Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8EF707C4FD266762D19EF19863D8B5CB58EFAC8132BE06535A3DDAA2A2C47CBE/0/3138392e382e3131322e302f32322d3234203d3e20323730303231.roa
File: 3138392e382e3131322e302f32322d3234203d3e20323730303231.roa (raw, json)
Hash identifier: ldOGOed0O87dZw4N/ok1txcmNowggoUwXFbztMUauE4=
Subject key identifier: D0:3B:82:8A:A6:08:35:87:F4:1B:7D:87:3A:71:43:9B:B4:EA:14:7A
Certificate issuer: /CN=6D9C794B5D39E9E3CCC978B3378627D090E06C4F
Certificate serial: 60F461A4815FD89C27FEB661825C594DCCFE386E
Authority key identifier: 6D:9C:79:4B:5D:39:E9:E3:CC:C9:78:B3:37:86:27:D0:90:E0:6C:4F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6D9C794B5D39E9E3CCC978B3378627D090E06C4F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8EF707C4FD266762D19EF19863D8B5CB58EFAC8132BE06535A3DDAA2A2C47CBE/0/3138392e382e3131322e302f32322d3234203d3e20323730303231.roa
Signing time: Tue 04 Feb 2025 17:59:29 +0000
ROA not before: Tue 04 Feb 2025 17:54:29 +0000
ROA not after: Tue 03 Feb 2026 17:59:29 +0000
asID: 270021
IP address blocks: 189.8.112.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/8EF707C4FD266762D19EF19863D8B5CB58EFAC8132BE06535A3DDAA2A2C47CBE/0/6D9C794B5D39E9E3CCC978B3378627D090E06C4F.crl
rsync://repository.lacnic.net/rpki/lacnic/8EF707C4FD266762D19EF19863D8B5CB58EFAC8132BE06535A3DDAA2A2C47CBE/0/6D9C794B5D39E9E3CCC978B3378627D090E06C4F.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6D9C794B5D39E9E3CCC978B3378627D090E06C4F.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:f4:61:a4:81:5f:d8:9c:27:fe:b6:61:82:5c:59:4d:cc:fe:38:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6D9C794B5D39E9E3CCC978B3378627D090E06C4F
Validity
Not Before: Feb 4 17:54:29 2025 GMT
Not After : Feb 3 17:59:29 2026 GMT
Subject: CN=D03B828AA6083587F41B7D873A71439BB4EA147A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:bc:6e:f9:f0:d8:64:52:99:a6:f2:5a:de:0b:
4e:1a:87:e6:1b:66:a7:c8:3b:65:99:dc:d5:09:f7:
14:dc:b8:eb:43:ad:82:52:c6:15:e7:5d:97:cb:49:
ed:06:fb:8e:28:44:c2:f0:a8:42:c1:49:b3:ae:75:
88:44:94:1c:4a:5c:62:4d:1e:ed:4b:6f:c7:d1:17:
75:8c:1d:54:20:04:97:96:79:11:0a:a3:93:ef:4c:
57:94:c5:74:3a:0d:fa:e2:d4:d7:1c:47:f2:e3:6c:
6e:ae:12:32:e6:ef:74:1a:9e:6f:e9:c1:b6:72:9f:
95:86:7f:73:f2:9d:4e:e7:af:f7:01:4d:ec:31:79:
f7:5d:02:aa:60:c1:6d:c0:4b:9e:85:61:72:b1:be:
92:06:a9:e5:18:4e:21:ee:5a:93:de:08:6a:0a:23:
df:57:c6:1d:79:4a:20:2c:a5:bb:65:47:3a:98:ee:
58:aa:1c:21:bd:f7:88:4e:af:a5:c4:0c:b6:9f:92:
19:fc:a7:15:83:d8:ad:b4:7f:e8:7d:23:b1:13:c4:
6c:f2:25:1f:5d:f4:c4:e7:9b:27:12:ec:7e:62:44:
e5:39:7f:94:87:d5:ca:0d:ab:0a:b3:41:13:6d:0b:
13:6b:15:1b:1e:0d:f8:d7:6a:5b:2f:6c:ff:0b:9d:
f5:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:3B:82:8A:A6:08:35:87:F4:1B:7D:87:3A:71:43:9B:B4:EA:14:7A
X509v3 Authority Key Identifier:
keyid:6D:9C:79:4B:5D:39:E9:E3:CC:C9:78:B3:37:86:27:D0:90:E0:6C:4F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8EF707C4FD266762D19EF19863D8B5CB58EFAC8132BE06535A3DDAA2A2C47CBE/0/6D9C794B5D39E9E3CCC978B3378627D090E06C4F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6D9C794B5D39E9E3CCC978B3378627D090E06C4F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8EF707C4FD266762D19EF19863D8B5CB58EFAC8132BE06535A3DDAA2A2C47CBE/0/3138392e382e3131322e302f32322d3234203d3e20323730303231.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.8.112.0/22
Signature Algorithm: sha256WithRSAEncryption
73:f1:2e:e5:ef:37:da:b1:85:f7:b9:4b:4c:df:09:ef:c0:c5:
f7:0e:37:f6:55:52:d4:da:e0:b6:9e:ac:bc:fd:a7:5a:28:b5:
34:a7:22:5c:c6:a7:27:a8:82:b3:1f:db:1e:d3:52:ed:79:d6:
a3:d5:5d:dc:fe:6f:5a:50:84:2a:3e:ea:4a:ef:b2:01:2d:ef:
e3:6a:c8:0a:2b:07:3a:02:13:e6:77:4a:31:48:4f:d8:e7:a3:
f6:fe:3f:34:28:6b:c1:a7:9d:34:b4:26:40:9f:77:49:03:29:
20:0e:f8:96:3e:98:96:fd:cd:d4:37:19:16:03:e1:4e:e0:4a:
3a:c8:3a:b3:a1:6f:e7:54:ca:f5:fd:ab:6c:ef:d2:88:cc:12:
cf:db:48:a9:20:d2:f1:14:99:ff:dd:be:51:ff:31:0e:58:da:
28:c1:1d:b9:d7:78:8f:ba:3e:69:d5:be:e6:c0:bf:f8:20:64:
ee:af:db:ca:cb:57:73:f8:df:17:06:0f:b0:b5:47:0b:78:98:
b5:c8:be:fc:8e:50:42:26:ba:96:e2:86:3e:ef:59:4d:e5:31:
2e:e8:f3:df:59:40:41:8b:f9:44:35:32:7b:05:aa:d6:f3:5c:
72:16:7b:66:55:c5:f8:0d:1f:3b:c4:63:42:5c:bc:ae:dc:b1:
64:c0:d2:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 22:22:05 2025 by rpki-client