Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A63E44195B15618226F93AF42A2D6CB52A6E73BC1D027C964ECD92A0216FF6D7/0/3137302e3233382e3233392e302f32342d3234203d3e2033333536.roa
File: 3137302e3233382e3233392e302f32342d3234203d3e2033333536.roa (raw, json)
Hash identifier: gmrmSi2USP0BJX/1q0/A4yGRPsut87X1D6Mxte9ATFk=
Subject key identifier: 0E:D7:B4:3E:0C:E9:C3:7E:9B:2E:30:64:57:8D:4C:11:63:48:05:80
Certificate issuer: /CN=219FCBA9FFEA4717ABF6A9EF85B7C636D9D23BEA
Certificate serial: 2BE67A1376BA00079B0A2FB7112FF8D123DC77EE
Authority key identifier: 21:9F:CB:A9:FF:EA:47:17:AB:F6:A9:EF:85:B7:C6:36:D9:D2:3B:EA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/219FCBA9FFEA4717ABF6A9EF85B7C636D9D23BEA.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A63E44195B15618226F93AF42A2D6CB52A6E73BC1D027C964ECD92A0216FF6D7/0/3137302e3233382e3233392e302f32342d3234203d3e2033333536.roa
Signing time: Thu 20 Feb 2025 22:20:01 +0000
ROA not before: Thu 20 Feb 2025 22:15:01 +0000
ROA not after: Thu 19 Feb 2026 22:20:01 +0000
asID: 3356
IP address blocks: 170.238.239.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/A63E44195B15618226F93AF42A2D6CB52A6E73BC1D027C964ECD92A0216FF6D7/0/219FCBA9FFEA4717ABF6A9EF85B7C636D9D23BEA.crl
rsync://repository.lacnic.net/rpki/lacnic/A63E44195B15618226F93AF42A2D6CB52A6E73BC1D027C964ECD92A0216FF6D7/0/219FCBA9FFEA4717ABF6A9EF85B7C636D9D23BEA.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/219FCBA9FFEA4717ABF6A9EF85B7C636D9D23BEA.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:e6:7a:13:76:ba:00:07:9b:0a:2f:b7:11:2f:f8:d1:23:dc:77:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=219FCBA9FFEA4717ABF6A9EF85B7C636D9D23BEA
Validity
Not Before: Feb 20 22:15:01 2025 GMT
Not After : Feb 19 22:20:01 2026 GMT
Subject: CN=0ED7B43E0CE9C37E9B2E3064578D4C1163480580
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:9f:63:e8:31:07:3b:41:b2:c8:4a:c8:99:62:
5f:06:07:53:00:3d:b2:70:09:11:ef:c5:0c:0a:46:
8d:5f:a3:b1:e6:11:f5:14:be:74:2d:f7:4e:da:ff:
86:38:67:77:73:63:6c:08:aa:03:10:90:ab:72:42:
40:17:df:24:4f:60:dd:a8:7a:41:f2:df:17:78:70:
0d:b6:b0:71:25:bd:43:02:48:bb:68:18:23:3c:e1:
05:6e:d4:45:de:1b:a9:98:bb:f2:96:a7:2c:3e:2e:
ff:f6:c7:73:a8:80:6b:a3:a4:46:be:bd:58:bc:98:
89:ea:9b:39:3e:29:a7:ff:79:0a:0e:87:20:6c:56:
9d:7d:69:4c:37:30:49:63:11:3e:61:40:8d:3b:3c:
84:3a:55:ff:78:49:48:05:04:a0:74:7f:0a:27:b5:
0c:32:c2:cd:a7:f2:63:08:73:69:f1:ce:f8:da:d2:
15:5e:e6:42:94:ff:78:fa:e0:54:a7:05:6e:72:9b:
73:c3:0d:49:8c:7b:de:98:f3:e2:e1:53:8c:f6:3f:
29:6b:a9:04:09:0b:61:24:fb:bc:2a:6c:ef:ea:cc:
53:bf:ed:85:0b:a5:00:8e:6b:03:60:4d:e3:12:1d:
fc:6b:c1:1a:0c:cd:14:59:a8:25:e1:7a:41:30:e0:
a1:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:D7:B4:3E:0C:E9:C3:7E:9B:2E:30:64:57:8D:4C:11:63:48:05:80
X509v3 Authority Key Identifier:
keyid:21:9F:CB:A9:FF:EA:47:17:AB:F6:A9:EF:85:B7:C6:36:D9:D2:3B:EA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A63E44195B15618226F93AF42A2D6CB52A6E73BC1D027C964ECD92A0216FF6D7/0/219FCBA9FFEA4717ABF6A9EF85B7C636D9D23BEA.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/219FCBA9FFEA4717ABF6A9EF85B7C636D9D23BEA.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A63E44195B15618226F93AF42A2D6CB52A6E73BC1D027C964ECD92A0216FF6D7/0/3137302e3233382e3233392e302f32342d3234203d3e2033333536.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.238.239.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:2c:05:3d:29:df:ce:aa:74:db:f4:37:6a:29:13:8e:62:ba:
cf:eb:a4:6c:63:0d:fe:a6:55:5d:c6:61:a4:b8:f3:c9:61:6c:
71:81:34:d4:4a:92:86:de:30:10:1c:80:49:33:ee:2e:6f:79:
22:c4:75:de:56:2d:8a:77:63:7f:71:4f:5a:4c:a6:5d:63:07:
97:6d:15:c1:5e:44:10:27:b5:be:a0:f6:e9:84:d2:1c:14:99:
42:ca:a0:fa:50:8c:4d:9e:c1:10:24:a9:01:ef:41:3a:9e:35:
df:b4:12:1c:ae:57:74:f4:1c:57:15:84:7e:d6:db:99:27:26:
9b:6b:a9:2f:f9:3e:c1:ef:c5:31:3c:19:20:ca:76:f7:7f:a0:
cc:f4:6c:e5:8e:03:17:cb:66:39:5a:8a:77:e3:c6:9a:f1:76:
48:e4:09:fc:2b:94:53:af:b6:4c:fc:53:f7:97:68:e3:a5:c5:
ff:93:af:7a:12:2b:0e:9d:be:d5:71:8f:4d:e8:26:c5:f6:9c:
7b:dd:7a:72:2a:11:ce:24:e4:a1:dc:14:66:66:6c:43:65:f0:
cd:4d:5b:22:b0:09:f8:d0:96:4b:a6:c8:4f:3b:ce:39:fc:cf:
47:ae:6e:5a:6a:8f:81:35:37:35:f2:f0:c3:45:5c:78:21:89:
d9:04:ea:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 10:55:16 2025 by rpki-client