Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9CFEAF2C91AB1C34993C311291CE50A3F9B8FF6FE4AEE3E9DCE4D43B4819702A/0/323830333a646234303a3a2f33322d3438203d3e203634313030.roa
File: 323830333a646234303a3a2f33322d3438203d3e203634313030.roa (raw, json)
Hash identifier: IvK/tzZWY20X84VR+1N23+el+EZZLoH3kHNGtQwQW20=
Subject key identifier: CA:1B:F2:8F:2B:C0:62:48:16:17:88:84:E1:7F:B8:8B:B0:40:95:37
Certificate issuer: /CN=3CB23E6FBC1B568FD478F82218A2B5A9A90EC844
Certificate serial: 2716102B0A9770F446B1ACF9FC2C370A1F02A0CB
Authority key identifier: 3C:B2:3E:6F:BC:1B:56:8F:D4:78:F8:22:18:A2:B5:A9:A9:0E:C8:44
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3CB23E6FBC1B568FD478F82218A2B5A9A90EC844.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9CFEAF2C91AB1C34993C311291CE50A3F9B8FF6FE4AEE3E9DCE4D43B4819702A/0/323830333a646234303a3a2f33322d3438203d3e203634313030.roa
Signing time: Tue 04 Feb 2025 18:11:43 +0000
ROA not before: Tue 04 Feb 2025 18:06:43 +0000
ROA not after: Tue 03 Feb 2026 18:11:43 +0000
asID: 64100
IP address blocks: 2803:db40::/32 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/9CFEAF2C91AB1C34993C311291CE50A3F9B8FF6FE4AEE3E9DCE4D43B4819702A/0/3CB23E6FBC1B568FD478F82218A2B5A9A90EC844.crl
rsync://repository.lacnic.net/rpki/lacnic/9CFEAF2C91AB1C34993C311291CE50A3F9B8FF6FE4AEE3E9DCE4D43B4819702A/0/3CB23E6FBC1B568FD478F82218A2B5A9A90EC844.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3CB23E6FBC1B568FD478F82218A2B5A9A90EC844.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 04:09:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:16:10:2b:0a:97:70:f4:46:b1:ac:f9:fc:2c:37:0a:1f:02:a0:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3CB23E6FBC1B568FD478F82218A2B5A9A90EC844
Validity
Not Before: Feb 4 18:06:43 2025 GMT
Not After : Feb 3 18:11:43 2026 GMT
Subject: CN=CA1BF28F2BC0624816178884E17FB88BB0409537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:00:48:48:c0:cc:64:69:7a:53:3c:e3:41:2d:
52:d1:b5:76:c3:de:e1:29:15:02:51:ae:e1:9e:3b:
47:0e:63:1a:df:74:5a:4c:da:9a:20:8f:07:07:bb:
c4:86:00:48:57:2e:e2:a8:ae:1e:44:49:66:d6:3a:
44:9b:9a:b9:01:bd:14:4f:3f:50:0c:70:b8:94:fd:
2e:4d:09:43:5b:ee:4d:6e:e2:0e:d7:d3:89:bd:9d:
56:53:a4:5b:d3:01:34:77:e0:56:93:50:f3:9b:b1:
22:b0:9b:6b:3a:de:23:6f:aa:c1:f7:5a:79:83:9b:
9a:94:a8:e0:43:74:61:9e:c8:ab:0b:e3:be:47:eb:
9c:cb:30:00:e8:0d:1c:46:93:e4:63:46:d1:eb:06:
a3:c8:5b:c4:69:97:78:aa:db:9a:25:ac:d4:73:14:
a7:1e:bf:2d:81:06:f3:1b:16:42:b5:a8:8d:63:e2:
ed:fb:0d:21:9f:89:41:e6:53:cb:ed:69:02:37:5b:
0a:ef:59:ce:84:a9:14:ad:90:28:fe:39:82:de:0e:
75:50:bc:4a:21:29:88:94:62:e9:24:4b:ff:c5:d1:
fe:f4:61:e9:71:44:88:39:0e:04:4e:6b:c2:75:83:
7f:69:f8:57:ae:01:60:3a:3c:4b:26:d9:63:08:96:
34:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:1B:F2:8F:2B:C0:62:48:16:17:88:84:E1:7F:B8:8B:B0:40:95:37
X509v3 Authority Key Identifier:
keyid:3C:B2:3E:6F:BC:1B:56:8F:D4:78:F8:22:18:A2:B5:A9:A9:0E:C8:44
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9CFEAF2C91AB1C34993C311291CE50A3F9B8FF6FE4AEE3E9DCE4D43B4819702A/0/3CB23E6FBC1B568FD478F82218A2B5A9A90EC844.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3CB23E6FBC1B568FD478F82218A2B5A9A90EC844.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9CFEAF2C91AB1C34993C311291CE50A3F9B8FF6FE4AEE3E9DCE4D43B4819702A/0/323830333a646234303a3a2f33322d3438203d3e203634313030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:db40::/32
Signature Algorithm: sha256WithRSAEncryption
c5:9d:13:bc:98:22:82:c6:0e:58:dc:6c:4e:46:89:c2:ee:ea:
d4:fe:0c:78:1e:db:52:80:e5:72:14:e6:24:82:f7:03:0c:1e:
cc:0d:bd:5b:ab:6d:96:0b:d9:07:3a:21:85:7c:40:ec:93:91:
70:5f:64:d2:ef:c4:3e:76:e2:5d:94:f5:85:02:ef:df:3b:57:
85:49:43:3e:63:d3:d4:9a:c4:17:79:34:5a:84:05:7c:87:7c:
4e:4c:87:01:95:f0:51:1b:b7:8e:19:87:52:72:2d:68:de:f3:
b2:35:a2:2b:68:a6:6c:82:2d:c9:0b:76:58:44:8f:52:2b:15:
0f:09:a0:4d:8e:7f:40:90:fd:e7:27:6c:59:e3:62:ad:bf:33:
37:d0:c2:7a:a2:58:67:ba:44:10:7f:01:09:5b:61:c9:6e:20:
33:b7:32:c5:6e:df:6a:20:11:a6:1f:61:54:e2:e7:fa:b9:eb:
5f:a2:5e:f5:3c:e1:e1:6f:fd:7a:61:82:df:08:96:de:fb:5f:
e7:5d:29:63:cd:1b:ca:98:7f:52:0f:bd:16:d2:59:c3:d6:e6:
0a:57:48:84:5f:32:42:e7:f9:dd:e6:6b:7e:9f:1d:43:59:d8:
a1:2c:78:7e:3a:a3:b2:ce:dc:e8:4a:13:ac:66:7f:3a:e7:a1:
0a:e6:c9:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 06:22:48 2025 by rpki-client