Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/3230302e37352e3136372e302f32342d3234203d3e203232353431.roa
File: 3230302e37352e3136372e302f32342d3234203d3e203232353431.roa (raw, json)
Hash identifier: KnJ425WBopEuIDDczICfihzl3G6XpC9v/8WsHkYJgno=
Subject key identifier: D7:C4:F1:2C:14:C4:D9:8B:DE:E1:AB:54:9A:5C:04:9D:9D:FA:2D:EF
Certificate issuer: /CN=620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D
Certificate serial: 2CB85994D06745888AEB80CA7E55629A3A1F34F5
Authority key identifier: 62:0D:1F:DB:BD:45:7C:A0:F9:CC:FC:63:A8:B8:5C:99:A8:19:AF:3D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/3230302e37352e3136372e302f32342d3234203d3e203232353431.roa
Signing time: Tue 04 Feb 2025 19:59:18 +0000
ROA not before: Tue 04 Feb 2025 19:54:18 +0000
ROA not after: Tue 03 Feb 2026 19:59:18 +0000
asID: 22541
IP address blocks: 200.75.167.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D.crl
rsync://repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 15:14:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:b8:59:94:d0:67:45:88:8a:eb:80:ca:7e:55:62:9a:3a:1f:34:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D
Validity
Not Before: Feb 4 19:54:18 2025 GMT
Not After : Feb 3 19:59:18 2026 GMT
Subject: CN=D7C4F12C14C4D98BDEE1AB549A5C049D9DFA2DEF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:d6:22:c3:00:7d:4c:3e:5b:e2:f3:46:1d:db:
aa:64:2e:0f:72:44:46:bf:70:b7:8f:5f:92:64:ac:
ed:a5:cb:69:75:7e:ad:b5:13:46:de:bc:24:9b:48:
ad:87:1c:24:73:c3:b4:57:67:3b:65:21:24:1e:46:
f1:bd:29:e8:3f:62:3d:44:17:3f:0e:bf:85:ca:bd:
ab:76:78:8b:fe:1c:2b:8e:ea:2e:d2:1f:3f:7b:28:
b1:11:70:02:81:c5:bb:1c:b9:8c:b4:47:64:52:ae:
a2:51:83:71:29:ed:a3:b0:55:7a:f1:10:25:5a:a7:
89:47:4c:12:0c:79:83:6f:09:79:7b:18:26:ae:34:
bf:76:e6:84:51:63:ca:68:df:c2:7a:94:ba:9a:de:
2d:ff:c4:fe:6c:18:a6:38:8d:7e:49:c3:9c:fc:a5:
84:ff:b9:e8:41:00:64:d1:3f:9f:67:cb:c6:b5:1e:
00:b9:b6:75:d7:aa:aa:1d:31:14:7f:57:98:36:e8:
6d:64:24:3c:31:43:10:2b:b6:14:58:f1:72:95:23:
8b:d1:1f:68:1b:93:3c:7b:22:d9:80:b9:67:c2:19:
ec:aa:72:3e:a4:56:27:03:64:dc:5a:48:6a:89:f0:
e8:19:55:2f:11:93:8d:aa:86:ee:c3:06:3d:78:48:
e5:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:C4:F1:2C:14:C4:D9:8B:DE:E1:AB:54:9A:5C:04:9D:9D:FA:2D:EF
X509v3 Authority Key Identifier:
keyid:62:0D:1F:DB:BD:45:7C:A0:F9:CC:FC:63:A8:B8:5C:99:A8:19:AF:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/3230302e37352e3136372e302f32342d3234203d3e203232353431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.75.167.0/24
Signature Algorithm: sha256WithRSAEncryption
77:1d:7a:ab:86:ec:ce:0a:0b:0b:e1:da:75:eb:b1:dd:f0:98:
42:46:81:30:30:bd:88:4d:7c:e9:03:8d:a1:e3:08:92:fa:36:
50:ab:aa:ea:51:73:bb:92:5e:b9:41:30:90:c6:df:88:5b:b7:
70:93:11:82:ea:68:cb:c7:3a:97:79:9a:31:53:7d:45:53:60:
61:f9:9b:ec:c8:06:51:1a:ce:15:21:60:50:c7:c3:e1:b6:ea:
b2:a4:dc:b9:ee:4d:0d:53:50:eb:98:d8:b7:99:56:d7:31:41:
09:86:3b:e1:72:f7:ad:00:64:5f:1f:68:53:38:7c:33:02:ee:
1c:77:0a:16:8e:f3:9b:35:8e:7b:52:7d:d8:62:a5:47:e5:6f:
7f:cf:5c:09:46:b0:a1:4f:3f:1c:0a:37:fe:23:6b:82:6b:a1:
b9:b3:47:55:50:a0:14:1f:fa:0f:c5:32:eb:66:09:5d:54:5b:
cb:bf:b4:9b:bb:1e:c2:41:51:f7:46:28:a6:52:43:86:29:1c:
14:38:4a:74:f9:47:35:51:b1:0c:a9:4f:90:e3:8d:cc:cb:78:
f1:ed:34:46:7e:07:02:29:ef:52:b5:1a:b6:da:97:4e:ce:81:
a5:73:82:dc:65:1f:14:44:35:32:2a:06:bb:ab:0f:04:64:8c:
0a:53:cf:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 03:28:36 2025 by rpki-client