Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8971E1B8A26DCD7769C0260B5BE3A3ADD12865349977ADD2C68D52A527BB6682/0/3230302e3131302e33362e302f32332d3234203d3e203139313830.roa
File: 3230302e3131302e33362e302f32332d3234203d3e203139313830.roa (raw, json)
Hash identifier: S8R5eZi65Ox6l7hOHoEB7i1kwZDbx9lIAFlEmsBoH5k=
Subject key identifier: A5:D6:CE:1D:AB:DC:D3:95:EB:14:DA:DA:D9:24:40:6E:1D:DB:80:01
Certificate issuer: /CN=24D42265AC44C52C720364B7A5C0074DD2179046
Certificate serial: 367378E80F5AD35F5AD05C360EC43F12775D9319
Authority key identifier: 24:D4:22:65:AC:44:C5:2C:72:03:64:B7:A5:C0:07:4D:D2:17:90:46
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/24D42265AC44C52C720364B7A5C0074DD2179046.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8971E1B8A26DCD7769C0260B5BE3A3ADD12865349977ADD2C68D52A527BB6682/0/3230302e3131302e33362e302f32332d3234203d3e203139313830.roa
Signing time: Tue 04 Feb 2025 18:18:05 +0000
ROA not before: Tue 04 Feb 2025 18:13:05 +0000
ROA not after: Tue 03 Feb 2026 18:18:05 +0000
asID: 19180
IP address blocks: 200.110.36.0/23 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/8971E1B8A26DCD7769C0260B5BE3A3ADD12865349977ADD2C68D52A527BB6682/0/24D42265AC44C52C720364B7A5C0074DD2179046.crl
rsync://repository.lacnic.net/rpki/lacnic/8971E1B8A26DCD7769C0260B5BE3A3ADD12865349977ADD2C68D52A527BB6682/0/24D42265AC44C52C720364B7A5C0074DD2179046.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/24D42265AC44C52C720364B7A5C0074DD2179046.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:73:78:e8:0f:5a:d3:5f:5a:d0:5c:36:0e:c4:3f:12:77:5d:93:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24D42265AC44C52C720364B7A5C0074DD2179046
Validity
Not Before: Feb 4 18:13:05 2025 GMT
Not After : Feb 3 18:18:05 2026 GMT
Subject: CN=A5D6CE1DABDCD395EB14DADAD924406E1DDB8001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f7:db:fe:ba:f8:1c:ce:ee:07:9b:b7:a1:5d:
f5:c8:3a:84:f7:b7:2f:3a:bd:6d:70:40:6f:69:44:
e4:f3:3c:6c:6b:63:f7:c1:3b:45:b8:1c:d6:7e:1d:
34:e7:1e:ee:b7:98:9b:df:4a:69:d3:33:73:e9:be:
a6:e1:59:17:fd:a8:b5:80:8c:b9:23:b6:7a:04:77:
3f:2e:dc:4d:81:7b:65:e7:20:92:93:17:88:4a:e7:
66:cb:37:d0:52:1d:af:0b:e4:2a:bc:a5:ac:1f:4b:
aa:82:84:15:e0:8c:66:4e:1c:bc:9a:54:e3:41:cb:
28:ab:2d:30:09:be:c2:75:c8:6c:e4:a2:7d:37:cc:
36:64:f9:0c:fa:3a:ff:69:9e:2c:06:df:84:30:f8:
b8:9e:24:6d:5f:4b:e5:f3:95:3a:0e:38:0e:db:7a:
6e:ab:dd:d6:be:5e:8c:08:16:e3:ce:5a:ae:6b:87:
ab:e8:e0:48:dd:27:c3:27:0e:c2:a0:58:f3:4c:94:
bf:65:77:ca:84:0d:66:3b:70:25:e0:af:fc:fa:e1:
9f:af:01:4c:eb:84:6b:54:fb:b2:24:e0:ea:af:0c:
c4:a3:40:bc:27:3b:44:3f:a2:98:6d:5d:da:17:ba:
a3:77:de:e5:f5:cd:91:ea:9c:32:99:88:1d:b7:b5:
fb:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:D6:CE:1D:AB:DC:D3:95:EB:14:DA:DA:D9:24:40:6E:1D:DB:80:01
X509v3 Authority Key Identifier:
keyid:24:D4:22:65:AC:44:C5:2C:72:03:64:B7:A5:C0:07:4D:D2:17:90:46
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8971E1B8A26DCD7769C0260B5BE3A3ADD12865349977ADD2C68D52A527BB6682/0/24D42265AC44C52C720364B7A5C0074DD2179046.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/24D42265AC44C52C720364B7A5C0074DD2179046.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8971E1B8A26DCD7769C0260B5BE3A3ADD12865349977ADD2C68D52A527BB6682/0/3230302e3131302e33362e302f32332d3234203d3e203139313830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.110.36.0/23
Signature Algorithm: sha256WithRSAEncryption
8c:b8:b3:e7:11:bc:fb:e1:8b:43:a0:7b:16:cf:5c:57:ed:62:
de:84:ff:8a:e1:4e:8f:62:f7:2e:bc:8b:9a:0f:57:7f:74:b3:
9d:30:4b:6c:31:7d:f5:89:d8:bb:d0:9b:46:f2:50:60:6c:50:
4b:07:33:ab:0d:ec:07:ad:b8:01:96:1b:12:53:2f:45:3c:a5:
72:f3:a7:85:5e:ce:ad:e2:cc:5c:34:18:2f:e0:fd:7a:32:5d:
36:0c:9c:94:8b:c0:47:1e:b8:0d:bc:24:ed:63:c7:97:2f:08:
04:11:7e:be:72:b2:eb:44:7e:e5:f4:ca:05:21:be:2d:73:59:
86:db:80:81:ab:cb:6e:6f:8d:8f:08:ab:c6:cc:73:72:36:ff:
02:60:a6:07:64:2b:bf:ce:cb:d3:ab:26:1e:7a:4d:e3:cb:8f:
b8:ab:80:18:ec:07:16:d1:03:e3:ed:3c:aa:fd:59:bf:85:12:
5a:6b:a9:9f:40:08:b8:ed:68:02:4b:48:76:70:79:fe:e8:48:
8b:ae:68:e1:b1:61:50:19:eb:0f:80:49:7c:b3:58:22:83:8a:
9d:d8:fd:91:17:01:5b:6e:7d:59:d2:d5:56:69:8b:c9:26:2b:
a1:d6:d7:85:a7:b8:a8:be:a6:a4:b0:6f:2e:e1:5c:a0:b8:2d:
6b:bd:89:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 15 00:01:05 2025 by rpki-client