Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C2636959026D5A687D6F068BECA5CABE5E8E9AB60A08F30EAC3F3249F4372B7D/0/3136372e3235302e33362e302f32322d3234203d3e203532343638.roa
File: 3136372e3235302e33362e302f32322d3234203d3e203532343638.roa (raw, json)
Hash identifier: oWGYkQ7IA6N6UcAdMRrl2H8R1/qaH9+73GyUNjb5Nbo=
Subject key identifier: 73:C4:C3:C5:3A:29:49:3F:41:85:19:64:3A:B2:B0:73:0B:51:47:64
Certificate issuer: /CN=89CB216508CEF38CB2A68E45EBF4D418531E3799
Certificate serial: 7C4B33E94643ED22FD84BC1E646B4C099ADE39A8
Authority key identifier: 89:CB:21:65:08:CE:F3:8C:B2:A6:8E:45:EB:F4:D4:18:53:1E:37:99
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/89CB216508CEF38CB2A68E45EBF4D418531E3799.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C2636959026D5A687D6F068BECA5CABE5E8E9AB60A08F30EAC3F3249F4372B7D/0/3136372e3235302e33362e302f32322d3234203d3e203532343638.roa
Signing time: Thu 03 Apr 2025 16:55:02 +0000
ROA not before: Thu 03 Apr 2025 16:50:02 +0000
ROA not after: Thu 02 Apr 2026 16:55:02 +0000
asID: 52468
IP address blocks: 167.250.36.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/C2636959026D5A687D6F068BECA5CABE5E8E9AB60A08F30EAC3F3249F4372B7D/0/89CB216508CEF38CB2A68E45EBF4D418531E3799.crl
rsync://repository.lacnic.net/rpki/lacnic/C2636959026D5A687D6F068BECA5CABE5E8E9AB60A08F30EAC3F3249F4372B7D/0/89CB216508CEF38CB2A68E45EBF4D418531E3799.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/89CB216508CEF38CB2A68E45EBF4D418531E3799.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 11:37:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:4b:33:e9:46:43:ed:22:fd:84:bc:1e:64:6b:4c:09:9a:de:39:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89CB216508CEF38CB2A68E45EBF4D418531E3799
Validity
Not Before: Apr 3 16:50:02 2025 GMT
Not After : Apr 2 16:55:02 2026 GMT
Subject: CN=73C4C3C53A29493F418519643AB2B0730B514764
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ee:24:f0:70:93:43:8d:37:ac:10:bd:9f:59:
00:bd:24:a8:19:e0:dd:f4:a6:85:ab:7b:a3:45:e9:
58:b6:c9:46:2a:c8:10:2a:28:71:2b:33:8a:23:b2:
c3:c5:0f:45:ce:50:00:de:83:83:94:21:4c:4f:da:
bd:09:b4:54:fe:50:4e:a5:17:e7:2b:f8:be:01:e1:
52:c2:fa:5b:d2:e0:8f:d9:b1:10:64:9d:f0:62:ef:
f2:d6:7b:7b:a1:61:d7:b1:fb:4b:0f:3c:be:32:e8:
07:7f:db:1b:b7:2e:ca:7a:3b:e3:53:3f:d8:62:13:
4e:45:6d:91:59:05:60:f4:c2:28:6b:6f:52:ba:dd:
03:c5:e7:de:98:f6:ea:26:bb:b6:a3:9f:25:dd:67:
21:66:d2:da:26:ba:63:29:28:59:4b:78:22:06:eb:
be:d9:0f:21:4e:20:23:ac:95:c5:aa:d9:36:e4:17:
a5:ea:ba:35:2a:ed:14:75:52:60:69:08:bc:9a:80:
22:83:7e:3f:9e:b7:b8:cd:e4:30:0a:21:d7:80:f6:
2d:f8:53:c1:b6:93:aa:05:1e:45:1d:77:1f:93:96:
87:5e:e0:17:18:c0:ac:65:8e:f6:b1:d6:a5:be:84:
e2:5e:8d:08:ef:8f:66:39:f7:96:8b:99:e1:24:02:
4f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:C4:C3:C5:3A:29:49:3F:41:85:19:64:3A:B2:B0:73:0B:51:47:64
X509v3 Authority Key Identifier:
keyid:89:CB:21:65:08:CE:F3:8C:B2:A6:8E:45:EB:F4:D4:18:53:1E:37:99
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C2636959026D5A687D6F068BECA5CABE5E8E9AB60A08F30EAC3F3249F4372B7D/0/89CB216508CEF38CB2A68E45EBF4D418531E3799.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/89CB216508CEF38CB2A68E45EBF4D418531E3799.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C2636959026D5A687D6F068BECA5CABE5E8E9AB60A08F30EAC3F3249F4372B7D/0/3136372e3235302e33362e302f32322d3234203d3e203532343638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.250.36.0/22
Signature Algorithm: sha256WithRSAEncryption
01:db:29:64:0b:46:85:24:a6:09:7d:01:03:12:af:b6:e8:19:
af:0a:55:03:84:84:a0:fa:98:30:67:eb:67:e7:07:48:e8:c7:
74:02:dc:fd:67:48:06:d2:70:c1:fd:7a:cc:dc:35:6b:3b:ea:
c7:d8:f8:9b:34:86:6f:3d:77:a3:f4:cb:95:1b:d1:22:ea:d4:
13:a8:70:1f:37:1d:8c:11:94:06:fb:03:fd:78:33:58:0e:d4:
43:d5:ce:89:fd:67:23:c6:d9:56:e0:80:72:c8:09:2f:f5:51:
fb:be:46:94:54:36:70:bb:2f:de:c2:9d:25:77:bb:35:c8:59:
c9:25:45:10:88:73:7b:0f:b1:ca:da:e2:f0:7b:b7:f5:37:83:
ec:fb:a9:f8:57:f8:03:e8:81:66:c0:05:79:d4:17:65:57:d7:
c6:be:cd:93:ac:c6:6d:03:01:0b:66:6a:51:5e:df:5c:b1:fd:
49:a0:cb:a2:28:b7:47:bc:d0:cd:97:ba:fd:f0:9e:50:fd:7b:
44:ff:ef:71:9b:a4:df:89:f2:1b:eb:c0:70:97:2c:a3:d7:2b:
10:0c:df:a8:1e:7e:a8:72:95:4e:a6:fe:5e:01:39:25:95:94:
e2:e9:66:8a:87:2e:e0:ef:97:19:19:74:1e:54:e8:e6:42:ce:
c1:71:a2:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 11:28:11 2025 by rpki-client