Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9304D5CA07D3CC675C76036A94D76DECE534B211210B0CB9EAA2E904CD2F7E1E/0/3138392e3230312e3232382e302f32322d3234203d3e2037343338.roa
File: 3138392e3230312e3232382e302f32322d3234203d3e2037343338.roa (raw, json)
Hash identifier: ARiUrHh4I0L8N4YN4pdIdkk7CcRdDVYCY6HwJZllzpU=
Subject key identifier: 71:DD:30:73:58:EA:EA:46:42:A0:52:49:E9:B3:E5:56:EA:1D:83:45
Certificate issuer: /CN=C2B40785E3A240A257500C1EAC949A26103A8210
Certificate serial: 61065E0E43A6E27862C77D68C9BF1F571C372B48
Authority key identifier: C2:B4:07:85:E3:A2:40:A2:57:50:0C:1E:AC:94:9A:26:10:3A:82:10
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2B40785E3A240A257500C1EAC949A26103A8210.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9304D5CA07D3CC675C76036A94D76DECE534B211210B0CB9EAA2E904CD2F7E1E/0/3138392e3230312e3232382e302f32322d3234203d3e2037343338.roa
Signing time: Tue 04 Feb 2025 20:05:56 +0000
ROA not before: Tue 04 Feb 2025 20:00:56 +0000
ROA not after: Tue 03 Feb 2026 20:05:56 +0000
asID: 7438
IP address blocks: 189.201.228.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/9304D5CA07D3CC675C76036A94D76DECE534B211210B0CB9EAA2E904CD2F7E1E/0/C2B40785E3A240A257500C1EAC949A26103A8210.crl
rsync://repository.lacnic.net/rpki/lacnic/9304D5CA07D3CC675C76036A94D76DECE534B211210B0CB9EAA2E904CD2F7E1E/0/C2B40785E3A240A257500C1EAC949A26103A8210.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2B40785E3A240A257500C1EAC949A26103A8210.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 10:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:06:5e:0e:43:a6:e2:78:62:c7:7d:68:c9:bf:1f:57:1c:37:2b:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2B40785E3A240A257500C1EAC949A26103A8210
Validity
Not Before: Feb 4 20:00:56 2025 GMT
Not After : Feb 3 20:05:56 2026 GMT
Subject: CN=71DD307358EAEA4642A05249E9B3E556EA1D8345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:8f:be:6b:79:c2:f6:6f:35:b2:79:08:0f:6a:
22:c5:dd:e5:1d:d4:8b:38:ba:47:0e:f5:e5:ad:19:
28:5b:3f:94:63:47:93:10:99:0f:03:8f:6d:92:cf:
0f:94:48:d3:be:47:39:ae:af:2b:76:b0:60:9a:fd:
48:b7:33:ee:cf:78:8c:ac:a6:9a:d7:67:e0:6a:a8:
74:c1:f8:41:49:b9:07:9a:c4:7d:d4:f2:0e:74:a2:
4d:32:c4:fe:df:74:dc:65:f3:a4:18:d3:6f:14:6b:
a1:a4:24:72:52:5d:d4:62:e6:5b:a8:9c:be:f2:35:
7c:20:5f:43:b6:40:13:7c:b6:0c:97:3f:95:79:6e:
3f:67:58:3b:6d:f2:89:8c:1e:e6:da:6e:5a:79:b5:
ba:6c:d8:a8:6b:a8:3e:02:b8:bc:60:84:f8:ee:37:
d2:8b:19:55:e8:1f:f0:29:20:87:69:7a:93:9e:f8:
f4:cf:21:8b:2d:b1:5d:31:ad:f9:47:01:c0:ca:f2:
5e:31:b6:9f:ab:18:b5:e0:aa:ec:36:e7:50:79:2b:
82:9e:5e:a8:62:37:10:44:f7:36:67:12:f4:1b:49:
91:68:03:ed:f0:a1:e5:94:7f:54:c1:f2:81:0d:f7:
05:dc:71:ef:68:cb:c8:8f:63:49:74:34:f4:0a:bb:
c4:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:DD:30:73:58:EA:EA:46:42:A0:52:49:E9:B3:E5:56:EA:1D:83:45
X509v3 Authority Key Identifier:
keyid:C2:B4:07:85:E3:A2:40:A2:57:50:0C:1E:AC:94:9A:26:10:3A:82:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9304D5CA07D3CC675C76036A94D76DECE534B211210B0CB9EAA2E904CD2F7E1E/0/C2B40785E3A240A257500C1EAC949A26103A8210.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2B40785E3A240A257500C1EAC949A26103A8210.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9304D5CA07D3CC675C76036A94D76DECE534B211210B0CB9EAA2E904CD2F7E1E/0/3138392e3230312e3232382e302f32322d3234203d3e2037343338.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
189.201.228.0/22
Signature Algorithm: sha256WithRSAEncryption
04:4e:99:65:65:7c:a4:25:61:cd:24:21:94:08:66:f5:3c:d9:
b2:da:ad:6d:11:5c:43:43:f1:f3:a0:de:7e:8a:f3:11:4c:76:
2c:42:fc:d3:06:56:5c:76:de:a9:22:f6:28:c3:86:3a:8b:84:
21:94:2e:2b:07:00:5c:a5:af:04:a8:c6:d0:94:d1:a5:81:f1:
a7:39:7b:4a:b1:f4:78:78:bc:91:c2:ac:d0:b5:57:2d:65:37:
a0:6a:f4:74:58:ac:6e:ff:ba:34:91:63:d1:91:64:af:eb:4b:
c3:bc:b0:ca:00:41:b3:31:51:0d:5d:31:59:cc:18:cf:ab:4a:
13:2a:0e:8f:d6:99:12:7c:1f:78:80:bf:6a:dc:bc:29:04:45:
c1:95:d2:39:e5:d5:fe:33:96:e4:8f:e3:45:83:c5:85:44:68:
d1:e7:d0:6d:f6:07:38:b6:ef:af:b3:e5:ac:0a:be:b2:5e:5f:
d3:f5:80:8d:1e:90:93:6b:f3:13:06:0e:28:3a:ea:f7:a3:88:
d8:8b:41:d3:bc:a5:6d:2a:83:90:0b:6b:d7:9b:02:e4:85:58:
97:c1:16:19:13:f2:4c:f9:99:d5:c3:98:0a:b0:59:70:9f:cb:
07:9c:67:4f:6a:3c:e8:b4:02:e5:4f:92:ec:ba:d3:0d:61:26:
b1:7c:45:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 10:11:16 2025 by rpki-client