Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/3136352e39382e382e302f32342d3234203d3e20323637373937.roa
File: 3136352e39382e382e302f32342d3234203d3e20323637373937.roa (raw, json)
Hash identifier: HKqnL4ysDZU7vnb778QdtO95gthUFEf+XpnZOJHR4ZI=
Subject key identifier: BA:7C:15:DC:1D:05:0B:BA:7A:E1:A1:0B:57:54:1F:19:E7:2D:9F:4D
Certificate issuer: /CN=1B3FB06809362D90ED82F4A360BDEE3FB303C03D
Certificate serial: 15553398CB2851810ADB3700007C1EE1CC925D1F
Authority key identifier: 1B:3F:B0:68:09:36:2D:90:ED:82:F4:A3:60:BD:EE:3F:B3:03:C0:3D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/3136352e39382e382e302f32342d3234203d3e20323637373937.roa
Signing time: Fri 14 Mar 2025 02:10:00 +0000
ROA not before: Fri 14 Mar 2025 02:05:00 +0000
ROA not after: Fri 13 Mar 2026 02:10:00 +0000
asID: 267797
IP address blocks: 165.98.8.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.crl
rsync://repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 20:14:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:55:33:98:cb:28:51:81:0a:db:37:00:00:7c:1e:e1:cc:92:5d:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1B3FB06809362D90ED82F4A360BDEE3FB303C03D
Validity
Not Before: Mar 14 02:05:00 2025 GMT
Not After : Mar 13 02:10:00 2026 GMT
Subject: CN=BA7C15DC1D050BBA7AE1A10B57541F19E72D9F4D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:2c:b1:5b:13:bd:a4:a9:d8:af:39:98:1b:4c:
a7:3d:68:14:fa:77:89:87:b8:1a:62:14:ab:2d:9e:
eb:6a:ac:f4:5b:19:9e:53:ca:5a:9b:4d:22:30:f6:
af:27:1e:c7:89:99:58:a9:ff:88:20:78:7a:27:86:
46:51:01:b0:7b:53:8e:b8:e6:02:7f:e0:68:9d:81:
3d:a2:d1:08:2e:95:c7:30:76:de:76:e6:10:ef:60:
4a:30:59:97:ab:ce:a4:44:ac:58:8f:12:6f:0b:21:
25:95:c6:31:c8:17:fe:d9:c0:fd:cc:05:e4:7b:1b:
40:83:42:77:cf:f1:ed:6b:7f:4c:b3:61:86:5f:87:
0e:41:e0:c9:93:72:cd:83:8b:00:ff:7e:10:f2:1b:
e5:23:46:2c:8e:9a:b7:4d:2f:84:37:52:2e:f1:0c:
4c:49:20:a0:15:0b:20:eb:ef:e5:6b:66:fa:e0:60:
96:80:c7:52:69:f3:86:49:b2:71:2b:f3:cb:02:eb:
eb:c1:8f:b6:90:2c:c5:4a:9f:c0:52:a9:4e:d8:12:
5f:87:1b:01:d0:3c:3a:38:2a:c9:12:22:4c:7a:07:
81:13:32:dc:ad:37:d0:10:dc:1b:45:a2:3d:1e:3d:
fb:e8:78:c5:83:71:25:a9:0b:00:2c:a0:35:10:ea:
e6:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:7C:15:DC:1D:05:0B:BA:7A:E1:A1:0B:57:54:1F:19:E7:2D:9F:4D
X509v3 Authority Key Identifier:
keyid:1B:3F:B0:68:09:36:2D:90:ED:82:F4:A3:60:BD:EE:3F:B3:03:C0:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/3136352e39382e382e302f32342d3234203d3e20323637373937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
165.98.8.0/24
Signature Algorithm: sha256WithRSAEncryption
71:63:12:c7:1c:b6:9b:2a:76:d4:59:e7:14:15:6a:b6:ae:30:
32:cd:f0:be:d1:55:09:5a:83:8d:76:fd:b7:51:34:ff:66:0f:
29:12:10:c7:1d:e4:ce:b3:27:d3:38:e2:7f:9f:19:8b:a5:ad:
cb:b0:21:d7:4e:27:36:30:9e:b4:64:f8:2c:84:aa:6f:b3:2a:
53:21:a7:fe:c0:0b:d9:13:61:f8:9c:9e:79:5b:32:79:d1:bb:
59:0a:61:4d:a9:f0:14:87:f0:04:b7:33:4a:2f:ed:29:dc:bd:
19:47:ab:81:98:cc:58:b5:05:af:7d:5b:55:15:65:03:df:ca:
44:07:ae:c3:29:14:2e:2f:9b:bd:cc:13:52:1d:40:d9:60:c2:
4d:88:a0:f1:86:52:a3:00:28:7f:17:9e:b6:75:e2:ae:0a:ad:
d4:aa:57:94:8d:01:bc:c9:64:00:5c:34:f4:97:86:38:1d:d4:
e5:cf:e4:fb:78:8f:76:97:2f:2a:4c:1d:a8:4f:c6:4d:89:0a:
83:c9:1d:2d:80:f8:41:bf:f3:9f:c5:15:ae:6b:9a:4e:06:fc:
ce:c2:99:27:f5:9d:d1:11:5a:9c:fd:f6:c3:75:36:23:a6:1d:
22:fa:11:e3:c9:d1:35:a0:97:45:ac:b5:21:58:6c:73:f0:bd:
43:a4:6f:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 07:13:55 2025 by rpki-client