Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C0E7A9136F1DAD264E04B6736BFAFA723BBF34D615BF712E98916F1DEDC86035/0/3230302e34322e3234302e302f32302d3233203d3e203238313138.roa
File: 3230302e34322e3234302e302f32302d3233203d3e203238313138.roa (raw, json)
Hash identifier: XlIXhkypesdAf3uwJ8Xnu0pHhBIjsCIBf9Z3q+WB8yA=
Subject key identifier: 48:27:25:91:B0:8F:2D:99:0F:93:6A:D5:BB:8A:50:AE:85:72:05:17
Certificate issuer: /CN=09612E5CB71DD47C0219F4047F44AF43260AE69B
Certificate serial: 7A62E98F9437C23478085780DEE79911FA1DF3FA
Authority key identifier: 09:61:2E:5C:B7:1D:D4:7C:02:19:F4:04:7F:44:AF:43:26:0A:E6:9B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/09612E5CB71DD47C0219F4047F44AF43260AE69B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C0E7A9136F1DAD264E04B6736BFAFA723BBF34D615BF712E98916F1DEDC86035/0/3230302e34322e3234302e302f32302d3233203d3e203238313138.roa
Signing time: Tue 04 Feb 2025 18:47:02 +0000
ROA not before: Tue 04 Feb 2025 18:42:02 +0000
ROA not after: Tue 03 Feb 2026 18:47:02 +0000
asID: 28118
IP address blocks: 200.42.240.0/20 maxlen: 23
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/C0E7A9136F1DAD264E04B6736BFAFA723BBF34D615BF712E98916F1DEDC86035/0/09612E5CB71DD47C0219F4047F44AF43260AE69B.crl
rsync://repository.lacnic.net/rpki/lacnic/C0E7A9136F1DAD264E04B6736BFAFA723BBF34D615BF712E98916F1DEDC86035/0/09612E5CB71DD47C0219F4047F44AF43260AE69B.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/09612E5CB71DD47C0219F4047F44AF43260AE69B.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7a:62:e9:8f:94:37:c2:34:78:08:57:80:de:e7:99:11:fa:1d:f3:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09612E5CB71DD47C0219F4047F44AF43260AE69B
Validity
Not Before: Feb 4 18:42:02 2025 GMT
Not After : Feb 3 18:47:02 2026 GMT
Subject: CN=48272591B08F2D990F936AD5BB8A50AE85720517
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:39:76:00:35:21:cf:48:7e:31:8e:f8:3e:6c:
93:02:cc:bf:b8:a4:be:26:4f:d0:f4:d0:fb:0a:56:
92:59:b2:3c:60:fa:49:e8:19:3b:de:d2:bc:54:47:
b4:6d:73:60:73:b8:82:97:82:58:a3:15:3e:e3:ca:
d0:b0:25:01:90:ce:a9:d9:8d:f6:aa:9b:ec:71:85:
ad:65:a9:6b:fc:a8:48:f4:79:8f:ec:94:04:2c:9d:
d4:02:11:c0:a4:8d:08:c7:14:b6:c8:ad:32:f1:f2:
19:98:6e:d1:10:b0:a4:7d:37:2a:5e:d1:50:3b:1f:
86:da:95:ef:ee:ea:e0:86:9a:b3:2a:29:9f:de:02:
1b:54:83:1f:5a:55:0e:f2:10:0a:74:af:52:3d:d3:
84:ad:71:44:93:f7:e9:fe:5f:5a:fe:6c:0e:8e:f5:
c3:74:06:bd:06:2d:ac:fc:32:0d:07:ef:8b:58:78:
22:bc:8f:cb:93:c2:bc:b5:27:17:bf:3f:6a:63:dd:
2f:79:50:78:27:50:1b:cf:f4:34:5d:a0:9d:a8:a9:
dd:8d:fd:c2:49:2a:07:05:f1:6f:75:9d:d0:93:2f:
3c:1f:b6:eb:32:ef:82:45:d0:b7:2b:df:be:30:df:
f4:8a:b0:1e:ce:25:82:a7:3d:93:e7:5b:84:21:bb:
92:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:27:25:91:B0:8F:2D:99:0F:93:6A:D5:BB:8A:50:AE:85:72:05:17
X509v3 Authority Key Identifier:
keyid:09:61:2E:5C:B7:1D:D4:7C:02:19:F4:04:7F:44:AF:43:26:0A:E6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C0E7A9136F1DAD264E04B6736BFAFA723BBF34D615BF712E98916F1DEDC86035/0/09612E5CB71DD47C0219F4047F44AF43260AE69B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/09612E5CB71DD47C0219F4047F44AF43260AE69B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C0E7A9136F1DAD264E04B6736BFAFA723BBF34D615BF712E98916F1DEDC86035/0/3230302e34322e3234302e302f32302d3233203d3e203238313138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.42.240.0/20
Signature Algorithm: sha256WithRSAEncryption
0b:cc:19:af:53:15:f1:a0:f5:ae:d9:83:6e:a2:78:0b:4d:94:
25:d4:a6:78:e4:97:28:ad:77:ba:d5:3d:e3:ec:18:21:8f:e3:
84:14:63:78:eb:f6:e8:1f:69:53:a3:d9:11:d2:b5:74:86:7f:
9d:5b:62:6f:0a:af:67:d7:43:7b:6e:8b:12:86:dc:76:ea:40:
7c:a0:60:12:b2:33:af:3d:4a:52:16:e7:d7:5d:d1:e6:11:44:
dc:20:db:b6:da:0f:da:6e:a8:5c:27:5f:a4:9f:9c:d3:46:41:
dc:74:0b:72:45:2e:fa:97:e3:27:5d:5d:3d:5d:89:d3:b6:12:
f0:45:9d:f5:1b:b2:05:1d:ac:e3:89:d9:84:b1:f9:36:01:83:
0c:bc:af:11:01:d3:d8:63:79:1d:e3:51:2f:41:45:b3:cc:49:
01:f1:5f:3e:31:e3:d2:f7:9d:d9:c5:54:0e:b7:db:53:0e:6f:
2a:b3:a5:b9:c8:b7:85:19:d3:18:79:ab:17:28:7a:77:8d:26:
6b:d3:0a:af:ce:a0:2b:6b:0a:d0:64:34:96:8f:74:4f:b9:f8:
78:48:c7:0a:c2:df:77:7f:5a:aa:49:ee:d2:1b:6c:f3:26:ac:
d8:55:c0:15:8a:56:0f:10:64:04:1b:a2:eb:76:06:52:b2:4d:
3d:af:55:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 21:00:16 2025 by rpki-client