Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BC339F302BF9DA1172B48C488FDA83F5D5DD3FFECAC9E5F52DE39169F7691BFA/0/323830333a323063303a3a2f33322d3438203d3e20323634373630.roa
File: 323830333a323063303a3a2f33322d3438203d3e20323634373630.roa (raw, json)
Hash identifier: Oo73Y0fPmwgEWmna9L485FcIxjwCr/CUL/ANx/rbq1o=
Subject key identifier: A1:F4:E1:B3:1A:D3:C0:F7:68:1A:57:E7:B4:AA:FD:94:4B:28:F6:2E
Certificate issuer: /CN=88DE53E0010338ADE050EFFAA4698BF37488EE71
Certificate serial: 5600CF7856D3F53E8563A7E78566D26F49CC8BA4
Authority key identifier: 88:DE:53:E0:01:03:38:AD:E0:50:EF:FA:A4:69:8B:F3:74:88:EE:71
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/88DE53E0010338ADE050EFFAA4698BF37488EE71.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BC339F302BF9DA1172B48C488FDA83F5D5DD3FFECAC9E5F52DE39169F7691BFA/0/323830333a323063303a3a2f33322d3438203d3e20323634373630.roa
Signing time: Tue 04 Feb 2025 18:37:35 +0000
ROA not before: Tue 04 Feb 2025 18:32:35 +0000
ROA not after: Tue 03 Feb 2026 18:37:35 +0000
asID: 264760
IP address blocks: 2803:20c0::/32 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/BC339F302BF9DA1172B48C488FDA83F5D5DD3FFECAC9E5F52DE39169F7691BFA/0/88DE53E0010338ADE050EFFAA4698BF37488EE71.crl
rsync://repository.lacnic.net/rpki/lacnic/BC339F302BF9DA1172B48C488FDA83F5D5DD3FFECAC9E5F52DE39169F7691BFA/0/88DE53E0010338ADE050EFFAA4698BF37488EE71.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/88DE53E0010338ADE050EFFAA4698BF37488EE71.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:00:cf:78:56:d3:f5:3e:85:63:a7:e7:85:66:d2:6f:49:cc:8b:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88DE53E0010338ADE050EFFAA4698BF37488EE71
Validity
Not Before: Feb 4 18:32:35 2025 GMT
Not After : Feb 3 18:37:35 2026 GMT
Subject: CN=A1F4E1B31AD3C0F7681A57E7B4AAFD944B28F62E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:3f:cb:62:25:80:2c:7e:49:f0:ac:a5:25:2e:
ef:07:82:c1:8c:74:fe:45:a6:eb:f5:67:5d:d7:12:
85:4a:de:05:8c:c4:e6:9f:b4:e0:21:d9:95:9c:f0:
93:8a:43:db:75:dc:91:aa:ff:f1:2f:22:cd:8c:a2:
d5:56:16:13:58:73:6d:9d:df:64:fb:bd:79:de:01:
e8:5b:9f:84:53:a4:e1:73:6c:35:b2:ca:ec:54:ce:
83:d9:c0:82:c3:b9:cf:1e:1e:e5:85:e7:37:88:9a:
87:30:9a:32:86:45:73:0b:e2:e4:05:d9:11:30:b4:
cb:00:94:cc:d1:60:73:8e:de:d1:a3:55:f9:3a:29:
c0:7c:0c:a0:46:d8:d1:a4:2d:e5:2c:10:7c:3d:e1:
2e:88:70:ff:8b:05:f4:01:e4:e7:d4:14:87:29:88:
b2:e1:29:41:cc:59:7e:de:80:6a:52:e5:97:58:a6:
d8:7e:7a:79:c1:50:b9:3a:28:40:5e:b5:9b:0f:d7:
7e:47:dc:ba:de:72:f9:10:d3:af:9a:28:8b:fc:40:
aa:e2:c5:db:17:8c:68:38:5a:82:e9:b8:a1:e4:bd:
5f:aa:12:b1:60:4a:2c:6f:6f:74:d0:ad:86:d2:24:
37:7a:9a:ab:20:26:1a:a1:36:15:c1:b7:44:3e:a3:
f8:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:F4:E1:B3:1A:D3:C0:F7:68:1A:57:E7:B4:AA:FD:94:4B:28:F6:2E
X509v3 Authority Key Identifier:
keyid:88:DE:53:E0:01:03:38:AD:E0:50:EF:FA:A4:69:8B:F3:74:88:EE:71
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BC339F302BF9DA1172B48C488FDA83F5D5DD3FFECAC9E5F52DE39169F7691BFA/0/88DE53E0010338ADE050EFFAA4698BF37488EE71.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/88DE53E0010338ADE050EFFAA4698BF37488EE71.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BC339F302BF9DA1172B48C488FDA83F5D5DD3FFECAC9E5F52DE39169F7691BFA/0/323830333a323063303a3a2f33322d3438203d3e20323634373630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:20c0::/32
Signature Algorithm: sha256WithRSAEncryption
83:9a:b0:f4:c7:3b:d0:10:8f:81:7e:cf:2b:7d:06:43:3f:48:
0b:e5:b2:d1:c6:5e:96:bc:f9:50:d0:29:f0:5a:f8:4a:95:37:
da:ae:00:a7:0b:fd:07:3c:61:a8:9d:75:70:93:1e:f5:c4:5c:
bc:3f:2c:2b:72:71:8c:63:3d:8f:c8:6e:bf:af:90:21:39:73:
6f:bc:0a:87:10:a6:4f:dd:ed:e4:a2:b5:cc:d9:2d:20:0b:d5:
ff:36:ee:0e:27:eb:cf:6c:1f:cb:10:3a:cb:47:e4:db:31:2c:
45:4f:43:8f:34:e9:f1:f4:17:b8:c5:c3:03:f7:df:07:c7:a8:
aa:9a:72:4a:11:90:9f:40:10:ae:16:56:d2:ed:98:d6:84:9d:
f0:0f:42:e2:91:1e:b2:23:7e:88:f3:69:ff:c1:02:d7:8e:d7:
72:cc:e0:bc:4d:af:4c:fd:a1:36:90:5d:6f:ea:29:9f:f4:c0:
45:ff:49:df:ee:e8:68:50:f5:6b:f5:fb:43:8a:5f:ec:8b:39:
1c:b0:79:4b:7b:29:dc:ad:b9:7a:53:a0:89:eb:8a:1e:f6:12:
c8:39:dd:ef:db:9c:0c:68:65:35:3b:22:24:39:1d:a5:75:b0:
fc:6b:73:ef:d3:38:bf:8c:d7:43:f1:c2:47:24:7c:ad:f6:12:
03:3b:7d:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 13:15:49 2025 by rpki-client