Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9DA8C80805BCA4CF63DDA4FBAE73E61851D724B6E761919681A32FF8212233BE/0/323830313a31333a643830383a3a2f34382d3438203d3e203139343239.roa
File: 323830313a31333a643830383a3a2f34382d3438203d3e203139343239.roa (raw, json)
Hash identifier: pCCwwwI4kK35qb09IHCCQu4MrgMz9s784gSsBRbVivw=
Subject key identifier: 94:E7:C7:99:0A:CD:B0:07:A9:8A:69:AA:60:77:60:54:CD:DC:15:5A
Certificate issuer: /CN=2DD53BD69D3A3477F5372EF3689D3AC6BCC5D11B
Certificate serial: 09ED05423313189B86B91A864BEEC6C53C54FF68
Authority key identifier: 2D:D5:3B:D6:9D:3A:34:77:F5:37:2E:F3:68:9D:3A:C6:BC:C5:D1:1B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2DD53BD69D3A3477F5372EF3689D3AC6BCC5D11B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9DA8C80805BCA4CF63DDA4FBAE73E61851D724B6E761919681A32FF8212233BE/0/323830313a31333a643830383a3a2f34382d3438203d3e203139343239.roa
Signing time: Tue 04 Feb 2025 18:20:22 +0000
ROA not before: Tue 04 Feb 2025 18:15:22 +0000
ROA not after: Tue 03 Feb 2026 18:20:22 +0000
asID: 19429
IP address blocks: 2801:13:d808::/48 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/9DA8C80805BCA4CF63DDA4FBAE73E61851D724B6E761919681A32FF8212233BE/0/2DD53BD69D3A3477F5372EF3689D3AC6BCC5D11B.crl
rsync://repository.lacnic.net/rpki/lacnic/9DA8C80805BCA4CF63DDA4FBAE73E61851D724B6E761919681A32FF8212233BE/0/2DD53BD69D3A3477F5372EF3689D3AC6BCC5D11B.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2DD53BD69D3A3477F5372EF3689D3AC6BCC5D11B.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 19:27:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:ed:05:42:33:13:18:9b:86:b9:1a:86:4b:ee:c6:c5:3c:54:ff:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2DD53BD69D3A3477F5372EF3689D3AC6BCC5D11B
Validity
Not Before: Feb 4 18:15:22 2025 GMT
Not After : Feb 3 18:20:22 2026 GMT
Subject: CN=94E7C7990ACDB007A98A69AA60776054CDDC155A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:78:6f:76:b7:df:1f:50:a2:05:2b:18:b8:3d:
37:ef:6f:8a:37:61:48:a0:ea:ee:90:81:b5:e1:a0:
c7:e4:9b:1b:d6:fc:bb:ce:33:e6:4c:03:ef:16:b2:
20:90:b7:b6:83:9d:07:34:cf:41:86:b2:b7:26:c1:
17:bd:76:9b:7d:53:f7:14:1c:ce:3a:66:2d:09:2d:
e5:53:fb:0f:69:1f:9c:12:24:ec:0f:1b:79:21:96:
c2:35:d9:87:02:4d:b2:3f:17:b8:16:a0:4a:4d:e6:
f7:f6:6b:d9:dd:75:44:02:b0:ba:50:94:a9:1b:c1:
de:6d:fa:27:43:23:25:2b:d7:30:84:08:e0:e9:50:
b8:0b:4d:16:bf:23:df:f1:d6:88:99:28:9b:0b:a4:
3e:3e:be:f4:3f:1f:3c:ca:9c:74:2a:0c:01:3c:1f:
3a:50:c2:13:3a:ac:07:2f:ce:f2:34:b8:6a:77:77:
42:ba:af:6d:62:34:37:2b:a8:e9:05:c1:50:60:20:
ab:c6:1c:c7:ac:17:00:ae:8b:cb:7a:fc:f0:de:9c:
e6:40:3e:70:7f:55:90:1d:e6:07:d4:a3:41:0c:d0:
f0:0f:93:1c:a9:1c:98:99:46:b8:d6:4d:1a:c8:69:
c6:66:74:da:c7:bd:82:df:cb:1e:fc:63:4a:c6:18:
c3:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:E7:C7:99:0A:CD:B0:07:A9:8A:69:AA:60:77:60:54:CD:DC:15:5A
X509v3 Authority Key Identifier:
keyid:2D:D5:3B:D6:9D:3A:34:77:F5:37:2E:F3:68:9D:3A:C6:BC:C5:D1:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9DA8C80805BCA4CF63DDA4FBAE73E61851D724B6E761919681A32FF8212233BE/0/2DD53BD69D3A3477F5372EF3689D3AC6BCC5D11B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2DD53BD69D3A3477F5372EF3689D3AC6BCC5D11B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9DA8C80805BCA4CF63DDA4FBAE73E61851D724B6E761919681A32FF8212233BE/0/323830313a31333a643830383a3a2f34382d3438203d3e203139343239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:13:d808::/48
Signature Algorithm: sha256WithRSAEncryption
32:86:b0:e9:a1:56:3a:8a:70:e6:2e:9d:8a:ae:07:22:42:dd:
a3:83:e9:c3:51:b2:62:ac:aa:32:e1:fb:9c:77:dd:cf:26:36:
4e:56:55:c0:23:4b:9d:05:95:da:9b:4f:6e:86:b4:be:8d:12:
56:51:25:79:ff:48:a7:ee:92:4c:54:f8:2b:a3:d0:0f:a1:6f:
62:af:98:3c:d0:68:15:17:94:c8:d1:01:dd:c8:bc:d6:b6:a3:
8f:90:4e:20:21:da:5e:1e:77:e7:9b:a7:2e:1f:97:a7:9d:60:
97:e2:38:0b:51:6e:ec:7a:91:1d:5d:00:0e:3c:9d:b1:f2:43:
5b:1d:0f:70:02:72:33:a7:11:26:0a:fa:07:cf:51:5f:6b:9e:
f3:c8:06:3a:fe:7a:d8:59:8a:3a:4d:66:f1:b0:08:6e:ca:86:
62:4a:a7:e4:27:ee:4c:ee:c8:90:2e:4e:5a:f4:70:6b:ce:a9:
33:ef:26:f5:d3:4b:88:de:2d:4a:9e:ce:0d:cf:2a:ee:22:61:
8d:40:d1:4c:fb:2d:9f:cc:95:56:15:d6:d8:7b:8c:fd:a8:11:
60:a7:1a:0a:01:43:9a:db:c2:cd:cf:f4:66:e6:30:9d:d2:cf:
c0:1e:f4:ae:12:4d:96:38:31:36:97:a6:9a:5d:08:e9:f4:5f:
36:43:5e:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 06:22:50 2025 by rpki-client