Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AA65778EA2BA3F645381CFB03A90993513067039B2404F9272E8401B13C62151/0/3230302e31302e3230392e302f32342d3234203d3e20313938393439.roa
File: 3230302e31302e3230392e302f32342d3234203d3e20313938393439.roa (raw, json)
Hash identifier: S83DYHVEOh8Bo9tGtCXTyGofGbB8QttycDqZqBaqXKI=
Subject key identifier: AA:3B:D6:61:C4:CD:3D:85:76:32:05:34:20:F6:8E:F6:F5:C2:CA:00
Certificate issuer: /CN=63DAFE7C6D072AD758B2EAA7C654C528C8DD256B
Certificate serial: 0B77CC8CE0603FCA132F96F093583925DF9DDBF6
Authority key identifier: 63:DA:FE:7C:6D:07:2A:D7:58:B2:EA:A7:C6:54:C5:28:C8:DD:25:6B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/63DAFE7C6D072AD758B2EAA7C654C528C8DD256B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/AA65778EA2BA3F645381CFB03A90993513067039B2404F9272E8401B13C62151/0/3230302e31302e3230392e302f32342d3234203d3e20313938393439.roa
Signing time: Tue 04 Feb 2025 18:53:50 +0000
ROA not before: Tue 04 Feb 2025 18:48:50 +0000
ROA not after: Tue 03 Feb 2026 18:53:50 +0000
asID: 198949
IP address blocks: 200.10.209.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/AA65778EA2BA3F645381CFB03A90993513067039B2404F9272E8401B13C62151/0/63DAFE7C6D072AD758B2EAA7C654C528C8DD256B.crl
rsync://repository.lacnic.net/rpki/lacnic/AA65778EA2BA3F645381CFB03A90993513067039B2404F9272E8401B13C62151/0/63DAFE7C6D072AD758B2EAA7C654C528C8DD256B.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/63DAFE7C6D072AD758B2EAA7C654C528C8DD256B.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:77:cc:8c:e0:60:3f:ca:13:2f:96:f0:93:58:39:25:df:9d:db:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63DAFE7C6D072AD758B2EAA7C654C528C8DD256B
Validity
Not Before: Feb 4 18:48:50 2025 GMT
Not After : Feb 3 18:53:50 2026 GMT
Subject: CN=AA3BD661C4CD3D857632053420F68EF6F5C2CA00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b1:68:e0:a7:9c:f9:d3:21:33:93:47:05:3c:
b4:19:5b:87:03:8b:c5:95:63:37:df:41:9a:4c:3d:
48:0d:b6:bc:28:ca:51:cb:00:31:e0:61:40:2d:4f:
80:59:b4:41:00:57:4d:27:3c:aa:a7:2a:78:16:ce:
53:29:c9:d9:48:ab:1d:6a:77:5e:6b:b2:e1:2a:d6:
ef:83:00:9a:f9:d4:4a:62:08:7c:d1:3c:41:8c:74:
32:9f:fb:97:b6:17:14:9f:9c:4c:53:0a:fd:ac:0d:
17:f0:b7:c3:61:3e:97:9d:03:1c:e4:45:19:5c:4e:
8f:56:ee:4d:bf:a5:2b:f5:19:79:e5:56:a1:ec:3e:
13:00:f3:d3:99:d4:8d:da:56:22:11:5f:42:3b:14:
54:9a:9c:3b:00:8c:70:13:fe:64:a3:90:b0:a7:59:
6a:9f:d0:af:30:f6:66:77:be:9d:6e:87:cf:6a:bc:
fd:38:6f:f6:60:3c:c8:93:ff:a5:b2:1c:ff:17:92:
ca:91:67:1b:fa:e4:15:da:ff:2b:ba:00:8d:4e:7a:
2d:8d:07:dd:d4:1d:15:81:19:a9:9a:08:bb:8c:25:
2c:4e:00:06:5c:ad:97:e7:57:6e:f2:5b:de:57:a9:
ec:95:1e:0e:a9:17:5e:c2:e6:4a:85:83:32:f5:f7:
ec:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:3B:D6:61:C4:CD:3D:85:76:32:05:34:20:F6:8E:F6:F5:C2:CA:00
X509v3 Authority Key Identifier:
keyid:63:DA:FE:7C:6D:07:2A:D7:58:B2:EA:A7:C6:54:C5:28:C8:DD:25:6B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/AA65778EA2BA3F645381CFB03A90993513067039B2404F9272E8401B13C62151/0/63DAFE7C6D072AD758B2EAA7C654C528C8DD256B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/63DAFE7C6D072AD758B2EAA7C654C528C8DD256B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AA65778EA2BA3F645381CFB03A90993513067039B2404F9272E8401B13C62151/0/3230302e31302e3230392e302f32342d3234203d3e20313938393439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.10.209.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:a9:18:0e:81:31:28:a3:be:dd:9e:30:23:fd:41:7a:c2:53:
34:42:44:58:c0:f6:98:98:47:2e:93:22:c0:b3:a8:b3:0c:74:
41:55:42:be:d3:cf:ac:6b:aa:7a:95:d0:68:87:d7:1e:c9:79:
59:20:3f:f0:8b:01:8c:7d:59:37:20:f5:58:d0:1d:90:a1:60:
05:f9:70:30:cb:5d:7d:ee:a9:2d:a7:67:87:a3:6b:89:81:37:
11:2e:2a:0e:af:73:8f:0b:d2:5b:6a:ed:a6:b9:35:f6:f4:62:
3d:a4:37:03:bf:41:79:dc:d6:66:42:74:30:c0:ea:4a:42:44:
e3:1f:cd:fc:95:b9:c6:2c:ab:93:6d:4b:f6:75:dd:e8:a4:dc:
6b:03:b6:f8:28:f8:11:40:9a:d2:1b:f7:a1:09:34:76:8e:73:
43:f6:ef:99:d5:21:e5:2f:8f:24:90:95:7d:d1:02:af:80:03:
a4:45:3a:2b:ad:24:1a:c6:9e:e7:55:0e:59:6a:a0:83:e7:4f:
55:79:64:f1:32:7e:91:bb:a8:f7:c0:d1:3b:0b:94:7c:5b:5d:
7e:74:77:d6:91:1d:a9:d2:c0:30:87:fe:e2:c3:13:00:0e:3c:
08:7c:ad:05:5a:7d:06:0f:19:8d:86:49:b2:d8:4c:bf:8f:74:
d6:7c:47:3f
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUC3fMjOBgP8oTL5bwk1g5Jd+d2/YwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjNEQUZFN0M2RDA3MkFENzU4QjJFQUE3QzY1NEM1MjhD
OEREMjU2QjAeFw0yNTAyMDQxODQ4NTBaFw0yNjAyMDMxODUzNTBaMDMxMTAvBgNV
BAMTKEFBM0JENjYxQzRDRDNEODU3NjMyMDUzNDIwRjY4RUY2RjVDMkNBMDAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3sWjgp5z50yEzk0cFPLQZW4cD
i8WVYzffQZpMPUgNtrwoylHLADHgYUAtT4BZtEEAV00nPKqnKngWzlMpydlIqx1q
d15rsuEq1u+DAJr51EpiCHzRPEGMdDKf+5e2FxSfnExTCv2sDRfwt8NhPpedAxzk
RRlcTo9W7k2/pSv1GXnlVqHsPhMA89OZ1I3aViIRX0I7FFSanDsAjHAT/mSjkLCn
WWqf0K8w9mZ3vp1uh89qvP04b/ZgPMiT/6WyHP8XksqRZxv65BXa/yu6AI1Oei2N
B93UHRWBGamaCLuMJSxOAAZcrZfnV27yW95XqeyVHg6pF17C5kqFgzL19+yLAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUqjvWYcTNPYV2MgU0IPaO9vXCygAwHwYDVR0j
BBgwFoAUY9r+fG0HKtdYsuqnxlTFKMjdJWswDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9BQTY1Nzc4RUEyQkEzRjY0NTM4MUNGQjAzQTkwOTkzNTEz
MDY3MDM5QjI0MDRGOTI3MkU4NDAxQjEzQzYyMTUxLzAvNjNEQUZFN0M2RDA3MkFE
NzU4QjJFQUE3QzY1NEM1MjhDOEREMjU2Qi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC82M0RBRkU3QzZEMDcyQUQ3NThC
MkVBQTdDNjU0QzUyOEM4REQyNTZCLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQUE2NTc3OEVBMkJBM0Y2NDUzODFDRkIwM0E5MDk5MzUxMzA2NzAzOUIy
NDA0RjkyNzJFODQwMUIxM0M2MjE1MS8wLzMyMzAzMDJlMzEzMDJlMzIzMDM5MmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzEzOTM4MzkzNDM5LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyArR
MA0GCSqGSIb3DQEBCwUAA4IBAQDCqRgOgTEoo77dnjAj/UF6wlM0QkRYwPaYmEcu
kyLAs6izDHRBVUK+08+sa6p6ldBoh9ceyXlZID/wiwGMfVk3IPVY0B2QoWAF+XAw
y1197qktp2eHo2uJgTcRLioOr3OPC9Jbau2muTX29GI9pDcDv0F53NZmQnQwwOpK
QkTjH838lbnGLKuTbUv2dd3opNxrA7b4KPgRQJrSG/ehCTR2jnND9u+Z1SHlL48k
kJV90QKvgAOkRTorrSQaxp7nVQ5ZaqCD509VeWTxMn6Ru6j3wNE7C5R8W11+dHfW
kR2p0sAwh/7iwxMADjwIfK0FWn0GDxmNhkmy2Ey/j3TWfEc/
-----END CERTIFICATE-----
Generated at Mon Apr 14 22:35:26 2025 by rpki-client