Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C66D3C229C4AB37AD1602932D64C11066749064416F3924654E61CC2CBDC0404/0/323830333a636232303a3a2f33322d3438203d3e20323635373735.roa
File: 323830333a636232303a3a2f33322d3438203d3e20323635373735.roa (raw, json)
Hash identifier: pIFpRgIqFdCEmaMRporuRnIDyo/rTx+n8JaNa/1wF5c=
Subject key identifier: 5F:C9:4E:F2:98:6E:6E:77:9F:97:43:E1:67:A3:F0:BF:05:15:19:A9
Certificate issuer: /CN=1CE606048F2E548E6C388DF39C23BFAA9A351F57
Certificate serial: 25A39BFD50A8CE87AB27787C95D672398227A5A7
Authority key identifier: 1C:E6:06:04:8F:2E:54:8E:6C:38:8D:F3:9C:23:BF:AA:9A:35:1F:57
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1CE606048F2E548E6C388DF39C23BFAA9A351F57.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C66D3C229C4AB37AD1602932D64C11066749064416F3924654E61CC2CBDC0404/0/323830333a636232303a3a2f33322d3438203d3e20323635373735.roa
Signing time: Tue 04 Feb 2025 20:06:04 +0000
ROA not before: Tue 04 Feb 2025 20:01:04 +0000
ROA not after: Tue 03 Feb 2026 20:06:04 +0000
asID: 265775
IP address blocks: 2803:cb20::/32 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/C66D3C229C4AB37AD1602932D64C11066749064416F3924654E61CC2CBDC0404/0/1CE606048F2E548E6C388DF39C23BFAA9A351F57.crl
rsync://repository.lacnic.net/rpki/lacnic/C66D3C229C4AB37AD1602932D64C11066749064416F3924654E61CC2CBDC0404/0/1CE606048F2E548E6C388DF39C23BFAA9A351F57.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1CE606048F2E548E6C388DF39C23BFAA9A351F57.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 11:12:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:a3:9b:fd:50:a8:ce:87:ab:27:78:7c:95:d6:72:39:82:27:a5:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1CE606048F2E548E6C388DF39C23BFAA9A351F57
Validity
Not Before: Feb 4 20:01:04 2025 GMT
Not After : Feb 3 20:06:04 2026 GMT
Subject: CN=5FC94EF2986E6E779F9743E167A3F0BF051519A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c8:9d:ac:21:a8:34:6e:7c:5b:d1:12:11:d9:
f8:de:39:47:4a:2d:21:f4:bb:a1:a4:a5:02:83:54:
db:28:3d:9f:d6:14:84:9d:c3:ba:d4:b4:5b:6e:0c:
d4:4b:38:91:1b:f0:7b:23:3b:81:88:a6:f6:2b:8e:
8b:ed:1e:b1:9c:5a:b7:b2:d0:f4:21:7b:4c:a6:19:
db:67:cd:5e:9f:d9:4f:38:5d:ac:83:c8:6d:ce:07:
17:8c:fe:f8:ee:b8:80:e2:25:9e:c2:23:35:23:bd:
7f:57:8a:47:23:74:5d:a5:c8:a0:c9:2b:66:0b:98:
97:58:54:de:78:c7:3b:b6:91:b1:6e:4b:8e:a3:f2:
d4:0a:87:c5:f8:6b:10:18:de:39:f8:52:42:00:06:
d3:44:47:c8:49:d1:7f:bd:5f:75:85:82:d8:a1:77:
c9:ab:bd:93:a6:58:59:a3:ac:b9:6d:4a:d6:14:e4:
f5:ac:2d:18:1b:ca:23:26:59:d6:44:39:21:f5:3b:
e3:31:66:04:e1:0d:67:d8:8a:49:a5:24:22:b1:73:
a0:ab:28:ab:76:d0:78:47:80:43:90:77:92:bd:da:
98:f0:23:b1:69:f2:60:40:ec:f7:36:e2:05:41:81:
4a:a1:73:48:db:ff:67:23:24:34:7c:3f:1b:45:04:
9b:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:C9:4E:F2:98:6E:6E:77:9F:97:43:E1:67:A3:F0:BF:05:15:19:A9
X509v3 Authority Key Identifier:
keyid:1C:E6:06:04:8F:2E:54:8E:6C:38:8D:F3:9C:23:BF:AA:9A:35:1F:57
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C66D3C229C4AB37AD1602932D64C11066749064416F3924654E61CC2CBDC0404/0/1CE606048F2E548E6C388DF39C23BFAA9A351F57.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1CE606048F2E548E6C388DF39C23BFAA9A351F57.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C66D3C229C4AB37AD1602932D64C11066749064416F3924654E61CC2CBDC0404/0/323830333a636232303a3a2f33322d3438203d3e20323635373735.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:cb20::/32
Signature Algorithm: sha256WithRSAEncryption
50:51:7f:64:b9:b9:46:d5:10:ea:15:e2:04:1c:56:c2:6b:f0:
1c:f5:db:00:f9:54:28:70:70:ac:b9:fc:7e:5c:61:83:12:7f:
7c:57:6b:f7:7e:76:d6:56:f0:94:85:f9:23:bd:b6:7e:3d:6a:
ce:30:11:f3:f4:0d:84:1d:f8:55:f7:df:25:e9:cb:cf:1c:ee:
33:aa:69:fb:02:dc:a0:2d:9b:13:fd:cc:9a:91:77:a7:95:e0:
39:f4:79:ff:53:f2:71:1e:eb:16:43:fd:2f:e8:f2:08:20:b4:
d6:11:0a:9f:43:41:b7:ba:3e:17:ff:67:ab:7c:c4:de:61:82:
4b:2f:b5:83:01:4e:d2:93:3b:78:bb:23:8b:bf:05:1c:eb:75:
a5:40:62:b2:df:84:1f:f1:6b:08:9b:da:1e:9b:c4:63:36:1e:
a3:24:d0:f6:a8:56:ad:45:c3:c5:ee:3a:62:b7:b6:25:6f:71:
4d:3f:bb:6f:0e:78:cf:5e:ef:ef:80:d0:bd:ab:67:57:c6:23:
e7:90:d9:f7:c4:bd:65:c6:ca:bc:b8:5e:46:d7:5e:37:2e:2b:
3f:00:a9:8e:7f:37:c2:e9:b0:6b:c0:e7:63:fe:19:f8:58:22:
d0:90:ad:46:4a:68:98:60:a6:39:0b:c7:a9:31:1c:94:0e:7b:
ce:30:5f:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 06:22:55 2025 by rpki-client