:2c:76:0f:cb:5a:9e:a6:b5:72:a3:3f:5f:
73:a5:b0:1e:c8:ea:bb:8a:19:f4:6a:df:d5:03:4d:
30:d7:78:14:77:82:7f:99:4e:4b:dd:a7:fb:e5:b5:
72:e9:46:0d:c7:7a:50:b7:c8:d8:e1:7b:f7:24:82:
c3:91:7e:c2:c7:50:b8:80:89:c0:32:85:5b:5a:3b:
9f:8e:e6:a1:a4:a0:0a:4c:b2:69:a1:7e:c2:b9:1d:
6a:d6:d6:e8:c0:62:4d:de:30:af:91:ca:bc:24:f4:
16:26:33:f6:86:09:b9:9c:2d:86:3a:8c:07:d8:78:
1c:92:a1:a0:c2:4c:b9:e3:e5:3b:b2:cb:28:71:3d:
14:17:88:42:47:e1:8b:6a:63:23:18:39:96:43:fb:
4f:d8:fa:b0:bc:6f:77:ca:ba:81:cb:3b:66:1e:3f:
11:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:ED:72:89:29:5A:8A:56:19:A9:BF:79:C3:62:55:9E:00:42:62:16
X509v3 Authority Key Identifier:
keyid:36:7E:AE:46:7C:8B:54:9D:5E:66:15:66:1A:70:C8:65:95:4F:55:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/870C83D25E7FA67388832052309332085572C074B86F60E54C9F48F630BD5AA6/0/367EAE467C8B549D5E6615661A70C865954F55EE.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/367EAE467C8B549D5E6615661A70C865954F55EE.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/870C83D25E7FA67388832052309332085572C074B86F60E54C9F48F630BD5AA6/0/323830333a333431303a3a2f33322d3332203d3e203634313239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:3410::/32
Signature Algorithm: sha256WithRSAEncryption
0e:c3:51:da:4a:dd:b1:4a:a3:33:61:f1:93:04:6d:39:68:55:
d4:76:bd:17:ae:9d:61:ca:32:b5:5b:22:53:2d:c1:59:9b:fb:
c8:7d:56:70:a2:c5:c2:3e:c6:9d:70:2c:cb:45:56:c2:25:40:
2e:8f:8d:98:42:02:4a:71:40:49:79:b5:cc:aa:23:17:2b:77:
53:ce:be:3c:95:b3:ea:2d:48:7f:1a:07:80:2a:2b:e3:62:f2:
77:94:94:18:b8:6a:1b:97:e1:fb:91:41:87:74:b4:f7:aa:94:
37:a1:6c:b4:e1:47:8f:fc:9f:39:8a:06:ad:53:ee:1b:36:9b:
55:ec:0e:25:50:4a:30:0c:d6:1a:e9:75:b4:c3:34:ad:87:ac:
d9:64:7d:7f:33:3f:42:27:6e:7e:f2:5b:8c:b6:7d:42:e0:10:
79:e5:7a:60:df:3b:f2:50:4f:02:3a:3a:bd:18:44:6d:22:88:
16:70:21:54:fe:a2:5a:6f:44:7f:e9:36:db:ef:c4:a2:2e:5e:
b5:b7:ff:29:ac:09:d7:3a:8e:f2:4a:dd:ec:a2:1c:c8:d9:08:
56:0e:35:df:6e:6e:ed:06:86:71:b1:df:f8:67:35:d4:bb:14:
cd:5e:43:40:70:3a:a2:d7:dd:be:4e:fc:3f:b6:fa:87:84:22:
d4:23:d7:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 06:22:50 2025 by rpki-client