Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/3136352e39382e3234372e302f32342d3234203d3e203235363037.roa
File: 3136352e39382e3234372e302f32342d3234203d3e203235363037.roa (raw, json)
Hash identifier: BwYicB8mno3jPU8CZeha9NsyMu6yFcVgSm7d3O5FgeU=
Subject key identifier: B8:E2:97:98:5E:22:FE:24:CF:A1:D5:B0:D9:5E:2B:80:EC:1F:C2:8E
Certificate issuer: /CN=1B3FB06809362D90ED82F4A360BDEE3FB303C03D
Certificate serial: 73B92A8335567D4516612DFEBB644C43C0D7297E
Authority key identifier: 1B:3F:B0:68:09:36:2D:90:ED:82:F4:A3:60:BD:EE:3F:B3:03:C0:3D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/3136352e39382e3234372e302f32342d3234203d3e203235363037.roa
Signing time: Mon 24 Mar 2025 20:45:00 +0000
ROA not before: Mon 24 Mar 2025 20:40:00 +0000
ROA not after: Mon 23 Mar 2026 20:45:00 +0000
asID: 25607
IP address blocks: 165.98.247.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.crl
rsync://repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 20:14:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
73:b9:2a:83:35:56:7d:45:16:61:2d:fe:bb:64:4c:43:c0:d7:29:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1B3FB06809362D90ED82F4A360BDEE3FB303C03D
Validity
Not Before: Mar 24 20:40:00 2025 GMT
Not After : Mar 23 20:45:00 2026 GMT
Subject: CN=B8E297985E22FE24CFA1D5B0D95E2B80EC1FC28E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ae:b4:ef:54:0a:3c:c8:90:f5:5c:03:4f:f4:
e9:66:a6:da:e3:a6:44:9d:b2:30:31:cb:ad:00:16:
5d:de:d8:fc:df:9f:cd:b9:98:dc:94:eb:ed:35:16:
68:c3:c1:f4:2f:68:97:c7:cd:be:ef:a0:27:fc:5d:
63:dc:70:6d:a4:cc:5c:81:81:b2:ea:21:da:82:a0:
e0:f8:9a:11:e9:54:18:90:f3:49:6a:86:ce:85:ed:
85:dd:a6:20:b2:25:93:2b:85:3d:63:e7:d2:ef:82:
db:29:a7:01:59:f7:e4:25:3c:63:a3:cd:15:1e:84:
e6:8f:02:4d:54:28:97:a9:95:0a:59:e3:e3:df:de:
52:68:10:1b:b0:91:ae:70:42:35:01:e2:87:3a:31:
02:e8:53:37:71:a7:74:68:f2:8b:35:6e:c4:91:b0:
42:84:55:38:41:e4:b6:55:3b:1c:c2:8c:57:f5:51:
3b:f1:57:5f:fc:d8:ec:b7:4c:9b:f1:76:90:9d:9c:
4b:87:72:14:60:ca:98:59:99:de:10:6e:c0:a6:6a:
96:45:ea:ba:65:36:14:50:ad:1d:8e:1e:44:67:87:
f2:df:a2:41:bb:94:13:2e:a9:0b:e7:d0:dd:f4:77:
50:b3:0b:25:c8:00:cb:d9:9c:93:67:88:d3:c1:88:
22:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E2:97:98:5E:22:FE:24:CF:A1:D5:B0:D9:5E:2B:80:EC:1F:C2:8E
X509v3 Authority Key Identifier:
keyid:1B:3F:B0:68:09:36:2D:90:ED:82:F4:A3:60:BD:EE:3F:B3:03:C0:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/3136352e39382e3234372e302f32342d3234203d3e203235363037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
165.98.247.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:9c:71:32:c7:1f:a5:a3:ab:4f:8c:df:19:5a:3d:b5:b4:17:
70:eb:c9:15:b0:87:cf:14:0f:3e:e8:c7:9a:7a:2a:03:39:26:
90:ea:bb:d1:f2:63:5f:c3:39:4a:a9:0e:64:f9:0b:e8:3f:85:
6d:f2:d0:c1:46:ed:52:40:8f:66:52:e6:a5:45:6a:06:a1:a8:
c9:f9:a2:fa:48:d7:75:a1:73:93:c9:76:ba:a1:56:ac:a4:02:
be:02:6c:62:1f:50:8d:fe:89:20:75:1d:b7:4d:17:46:80:b7:
0d:a2:ec:c8:cc:93:0a:a5:db:6c:77:7d:97:13:3a:e6:a5:ee:
6b:b9:ff:84:53:b5:b2:81:fb:f6:7b:af:38:6f:67:d5:a3:85:
f6:a1:57:34:9f:b0:71:93:98:16:4c:10:7e:83:9e:08:6a:93:
46:fe:6a:85:c9:19:a4:37:11:84:99:01:ef:5d:f7:9a:3b:0c:
05:32:4c:c6:4b:85:53:09:bf:a8:26:f3:ee:82:af:08:a0:cf:
6b:26:ac:b6:e6:de:f2:2a:d6:5e:15:0d:a1:17:1d:8c:a8:1c:
50:2f:5b:c0:0a:16:7d:34:90:0a:1e:02:e5:84:9e:e5:fc:d7:
e5:41:39:7b:ae:e5:e4:87:cd:cc:c1:f9:fb:99:19:64:0e:1d:
9a:86:63:4f
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUc7kqgzVWfUUWYS3+u2RMQ8DXKX4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMUIzRkIwNjgwOTM2MkQ5MEVEODJGNEEzNjBCREVFM0ZC
MzAzQzAzRDAeFw0yNTAzMjQyMDQwMDBaFw0yNjAzMjMyMDQ1MDBaMDMxMTAvBgNV
BAMTKEI4RTI5Nzk4NUUyMkZFMjRDRkExRDVCMEQ5NUUyQjgwRUMxRkMyOEUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDkrrTvVAo8yJD1XANP9Olmptrj
pkSdsjAxy60AFl3e2Pzfn825mNyU6+01FmjDwfQvaJfHzb7voCf8XWPccG2kzFyB
gbLqIdqCoOD4mhHpVBiQ80lqhs6F7YXdpiCyJZMrhT1j59LvgtsppwFZ9+QlPGOj
zRUehOaPAk1UKJeplQpZ4+Pf3lJoEBuwka5wQjUB4oc6MQLoUzdxp3Ro8os1bsSR
sEKEVThB5LZVOxzCjFf1UTvxV1/82Oy3TJvxdpCdnEuHchRgyphZmd4QbsCmapZF
6rplNhRQrR2OHkRnh/LfokG7lBMuqQvn0N30d1CzCyXIAMvZnJNniNPBiCJzAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUuOKXmF4i/iTPodWw2V4rgOwfwo4wHwYDVR0j
BBgwFoAUGz+waAk2LZDtgvSjYL3uP7MDwD0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9BNjg1Q0ZFNDMzNjBEM0MwNUQxQTExMDdFN0RGQTUzMkM5
QjJGNjgyNUJGMTJCQUExMjIzNUREMTU4NDJBQ0RGLzAvMUIzRkIwNjgwOTM2MkQ5
MEVEODJGNEEzNjBCREVFM0ZCMzAzQzAzRC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8xQjNGQjA2ODA5MzYyRDkwRUQ4
MkY0QTM2MEJERUUzRkIzMDNDMDNELmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQTY4NUNGRTQzMzYwRDNDMDVEMUExMTA3RTdERkE1MzJDOUIyRjY4MjVC
RjEyQkFBMTIyMzVERDE1ODQyQUNERi8wLzMxMzYzNTJlMzkzODJlMzIzNDM3MmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNTM2MzAzNy5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKVi9zAN
BgkqhkiG9w0BAQsFAAOCAQEAt5xxMscfpaOrT4zfGVo9tbQXcOvJFbCHzxQPPujH
mnoqAzkmkOq70fJjX8M5SqkOZPkL6D+FbfLQwUbtUkCPZlLmpUVqBqGoyfmi+kjX
daFzk8l2uqFWrKQCvgJsYh9Qjf6JIHUdt00XRoC3DaLsyMyTCqXbbHd9lxM65qXu
a7n/hFO1soH79nuvOG9n1aOF9qFXNJ+wcZOYFkwQfoOeCGqTRv5qhckZpDcRhJkB
7133mjsMBTJMxkuFUwm/qCbz7oKvCKDPayastube8irWXhUNoRcdjKgcUC9bwAoW
fTSQCh4C5YSe5fzX5UE5e67l5IfNzMH5+5kZZA4dmoZjTw==
-----END CERTIFICATE-----
Generated at Mon Apr 14 03:53:45 2025 by rpki-client