Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8E0D28C0B22854F0210033DF7B0C636159312C11D1C742AFB3FD1FC378A8E760/0/323830313a3136353a353a3a2f34382d3438203d3e203238303032.roa
File: 323830313a3136353a353a3a2f34382d3438203d3e203238303032.roa (raw, json)
Hash identifier: jaBIFLSq8MRZ7oWldSf/w77N4M7fLvAI6JEpfHkN3w8=
Subject key identifier: 72:01:A9:4B:F4:06:3C:0D:07:D8:A9:6F:71:A3:26:C7:2C:FF:76:B1
Certificate issuer: /CN=A709D75E0BD0199002C071D36971A09E6D5E5F48
Certificate serial: 470D15E392E7F56BC40209839CF9BD5FA8D8AC10
Authority key identifier: A7:09:D7:5E:0B:D0:19:90:02:C0:71:D3:69:71:A0:9E:6D:5E:5F:48
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A709D75E0BD0199002C071D36971A09E6D5E5F48.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8E0D28C0B22854F0210033DF7B0C636159312C11D1C742AFB3FD1FC378A8E760/0/323830313a3136353a353a3a2f34382d3438203d3e203238303032.roa
Signing time: Sun 16 Mar 2025 20:12:01 +0000
ROA not before: Sun 16 Mar 2025 20:07:01 +0000
ROA not after: Sun 15 Mar 2026 20:12:01 +0000
asID: 28002
IP address blocks: 2801:165:5::/48 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/8E0D28C0B22854F0210033DF7B0C636159312C11D1C742AFB3FD1FC378A8E760/0/A709D75E0BD0199002C071D36971A09E6D5E5F48.crl
rsync://repository.lacnic.net/rpki/lacnic/8E0D28C0B22854F0210033DF7B0C636159312C11D1C742AFB3FD1FC378A8E760/0/A709D75E0BD0199002C071D36971A09E6D5E5F48.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A709D75E0BD0199002C071D36971A09E6D5E5F48.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Wed 30 Apr 2025 05:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:0d:15:e3:92:e7:f5:6b:c4:02:09:83:9c:f9:bd:5f:a8:d8:ac:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A709D75E0BD0199002C071D36971A09E6D5E5F48
Validity
Not Before: Mar 16 20:07:01 2025 GMT
Not After : Mar 15 20:12:01 2026 GMT
Subject: CN=7201A94BF4063C0D07D8A96F71A326C72CFF76B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:17:0f:21:f8:72:57:56:4b:58:83:b3:19:b4:
32:3d:c3:89:3b:3f:f8:27:3a:3a:02:f2:c7:5e:71:
61:27:7e:9c:55:bc:fa:7b:75:92:14:b9:e4:81:33:
99:86:66:86:68:a9:11:a7:41:c9:72:1d:24:68:7f:
35:d3:0a:90:31:4e:fa:dd:65:50:05:77:d6:a6:35:
f6:93:00:70:1b:b6:76:81:3e:38:f9:06:40:f8:95:
18:cb:aa:f2:8e:4f:21:81:4f:eb:3e:57:2d:ae:9f:
f7:5e:0c:12:52:bb:87:6b:a9:dd:7c:ee:7d:d7:f5:
5d:74:60:11:8c:c3:dd:fb:44:80:b3:d8:86:64:e7:
b3:cb:2b:39:78:53:0e:89:ba:46:24:e9:11:7a:f1:
3d:8a:e2:ce:fb:6a:dc:c4:37:a6:93:16:aa:cb:79:
11:0e:1b:d2:ab:04:f3:8a:66:63:25:12:c0:d5:6b:
c7:da:5a:4d:03:9a:31:bd:f6:58:52:23:03:06:71:
d7:98:ec:65:50:ea:1c:41:72:94:19:3a:87:8a:14:
42:a2:ea:d2:18:75:eb:e0:2c:32:7f:5e:26:81:f2:
f9:45:c8:3b:2a:49:1f:b7:cd:41:b9:1c:b9:61:7d:
aa:83:7c:5f:4f:26:42:fa:0d:ff:c6:4d:d9:76:d3:
06:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:01:A9:4B:F4:06:3C:0D:07:D8:A9:6F:71:A3:26:C7:2C:FF:76:B1
X509v3 Authority Key Identifier:
keyid:A7:09:D7:5E:0B:D0:19:90:02:C0:71:D3:69:71:A0:9E:6D:5E:5F:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8E0D28C0B22854F0210033DF7B0C636159312C11D1C742AFB3FD1FC378A8E760/0/A709D75E0BD0199002C071D36971A09E6D5E5F48.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A709D75E0BD0199002C071D36971A09E6D5E5F48.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8E0D28C0B22854F0210033DF7B0C636159312C11D1C742AFB3FD1FC378A8E760/0/323830313a3136353a353a3a2f34382d3438203d3e203238303032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:165:5::/48
Signature Algorithm: sha256WithRSAEncryption
0c:b7:b5:e2:f3:d7:d4:d5:fa:98:f6:63:c7:a4:03:f8:8d:98:
c5:ff:45:d8:bb:f9:b3:05:35:52:f2:d0:eb:d8:c7:1e:78:a5:
56:f8:15:3e:13:74:62:a2:65:3e:f3:81:23:a4:14:76:ee:1c:
ae:1a:81:62:a2:53:a6:1e:38:ac:98:51:c4:cf:b6:ef:5d:27:
42:23:fd:d4:0d:62:82:69:b8:1c:7e:04:7e:2d:92:de:e9:2c:
f9:4e:61:a6:f3:4b:3f:39:20:71:b0:80:c8:26:49:44:14:30:
da:67:eb:4a:ba:6e:3f:3e:20:af:b2:09:48:c4:81:d2:50:7a:
9a:51:3e:a0:5d:58:b1:48:a4:23:06:2d:59:ea:ae:38:9f:05:
fa:4c:b9:84:55:f5:95:2d:26:7c:8f:5e:ae:de:86:c6:8a:e4:
49:ac:16:0f:58:5e:e5:66:aa:d0:5a:7f:95:ff:55:6b:94:fb:
cd:51:95:18:95:2b:53:45:e0:70:4d:5f:e4:25:2e:84:6c:3f:
55:81:d8:09:e7:12:6a:5d:15:59:83:40:15:38:ad:55:33:37:
e1:07:a5:b3:8d:4f:7c:2e:8c:34:78:ec:03:27:6c:04:b1:f4:
ec:de:6c:7c:df:ee:98:d7:93:f5:e0:26:08:9a:fe:fc:8a:4e:
a3:10:b2:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:49:27 2025 by rpki-client