Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B0F1354040C254265E8FDBAF9058B916A59B65DFF29526359544047324D6D800/0/323830333a623332303a3a2f33322d3634203d3e20323636373332.roa
File: 323830333a623332303a3a2f33322d3634203d3e20323636373332.roa (raw, json)
Hash identifier: QsajMvOuusAh0Xhtafs471DF3GI0HZlkZzWcVkdWBtU=
Subject key identifier: 5B:EA:47:3B:44:DE:03:4E:44:56:02:E8:4D:D3:AD:03:FE:EF:2E:DE
Certificate issuer: /CN=60472E5148E5C206EF01AB80222C1224E4F330E1
Certificate serial: 4B374B965E199B56637FD32A7D64E986C68160F0
Authority key identifier: 60:47:2E:51:48:E5:C2:06:EF:01:AB:80:22:2C:12:24:E4:F3:30:E1
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/60472E5148E5C206EF01AB80222C1224E4F330E1.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B0F1354040C254265E8FDBAF9058B916A59B65DFF29526359544047324D6D800/0/323830333a623332303a3a2f33322d3634203d3e20323636373332.roa
Signing time: Tue 04 Feb 2025 20:05:33 +0000
ROA not before: Tue 04 Feb 2025 20:00:33 +0000
ROA not after: Tue 03 Feb 2026 20:05:33 +0000
asID: 266732
IP address blocks: 2803:b320::/32 maxlen: 64
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/B0F1354040C254265E8FDBAF9058B916A59B65DFF29526359544047324D6D800/0/60472E5148E5C206EF01AB80222C1224E4F330E1.crl
rsync://repository.lacnic.net/rpki/lacnic/B0F1354040C254265E8FDBAF9058B916A59B65DFF29526359544047324D6D800/0/60472E5148E5C206EF01AB80222C1224E4F330E1.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/60472E5148E5C206EF01AB80222C1224E4F330E1.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 21:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:37:4b:96:5e:19:9b:56:63:7f:d3:2a:7d:64:e9:86:c6:81:60:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60472E5148E5C206EF01AB80222C1224E4F330E1
Validity
Not Before: Feb 4 20:00:33 2025 GMT
Not After : Feb 3 20:05:33 2026 GMT
Subject: CN=5BEA473B44DE034E445602E84DD3AD03FEEF2EDE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9a:7e:76:6c:6f:3b:23:0b:b0:33:0d:6d:9d:
e9:38:f3:c1:d6:5c:b2:95:02:d1:0a:8d:66:e0:7e:
f0:25:6f:e0:40:9e:76:b0:2b:33:97:83:ec:3e:d4:
2f:53:fb:74:44:fc:ab:42:e1:08:91:17:95:bf:68:
7b:75:32:13:80:e8:2b:c1:a6:7b:4a:24:87:1d:68:
06:0c:24:57:eb:9a:00:52:da:14:d6:90:e0:87:67:
d1:43:7e:39:b9:53:bb:d2:88:f1:0a:a8:64:20:48:
54:df:b8:f9:0b:4b:5f:0e:6e:aa:57:16:ac:38:8d:
ff:76:d3:2e:13:3c:c1:a2:e3:de:97:42:ba:e5:12:
92:10:9c:a2:64:1e:c0:48:01:07:40:2d:c8:be:32:
c4:13:4d:d4:5e:79:ef:91:e0:3a:8b:53:ac:fc:3d:
7b:0e:6e:cd:e7:ea:87:5a:41:a1:9e:74:b0:c0:4a:
67:a5:69:93:37:d4:60:93:d8:4f:5e:d6:9e:0f:52:
4d:bc:5d:52:75:46:b7:70:cd:ea:5f:93:82:dd:d0:
ca:25:17:dc:b3:a1:0f:ab:be:34:4f:a6:84:ba:c8:
b4:3c:43:62:73:1e:a7:68:26:69:5d:b9:4a:cc:f5:
99:f1:1c:51:28:5d:45:3c:87:9c:45:b1:29:16:ba:
17:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:EA:47:3B:44:DE:03:4E:44:56:02:E8:4D:D3:AD:03:FE:EF:2E:DE
X509v3 Authority Key Identifier:
keyid:60:47:2E:51:48:E5:C2:06:EF:01:AB:80:22:2C:12:24:E4:F3:30:E1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/B0F1354040C254265E8FDBAF9058B916A59B65DFF29526359544047324D6D800/0/60472E5148E5C206EF01AB80222C1224E4F330E1.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/60472E5148E5C206EF01AB80222C1224E4F330E1.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B0F1354040C254265E8FDBAF9058B916A59B65DFF29526359544047324D6D800/0/323830333a623332303a3a2f33322d3634203d3e20323636373332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:b320::/32
Signature Algorithm: sha256WithRSAEncryption
9f:08:e9:02:33:b3:3c:ae:f7:ba:fa:a7:69:77:6d:d3:9e:4e:
f8:1d:41:7a:4f:14:30:fd:6e:6b:71:1d:de:b5:82:c7:b2:2f:
2c:06:b5:ce:c7:5c:79:28:27:49:70:6d:7c:f1:9e:1a:0e:c3:
86:d9:f6:fe:6e:2c:e9:8d:93:7f:c0:ce:1c:a2:fa:e9:d4:6a:
98:1c:b6:a8:5e:cb:ed:17:55:89:9d:8a:8f:55:e2:29:c2:0e:
ee:9a:75:f5:1f:f9:87:66:07:7f:b9:f1:9a:63:3f:91:b8:2f:
62:ed:f4:0e:b6:78:4f:24:b7:11:78:dd:9d:ac:f7:69:93:3d:
59:e1:4b:9d:e8:3e:df:ba:d0:c7:11:1d:5f:8c:cf:1d:e0:3b:
ac:0f:d7:20:45:3b:5f:2d:dc:ad:63:22:ad:38:c2:bd:18:fd:
d8:90:b8:6a:9a:4c:19:48:9e:13:06:51:b3:98:98:08:c1:89:
c0:97:35:d4:b5:27:9f:c7:e8:d3:b1:16:e1:d8:bf:52:92:a1:
d6:ba:cd:b2:c6:a9:2d:3e:4f:55:52:79:b2:21:12:2a:4a:53:
92:73:38:d8:64:d5:54:b2:fd:17:b6:2e:f0:1f:b6:30:d2:33:
bc:fa:fb:18:6e:52:84:a2:64:0a:83:83:1a:0e:07:1a:82:6b:
08:30:81:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 14:45:15 2025 by rpki-client