Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BFF9744E64C56E138AEC517D910F61D895CAD645CCF21CB7C16A278D5C2F944C/0/323830333a383130303a3a2f33322d3438203d3e203231383236.roa
File: 323830333a383130303a3a2f33322d3438203d3e203231383236.roa (raw, json)
Hash identifier: OO8BwXt3ImNElkMEia9ZscgLmKqVqAnRDK6G8f+7pcU=
Subject key identifier: CE:CC:BF:E8:86:8B:D2:61:91:7F:24:B5:A9:96:82:DF:88:C1:74:00
Certificate issuer: /CN=165E0F133EF8A6DF2ECCBFDD6E915964893A4324
Certificate serial: 27E5AE208B69FDE8377EAF9D4769486F263CB33C
Authority key identifier: 16:5E:0F:13:3E:F8:A6:DF:2E:CC:BF:DD:6E:91:59:64:89:3A:43:24
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/165E0F133EF8A6DF2ECCBFDD6E915964893A4324.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BFF9744E64C56E138AEC517D910F61D895CAD645CCF21CB7C16A278D5C2F944C/0/323830333a383130303a3a2f33322d3438203d3e203231383236.roa
Signing time: Tue 04 Feb 2025 18:44:34 +0000
ROA not before: Tue 04 Feb 2025 18:39:34 +0000
ROA not after: Tue 03 Feb 2026 18:44:34 +0000
asID: 21826
IP address blocks: 2803:8100::/32 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/BFF9744E64C56E138AEC517D910F61D895CAD645CCF21CB7C16A278D5C2F944C/0/165E0F133EF8A6DF2ECCBFDD6E915964893A4324.crl
rsync://repository.lacnic.net/rpki/lacnic/BFF9744E64C56E138AEC517D910F61D895CAD645CCF21CB7C16A278D5C2F944C/0/165E0F133EF8A6DF2ECCBFDD6E915964893A4324.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/165E0F133EF8A6DF2ECCBFDD6E915964893A4324.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
27:e5:ae:20:8b:69:fd:e8:37:7e:af:9d:47:69:48:6f:26:3c:b3:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=165E0F133EF8A6DF2ECCBFDD6E915964893A4324
Validity
Not Before: Feb 4 18:39:34 2025 GMT
Not After : Feb 3 18:44:34 2026 GMT
Subject: CN=CECCBFE8868BD261917F24B5A99682DF88C17400
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:6a:5f:9e:c0:15:fa:09:a7:90:a9:87:5d:96:
45:40:04:7d:1d:2c:80:6c:34:83:c6:5b:c3:70:f5:
93:9a:c6:a3:fe:c9:9d:f2:10:24:c9:4d:a7:8e:ba:
1f:be:c3:d7:30:3d:a8:fa:82:97:f8:f3:7f:25:99:
a3:c4:53:7e:11:93:d1:79:f8:9b:9a:fa:a9:50:99:
d5:ef:85:50:16:0b:c2:9f:52:44:dd:b4:fc:38:dc:
65:c2:4d:69:2f:11:63:45:40:91:b5:b0:51:2b:e6:
55:37:91:7c:3e:de:21:31:7a:00:68:65:e6:62:fa:
52:05:f9:66:86:dc:3f:f1:de:7b:73:54:5c:82:d9:
6e:26:a3:80:84:91:ef:30:5b:b9:4b:a8:dd:f2:59:
56:6e:fa:ad:2f:46:42:5d:a5:40:63:48:ad:c0:57:
c8:ef:67:fd:22:fd:88:64:81:90:45:b8:2d:01:52:
77:9a:63:8f:14:dd:0d:69:39:6a:60:a8:30:ff:63:
38:68:0c:07:e0:d4:43:43:aa:f7:44:26:af:c4:38:
ba:bb:36:ac:9c:e3:3f:41:04:c9:e7:b6:d5:0d:45:
7f:72:15:aa:f2:95:e0:9e:fb:82:c5:23:37:7b:69:
a5:08:85:a3:a2:5e:96:db:31:ea:9e:91:d9:b4:94:
18:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:CC:BF:E8:86:8B:D2:61:91:7F:24:B5:A9:96:82:DF:88:C1:74:00
X509v3 Authority Key Identifier:
keyid:16:5E:0F:13:3E:F8:A6:DF:2E:CC:BF:DD:6E:91:59:64:89:3A:43:24
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BFF9744E64C56E138AEC517D910F61D895CAD645CCF21CB7C16A278D5C2F944C/0/165E0F133EF8A6DF2ECCBFDD6E915964893A4324.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/165E0F133EF8A6DF2ECCBFDD6E915964893A4324.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BFF9744E64C56E138AEC517D910F61D895CAD645CCF21CB7C16A278D5C2F944C/0/323830333a383130303a3a2f33322d3438203d3e203231383236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:8100::/32
Signature Algorithm: sha256WithRSAEncryption
91:3b:f7:8d:c4:0d:4b:fb:5e:fa:cb:fa:ae:54:3b:ec:36:7a:
79:cd:9f:c5:11:0f:e0:b2:71:d4:a0:d3:01:b2:60:89:73:2e:
fd:b7:ae:da:57:72:c8:27:73:d8:86:c9:6b:92:34:a9:d9:a8:
88:76:f6:4d:60:e4:b9:a0:e2:d6:1c:3d:2f:cb:02:bf:ed:4f:
41:ad:6c:09:0e:0b:12:e1:ff:9f:11:41:49:20:bd:55:41:2e:
52:35:80:e9:82:18:10:92:8f:d2:9c:d7:99:dc:7e:91:58:25:
ba:f1:52:1f:34:f8:20:a5:ae:4d:85:89:97:5d:f7:c7:4d:b0:
65:95:c0:f1:5a:3c:6f:87:38:0e:98:6a:5a:e9:6e:dd:f5:57:
ca:11:22:83:b9:90:19:99:72:f0:a2:a9:d9:79:ee:de:32:df:
47:19:04:6c:b0:99:a0:e5:d9:fc:2a:66:df:d3:be:46:3c:65:
c2:71:c3:97:c0:87:e1:cc:78:69:cb:d3:b9:6e:fe:8e:6e:37:
50:4a:4d:37:15:3b:88:f1:59:a4:8f:4e:3a:8b:6a:98:2b:3e:
7e:a8:2f:88:7f:12:83:a1:5c:f2:0f:9f:37:a5:27:62:6a:96:
09:e2:05:eb:d7:9b:1a:0b:0c:2a:d2:9b:38:8b:bb:e3:92:30:
dc:81:a2:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 13:55:00 2025 by rpki-client