Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BE5D47A3592B259B5A43A3E01BC9DD4B7D76D8AEC387E1955FE9094A3AC6DE47/0/3139302e35372e36372e302f32342d3234203d3e203132313237.roa
File: 3139302e35372e36372e302f32342d3234203d3e203132313237.roa (raw, json)
Hash identifier: KNalyRVIQ15C9a78eqLTclxSfPGDKINwMsY5JJfkn1k=
Subject key identifier: C9:FC:30:AF:BF:B4:B3:67:6D:41:52:D9:4E:D8:BC:0B:7B:3F:42:36
Certificate issuer: /CN=DCDE245406EF53D802AC05030F2AF3C618B69FF2
Certificate serial: 4F57CAC46458463AE77048359D7DB65837E20671
Authority key identifier: DC:DE:24:54:06:EF:53:D8:02:AC:05:03:0F:2A:F3:C6:18:B6:9F:F2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DCDE245406EF53D802AC05030F2AF3C618B69FF2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BE5D47A3592B259B5A43A3E01BC9DD4B7D76D8AEC387E1955FE9094A3AC6DE47/0/3139302e35372e36372e302f32342d3234203d3e203132313237.roa
Signing time: Tue 04 Feb 2025 18:51:29 +0000
ROA not before: Tue 04 Feb 2025 18:46:29 +0000
ROA not after: Tue 03 Feb 2026 18:51:29 +0000
asID: 12127
IP address blocks: 190.57.67.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/BE5D47A3592B259B5A43A3E01BC9DD4B7D76D8AEC387E1955FE9094A3AC6DE47/0/DCDE245406EF53D802AC05030F2AF3C618B69FF2.crl
rsync://repository.lacnic.net/rpki/lacnic/BE5D47A3592B259B5A43A3E01BC9DD4B7D76D8AEC387E1955FE9094A3AC6DE47/0/DCDE245406EF53D802AC05030F2AF3C618B69FF2.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DCDE245406EF53D802AC05030F2AF3C618B69FF2.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 09:04:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:57:ca:c4:64:58:46:3a:e7:70:48:35:9d:7d:b6:58:37:e2:06:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DCDE245406EF53D802AC05030F2AF3C618B69FF2
Validity
Not Before: Feb 4 18:46:29 2025 GMT
Not After : Feb 3 18:51:29 2026 GMT
Subject: CN=C9FC30AFBFB4B3676D4152D94ED8BC0B7B3F4236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:e1:60:91:36:fc:85:3c:a1:6d:81:d0:2f:a2:
78:b8:7a:0d:81:e6:34:a7:ac:8f:6e:20:a7:4a:98:
eb:6a:5f:12:e9:08:a3:3c:7a:87:b1:d8:e2:11:0b:
ac:6a:49:90:5e:07:fe:cd:20:4f:67:8f:3d:8b:3a:
3c:f8:ae:52:9d:6b:c7:e6:c2:2f:92:f4:7f:02:78:
1b:21:ae:8c:ab:ad:db:fb:d9:9b:1e:da:d7:73:78:
02:46:bc:84:0d:3c:ec:da:5c:03:97:47:b3:00:59:
a2:8e:72:92:21:5e:5b:b9:a5:a8:ad:6a:d8:72:4c:
40:ba:6d:6f:4c:96:7d:81:42:a2:8a:ba:a1:d2:9d:
33:9d:bc:e8:39:0e:b7:76:20:ee:81:a8:0a:dc:e4:
6e:64:16:ca:4a:6c:a3:64:0d:88:7a:04:72:7e:1e:
df:7a:57:05:5b:e2:91:63:eb:ee:fa:49:eb:10:58:
1d:3c:12:b0:92:3e:3b:02:61:67:84:27:95:02:5e:
d8:fd:14:ef:5b:8e:7b:ef:01:8c:16:be:e7:d2:bf:
c3:83:81:6d:55:77:3c:1f:fb:9e:d1:bb:43:08:a8:
a5:28:ed:a6:5f:52:1b:21:5e:69:09:36:5f:a5:c0:
37:fe:8c:0d:3b:1e:d3:ae:83:9a:dc:60:56:cd:84:
31:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:FC:30:AF:BF:B4:B3:67:6D:41:52:D9:4E:D8:BC:0B:7B:3F:42:36
X509v3 Authority Key Identifier:
keyid:DC:DE:24:54:06:EF:53:D8:02:AC:05:03:0F:2A:F3:C6:18:B6:9F:F2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BE5D47A3592B259B5A43A3E01BC9DD4B7D76D8AEC387E1955FE9094A3AC6DE47/0/DCDE245406EF53D802AC05030F2AF3C618B69FF2.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DCDE245406EF53D802AC05030F2AF3C618B69FF2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BE5D47A3592B259B5A43A3E01BC9DD4B7D76D8AEC387E1955FE9094A3AC6DE47/0/3139302e35372e36372e302f32342d3234203d3e203132313237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.57.67.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:ae:06:fe:c5:c8:7f:4f:c5:cb:58:78:5d:23:1f:3f:39:b8:
56:60:0d:fa:9e:43:15:ce:3f:29:7d:da:00:6c:cb:45:67:4b:
56:1f:5c:5c:37:26:1c:ca:61:0f:34:7d:90:9b:50:44:12:cb:
ac:55:e6:41:b3:ba:1f:f8:b7:19:45:33:f3:93:54:45:7e:7d:
17:fc:39:37:b2:b9:43:e6:7e:d6:79:d1:45:05:d6:6e:d6:4c:
d1:9b:2d:76:d5:c5:20:c6:30:72:ac:e9:1e:ef:a2:40:e9:b6:
83:6b:88:aa:fa:8b:8b:dc:b7:1f:1e:2d:c8:4d:de:40:fa:fd:
25:c7:64:52:a3:6d:5e:65:8c:72:30:33:8c:45:8d:72:ad:e5:
2a:91:d1:79:af:8e:00:ba:94:fa:d5:e6:57:66:29:98:38:49:
86:52:bd:a9:9f:0a:cf:e4:49:10:0e:55:c4:4f:3a:22:c2:08:
84:7e:be:b1:38:52:fd:8c:08:86:22:db:48:c3:59:a7:0c:c1:
fb:77:4f:c7:a5:ae:6b:c7:ec:69:87:77:47:18:9b:ef:e7:16:
4e:5c:8a:25:58:f8:7c:04:92:01:19:90:c7:09:11:44:84:12:
d7:8f:ed:35:22:5a:cc:3b:79:84:06:c5:14:29:d8:36:2e:19:
bc:53:6c:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 10:55:10 2025 by rpki-client