Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A585C5CC7E596C06F7E4F7EF44AFEB111827847B239A53FB6479F44AA6BE4C92/0/3137302e38302e39362e302f32322d3234203d3e20323634383239.roa
File: 3137302e38302e39362e302f32322d3234203d3e20323634383239.roa (raw, json)
Hash identifier: EN6bKmbXr83hCGVgg6+TXQsqLT3vkrz3D6XGxdjqu4k=
Subject key identifier: 70:B0:0C:2F:BB:A0:80:50:93:48:81:E5:5D:B1:32:03:A8:31:22:A0
Certificate issuer: /CN=5E1223CC9DCD0E1E40ACE15A1E3493DE1B6B4DC0
Certificate serial: 12D74874E956623EDD7592BD89024A1B147A534D
Authority key identifier: 5E:12:23:CC:9D:CD:0E:1E:40:AC:E1:5A:1E:34:93:DE:1B:6B:4D:C0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5E1223CC9DCD0E1E40ACE15A1E3493DE1B6B4DC0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A585C5CC7E596C06F7E4F7EF44AFEB111827847B239A53FB6479F44AA6BE4C92/0/3137302e38302e39362e302f32322d3234203d3e20323634383239.roa
Signing time: Tue 04 Feb 2025 18:45:39 +0000
ROA not before: Tue 04 Feb 2025 18:40:39 +0000
ROA not after: Tue 03 Feb 2026 18:45:39 +0000
asID: 264829
IP address blocks: 170.80.96.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/A585C5CC7E596C06F7E4F7EF44AFEB111827847B239A53FB6479F44AA6BE4C92/0/5E1223CC9DCD0E1E40ACE15A1E3493DE1B6B4DC0.crl
rsync://repository.lacnic.net/rpki/lacnic/A585C5CC7E596C06F7E4F7EF44AFEB111827847B239A53FB6479F44AA6BE4C92/0/5E1223CC9DCD0E1E40ACE15A1E3493DE1B6B4DC0.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5E1223CC9DCD0E1E40ACE15A1E3493DE1B6B4DC0.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 17:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:d7:48:74:e9:56:62:3e:dd:75:92:bd:89:02:4a:1b:14:7a:53:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5E1223CC9DCD0E1E40ACE15A1E3493DE1B6B4DC0
Validity
Not Before: Feb 4 18:40:39 2025 GMT
Not After : Feb 3 18:45:39 2026 GMT
Subject: CN=70B00C2FBBA08050934881E55DB13203A83122A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b1:12:16:41:9a:75:6a:71:72:ce:15:45:d5:
82:f5:5a:4e:28:f5:8b:78:e8:f9:22:40:2f:04:9d:
07:49:44:1e:44:fe:31:33:94:3d:aa:0b:df:8f:3e:
66:a9:3b:83:7a:ab:bb:c5:7b:44:d8:a7:1e:28:2f:
ba:b6:f0:52:92:e7:a9:75:90:2b:8e:5e:bf:58:17:
1e:ae:da:c9:32:14:a1:e8:7d:33:7c:8b:4b:86:31:
2d:0a:87:05:f7:3d:9b:b2:b4:56:fd:d4:dd:c6:8a:
a4:1b:ce:ee:71:14:ec:fb:5f:70:cb:ef:2f:d8:d7:
75:a9:ef:51:ef:f8:6a:99:27:0e:6f:28:ad:6c:9f:
68:83:c1:0c:0f:77:df:00:61:7e:f2:8b:8d:df:8c:
6e:96:31:29:85:49:a9:ce:b2:2f:91:5d:49:ba:f7:
ae:61:36:fd:d0:2a:66:0b:c1:93:58:28:38:02:f8:
f2:ee:26:13:c9:68:6f:2b:d6:46:3d:d0:54:f5:20:
fb:13:91:4a:8e:9c:be:d7:79:75:d4:18:57:a0:5d:
ce:69:b0:48:b8:2b:92:b5:bd:e1:5d:bd:aa:0d:a2:
cd:62:a2:d4:2c:db:1a:72:f5:01:19:12:df:17:1c:
dd:b8:12:e0:e8:a4:7e:8a:c4:f4:b3:af:ce:52:ff:
d2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:B0:0C:2F:BB:A0:80:50:93:48:81:E5:5D:B1:32:03:A8:31:22:A0
X509v3 Authority Key Identifier:
keyid:5E:12:23:CC:9D:CD:0E:1E:40:AC:E1:5A:1E:34:93:DE:1B:6B:4D:C0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A585C5CC7E596C06F7E4F7EF44AFEB111827847B239A53FB6479F44AA6BE4C92/0/5E1223CC9DCD0E1E40ACE15A1E3493DE1B6B4DC0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5E1223CC9DCD0E1E40ACE15A1E3493DE1B6B4DC0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A585C5CC7E596C06F7E4F7EF44AFEB111827847B239A53FB6479F44AA6BE4C92/0/3137302e38302e39362e302f32322d3234203d3e20323634383239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.80.96.0/22
Signature Algorithm: sha256WithRSAEncryption
dc:bc:82:2c:c9:21:28:26:96:4c:52:d7:c0:57:d0:9b:2b:65:
16:fc:95:d6:57:a5:05:9d:3c:a8:a2:ba:de:5f:4d:ff:5f:26:
c6:93:fc:0e:6c:78:a1:4a:39:13:5a:00:ab:cd:8e:f6:30:32:
bd:86:4a:b8:44:57:84:66:af:22:ae:dd:88:aa:e9:d7:5f:66:
00:df:c5:2c:32:1d:35:a1:bf:e8:4b:11:c1:e0:8a:a4:51:a6:
41:4d:97:82:f1:11:dd:11:64:dc:b5:24:3c:9c:b0:65:e2:06:
a6:f8:96:40:ad:d6:b1:71:3b:06:87:01:09:de:75:26:22:1f:
05:14:a5:e4:a6:18:c2:bf:69:c0:fd:a9:f1:b4:32:d8:77:22:
b8:03:81:34:6e:72:a8:88:6b:71:ac:d7:11:45:3f:b9:3b:19:
3b:5f:14:6c:43:23:f2:fd:c0:a9:20:d7:61:89:a2:62:52:4f:
77:d3:fe:cd:10:c8:ab:86:41:ef:20:c2:62:cc:c9:8a:73:b7:
aa:7d:01:60:57:e2:a1:f3:8e:57:af:3c:f4:b1:69:91:b6:fa:
4e:fd:9e:62:94:13:75:7a:83:67:36:69:11:f2:a1:ce:8c:49:
24:13:75:66:cd:86:42:17:39:62:40:6b:7f:8a:f1:43:7e:b0:
e6:74:f2:6d
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUEtdIdOlWYj7ddZK9iQJKGxR6U00wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNUUxMjIzQ0M5RENEMEUxRTQwQUNFMTVBMUUzNDkzREUx
QjZCNERDMDAeFw0yNTAyMDQxODQwMzlaFw0yNjAyMDMxODQ1MzlaMDMxMTAvBgNV
BAMTKDcwQjAwQzJGQkJBMDgwNTA5MzQ4ODFFNTVEQjEzMjAzQTgzMTIyQTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChsRIWQZp1anFyzhVF1YL1Wk4o
9Yt46PkiQC8EnQdJRB5E/jEzlD2qC9+PPmapO4N6q7vFe0TYpx4oL7q28FKS56l1
kCuOXr9YFx6u2skyFKHofTN8i0uGMS0KhwX3PZuytFb91N3GiqQbzu5xFOz7X3DL
7y/Y13Wp71Hv+GqZJw5vKK1sn2iDwQwPd98AYX7yi43fjG6WMSmFSanOsi+RXUm6
965hNv3QKmYLwZNYKDgC+PLuJhPJaG8r1kY90FT1IPsTkUqOnL7XeXXUGFegXc5p
sEi4K5K1veFdvaoNos1iotQs2xpy9QEZEt8XHN24EuDopH6KxPSzr85S/9JDAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUcLAML7uggFCTSIHlXbEyA6gxIqAwHwYDVR0j
BBgwFoAUXhIjzJ3NDh5ArOFaHjST3htrTcAwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9BNTg1QzVDQzdFNTk2QzA2RjdFNEY3RUY0NEFGRUIxMTE4
Mjc4NDdCMjM5QTUzRkI2NDc5RjQ0QUE2QkU0QzkyLzAvNUUxMjIzQ0M5RENEMEUx
RTQwQUNFMTVBMUUzNDkzREUxQjZCNERDMC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC81RTEyMjNDQzlEQ0QwRTFFNDBB
Q0UxNUExRTM0OTNERTFCNkI0REMwLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQTU4NUM1Q0M3RTU5NkMwNkY3RTRGN0VGNDRBRkVCMTExODI3ODQ3QjIz
OUE1M0ZCNjQ3OUY0NEFBNkJFNEM5Mi8wLzMxMzczMDJlMzgzMDJlMzkzNjJlMzAy
ZjMyMzIyZDMyMzQyMDNkM2UyMDMyMzYzNDM4MzIzOS5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAqpQYDAN
BgkqhkiG9w0BAQsFAAOCAQEA3LyCLMkhKCaWTFLXwFfQmytlFvyV1lelBZ08qKK6
3l9N/18mxpP8Dmx4oUo5E1oAq82O9jAyvYZKuERXhGavIq7diKrp119mAN/FLDId
NaG/6EsRweCKpFGmQU2XgvER3RFk3LUkPJywZeIGpviWQK3WsXE7BocBCd51JiIf
BRSl5KYYwr9pwP2p8bQy2HciuAOBNG5yqIhrcazXEUU/uTsZO18UbEMj8v3AqSDX
YYmiYlJPd9P+zRDIq4ZB7yDCYszJinO3qn0BYFfiofOOV6889LFpkbb6Tv2eYpQT
dXqDZzZpEfKhzoxJJBN1Zs2GQhc5YkBrf4rxQ36w5nTybQ==
-----END CERTIFICATE-----
Generated at Fri Apr 11 01:50:43 2025 by rpki-client