Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BC339F302BF9DA1172B48C488FDA83F5D5DD3FFECAC9E5F52DE39169F7691BFA/0/3136382e3139342e3231362e302f32322d3234203d3e20323634373630.roa
File: 3136382e3139342e3231362e302f32322d3234203d3e20323634373630.roa (raw, json)
Hash identifier: VJ/7AqGQYBvBGg9XjMYkMBDF/9YmVkVEYvo96zNjR7M=
Subject key identifier: 5D:FD:72:59:14:97:93:3F:AF:A0:84:EA:21:56:F5:CE:C0:CA:73:F5
Certificate issuer: /CN=88DE53E0010338ADE050EFFAA4698BF37488EE71
Certificate serial: 0B1BC4630E49A80596044BB4F4F91C7D71248D96
Authority key identifier: 88:DE:53:E0:01:03:38:AD:E0:50:EF:FA:A4:69:8B:F3:74:88:EE:71
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/88DE53E0010338ADE050EFFAA4698BF37488EE71.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BC339F302BF9DA1172B48C488FDA83F5D5DD3FFECAC9E5F52DE39169F7691BFA/0/3136382e3139342e3231362e302f32322d3234203d3e20323634373630.roa
Signing time: Tue 04 Feb 2025 18:37:35 +0000
ROA not before: Tue 04 Feb 2025 18:32:35 +0000
ROA not after: Tue 03 Feb 2026 18:37:35 +0000
asID: 264760
IP address blocks: 168.194.216.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/BC339F302BF9DA1172B48C488FDA83F5D5DD3FFECAC9E5F52DE39169F7691BFA/0/88DE53E0010338ADE050EFFAA4698BF37488EE71.crl
rsync://repository.lacnic.net/rpki/lacnic/BC339F302BF9DA1172B48C488FDA83F5D5DD3FFECAC9E5F52DE39169F7691BFA/0/88DE53E0010338ADE050EFFAA4698BF37488EE71.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/88DE53E0010338ADE050EFFAA4698BF37488EE71.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0b:1b:c4:63:0e:49:a8:05:96:04:4b:b4:f4:f9:1c:7d:71:24:8d:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88DE53E0010338ADE050EFFAA4698BF37488EE71
Validity
Not Before: Feb 4 18:32:35 2025 GMT
Not After : Feb 3 18:37:35 2026 GMT
Subject: CN=5DFD72591497933FAFA084EA2156F5CEC0CA73F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d4:f9:74:a2:95:2d:d4:cc:82:9a:c3:63:0a:
93:63:d7:ac:d4:f0:6b:60:32:7e:fe:b6:68:f8:b5:
11:e8:8d:aa:81:d5:63:4b:13:32:bf:17:ff:5c:92:
69:bc:6e:a1:64:3c:1d:1f:a6:02:eb:38:69:16:72:
63:cb:ec:c9:24:54:93:a3:30:29:8a:de:79:0f:76:
f7:24:8c:9e:9d:99:42:71:50:83:84:3d:89:eb:53:
28:10:a9:aa:4a:49:19:b8:90:a4:ea:03:ae:4d:ae:
b1:f3:c7:37:1b:f7:87:33:51:21:22:a8:cf:ff:e9:
2b:8c:4f:10:47:69:f3:6a:dd:f4:66:ef:d7:30:e5:
77:85:f6:31:ce:07:fb:1f:9e:93:eb:fc:ff:79:7d:
27:40:c4:64:ad:30:aa:65:d3:0e:43:14:ad:5e:dd:
89:1a:61:bd:7b:46:bf:34:58:07:49:c3:57:b1:b5:
c9:73:bf:7b:77:35:d2:dd:58:0b:c8:df:67:0a:6d:
48:45:ba:85:34:28:73:58:72:50:a0:ea:9e:ca:65:
08:73:78:2f:ee:df:d5:f3:9c:e4:93:2f:13:f8:98:
28:ce:f2:1f:60:67:35:dd:df:79:eb:e0:ed:82:a8:
96:92:b0:08:5e:5b:85:df:3d:f3:77:d4:77:f1:2f:
8d:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:FD:72:59:14:97:93:3F:AF:A0:84:EA:21:56:F5:CE:C0:CA:73:F5
X509v3 Authority Key Identifier:
keyid:88:DE:53:E0:01:03:38:AD:E0:50:EF:FA:A4:69:8B:F3:74:88:EE:71
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BC339F302BF9DA1172B48C488FDA83F5D5DD3FFECAC9E5F52DE39169F7691BFA/0/88DE53E0010338ADE050EFFAA4698BF37488EE71.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/88DE53E0010338ADE050EFFAA4698BF37488EE71.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BC339F302BF9DA1172B48C488FDA83F5D5DD3FFECAC9E5F52DE39169F7691BFA/0/3136382e3139342e3231362e302f32322d3234203d3e20323634373630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.194.216.0/22
Signature Algorithm: sha256WithRSAEncryption
ef:bf:68:cc:d6:96:eb:06:ef:48:c5:79:be:a1:78:e2:f5:32:
dc:20:06:c7:4a:aa:a1:5d:3c:b3:d3:4f:3c:c1:69:0b:6a:52:
49:95:3c:0f:ee:70:53:a5:bf:ca:43:a0:1f:32:ab:4c:8e:ca:
14:88:f3:55:88:f0:6d:b2:a9:e7:4a:b0:99:f5:74:72:2d:4a:
18:bd:af:8d:92:f7:3b:70:0e:14:cf:33:19:57:06:cc:6d:f4:
1f:da:f4:34:f4:cb:10:bf:5d:62:20:83:9f:59:cd:a4:e0:98:
a0:fe:c5:68:0a:cc:4e:c0:ca:1a:2d:ae:78:ca:13:4f:fc:30:
f4:1e:d7:7e:ab:0e:67:a5:e2:91:ea:d1:1e:be:b6:9c:0e:a3:
4e:dc:4d:38:20:55:c7:48:04:5c:43:79:9c:d4:49:2c:00:6d:
74:34:94:6d:36:6d:e9:c4:6c:d4:f5:8a:2b:63:49:1d:dd:1a:
f9:b6:e9:79:f6:4e:27:51:1c:0f:d5:1b:93:a0:b9:73:65:46:
82:6f:66:c0:a1:30:77:8c:a8:94:26:14:13:8e:22:7e:97:1d:
b1:bd:15:31:f2:62:11:54:fc:6c:a1:eb:7d:be:db:7b:c0:f1:
08:3c:ab:40:5f:ff:cb:28:26:d3:6b:2c:28:b8:50:aa:a6:4a:
20:94:d6:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 12:03:39 2025 by rpki-client