Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9072CC7AC9935A96AECDC3B156F0BE285AC0D2F3E2B26466F87D7C39639FE7C9/0/323830333a363930303a3630393a3a2f34382d3438203d3e203532343233.roa
File: 323830333a363930303a3630393a3a2f34382d3438203d3e203532343233.roa (raw, json)
Hash identifier: xAhrvkmV26GW2sX9mcK/WjbWLw3z+u8COscVuJ3FeYE=
Subject key identifier: D4:99:43:93:E8:5A:BF:A5:96:51:97:63:C7:C6:B3:DD:3F:20:F4:3E
Certificate issuer: /CN=522A19041F7AD8D0B4F97D6DDAFC99C2590276AB
Certificate serial: 38EB03CDD8881A44A32345657D5DC441DE7CAA54
Authority key identifier: 52:2A:19:04:1F:7A:D8:D0:B4:F9:7D:6D:DA:FC:99:C2:59:02:76:AB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/522A19041F7AD8D0B4F97D6DDAFC99C2590276AB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9072CC7AC9935A96AECDC3B156F0BE285AC0D2F3E2B26466F87D7C39639FE7C9/0/323830333a363930303a3630393a3a2f34382d3438203d3e203532343233.roa
Signing time: Tue 04 Feb 2025 18:20:48 +0000
ROA not before: Tue 04 Feb 2025 18:15:48 +0000
ROA not after: Tue 03 Feb 2026 18:20:48 +0000
asID: 52423
IP address blocks: 2803:6900:609::/48 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/9072CC7AC9935A96AECDC3B156F0BE285AC0D2F3E2B26466F87D7C39639FE7C9/0/522A19041F7AD8D0B4F97D6DDAFC99C2590276AB.crl
rsync://repository.lacnic.net/rpki/lacnic/9072CC7AC9935A96AECDC3B156F0BE285AC0D2F3E2B26466F87D7C39639FE7C9/0/522A19041F7AD8D0B4F97D6DDAFC99C2590276AB.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/522A19041F7AD8D0B4F97D6DDAFC99C2590276AB.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 15:28:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:eb:03:cd:d8:88:1a:44:a3:23:45:65:7d:5d:c4:41:de:7c:aa:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=522A19041F7AD8D0B4F97D6DDAFC99C2590276AB
Validity
Not Before: Feb 4 18:15:48 2025 GMT
Not After : Feb 3 18:20:48 2026 GMT
Subject: CN=D4994393E85ABFA596519763C7C6B3DD3F20F43E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:79:e3:e7:fc:64:3e:b8:07:69:54:5c:fd:0e:
94:f2:30:d0:40:86:be:09:aa:b6:8d:66:5e:9f:db:
0e:b1:ab:d0:49:5a:75:66:9f:b1:9e:39:5b:89:59:
8c:38:d0:ff:44:f8:07:bb:56:c2:26:72:8d:64:35:
34:10:da:07:ab:5d:f6:b4:40:df:c0:b7:22:65:88:
87:9e:97:f9:20:3f:a3:cc:44:01:19:ff:a1:c1:3e:
f8:70:24:63:58:54:1c:c4:f6:4d:c8:bc:c1:7f:bc:
17:19:9b:42:f8:3f:c4:49:89:40:4f:67:ea:dd:39:
70:ee:52:20:89:b5:9e:44:ba:60:07:15:c3:86:81:
f8:06:05:66:df:53:59:2b:c1:ba:51:0d:3c:dd:27:
ea:34:bd:98:f4:6e:70:b2:c2:35:04:73:47:6d:20:
6b:c4:25:e6:4e:e7:ca:4c:c1:02:e5:81:4e:f4:cc:
cd:30:d5:96:0c:15:38:4f:7e:b4:07:d4:1e:93:37:
28:7f:1e:de:dd:cd:3f:c5:5d:b4:a2:d2:6d:70:11:
16:fc:80:ab:92:82:bf:da:8d:8c:29:20:88:0a:c1:
4e:e0:c0:06:60:c5:d0:1b:88:65:a4:43:31:28:c4:
20:a9:7e:7c:ff:ba:e7:a7:a5:6f:f4:c3:8d:ae:8e:
69:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:99:43:93:E8:5A:BF:A5:96:51:97:63:C7:C6:B3:DD:3F:20:F4:3E
X509v3 Authority Key Identifier:
keyid:52:2A:19:04:1F:7A:D8:D0:B4:F9:7D:6D:DA:FC:99:C2:59:02:76:AB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9072CC7AC9935A96AECDC3B156F0BE285AC0D2F3E2B26466F87D7C39639FE7C9/0/522A19041F7AD8D0B4F97D6DDAFC99C2590276AB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/522A19041F7AD8D0B4F97D6DDAFC99C2590276AB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9072CC7AC9935A96AECDC3B156F0BE285AC0D2F3E2B26466F87D7C39639FE7C9/0/323830333a363930303a3630393a3a2f34382d3438203d3e203532343233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:6900:609::/48
Signature Algorithm: sha256WithRSAEncryption
01:45:15:e2:6d:73:2b:71:62:81:10:e9:25:7e:3c:10:9d:a4:
5f:6b:77:e5:67:20:e0:7b:d8:f6:ed:66:61:07:bc:0a:b9:80:
cf:9f:b1:7e:a1:2d:80:ae:c5:3e:43:22:89:1a:ea:b8:0d:60:
1e:07:38:f4:b5:93:68:15:59:47:63:45:38:71:57:57:59:6e:
1f:5c:60:3f:c0:11:80:57:20:29:36:10:aa:34:da:43:08:f7:
91:43:b3:89:38:10:8c:cf:83:9d:ce:0a:96:f4:9d:95:4a:d3:
75:3c:f0:e3:86:31:86:0c:cc:4b:07:88:47:14:ea:9d:45:2a:
b4:61:fe:e1:ea:3a:d0:d6:d4:83:5b:58:de:72:5f:b0:dc:3c:
bb:f7:b4:be:cc:38:03:8c:16:60:32:f4:dd:e9:ae:6c:25:7a:
50:ad:64:5a:37:bd:60:0a:2c:a4:5f:5a:a8:11:3c:6e:97:54:
94:6d:13:5b:80:2a:cf:fa:77:de:28:26:db:fc:89:d4:15:53:
6c:94:d2:3f:4d:1e:1a:ee:23:db:08:f9:26:92:6e:46:4a:4d:
21:69:1e:42:2d:3d:45:8d:8c:9a:db:6e:62:e9:80:45:e3:72:
11:26:9b:a8:d0:10:64:13:d3:68:ff:ca:b5:f9:3e:d5:1e:58:
09:9e:4f:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 03:09:55 2025 by rpki-client