Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9E4A36671FA7DBA911B98A46CD51962D9665B0DE68EA50EBF43C92EAE8020FFA/0/3230302e3130382e3131372e302f32342d3234203d3e203532323833.roa
File: 3230302e3130382e3131372e302f32342d3234203d3e203532323833.roa (raw, json)
Hash identifier: 549sSd1DV7Tqjco/5SDWs+2nONxJKpbeQAe12A9ulVg=
Subject key identifier: E8:3C:3C:CB:F2:48:BB:02:43:52:0B:EF:CF:B1:BF:A9:2F:77:BD:EA
Certificate issuer: /CN=B168144FAA075D3D9B10EF691FC55E6A3A3E172E
Certificate serial: 55CAF7948FFC554B6DB91764CB22D1757129E2D5
Authority key identifier: B1:68:14:4F:AA:07:5D:3D:9B:10:EF:69:1F:C5:5E:6A:3A:3E:17:2E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B168144FAA075D3D9B10EF691FC55E6A3A3E172E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9E4A36671FA7DBA911B98A46CD51962D9665B0DE68EA50EBF43C92EAE8020FFA/0/3230302e3130382e3131372e302f32342d3234203d3e203532323833.roa
Signing time: Tue 04 Feb 2025 18:11:55 +0000
ROA not before: Tue 04 Feb 2025 18:06:55 +0000
ROA not after: Tue 03 Feb 2026 18:11:55 +0000
asID: 52283
IP address blocks: 200.108.117.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/9E4A36671FA7DBA911B98A46CD51962D9665B0DE68EA50EBF43C92EAE8020FFA/0/B168144FAA075D3D9B10EF691FC55E6A3A3E172E.crl
rsync://repository.lacnic.net/rpki/lacnic/9E4A36671FA7DBA911B98A46CD51962D9665B0DE68EA50EBF43C92EAE8020FFA/0/B168144FAA075D3D9B10EF691FC55E6A3A3E172E.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B168144FAA075D3D9B10EF691FC55E6A3A3E172E.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 15:43:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:ca:f7:94:8f:fc:55:4b:6d:b9:17:64:cb:22:d1:75:71:29:e2:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B168144FAA075D3D9B10EF691FC55E6A3A3E172E
Validity
Not Before: Feb 4 18:06:55 2025 GMT
Not After : Feb 3 18:11:55 2026 GMT
Subject: CN=E83C3CCBF248BB0243520BEFCFB1BFA92F77BDEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:2a:ae:c0:93:7a:c9:34:73:2e:95:5f:17:cc:
53:bb:4d:ce:b5:75:db:54:a8:41:dd:5c:05:8a:76:
df:fe:f7:04:6c:c3:af:28:39:2c:92:71:ad:1f:53:
88:39:e0:54:47:a2:da:f7:8e:71:45:b9:44:6b:11:
78:ba:b7:54:39:41:63:be:4f:c3:63:4c:d1:cf:16:
71:79:02:a4:cb:a8:25:17:fb:0b:5c:19:4b:52:7b:
d2:b4:bb:2a:52:1b:b5:17:d3:bf:c5:fb:dd:ad:c9:
5a:29:c5:8b:b2:b5:39:58:e9:52:59:f9:b6:db:e0:
41:fa:b4:5e:4b:e1:e0:45:85:0b:76:98:7f:42:d4:
1d:67:6f:27:52:c0:5c:b0:2c:2b:eb:6d:33:4c:c5:
8f:f5:cd:46:c1:02:fd:12:68:33:ea:cd:12:05:f6:
a0:4d:db:fe:3a:46:b8:ca:01:9f:1c:e0:00:af:30:
5d:0b:22:54:15:9a:4e:6e:12:e0:7b:2e:78:94:f1:
e7:fe:a9:4b:50:5c:27:a0:7d:eb:5f:17:88:72:59:
c3:09:2c:f2:18:2b:ce:74:8d:ca:0a:19:89:6e:e0:
2f:54:fe:9d:2f:46:ed:75:28:be:62:6a:20:b2:f8:
4d:50:91:ea:98:12:91:11:46:c9:14:88:70:29:d5:
86:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:3C:3C:CB:F2:48:BB:02:43:52:0B:EF:CF:B1:BF:A9:2F:77:BD:EA
X509v3 Authority Key Identifier:
keyid:B1:68:14:4F:AA:07:5D:3D:9B:10:EF:69:1F:C5:5E:6A:3A:3E:17:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9E4A36671FA7DBA911B98A46CD51962D9665B0DE68EA50EBF43C92EAE8020FFA/0/B168144FAA075D3D9B10EF691FC55E6A3A3E172E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B168144FAA075D3D9B10EF691FC55E6A3A3E172E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9E4A36671FA7DBA911B98A46CD51962D9665B0DE68EA50EBF43C92EAE8020FFA/0/3230302e3130382e3131372e302f32342d3234203d3e203532323833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.108.117.0/24
Signature Algorithm: sha256WithRSAEncryption
86:72:fc:ce:29:2f:e6:35:03:6b:6c:e9:e4:19:78:65:f7:af:
25:b5:94:67:ec:88:3b:6a:8f:1a:59:46:b1:1b:32:65:6c:88:
32:85:a3:a3:d8:3e:18:86:81:ff:dc:23:2c:4d:dc:ed:9f:4f:
3b:c5:35:28:1d:28:35:4b:65:d2:9a:05:9f:57:2d:75:32:9e:
74:97:a0:f3:b8:58:e9:1e:a0:fa:81:f7:44:f0:1c:79:81:b0:
d1:d0:e8:fb:4c:59:90:86:59:cb:1b:ff:7b:28:8b:11:cb:6c:
90:53:fc:0f:9c:f1:fa:d0:05:13:fa:42:37:e4:5a:02:6c:4f:
6f:a5:0c:42:3e:f7:cf:2b:a4:19:3c:9a:95:41:6c:69:d1:81:
86:19:e8:77:4b:e5:95:72:af:c6:1b:81:21:74:a2:29:3b:4e:
ea:80:a1:59:a0:f2:46:20:5e:d5:37:fe:f2:e7:f8:fe:ae:85:
7e:2e:8d:aa:dc:1d:d3:28:96:97:29:87:2e:b6:88:43:c0:3c:
2e:64:e0:82:6f:2a:f9:99:a8:23:a7:3c:22:4f:b1:0f:0e:87:
1f:03:e3:22:92:9f:5e:14:09:37:80:10:77:16:aa:90:28:b6:
9c:e9:c4:55:05:97:76:24:f4:3e:1b:72:60:a2:c7:5e:a0:ca:
c1:35:61:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 10:11:22 2025 by rpki-client