Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BAA3EE0AE062593ADBA5CEAB6EA414E942EE2D9BA2346BD02B1DD1AFE9415340/0/3139302e3130382e39312e302f32342d3234203d3e20323731383638.roa
File: 3139302e3130382e39312e302f32342d3234203d3e20323731383638.roa (raw, json)
Hash identifier: doh1Pio3hxCdATPTNYTNZB93DNJpwry2zo08WPe7OMc=
Subject key identifier: BF:44:CE:D4:44:21:EA:B6:44:D1:2C:47:C3:9F:20:97:E0:0A:FC:9E
Certificate issuer: /CN=8E9E896ADF8041E07AB6735225935260B837E74D
Certificate serial: 69F9DC8EA3A5757A6D5B4772D545ED5EA7891C8F
Authority key identifier: 8E:9E:89:6A:DF:80:41:E0:7A:B6:73:52:25:93:52:60:B8:37:E7:4D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8E9E896ADF8041E07AB6735225935260B837E74D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BAA3EE0AE062593ADBA5CEAB6EA414E942EE2D9BA2346BD02B1DD1AFE9415340/0/3139302e3130382e39312e302f32342d3234203d3e20323731383638.roa
Signing time: Tue 04 Feb 2025 18:31:33 +0000
ROA not before: Tue 04 Feb 2025 18:26:33 +0000
ROA not after: Tue 03 Feb 2026 18:31:33 +0000
asID: 271868
IP address blocks: 190.108.91.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/BAA3EE0AE062593ADBA5CEAB6EA414E942EE2D9BA2346BD02B1DD1AFE9415340/0/8E9E896ADF8041E07AB6735225935260B837E74D.crl
rsync://repository.lacnic.net/rpki/lacnic/BAA3EE0AE062593ADBA5CEAB6EA414E942EE2D9BA2346BD02B1DD1AFE9415340/0/8E9E896ADF8041E07AB6735225935260B837E74D.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8E9E896ADF8041E07AB6735225935260B837E74D.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:f9:dc:8e:a3:a5:75:7a:6d:5b:47:72:d5:45:ed:5e:a7:89:1c:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8E9E896ADF8041E07AB6735225935260B837E74D
Validity
Not Before: Feb 4 18:26:33 2025 GMT
Not After : Feb 3 18:31:33 2026 GMT
Subject: CN=BF44CED44421EAB644D12C47C39F2097E00AFC9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:31:b4:19:13:48:5a:57:9c:c4:8b:a0:38:6a:
ac:49:ab:c4:1d:de:9d:66:d2:15:ab:4b:45:ac:92:
74:71:8a:eb:95:91:27:fe:5d:e5:c8:ca:31:8f:75:
84:dc:be:12:76:2c:75:c3:cb:97:76:ba:60:6a:37:
58:84:3f:b4:fa:79:4c:fa:3a:8c:e4:d3:2b:5f:a6:
d5:fe:f5:1e:d5:d7:cc:0f:49:34:5f:fa:1c:97:7a:
f6:a2:57:49:5d:e0:81:78:9f:1a:75:9a:01:e5:5e:
f1:e2:4f:6a:e6:8c:8c:5d:e6:f3:a0:9f:f1:fc:b3:
ff:4a:35:5c:4b:68:1e:f5:35:23:eb:42:a2:72:4b:
0a:fb:78:17:b6:95:c3:21:ed:3f:84:69:2e:c4:7f:
47:ad:67:73:81:16:93:90:f8:5a:70:1c:62:aa:14:
b3:3e:a9:c9:1c:6f:a7:43:36:d7:87:e3:1c:16:d9:
19:7f:93:c7:1c:b0:6d:6e:c2:b5:f8:32:51:5f:d6:
98:34:06:13:6d:bf:ff:07:75:e1:2f:a2:f7:31:54:
5c:25:4a:d4:24:f8:d6:d7:e6:a9:f2:d8:dd:00:1a:
41:7a:5d:6d:f7:de:ce:ba:e6:3d:c5:2c:5b:4c:39:
64:12:02:2b:39:fd:35:ba:85:81:71:e9:71:a6:53:
ae:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:44:CE:D4:44:21:EA:B6:44:D1:2C:47:C3:9F:20:97:E0:0A:FC:9E
X509v3 Authority Key Identifier:
keyid:8E:9E:89:6A:DF:80:41:E0:7A:B6:73:52:25:93:52:60:B8:37:E7:4D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BAA3EE0AE062593ADBA5CEAB6EA414E942EE2D9BA2346BD02B1DD1AFE9415340/0/8E9E896ADF8041E07AB6735225935260B837E74D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8E9E896ADF8041E07AB6735225935260B837E74D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BAA3EE0AE062593ADBA5CEAB6EA414E942EE2D9BA2346BD02B1DD1AFE9415340/0/3139302e3130382e39312e302f32342d3234203d3e20323731383638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.108.91.0/24
Signature Algorithm: sha256WithRSAEncryption
69:6b:ed:de:e3:b4:77:fb:07:20:8d:e4:42:fa:c1:3d:a8:ce:
de:5b:27:9b:3d:5e:ae:70:b6:54:82:3e:32:5d:c1:06:47:c3:
da:0c:ef:ef:16:51:9e:b5:c8:17:4f:5d:77:47:30:40:25:3a:
91:43:62:97:ed:06:90:ce:0d:f6:83:98:d9:c4:2a:7d:c8:21:
cf:26:f8:28:5b:ee:1e:69:3f:dd:59:9d:4d:29:8c:c5:47:a1:
0e:42:57:41:3b:06:10:cb:84:39:2f:b7:fc:c1:a8:ba:85:92:
5d:fc:a4:e0:e0:af:35:96:88:3a:d6:12:5d:f2:02:c9:58:6d:
a3:6c:77:3e:ad:b4:87:35:0b:2b:fb:3e:a0:76:99:18:db:e2:
16:bc:ad:f3:d4:48:4c:5a:81:8b:fb:a5:d6:a6:fa:66:17:83:
94:9d:24:0c:5e:0d:1f:f1:d8:68:9a:72:14:c5:2e:54:8d:9c:
de:2d:85:6f:9c:37:78:5a:b0:c3:49:a9:7c:2b:ac:89:bd:56:
c1:9b:08:c6:a4:16:15:82:5b:79:e1:e8:19:2a:f2:5a:b5:63:
83:67:00:28:8a:28:c6:bf:ed:54:30:0e:9b:8c:90:77:d9:62:
66:25:d6:9f:62:56:73:e7:16:22:7c:f2:46:9a:32:8e:cf:39:
5b:ed:a7:cf
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUafncjqOldXptW0dy1UXtXqeJHI8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOEU5RTg5NkFERjgwNDFFMDdBQjY3MzUyMjU5MzUyNjBC
ODM3RTc0RDAeFw0yNTAyMDQxODI2MzNaFw0yNjAyMDMxODMxMzNaMDMxMTAvBgNV
BAMTKEJGNDRDRUQ0NDQyMUVBQjY0NEQxMkM0N0MzOUYyMDk3RTAwQUZDOUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyMbQZE0haV5zEi6A4aqxJq8Qd
3p1m0hWrS0WsknRxiuuVkSf+XeXIyjGPdYTcvhJ2LHXDy5d2umBqN1iEP7T6eUz6
Oozk0ytfptX+9R7V18wPSTRf+hyXevaiV0ld4IF4nxp1mgHlXvHiT2rmjIxd5vOg
n/H8s/9KNVxLaB71NSPrQqJySwr7eBe2lcMh7T+EaS7Ef0etZ3OBFpOQ+FpwHGKq
FLM+qckcb6dDNteH4xwW2Rl/k8ccsG1uwrX4MlFf1pg0BhNtv/8HdeEvovcxVFwl
StQk+NbX5qny2N0AGkF6XW333s665j3FLFtMOWQSAis5/TW6hYFx6XGmU67nAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUv0TO1EQh6rZE0SxHw58gl+AK/J4wHwYDVR0j
BBgwFoAUjp6Jat+AQeB6tnNSJZNSYLg3500wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9CQUEzRUUwQUUwNjI1OTNBREJBNUNFQUI2RUE0MTRFOTQy
RUUyRDlCQTIzNDZCRDAyQjFERDFBRkU5NDE1MzQwLzAvOEU5RTg5NkFERjgwNDFF
MDdBQjY3MzUyMjU5MzUyNjBCODM3RTc0RC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC84RTlFODk2QURGODA0MUUwN0FC
NjczNTIyNTkzNTI2MEI4MzdFNzRELmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvQkFBM0VFMEFFMDYyNTkzQURCQTVDRUFCNkVBNDE0RTk0MkVFMkQ5QkEy
MzQ2QkQwMkIxREQxQUZFOTQxNTM0MC8wLzMxMzkzMDJlMzEzMDM4MmUzOTMxMmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNzMxMzgzNjM4LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAvmxb
MA0GCSqGSIb3DQEBCwUAA4IBAQBpa+3e47R3+wcgjeRC+sE9qM7eWyebPV6ucLZU
gj4yXcEGR8PaDO/vFlGetcgXT113RzBAJTqRQ2KX7QaQzg32g5jZxCp9yCHPJvgo
W+4eaT/dWZ1NKYzFR6EOQldBOwYQy4Q5L7f8wai6hZJd/KTg4K81log61hJd8gLJ
WG2jbHc+rbSHNQsr+z6gdpkY2+IWvK3z1EhMWoGL+6XWpvpmF4OUnSQMXg0f8dho
mnIUxS5UjZzeLYVvnDd4WrDDSal8K6yJvVbBmwjGpBYVglt54egZKvJatWODZwAo
iijGv+1UMA6bjJB32WJmJdafYlZz5xYifPJGmjKOzzlb7afP
-----END CERTIFICATE-----
Generated at Mon Apr 14 09:55:02 2025 by rpki-client