Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/3136382e3132312e34362e302f32332d3234203d3e203237383433.roa
File: 3136382e3132312e34362e302f32332d3234203d3e203237383433.roa (raw, json)
Hash identifier: YdPxno7K7+73H8/M7LFZIR5ynR2aN4ishracyQONrfs=
Subject key identifier: 0A:09:E1:40:81:C6:59:0E:EF:A9:74:70:62:FF:52:84:F3:43:14:99
Certificate issuer: /CN=9F08D38D4571C09A83B45ACFD10AEB7826CE8F84
Certificate serial: 60F675849FA382B6C329ACA51E9C42CFC965B593
Authority key identifier: 9F:08:D3:8D:45:71:C0:9A:83:B4:5A:CF:D1:0A:EB:78:26:CE:8F:84
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/3136382e3132312e34362e302f32332d3234203d3e203237383433.roa
Signing time: Tue 04 Feb 2025 18:06:05 +0000
ROA not before: Tue 04 Feb 2025 18:01:05 +0000
ROA not after: Tue 03 Feb 2026 18:06:05 +0000
asID: 27843
IP address blocks: 168.121.46.0/23 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.crl
rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 23:06:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:f6:75:84:9f:a3:82:b6:c3:29:ac:a5:1e:9c:42:cf:c9:65:b5:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9F08D38D4571C09A83B45ACFD10AEB7826CE8F84
Validity
Not Before: Feb 4 18:01:05 2025 GMT
Not After : Feb 3 18:06:05 2026 GMT
Subject: CN=0A09E14081C6590EEFA9747062FF5284F3431499
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9f:a5:a0:2d:2a:b0:3d:67:61:e5:71:eb:77:
c1:c7:f5:57:e5:88:3e:e3:b9:89:fd:0a:ae:73:13:
c5:14:4d:6b:d4:aa:7c:d6:f8:17:a5:6f:d7:d9:10:
f8:9c:18:96:d8:92:33:c9:ca:97:c7:28:41:c0:73:
d9:51:0d:29:89:94:c9:3a:c7:cf:c1:df:ae:2a:d9:
66:e2:e5:b0:1e:0d:3a:85:48:0f:dc:bd:66:60:94:
36:65:a2:90:c9:2d:27:80:a7:28:96:39:6d:b6:b3:
85:59:df:0d:e7:8e:c7:26:32:ae:52:ff:d9:c2:b8:
f6:87:12:c4:bb:6e:02:1e:40:93:20:b9:6b:81:18:
76:e6:97:1d:3f:51:36:a5:91:3a:73:13:b0:fb:ac:
1c:c0:2b:17:ec:18:68:f7:20:a2:47:c4:c7:b3:6a:
5a:a1:2f:f3:d2:e9:68:fe:37:25:9c:57:d7:96:de:
3a:51:a3:19:53:ed:cf:be:25:14:90:f0:f5:8e:42:
4a:e5:7c:62:58:1e:d4:f8:65:79:a9:77:d2:e8:55:
ad:80:d8:97:89:cb:1f:e5:49:ac:25:fc:89:a9:15:
83:d5:04:4b:6a:8b:f0:0c:1a:89:64:b7:0c:3c:e6:
d1:15:02:33:c4:e6:26:50:b7:e1:24:89:cf:0d:df:
c4:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:09:E1:40:81:C6:59:0E:EF:A9:74:70:62:FF:52:84:F3:43:14:99
X509v3 Authority Key Identifier:
keyid:9F:08:D3:8D:45:71:C0:9A:83:B4:5A:CF:D1:0A:EB:78:26:CE:8F:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/3136382e3132312e34362e302f32332d3234203d3e203237383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.121.46.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:a0:0e:5f:e2:14:71:b5:e4:84:e9:39:ac:98:11:b1:c3:e4:
30:3f:7c:6b:de:cd:8b:36:85:b7:46:e9:85:92:ab:3c:bd:35:
62:76:b0:5e:dd:01:fd:e6:0a:a0:22:46:9e:35:4d:72:b7:61:
1d:8d:84:69:52:ea:03:52:29:21:84:60:16:b6:0d:b6:96:95:
20:1c:0a:48:77:62:3d:71:37:f0:07:ec:b2:b3:7d:8d:0c:0b:
96:f4:6b:97:03:9b:f6:d8:df:7d:31:2a:cf:24:a8:86:f7:93:
90:a2:56:97:10:89:54:cd:58:d2:95:f7:cc:7b:67:0f:88:a0:
d8:59:f3:8b:03:7f:f0:3c:97:9a:c8:70:47:af:27:06:c3:46:
56:ce:81:6f:20:9d:e9:76:ee:d7:1b:eb:08:00:e3:ef:98:0d:
fd:51:c3:51:44:3f:80:d1:43:9b:ad:77:35:e4:ab:7e:d4:1d:
5a:e9:48:9d:0a:45:8e:ba:cf:fd:ae:c9:d3:7b:58:6c:ff:9a:
9e:6f:58:42:58:e3:24:f4:7f:f8:ad:43:3a:f2:40:65:c3:f1:
53:f5:77:68:68:1a:68:3b:1c:2f:45:fa:0f:4a:97:bb:34:d2:
28:87:a6:f4:e8:65:c2:4a:24:34:60:36:53:a9:00:ed:cd:51:
ba:f9:9f:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 03:28:46 2025 by rpki-client