Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B5DC9768EA0AACF46DC911E81D0D9D049927D24AACAF0685CB367D54CEE2BD95/0/323830333a383238303a3a2f33322d3332203d3e20323634383434.roa
File: 323830333a383238303a3a2f33322d3332203d3e20323634383434.roa (raw, json)
Hash identifier: l4Jx734awB6q++zt4yuuQs6QtfSrV51cP9wPz5GLhCQ=
Subject key identifier: 78:EE:F7:F5:81:84:20:45:78:65:4E:19:9C:61:EB:F1:45:9A:68:81
Certificate issuer: /CN=CEFF58507AF1A06AEFDA67DD8D65125C364A4DEC
Certificate serial: 435720764C9C26B67E1960C406FE30B41D8735EC
Authority key identifier: CE:FF:58:50:7A:F1:A0:6A:EF:DA:67:DD:8D:65:12:5C:36:4A:4D:EC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CEFF58507AF1A06AEFDA67DD8D65125C364A4DEC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B5DC9768EA0AACF46DC911E81D0D9D049927D24AACAF0685CB367D54CEE2BD95/0/323830333a383238303a3a2f33322d3332203d3e20323634383434.roa
Signing time: Tue 04 Feb 2025 20:08:51 +0000
ROA not before: Tue 04 Feb 2025 20:03:51 +0000
ROA not after: Tue 03 Feb 2026 20:08:51 +0000
asID: 264844
IP address blocks: 2803:8280::/32 maxlen: 32
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/B5DC9768EA0AACF46DC911E81D0D9D049927D24AACAF0685CB367D54CEE2BD95/0/CEFF58507AF1A06AEFDA67DD8D65125C364A4DEC.crl
rsync://repository.lacnic.net/rpki/lacnic/B5DC9768EA0AACF46DC911E81D0D9D049927D24AACAF0685CB367D54CEE2BD95/0/CEFF58507AF1A06AEFDA67DD8D65125C364A4DEC.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CEFF58507AF1A06AEFDA67DD8D65125C364A4DEC.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 00:36:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:57:20:76:4c:9c:26:b6:7e:19:60:c4:06:fe:30:b4:1d:87:35:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CEFF58507AF1A06AEFDA67DD8D65125C364A4DEC
Validity
Not Before: Feb 4 20:03:51 2025 GMT
Not After : Feb 3 20:08:51 2026 GMT
Subject: CN=78EEF7F58184204578654E199C61EBF1459A6881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:24:e9:0f:e8:37:4e:5b:20:a7:8b:63:9b:4c:
b0:2e:6a:e6:b7:80:27:80:79:21:70:d4:a7:00:af:
0e:ab:f2:b7:15:ba:8e:8d:43:c6:a8:27:0b:92:f5:
be:5a:c9:ef:6d:3f:b5:88:dd:a6:75:6c:b4:12:c9:
f8:8d:9a:19:29:24:94:28:b9:97:81:2b:4b:4d:d8:
17:c2:4a:b1:80:2a:b8:5e:c6:c7:0e:cf:53:9c:b8:
42:be:36:1f:34:28:40:ca:99:db:98:91:76:ab:a9:
f0:29:0e:3e:87:b9:65:4e:90:90:4d:78:87:a7:b8:
31:55:6a:73:56:a1:d4:1e:2f:84:8b:8d:42:31:65:
b8:8c:c9:36:78:e1:76:69:f5:9b:d0:9b:d9:10:59:
61:12:72:82:ca:e5:e8:6d:af:e5:4e:38:f1:f7:80:
81:e5:41:9b:66:e7:47:33:e6:b7:d9:87:b9:9f:bb:
2b:fa:ab:39:b1:47:ac:22:3f:3c:16:8c:9d:4c:ee:
f4:3b:68:64:06:6d:f0:26:cc:01:7a:03:ce:d2:eb:
0e:bb:81:1e:ba:cb:42:1c:f8:1d:f1:d1:13:30:6d:
2b:e4:56:39:af:e4:18:81:11:ab:46:a2:1e:9c:b0:
17:50:ed:df:13:bb:23:3e:b5:d3:01:22:db:c9:41:
38:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:EE:F7:F5:81:84:20:45:78:65:4E:19:9C:61:EB:F1:45:9A:68:81
X509v3 Authority Key Identifier:
keyid:CE:FF:58:50:7A:F1:A0:6A:EF:DA:67:DD:8D:65:12:5C:36:4A:4D:EC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/B5DC9768EA0AACF46DC911E81D0D9D049927D24AACAF0685CB367D54CEE2BD95/0/CEFF58507AF1A06AEFDA67DD8D65125C364A4DEC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CEFF58507AF1A06AEFDA67DD8D65125C364A4DEC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B5DC9768EA0AACF46DC911E81D0D9D049927D24AACAF0685CB367D54CEE2BD95/0/323830333a383238303a3a2f33322d3332203d3e20323634383434.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:8280::/32
Signature Algorithm: sha256WithRSAEncryption
0b:ec:51:6f:d4:75:ec:32:d0:4b:74:5a:6d:37:8f:8a:67:0f:
d3:81:0f:e1:b1:6b:19:7f:83:ef:a0:66:81:99:21:7e:35:9e:
dc:91:2e:0e:45:94:15:a7:6e:bc:94:34:f2:0f:93:86:07:0e:
bf:d6:47:f0:3c:a4:5c:78:34:6c:cf:aa:15:17:f2:e9:b4:f2:
d1:1c:13:1c:cd:f0:c6:02:78:81:f6:af:af:24:d6:55:47:20:
9a:5c:fc:57:f5:0f:4c:d7:87:15:a9:61:e7:db:cc:f4:90:0a:
72:37:97:8c:21:c5:08:bd:fd:7b:bf:e7:0c:fd:ba:36:01:dc:
a6:54:9b:1b:a4:80:a7:eb:bb:25:58:73:9c:28:00:48:78:12:
de:2f:5c:d0:ab:82:02:57:ac:61:94:cf:79:0d:c2:2a:d6:3a:
a5:09:f8:00:8b:87:ca:68:35:43:ef:20:76:a7:ef:f0:97:55:
8c:49:0f:48:3e:5e:0c:5e:0e:b0:1d:3a:fa:c2:8c:fa:77:4b:
e6:2e:c5:0a:3c:56:4b:80:b9:05:32:65:8b:99:68:47:d9:d1:
66:89:bd:8e:6b:95:f4:8e:57:94:97:c3:24:48:31:8d:2b:2e:
a4:9e:1d:e3:ad:5d:93:6b:a1:fc:c4:64:60:60:36:a9:ca:fd:
5c:2e:4b:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 03:09:44 2025 by rpki-client