Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/3230302e37352e3136382e302f32342d3234203d3e203232353431.roa
File: 3230302e37352e3136382e302f32342d3234203d3e203232353431.roa (raw, json)
Hash identifier: nl9QpsROqRKiUFUgDRBW5fhLmPR7TN/7qzKTjiXdhsI=
Subject key identifier: 3A:BD:FE:75:63:A3:3F:BC:81:BF:FF:6A:C9:AA:81:47:85:F4:F6:19
Certificate issuer: /CN=620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D
Certificate serial: 5D5489D2B56D874DB27FB046A3A13A9E5D6915FE
Authority key identifier: 62:0D:1F:DB:BD:45:7C:A0:F9:CC:FC:63:A8:B8:5C:99:A8:19:AF:3D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/3230302e37352e3136382e302f32342d3234203d3e203232353431.roa
Signing time: Tue 04 Feb 2025 19:59:21 +0000
ROA not before: Tue 04 Feb 2025 19:54:21 +0000
ROA not after: Tue 03 Feb 2026 19:59:21 +0000
asID: 22541
IP address blocks: 200.75.168.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D.crl
rsync://repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 15:14:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:54:89:d2:b5:6d:87:4d:b2:7f:b0:46:a3:a1:3a:9e:5d:69:15:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D
Validity
Not Before: Feb 4 19:54:21 2025 GMT
Not After : Feb 3 19:59:21 2026 GMT
Subject: CN=3ABDFE7563A33FBC81BFFF6AC9AA814785F4F619
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:53:db:62:03:f3:22:1c:d4:8d:30:1c:ea:14:
c3:25:74:fb:18:9e:ca:42:5d:64:ba:d1:0f:77:96:
37:b9:62:fe:89:15:12:c6:7f:e3:b8:f4:dd:bf:58:
b6:08:5e:6b:aa:5c:3e:75:b6:97:ac:33:78:4c:4d:
95:0c:46:49:e3:56:45:c1:09:ce:02:7a:c4:45:cc:
8b:c2:06:d1:68:bf:e4:33:86:7c:54:99:cf:82:1b:
89:aa:4d:93:e9:fa:20:16:d3:03:14:84:7c:b9:e7:
e4:67:de:93:42:c8:a7:f2:51:98:16:ca:40:f0:e5:
68:9a:8f:22:c6:e9:c2:3c:47:d8:e9:9d:8b:e1:fe:
96:c9:1c:72:fe:96:c3:cf:a2:a0:29:6d:ea:1e:9f:
47:89:3e:b1:b9:9c:55:46:94:80:f4:b3:97:bd:42:
ac:23:90:28:d6:3e:ba:9a:16:09:42:57:d9:64:29:
45:a2:6b:02:18:c0:63:b8:e6:4c:ba:04:10:c9:e6:
bf:53:51:62:90:98:6d:22:2a:05:d5:dd:6b:6b:d4:
e5:94:41:60:64:01:fb:a4:05:9d:4c:80:fc:48:3c:
f1:66:fd:ed:f1:be:4c:ae:9a:b1:f9:51:39:a4:b0:
d6:98:2c:9d:f1:23:88:eb:61:6f:08:46:cd:20:a2:
b6:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:BD:FE:75:63:A3:3F:BC:81:BF:FF:6A:C9:AA:81:47:85:F4:F6:19
X509v3 Authority Key Identifier:
keyid:62:0D:1F:DB:BD:45:7C:A0:F9:CC:FC:63:A8:B8:5C:99:A8:19:AF:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/620D1FDBBD457CA0F9CCFC63A8B85C99A819AF3D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A1FA039B9EAF13ADE817882DD4BBFFA2BE1D491764BF9383ECEE908BD23F4CF0/0/3230302e37352e3136382e302f32342d3234203d3e203232353431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.75.168.0/24
Signature Algorithm: sha256WithRSAEncryption
48:d4:b2:cf:50:7f:f4:ad:c0:68:e7:19:2b:dc:6b:9c:b9:9d:
b1:90:32:4f:11:bf:f2:7c:4c:b8:b7:9b:5c:c9:15:f2:f8:fa:
70:a1:84:b8:c0:10:7b:09:3b:d0:c1:45:68:fd:77:3a:da:43:
28:e5:89:84:5a:da:4f:2d:18:ea:ca:94:ca:55:b4:76:e2:fb:
96:5d:21:70:94:0f:3b:a3:3a:42:a8:90:26:78:41:77:c0:20:
0b:51:a9:b1:5f:24:15:46:ed:36:e9:9c:7e:95:ea:ec:e7:16:
bf:e1:89:a2:f4:9e:ce:d1:74:32:0c:0b:46:f6:33:c3:d2:07:
41:3c:c3:f8:76:2e:10:bc:60:97:a4:ce:47:0d:9b:6a:88:e1:
11:b4:a1:5f:b6:64:de:09:d1:dd:98:53:41:95:50:bc:ca:9b:
ec:66:92:fa:1c:ca:6e:b4:78:89:99:e0:9a:88:c8:c3:61:e8:
84:e6:0f:9f:2f:7a:36:2b:6a:0d:6b:75:0e:3a:a7:4a:4a:d0:
0e:45:dd:a4:ee:a3:0d:19:83:bb:11:0e:64:7d:31:18:36:dc:
32:c9:6e:06:91:a8:71:e8:bc:44:1f:a2:54:8a:77:fe:68:7b:
7c:81:a7:b8:e5:02:24:1a:48:bd:18:43:73:00:af:cb:d4:46:
b8:54:07:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 06:22:42 2025 by rpki-client