Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C50A99167BE1CC39370AB4CB9E3CE7C535B7C6ABC718E1047629C96A486C3FF5/0/3137302e3234352e3135382e302f32332d3233203d3e20323637383332.roa
File: 3137302e3234352e3135382e302f32332d3233203d3e20323637383332.roa (raw, json)
Hash identifier: 7JXbjdUX7q49CKqgNWD5QvBmbnWUnCXMEhdqWNFkDkA=
Subject key identifier: D9:D5:B8:E7:5C:40:3E:40:FC:F9:A7:6A:F9:30:9B:1D:43:8D:4E:15
Certificate issuer: /CN=ED35A136442571FBFB23487E7FCF579A7CAE6BBB
Certificate serial: 20D58A03F2E606D87647E6CADB6629D52EF12957
Authority key identifier: ED:35:A1:36:44:25:71:FB:FB:23:48:7E:7F:CF:57:9A:7C:AE:6B:BB
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/ED35A136442571FBFB23487E7FCF579A7CAE6BBB.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C50A99167BE1CC39370AB4CB9E3CE7C535B7C6ABC718E1047629C96A486C3FF5/0/3137302e3234352e3135382e302f32332d3233203d3e20323637383332.roa
Signing time: Tue 04 Feb 2025 18:40:41 +0000
ROA not before: Tue 04 Feb 2025 18:35:41 +0000
ROA not after: Tue 03 Feb 2026 18:40:41 +0000
asID: 267832
IP address blocks: 170.245.158.0/23 maxlen: 23
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/C50A99167BE1CC39370AB4CB9E3CE7C535B7C6ABC718E1047629C96A486C3FF5/0/ED35A136442571FBFB23487E7FCF579A7CAE6BBB.crl
rsync://repository.lacnic.net/rpki/lacnic/C50A99167BE1CC39370AB4CB9E3CE7C535B7C6ABC718E1047629C96A486C3FF5/0/ED35A136442571FBFB23487E7FCF579A7CAE6BBB.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/ED35A136442571FBFB23487E7FCF579A7CAE6BBB.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:d5:8a:03:f2:e6:06:d8:76:47:e6:ca:db:66:29:d5:2e:f1:29:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ED35A136442571FBFB23487E7FCF579A7CAE6BBB
Validity
Not Before: Feb 4 18:35:41 2025 GMT
Not After : Feb 3 18:40:41 2026 GMT
Subject: CN=D9D5B8E75C403E40FCF9A76AF9309B1D438D4E15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:72:85:90:5d:4b:e4:c6:9b:15:14:db:b2:8e:
01:75:a9:b2:fe:ef:44:fd:9f:14:fa:22:ef:95:06:
de:0c:19:9c:cd:34:0a:eb:e4:5d:ca:6a:5a:c0:80:
6c:10:46:14:73:f5:f1:94:8a:3d:19:14:f3:61:e6:
0c:5e:b7:e3:f4:f3:f3:47:25:d6:49:65:aa:3a:34:
b5:98:af:8e:fe:ff:13:80:0f:6a:ad:a7:e8:25:b7:
cb:d6:96:55:a9:2d:82:dd:6f:b4:19:4e:1f:9f:b0:
f6:52:9d:4c:73:c7:1a:c8:79:38:d1:7b:8d:b6:4a:
44:ff:61:4b:57:a9:7c:31:94:8a:4f:ca:ff:af:4e:
39:65:6c:3c:b4:ee:a6:49:4d:b9:46:01:2d:70:2e:
8f:7b:70:a6:59:6e:79:3a:36:a8:fa:1a:49:3c:db:
4f:a5:1e:48:6b:3c:3d:4c:3c:6b:c6:49:d9:69:93:
e5:b2:5e:95:79:f6:e4:27:af:f7:a6:5b:54:d2:7e:
d7:e3:74:51:da:64:cc:95:44:9a:09:fd:7f:91:16:
5e:3d:38:a7:17:79:9b:75:6b:17:86:53:9d:ce:95:
c3:01:2e:a1:2b:25:ce:9c:c4:a6:42:53:69:d0:c0:
37:fa:96:15:e2:46:9e:8e:e8:6d:42:2a:2c:de:70:
24:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:D5:B8:E7:5C:40:3E:40:FC:F9:A7:6A:F9:30:9B:1D:43:8D:4E:15
X509v3 Authority Key Identifier:
keyid:ED:35:A1:36:44:25:71:FB:FB:23:48:7E:7F:CF:57:9A:7C:AE:6B:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C50A99167BE1CC39370AB4CB9E3CE7C535B7C6ABC718E1047629C96A486C3FF5/0/ED35A136442571FBFB23487E7FCF579A7CAE6BBB.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/ED35A136442571FBFB23487E7FCF579A7CAE6BBB.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C50A99167BE1CC39370AB4CB9E3CE7C535B7C6ABC718E1047629C96A486C3FF5/0/3137302e3234352e3135382e302f32332d3233203d3e20323637383332.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.245.158.0/23
Signature Algorithm: sha256WithRSAEncryption
97:ee:41:a6:39:ec:df:20:a6:7c:fe:ef:98:fd:5f:f9:1e:4f:
4d:d3:4e:6e:8f:7e:8a:c7:49:42:1f:dd:01:48:6e:b8:e5:5f:
6f:17:2c:ba:ca:04:94:66:fc:52:97:f3:1c:7a:8c:1c:10:a3:
9f:f8:cb:ce:55:ac:0f:ef:88:83:fd:d7:b8:8d:8f:b1:ac:29:
e4:a8:2f:53:03:e4:d5:04:f9:59:e6:c6:4b:6a:45:00:66:a3:
e4:35:ff:83:ea:cd:59:04:22:f2:16:14:70:c8:50:cd:cc:8d:
6a:f9:3a:a8:0b:69:5b:93:6e:d6:6c:41:6f:3f:35:e7:0d:6f:
3a:b0:2c:f2:af:b8:3e:5c:28:e9:a2:89:fb:52:8b:d4:91:d2:
86:0a:20:1e:a9:15:fb:17:9e:7c:25:a3:d2:22:72:b4:57:6d:
3f:0c:39:72:ea:f7:25:91:78:16:bc:22:74:68:d9:4b:db:60:
6a:40:47:dd:d5:01:79:20:a5:46:f1:83:bd:dd:a3:15:0d:c6:
25:6b:9b:f9:45:70:c7:ac:f2:67:c6:60:a5:cb:06:9b:e7:25:
4a:d8:5a:8d:e7:56:5b:df:b3:22:f7:a0:89:41:11:20:ee:ea:
b0:38:59:2d:6e:1a:d7:23:88:e8:15:28:31:10:49:2f:65:0e:
97:e4:fa:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 16:58:38 2025 by rpki-client