Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/3137302e3233312e3136382e302f32322d3234203d3e203237383433.roa
File: 3137302e3233312e3136382e302f32322d3234203d3e203237383433.roa (raw, json)
Hash identifier: eKunB96ii9J9Z9fNsp4+y3jzokUmB2vtyOeEkSpPuic=
Subject key identifier: C5:C0:41:98:3D:41:3F:B8:A0:9E:03:3C:AD:A1:F1:D2:D4:1F:2F:09
Certificate issuer: /CN=9F08D38D4571C09A83B45ACFD10AEB7826CE8F84
Certificate serial: 2E3EB8955F2277545C00CE7580CF31A8233FABE5
Authority key identifier: 9F:08:D3:8D:45:71:C0:9A:83:B4:5A:CF:D1:0A:EB:78:26:CE:8F:84
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/3137302e3233312e3136382e302f32322d3234203d3e203237383433.roa
Signing time: Tue 04 Feb 2025 18:06:09 +0000
ROA not before: Tue 04 Feb 2025 18:01:09 +0000
ROA not after: Tue 03 Feb 2026 18:06:09 +0000
asID: 27843
IP address blocks: 170.231.168.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.crl
rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 23:06:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2e:3e:b8:95:5f:22:77:54:5c:00:ce:75:80:cf:31:a8:23:3f:ab:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9F08D38D4571C09A83B45ACFD10AEB7826CE8F84
Validity
Not Before: Feb 4 18:01:09 2025 GMT
Not After : Feb 3 18:06:09 2026 GMT
Subject: CN=C5C041983D413FB8A09E033CADA1F1D2D41F2F09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:61:5e:6d:50:76:51:9e:0c:9a:8c:d2:b8:44:
44:5c:f2:03:d5:00:89:b6:5e:4b:c7:9a:f1:07:6e:
62:c5:14:c0:e6:c0:4a:27:f5:86:df:24:64:04:6f:
8a:02:e5:a1:b3:cb:57:96:56:06:36:65:66:76:fb:
42:2f:82:83:e4:02:83:80:65:cb:d3:53:6f:eb:32:
ab:85:da:63:ce:07:8c:71:6c:2a:6a:c6:ca:2c:6c:
c7:f4:c4:03:b4:40:28:28:98:2d:d7:57:52:a9:cd:
cf:2c:c4:c4:7f:fd:b8:7e:eb:dd:b9:38:3d:9d:0d:
2f:ef:1e:c2:f5:f1:2e:18:bf:d7:f5:a8:ab:d6:16:
17:c9:7e:61:73:38:12:0f:6e:69:a8:35:c7:1b:5d:
17:de:04:be:5a:a6:42:d5:be:0b:55:76:ca:8f:c6:
8d:97:62:76:c6:cc:3a:e8:df:f1:a6:1a:f0:18:92:
79:6a:05:0f:4f:6f:12:f0:71:62:df:95:62:b2:df:
aa:7d:13:1a:c5:ac:fb:cb:ff:8a:07:44:73:c4:9d:
29:f5:aa:28:80:e8:a2:dd:96:dd:a7:6c:7a:0b:ac:
2b:60:13:b1:a1:a2:b3:c2:f5:ec:1a:be:ef:d2:51:
a7:60:48:84:2e:62:c0:bc:b2:84:b1:8b:96:f9:aa:
0e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:C0:41:98:3D:41:3F:B8:A0:9E:03:3C:AD:A1:F1:D2:D4:1F:2F:09
X509v3 Authority Key Identifier:
keyid:9F:08:D3:8D:45:71:C0:9A:83:B4:5A:CF:D1:0A:EB:78:26:CE:8F:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9F08D38D4571C09A83B45ACFD10AEB7826CE8F84.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A16E8F103146B2850335023A70A6D39874766368DBDA5F048D55972B98FD8367/0/3137302e3233312e3136382e302f32322d3234203d3e203237383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.231.168.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:8a:c7:4c:e2:41:a5:aa:77:cd:cb:db:4d:4b:11:0e:25:f9:
72:75:14:98:ed:dd:17:1c:a3:23:8d:7e:4e:de:12:33:3d:82:
2f:8b:ad:f8:54:88:25:2c:7b:de:8d:3a:73:3b:ef:03:83:19:
26:b0:db:f1:ce:2e:2d:13:97:8c:ed:bd:78:b9:9b:9c:1e:d2:
b6:dd:f8:a1:ce:b8:a4:bf:1f:1e:b8:ff:77:59:59:2a:11:40:
bc:b4:a5:ee:e4:49:d4:42:46:50:23:bf:27:af:c4:8d:4d:d0:
e5:51:93:f1:e2:d4:c4:e0:35:6c:0d:b5:18:86:4e:d7:a3:e0:
3c:95:8a:ba:ff:0c:0a:8d:7b:6e:c8:1b:cd:d2:aa:77:8f:8a:
7b:77:42:95:3c:f1:83:4d:3f:d4:bd:a6:b1:c3:07:97:46:05:
c5:09:6c:66:e0:04:46:3a:3e:bd:b4:38:10:bc:6d:76:dc:4b:
b0:21:2a:9c:31:70:12:b6:78:d7:92:a4:9d:1d:f6:3f:52:6b:
4a:81:2a:cb:ba:69:1a:93:3b:58:ba:00:94:69:a4:5b:2d:2c:
14:bd:b1:fc:58:f5:78:1d:d1:da:62:75:11:e2:f2:9c:69:df:
cf:cc:0b:7b:9a:66:6a:23:59:77:06:ef:c6:b0:19:a9:3b:cf:
eb:30:1b:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 02:37:20 2025 by rpki-client