Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A77F139A6B465FB69147DCC2A212FB3DF9BFD83B441E8770AD919B555E7EFE49/0/323830333a643036303a3a2f33322d3438203d3e203238303037.roa
File: 323830333a643036303a3a2f33322d3438203d3e203238303037.roa (raw, json)
Hash identifier: bQaaAlM5vkc5jgVYpR6KMsH2p3IR2i8hq308eNWil5c=
Subject key identifier: AE:44:36:1B:95:A2:7B:48:F7:5E:81:89:D2:F1:12:22:17:9B:C3:73
Certificate issuer: /CN=4D9026847D6FE56DC1DEEB9668FE178CF317D9F8
Certificate serial: 02ABFD4D6B7362A0D43936C04FCA872216BA2FF0
Authority key identifier: 4D:90:26:84:7D:6F:E5:6D:C1:DE:EB:96:68:FE:17:8C:F3:17:D9:F8
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4D9026847D6FE56DC1DEEB9668FE178CF317D9F8.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A77F139A6B465FB69147DCC2A212FB3DF9BFD83B441E8770AD919B555E7EFE49/0/323830333a643036303a3a2f33322d3438203d3e203238303037.roa
Signing time: Tue 04 Feb 2025 18:43:31 +0000
ROA not before: Tue 04 Feb 2025 18:38:31 +0000
ROA not after: Tue 03 Feb 2026 18:43:31 +0000
asID: 28007
IP address blocks: 2803:d060::/32 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/A77F139A6B465FB69147DCC2A212FB3DF9BFD83B441E8770AD919B555E7EFE49/0/4D9026847D6FE56DC1DEEB9668FE178CF317D9F8.crl
rsync://repository.lacnic.net/rpki/lacnic/A77F139A6B465FB69147DCC2A212FB3DF9BFD83B441E8770AD919B555E7EFE49/0/4D9026847D6FE56DC1DEEB9668FE178CF317D9F8.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4D9026847D6FE56DC1DEEB9668FE178CF317D9F8.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 12:09:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:ab:fd:4d:6b:73:62:a0:d4:39:36:c0:4f:ca:87:22:16:ba:2f:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4D9026847D6FE56DC1DEEB9668FE178CF317D9F8
Validity
Not Before: Feb 4 18:38:31 2025 GMT
Not After : Feb 3 18:43:31 2026 GMT
Subject: CN=AE44361B95A27B48F75E8189D2F11222179BC373
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4b:56:74:72:75:04:ca:56:a7:d4:a2:38:f3:
76:08:4e:ba:dc:af:91:bf:24:1f:17:2a:0f:d2:bd:
1d:b4:c8:52:40:58:67:b9:1c:14:53:ef:ec:a4:07:
63:a0:a0:78:d6:89:ab:04:01:8e:c5:6b:96:3f:3c:
c8:6c:69:ef:86:84:11:2d:41:25:c9:fa:da:84:37:
c1:0e:cb:73:e4:85:71:6b:72:b0:93:fc:c0:36:50:
9d:57:52:c4:b9:5e:0d:0a:97:7f:45:ed:da:dc:81:
24:17:b3:b8:e1:ad:4b:49:5c:aa:4c:3b:2a:7a:06:
72:bb:d6:12:63:53:30:a9:81:f3:62:75:64:bd:4b:
18:35:79:d4:bf:0e:6d:93:ca:d1:a3:1a:21:2f:b5:
77:2f:5b:f1:10:bb:77:00:ba:72:d0:7c:76:20:4c:
eb:27:4a:51:3e:9e:46:e7:fb:98:e7:9f:79:a3:fd:
04:75:a0:c2:6d:78:07:74:72:16:05:80:b6:9f:f2:
0b:03:f2:38:d5:51:f2:d3:75:3c:cf:99:73:6e:28:
fb:71:09:d8:64:91:9c:3f:e3:47:b8:dc:10:0e:f1:
5a:8e:d4:9c:a9:99:4f:9e:b8:af:83:53:58:8f:1a:
3a:04:a5:70:85:32:ad:4b:63:34:03:60:72:02:4e:
c8:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:44:36:1B:95:A2:7B:48:F7:5E:81:89:D2:F1:12:22:17:9B:C3:73
X509v3 Authority Key Identifier:
keyid:4D:90:26:84:7D:6F:E5:6D:C1:DE:EB:96:68:FE:17:8C:F3:17:D9:F8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A77F139A6B465FB69147DCC2A212FB3DF9BFD83B441E8770AD919B555E7EFE49/0/4D9026847D6FE56DC1DEEB9668FE178CF317D9F8.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4D9026847D6FE56DC1DEEB9668FE178CF317D9F8.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A77F139A6B465FB69147DCC2A212FB3DF9BFD83B441E8770AD919B555E7EFE49/0/323830333a643036303a3a2f33322d3438203d3e203238303037.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:d060::/32
Signature Algorithm: sha256WithRSAEncryption
9f:76:4b:0d:7d:65:b2:09:20:4f:a5:dc:f3:c3:a9:c2:61:1e:
f7:ef:ca:9b:b1:f8:e2:02:c3:36:39:d5:20:df:85:cf:39:ca:
af:47:fc:fa:55:76:4a:75:dc:24:81:0e:b1:55:8c:b4:b9:30:
40:46:76:d3:a3:0d:83:39:74:b3:10:af:04:c8:10:0d:c2:01:
16:1b:4d:7d:06:cd:bf:b2:42:dd:25:26:9b:3a:9f:bb:4c:d0:
69:77:f7:dc:45:a3:a6:5f:a9:f6:89:85:02:97:b5:64:e6:a2:
37:d0:3f:49:52:e8:e1:ef:a3:ab:ef:04:3c:e1:c5:77:ce:94:
7c:7f:79:8a:84:dd:7c:ea:8b:18:b1:12:61:fa:36:09:3b:8e:
d1:e6:78:89:45:c2:ce:eb:67:c6:fa:bb:c2:c0:ea:de:96:7d:
75:3c:cd:f9:05:5c:86:3c:73:70:48:4a:5b:44:1d:8c:ef:4e:
78:ac:6c:d8:9b:79:f5:5f:85:d0:59:d3:8d:99:29:bb:ad:6d:
a0:ca:63:39:07:17:d3:ee:17:d6:f0:e8:1a:8e:95:19:e7:90:
0a:a6:58:e9:5e:e0:b0:2e:d6:b4:be:4b:fd:38:95:3f:af:af:
1b:bf:38:e1:71:e9:c7:bc:d7:05:40:78:b2:17:a1:8a:6d:f6:
38:b7:6c:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 04:46:19 2025 by rpki-client