Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A3355ECD6AC1B0A9AAC52A56AD0AF34B4536C2AC7FAD525C02EF230341BC06AE/0/323030313a313230373a663030303a3a2f33362d3336203d3e203238343539.roa
File: 323030313a313230373a663030303a3a2f33362d3336203d3e203238343539.roa (raw, json)
Hash identifier: pTNGbvG9dgqnBl9QM0lbNI4uZp33HQ4fCicHEcZnMpw=
Subject key identifier: E0:A8:9A:3C:E2:08:70:46:CB:62:3F:96:67:3E:F1:28:67:F9:96:C1
Certificate issuer: /CN=88F33C2FEA58249E83B8947F7C6DED538B91B18B
Certificate serial: 1BC7241A8677573394454FC148587C41258BBAF3
Authority key identifier: 88:F3:3C:2F:EA:58:24:9E:83:B8:94:7F:7C:6D:ED:53:8B:91:B1:8B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/88F33C2FEA58249E83B8947F7C6DED538B91B18B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A3355ECD6AC1B0A9AAC52A56AD0AF34B4536C2AC7FAD525C02EF230341BC06AE/0/323030313a313230373a663030303a3a2f33362d3336203d3e203238343539.roa
Signing time: Mon 27 Jan 2025 16:35:00 +0000
ROA not before: Mon 27 Jan 2025 16:30:00 +0000
ROA not after: Mon 26 Jan 2026 16:35:00 +0000
asID: 28459
IP address blocks: 2001:1207:f000::/36 maxlen: 36
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/A3355ECD6AC1B0A9AAC52A56AD0AF34B4536C2AC7FAD525C02EF230341BC06AE/0/88F33C2FEA58249E83B8947F7C6DED538B91B18B.crl
rsync://repository.lacnic.net/rpki/lacnic/A3355ECD6AC1B0A9AAC52A56AD0AF34B4536C2AC7FAD525C02EF230341BC06AE/0/88F33C2FEA58249E83B8947F7C6DED538B91B18B.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/88F33C2FEA58249E83B8947F7C6DED538B91B18B.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 18:23:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:c7:24:1a:86:77:57:33:94:45:4f:c1:48:58:7c:41:25:8b:ba:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88F33C2FEA58249E83B8947F7C6DED538B91B18B
Validity
Not Before: Jan 27 16:30:00 2025 GMT
Not After : Jan 26 16:35:00 2026 GMT
Subject: CN=E0A89A3CE2087046CB623F96673EF12867F996C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:44:9d:f0:6e:eb:a9:92:2b:0e:51:e6:a1:2c:
ef:80:84:1b:77:b5:6e:fa:97:3a:7f:d0:c8:f4:60:
81:27:d4:55:d8:94:94:f0:8f:eb:c3:e6:1b:2f:98:
82:9e:13:f1:f8:ef:f0:15:2f:c6:fe:69:b2:9e:c5:
1e:e8:af:78:ee:77:10:a0:17:84:0b:75:e9:d8:33:
cf:47:36:11:8e:1d:a2:9e:14:13:11:a0:68:8c:b6:
ab:07:7e:05:aa:de:a7:bc:8b:32:f4:ae:e9:57:29:
26:9a:38:56:66:63:de:2a:26:8c:b4:9a:7b:cd:ec:
89:e6:88:b6:d7:1e:94:db:6a:ef:9a:ce:53:df:6d:
9f:ac:5a:d7:2d:4b:67:56:a3:19:71:35:c9:12:b1:
0a:9d:8f:08:87:5a:d9:a0:b7:c6:b6:4f:3d:51:e7:
e0:1f:e6:18:dd:de:52:6b:5d:5c:46:44:de:28:f4:
ca:34:92:5a:ea:9b:34:40:9c:dc:5f:4f:c6:24:67:
66:ae:c5:44:57:f4:e9:5c:72:fb:94:40:bd:44:d6:
96:5c:84:0b:0b:41:15:bb:dd:ea:35:f2:b5:ec:af:
89:7e:09:34:34:16:01:c3:71:75:0e:c4:d8:31:cd:
25:d7:b5:aa:ac:5c:68:3b:0c:ed:86:91:75:19:09:
5b:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:A8:9A:3C:E2:08:70:46:CB:62:3F:96:67:3E:F1:28:67:F9:96:C1
X509v3 Authority Key Identifier:
keyid:88:F3:3C:2F:EA:58:24:9E:83:B8:94:7F:7C:6D:ED:53:8B:91:B1:8B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A3355ECD6AC1B0A9AAC52A56AD0AF34B4536C2AC7FAD525C02EF230341BC06AE/0/88F33C2FEA58249E83B8947F7C6DED538B91B18B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/88F33C2FEA58249E83B8947F7C6DED538B91B18B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A3355ECD6AC1B0A9AAC52A56AD0AF34B4536C2AC7FAD525C02EF230341BC06AE/0/323030313a313230373a663030303a3a2f33362d3336203d3e203238343539.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:1207:f000::/36
Signature Algorithm: sha256WithRSAEncryption
58:a0:93:60:1d:ec:0d:85:21:1a:dc:bf:e4:47:66:93:11:2f:
70:04:bc:39:42:23:50:62:39:d7:3a:75:9a:c3:34:19:62:ab:
7f:c0:1d:30:66:cf:be:d6:25:e1:dd:e6:9e:a8:68:a2:b1:7a:
9e:1c:64:3c:b4:19:78:cc:1d:ac:67:c8:17:63:4c:9b:bf:d6:
42:5a:12:06:c7:89:12:7f:b2:41:18:fa:7f:a2:97:31:16:83:
0b:89:f1:72:ac:c4:8e:32:07:8d:b2:1c:2e:f2:a0:b5:d6:86:
c9:e2:b2:90:6b:ef:a6:19:a9:27:02:ce:7e:f2:12:35:c3:3b:
49:1f:11:1b:b8:e8:85:81:86:1a:e1:54:41:a0:1c:a8:9e:0c:
51:64:ba:fa:47:1e:0b:7c:aa:4e:3e:7f:aa:e7:8b:9d:e0:4c:
b1:13:91:1b:ff:c3:98:c8:2f:20:1d:32:de:f1:7a:e0:6d:aa:
09:24:58:83:81:b1:8b:b6:d9:28:77:08:d7:ec:be:9d:d4:d6:
67:ba:49:27:a3:5e:7d:47:03:1d:ee:74:7e:2d:f9:88:f2:d5:
d0:b1:0a:2c:50:b9:eb:43:ce:25:09:26:4f:9f:09:03:a9:36:
2b:5d:0d:83:e0:6c:5d:98:a6:56:c5:5b:52:fb:80:14:f0:6f:
3d:b0:6a:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 06:35:33 2025 by rpki-client