Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BE5C5D59D4C7A363EB6C4C85BC4088296E27FB2AC53E6DBA4C64DD2F1DC5B35D/0/3137302e38322e3230382e302f32322d3234203d3e203237383030.roa
File: 3137302e38322e3230382e302f32322d3234203d3e203237383030.roa (raw, json)
Hash identifier: dVx9tLj4/DAC99UnrzKnQVtt1aSY+eNCcW+XNx1VE7A=
Subject key identifier: 07:16:75:C7:FF:EC:07:8D:5A:88:97:D9:75:57:A6:A1:AA:D6:81:AD
Certificate issuer: /CN=2CE426DCE116C2FC2D07BDD209BC070F6D233D1C
Certificate serial: 618AEF760AFEA6AA0592BE6EE02BBA74D23333A4
Authority key identifier: 2C:E4:26:DC:E1:16:C2:FC:2D:07:BD:D2:09:BC:07:0F:6D:23:3D:1C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2CE426DCE116C2FC2D07BDD209BC070F6D233D1C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BE5C5D59D4C7A363EB6C4C85BC4088296E27FB2AC53E6DBA4C64DD2F1DC5B35D/0/3137302e38322e3230382e302f32322d3234203d3e203237383030.roa
Signing time: Tue 04 Feb 2025 19:58:40 +0000
ROA not before: Tue 04 Feb 2025 19:53:40 +0000
ROA not after: Tue 03 Feb 2026 19:58:40 +0000
asID: 27800
IP address blocks: 170.82.208.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/BE5C5D59D4C7A363EB6C4C85BC4088296E27FB2AC53E6DBA4C64DD2F1DC5B35D/0/2CE426DCE116C2FC2D07BDD209BC070F6D233D1C.crl
rsync://repository.lacnic.net/rpki/lacnic/BE5C5D59D4C7A363EB6C4C85BC4088296E27FB2AC53E6DBA4C64DD2F1DC5B35D/0/2CE426DCE116C2FC2D07BDD209BC070F6D233D1C.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2CE426DCE116C2FC2D07BDD209BC070F6D233D1C.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 18:26:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:8a:ef:76:0a:fe:a6:aa:05:92:be:6e:e0:2b:ba:74:d2:33:33:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2CE426DCE116C2FC2D07BDD209BC070F6D233D1C
Validity
Not Before: Feb 4 19:53:40 2025 GMT
Not After : Feb 3 19:58:40 2026 GMT
Subject: CN=071675C7FFEC078D5A8897D97557A6A1AAD681AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c1:5e:70:8c:99:c0:c2:13:8e:c6:2a:ee:73:
52:c0:11:62:7a:c2:56:fa:54:a5:15:36:23:1a:48:
be:a5:35:6e:93:20:de:18:0c:59:cf:28:27:cc:8d:
9d:23:fc:46:b6:18:b6:c2:b4:39:62:ed:ce:94:60:
f5:eb:6f:e3:d5:61:a0:66:69:42:35:40:6e:eb:91:
e0:65:e8:7b:17:bf:b4:87:f6:0a:7e:5a:09:c5:5f:
c3:d4:ae:04:fb:f9:eb:1c:89:0e:51:83:cb:df:3d:
a7:b5:ad:aa:81:24:f7:8c:b2:01:a2:e7:c2:81:11:
55:28:54:d0:9e:74:5f:e4:46:78:aa:5a:9f:3f:18:
4a:84:df:33:f9:1d:19:a4:9c:bb:28:d2:d8:71:db:
fb:cc:79:f5:3d:49:03:75:0e:09:ad:de:4a:b9:9d:
61:d4:0e:33:75:d1:27:fc:ae:f4:72:40:8d:74:82:
bf:b5:4e:55:27:0c:70:23:82:0f:55:ca:b3:1c:92:
b9:ff:72:fe:6a:29:96:28:b2:c5:4c:62:ed:fa:a1:
4f:0f:15:95:39:96:0b:3c:33:b2:b4:c3:6a:be:f7:
77:a0:2e:f3:c1:3f:f4:a3:b4:d6:3a:b7:a9:1e:42:
be:02:4c:24:80:5d:f9:d7:6a:d4:f1:33:d5:cb:61:
36:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:16:75:C7:FF:EC:07:8D:5A:88:97:D9:75:57:A6:A1:AA:D6:81:AD
X509v3 Authority Key Identifier:
keyid:2C:E4:26:DC:E1:16:C2:FC:2D:07:BD:D2:09:BC:07:0F:6D:23:3D:1C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BE5C5D59D4C7A363EB6C4C85BC4088296E27FB2AC53E6DBA4C64DD2F1DC5B35D/0/2CE426DCE116C2FC2D07BDD209BC070F6D233D1C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2CE426DCE116C2FC2D07BDD209BC070F6D233D1C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BE5C5D59D4C7A363EB6C4C85BC4088296E27FB2AC53E6DBA4C64DD2F1DC5B35D/0/3137302e38322e3230382e302f32322d3234203d3e203237383030.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.82.208.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:dd:26:79:f6:62:83:2c:45:72:5f:bb:86:a6:ec:a8:1b:13:
3f:be:37:77:6e:6b:40:4e:21:20:ba:56:42:a8:d5:82:8b:25:
64:cf:71:eb:93:a7:01:90:58:12:30:2d:9a:d5:92:d0:6c:94:
97:ca:19:bb:e2:fb:38:bc:d5:3f:4c:cc:f8:39:dd:37:71:f9:
f1:18:d4:dc:e1:53:80:6e:ce:7b:d1:f1:ab:65:77:ea:06:4b:
c6:ed:f6:e2:fc:70:78:bb:da:58:6e:e4:c0:94:5f:85:e1:bb:
c4:24:71:c9:ba:f5:0b:33:59:7c:89:59:85:8a:63:fe:6d:1a:
60:99:cd:10:b8:b6:1b:29:48:ea:ac:f9:ef:a8:78:3b:49:8a:
76:ca:e9:13:cc:ad:34:79:8b:6d:21:fa:44:62:23:ff:e9:92:
50:2e:b5:af:5b:94:9d:43:df:a8:6a:6f:cb:bc:7a:73:c6:fb:
ab:de:67:ce:99:4c:e9:c9:f3:3c:53:57:ed:08:72:c0:42:fc:
94:32:e6:8e:f2:61:d9:0a:57:19:1b:59:6e:6b:25:77:0d:44:
2b:31:3a:a1:f4:a2:90:b0:52:be:7a:77:cf:70:6c:0e:34:5d:
b1:a4:cd:c8:df:04:36:9e:bd:39:d9:93:95:8e:a9:08:49:8d:
1f:9f:5c:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 01:12:06 2025 by rpki-client