Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/3136352e39382e39302e302f32342d3234203d3e20323637373937.roa
File: 3136352e39382e39302e302f32342d3234203d3e20323637373937.roa (raw, json)
Hash identifier: Gg6i3sUfTlapad91AxO0B2Zyu99jvG+YrQthL2w6LUc=
Subject key identifier: A3:EE:2A:77:DA:94:A3:EA:18:7E:8B:9D:A4:1D:00:E0:CE:6F:6B:C4
Certificate issuer: /CN=1B3FB06809362D90ED82F4A360BDEE3FB303C03D
Certificate serial: 29E70481AC9D5BBF386AEE38B334E8B229096C62
Authority key identifier: 1B:3F:B0:68:09:36:2D:90:ED:82:F4:A3:60:BD:EE:3F:B3:03:C0:3D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/3136352e39382e39302e302f32342d3234203d3e20323637373937.roa
Signing time: Tue 18 Mar 2025 14:35:00 +0000
ROA not before: Tue 18 Mar 2025 14:30:00 +0000
ROA not after: Tue 17 Mar 2026 14:35:00 +0000
asID: 267797
IP address blocks: 165.98.90.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.crl
rsync://repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 20:14:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:e7:04:81:ac:9d:5b:bf:38:6a:ee:38:b3:34:e8:b2:29:09:6c:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1B3FB06809362D90ED82F4A360BDEE3FB303C03D
Validity
Not Before: Mar 18 14:30:00 2025 GMT
Not After : Mar 17 14:35:00 2026 GMT
Subject: CN=A3EE2A77DA94A3EA187E8B9DA41D00E0CE6F6BC4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e5:94:53:67:3e:4d:89:d5:3e:c7:4e:87:08:
f4:d2:6c:d0:c2:98:58:5e:c8:c3:20:0f:17:62:55:
19:52:c5:17:c9:5b:03:dc:30:de:0b:d3:bc:df:31:
f3:65:a4:ce:68:c9:b2:8b:58:49:8a:ec:28:80:b6:
65:4f:f7:56:d8:7e:e4:1e:ce:a1:6c:94:af:36:18:
91:29:17:3f:f0:a1:e7:cd:35:e0:d7:16:fe:48:0a:
bd:b2:ca:86:02:3a:af:63:25:ee:dd:30:07:66:2f:
68:7f:5e:3b:15:14:ce:b3:01:7e:fe:0c:65:91:50:
38:f5:70:66:2d:eb:64:ed:0a:a0:02:76:4b:3f:25:
26:c3:e2:3e:16:d7:5b:e3:5f:a9:8a:85:c5:c6:8c:
40:b4:0b:81:2f:02:bc:5b:4c:e7:86:e4:1e:1e:5a:
32:de:c3:c5:86:fc:8d:bf:c9:64:0d:c1:f1:95:4f:
88:eb:8d:eb:cf:76:94:b5:d4:ab:12:1f:54:a6:2d:
de:51:a9:78:bc:e0:f8:82:5f:2d:95:71:17:a2:9c:
ec:c3:10:3e:ad:22:be:a8:05:f6:4f:5e:a3:05:6e:
e3:ac:bc:3a:37:78:be:8f:70:b2:fe:bb:9b:13:c5:
83:ed:3f:c5:b4:2c:9c:93:46:94:51:64:c4:25:32:
c5:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:EE:2A:77:DA:94:A3:EA:18:7E:8B:9D:A4:1D:00:E0:CE:6F:6B:C4
X509v3 Authority Key Identifier:
keyid:1B:3F:B0:68:09:36:2D:90:ED:82:F4:A3:60:BD:EE:3F:B3:03:C0:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1B3FB06809362D90ED82F4A360BDEE3FB303C03D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A685CFE43360D3C05D1A1107E7DFA532C9B2F6825BF12BAA12235DD15842ACDF/0/3136352e39382e39302e302f32342d3234203d3e20323637373937.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
165.98.90.0/24
Signature Algorithm: sha256WithRSAEncryption
70:15:81:b8:fc:03:2e:10:c8:09:41:82:d8:cb:eb:c4:c8:ad:
4e:ee:d2:64:43:42:b7:0d:9c:cf:de:d4:35:b3:c5:24:6b:97:
53:68:7b:b3:de:36:37:9c:38:af:58:59:c1:97:ac:e6:fa:60:
73:30:ac:9d:0d:96:58:58:25:fb:80:64:42:af:51:72:49:99:
48:b4:df:a7:70:ed:f6:bc:9e:c6:0e:91:5c:c1:5b:16:7d:52:
77:30:ef:26:76:d1:f0:ef:38:fd:2b:2d:47:d4:52:49:77:52:
50:b7:47:6e:02:98:8a:c9:af:32:02:34:97:74:25:71:fb:3f:
45:e2:72:22:60:c8:4f:f4:6c:47:de:7b:37:88:23:56:21:da:
c9:68:bd:7d:86:0f:a7:d1:35:ce:cb:fd:29:17:fd:1f:ed:46:
dd:55:86:46:1e:a2:cd:3f:42:12:92:64:5f:df:09:5d:f0:69:
61:d8:e9:6c:e7:af:c4:09:5c:22:24:5b:fd:63:b1:e4:11:11:
be:f9:50:4b:74:15:1c:0d:44:43:e5:a4:7d:57:a6:ec:d2:77:
50:1b:73:7c:b1:07:6c:cc:cf:88:80:c4:09:9b:ba:dd:b4:e7:
7b:03:32:da:13:1d:59:e6:06:12:fa:df:c9:5c:7b:bf:35:f5:
ec:96:96:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 05:11:05 2025 by rpki-client