Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C0CE9AA0BC29760A13F1C1FBADBCAA564D094312E70029DFE6E0D0AFDC88405F/0/3136382e3139342e3134332e302f32342d3234203d3e20323634373534.roa
File: 3136382e3139342e3134332e302f32342d3234203d3e20323634373534.roa (raw, json)
Hash identifier: F3AYmloRbj0mNBy5jap/8EGyZg1+hm+nU3Wx/111k88=
Subject key identifier: A9:09:61:A4:4D:62:EE:F3:9F:AB:02:D8:45:90:E6:97:70:2B:08:A1
Certificate issuer: /CN=AC7B8BA3D05E211CF7697DC38DBB7591FCD3075A
Certificate serial: 4C2626504722550B144C4CE150442C3F52032277
Authority key identifier: AC:7B:8B:A3:D0:5E:21:1C:F7:69:7D:C3:8D:BB:75:91:FC:D3:07:5A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AC7B8BA3D05E211CF7697DC38DBB7591FCD3075A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C0CE9AA0BC29760A13F1C1FBADBCAA564D094312E70029DFE6E0D0AFDC88405F/0/3136382e3139342e3134332e302f32342d3234203d3e20323634373534.roa
Signing time: Tue 04 Feb 2025 18:32:39 +0000
ROA not before: Tue 04 Feb 2025 18:27:39 +0000
ROA not after: Tue 03 Feb 2026 18:32:39 +0000
asID: 264754
IP address blocks: 168.194.143.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/C0CE9AA0BC29760A13F1C1FBADBCAA564D094312E70029DFE6E0D0AFDC88405F/0/AC7B8BA3D05E211CF7697DC38DBB7591FCD3075A.crl
rsync://repository.lacnic.net/rpki/lacnic/C0CE9AA0BC29760A13F1C1FBADBCAA564D094312E70029DFE6E0D0AFDC88405F/0/AC7B8BA3D05E211CF7697DC38DBB7591FCD3075A.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AC7B8BA3D05E211CF7697DC38DBB7591FCD3075A.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 22:58:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:26:26:50:47:22:55:0b:14:4c:4c:e1:50:44:2c:3f:52:03:22:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AC7B8BA3D05E211CF7697DC38DBB7591FCD3075A
Validity
Not Before: Feb 4 18:27:39 2025 GMT
Not After : Feb 3 18:32:39 2026 GMT
Subject: CN=A90961A44D62EEF39FAB02D84590E697702B08A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a7:e3:ac:5f:78:23:e5:ca:e8:ef:90:bd:d2:
30:71:b6:31:3a:f9:af:84:8a:82:0d:8d:4e:5f:f2:
ab:b6:56:f0:67:12:a0:86:41:3b:f0:c1:75:1c:85:
b7:56:90:12:79:e2:f6:f0:ad:38:de:c6:6f:e8:56:
be:33:5d:ea:d9:c6:d1:73:37:b9:b7:fa:2f:95:85:
21:27:f8:82:41:66:1a:a2:5b:8f:25:16:3c:08:f5:
54:2e:98:b6:a3:68:3b:0a:3a:25:bc:8a:0b:3a:4a:
fa:15:4f:19:8a:06:be:29:0b:e7:20:83:79:32:1b:
6f:f3:f6:00:e7:79:09:bf:cd:cd:c8:48:a0:7b:3b:
8a:f3:fd:67:a7:62:38:bb:67:d9:0b:74:04:70:56:
d9:f1:9a:90:3b:b3:e9:82:a6:bc:ac:76:b7:55:06:
86:89:16:2b:ac:99:8e:87:a9:2c:60:40:5f:ee:f7:
1e:d7:36:d1:24:bf:57:0b:c8:e0:9d:6d:f7:89:0b:
f4:bd:30:54:2b:b7:57:75:b3:c8:4e:3b:4c:d8:35:
76:6b:2b:79:99:04:3e:d1:ef:41:89:7d:a9:cf:e8:
61:af:41:86:31:6a:aa:fe:23:50:93:87:94:fc:01:
01:4d:91:49:a5:e7:41:ad:11:02:6f:22:bc:7c:85:
b2:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:09:61:A4:4D:62:EE:F3:9F:AB:02:D8:45:90:E6:97:70:2B:08:A1
X509v3 Authority Key Identifier:
keyid:AC:7B:8B:A3:D0:5E:21:1C:F7:69:7D:C3:8D:BB:75:91:FC:D3:07:5A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C0CE9AA0BC29760A13F1C1FBADBCAA564D094312E70029DFE6E0D0AFDC88405F/0/AC7B8BA3D05E211CF7697DC38DBB7591FCD3075A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AC7B8BA3D05E211CF7697DC38DBB7591FCD3075A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C0CE9AA0BC29760A13F1C1FBADBCAA564D094312E70029DFE6E0D0AFDC88405F/0/3136382e3139342e3134332e302f32342d3234203d3e20323634373534.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.194.143.0/24
Signature Algorithm: sha256WithRSAEncryption
44:50:06:fe:c4:56:34:0e:0b:e5:a0:1b:d5:6f:4b:2e:69:5f:
e8:b9:6a:68:a1:6b:f5:9c:f3:0b:f4:cf:86:84:fb:a4:2f:23:
a0:90:ea:65:e0:e5:55:5a:a6:b9:5c:dd:72:ee:9d:5a:fd:51:
20:45:7b:4d:89:f8:ef:3f:58:4e:2f:c1:01:ed:af:43:cd:a1:
90:71:02:a4:fd:c9:6c:f1:6a:24:38:04:e5:e3:d3:6b:76:84:
21:74:e1:73:8c:50:a9:7b:2e:11:2b:83:c7:c0:31:c3:54:05:
b9:3e:a9:a6:c0:da:2c:a8:47:b8:13:d3:0a:40:33:ed:a5:33:
6a:3a:fe:97:c2:5f:af:9d:99:9d:1a:59:e0:43:0b:6c:07:09:
2a:3b:a8:b2:82:3a:76:7b:ca:31:ad:39:81:90:d0:37:c0:c2:
ea:f6:a1:58:e9:79:8e:14:e0:b7:18:c7:06:a8:a4:4e:69:dc:
d3:ef:e5:14:82:ec:78:ec:ab:18:dd:93:f6:78:b1:67:55:42:
83:f3:03:17:82:57:ea:68:03:48:75:e6:e9:59:f7:42:12:97:
53:50:59:4f:fb:06:f9:21:1b:46:3d:8b:e6:ea:b6:c6:6e:28:
13:e2:5b:77:8d:eb:99:0e:75:08:15:26:da:8d:e3:5a:c9:82:
cd:be:31:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 12:38:06 2025 by rpki-client