Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C7B2A63D66F42CB6E50354A629BFB5A68A3FC6F96DC2A2043A751D3A9C9D4321/0/3139302e322e3139322e302f32302d3234203d3e203233323031.roa
File: 3139302e322e3139322e302f32302d3234203d3e203233323031.roa (raw, json)
Hash identifier: w0rRCyaKC6uuxtWzzpi+PG6KYikT9Bw3VUcFKKhAubo=
Subject key identifier: 5E:CC:C5:F5:1B:A6:AD:DC:41:40:97:5F:86:DE:D9:C3:67:4E:E2:72
Certificate issuer: /CN=9857400AE42A0A22A3E618304A1502E0E0C01DCA
Certificate serial: 34A9B42D9BF82C37F32631736C0D2AE9A2B401D7
Authority key identifier: 98:57:40:0A:E4:2A:0A:22:A3:E6:18:30:4A:15:02:E0:E0:C0:1D:CA
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9857400AE42A0A22A3E618304A1502E0E0C01DCA.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C7B2A63D66F42CB6E50354A629BFB5A68A3FC6F96DC2A2043A751D3A9C9D4321/0/3139302e322e3139322e302f32302d3234203d3e203233323031.roa
Signing time: Tue 04 Feb 2025 18:40:28 +0000
ROA not before: Tue 04 Feb 2025 18:35:28 +0000
ROA not after: Tue 03 Feb 2026 18:40:28 +0000
asID: 23201
IP address blocks: 190.2.192.0/20 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/C7B2A63D66F42CB6E50354A629BFB5A68A3FC6F96DC2A2043A751D3A9C9D4321/0/9857400AE42A0A22A3E618304A1502E0E0C01DCA.crl
rsync://repository.lacnic.net/rpki/lacnic/C7B2A63D66F42CB6E50354A629BFB5A68A3FC6F96DC2A2043A751D3A9C9D4321/0/9857400AE42A0A22A3E618304A1502E0E0C01DCA.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9857400AE42A0A22A3E618304A1502E0E0C01DCA.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:a9:b4:2d:9b:f8:2c:37:f3:26:31:73:6c:0d:2a:e9:a2:b4:01:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9857400AE42A0A22A3E618304A1502E0E0C01DCA
Validity
Not Before: Feb 4 18:35:28 2025 GMT
Not After : Feb 3 18:40:28 2026 GMT
Subject: CN=5ECCC5F51BA6ADDC4140975F86DED9C3674EE272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7d:a1:b3:f5:0f:b8:a6:cc:9b:45:df:a5:97:
10:8d:d7:d3:c0:26:57:47:ad:f5:8c:d6:fa:35:5f:
5f:09:93:f8:13:0c:aa:fc:7f:e3:21:3c:9a:47:c2:
d4:ab:7a:7b:85:9d:fc:41:96:5a:39:2b:e0:ca:dc:
8b:2c:32:dc:59:1c:b7:a2:c4:2b:fd:29:79:ca:6d:
02:6e:af:8a:33:6b:3a:9a:2f:f3:c2:29:5c:ef:74:
a9:5c:07:40:d7:f6:b1:20:85:02:30:34:01:92:0d:
31:d8:4e:2e:6f:b9:c9:3d:88:da:07:9e:94:6b:32:
9f:32:e1:6c:e6:b4:ee:55:45:96:4e:ca:6d:da:4c:
fa:04:78:bf:c5:7f:9f:21:25:b6:13:b2:15:2b:0d:
a8:b6:85:82:e1:47:80:7c:bb:fd:50:eb:1e:3c:89:
75:6e:83:49:84:44:e8:60:b6:2c:93:57:b1:5b:75:
67:97:5f:87:1f:8f:9d:42:bf:50:25:ce:f0:f2:97:
d1:f7:4b:57:8e:fe:5c:23:41:21:e2:67:60:5f:2e:
04:78:45:63:c7:ed:1c:e5:be:72:c0:0c:27:97:ef:
5f:ff:6e:80:b6:d8:98:fa:51:a4:51:a8:4d:24:3a:
19:ba:9e:1c:56:50:4b:ef:ba:15:af:12:5d:b7:11:
ce:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:CC:C5:F5:1B:A6:AD:DC:41:40:97:5F:86:DE:D9:C3:67:4E:E2:72
X509v3 Authority Key Identifier:
keyid:98:57:40:0A:E4:2A:0A:22:A3:E6:18:30:4A:15:02:E0:E0:C0:1D:CA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C7B2A63D66F42CB6E50354A629BFB5A68A3FC6F96DC2A2043A751D3A9C9D4321/0/9857400AE42A0A22A3E618304A1502E0E0C01DCA.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/9857400AE42A0A22A3E618304A1502E0E0C01DCA.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C7B2A63D66F42CB6E50354A629BFB5A68A3FC6F96DC2A2043A751D3A9C9D4321/0/3139302e322e3139322e302f32302d3234203d3e203233323031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.2.192.0/20
Signature Algorithm: sha256WithRSAEncryption
3e:08:06:d6:f2:e6:d8:35:68:81:d1:f2:0b:79:d0:52:6a:6f:
0e:52:00:73:48:95:4d:70:db:a8:21:cc:a8:3c:1f:39:67:1e:
1a:b2:d6:47:67:f0:5b:57:00:01:95:3d:fc:d8:79:66:0d:d1:
18:3b:fd:3a:40:13:44:c3:0e:c9:3d:de:fc:e9:a0:73:2f:86:
aa:79:7e:9d:08:84:7c:38:27:68:a2:6d:22:0b:8b:80:15:f3:
c5:c5:01:37:dd:3f:5a:06:cf:6f:c7:9b:04:da:0d:21:98:97:
c9:c1:21:09:a5:65:e0:0f:85:d2:4c:fc:50:b0:a5:12:61:ca:
dc:b0:5f:51:76:2e:5b:5f:44:bf:79:70:95:1c:85:61:88:9e:
40:52:d9:27:e9:83:d7:64:64:72:29:d4:2f:a1:19:d7:23:14:
41:59:a6:b6:ad:6b:95:64:b7:9a:a6:3b:80:ff:36:a2:63:6a:
7a:2e:e3:61:cd:ec:e2:62:68:57:3f:42:fc:ad:80:f7:3f:d8:
c0:f6:c3:b5:6d:47:d5:c5:39:65:30:04:fb:7c:1b:e4:c5:d1:
d7:71:0c:4b:f6:5a:9d:5c:c3:2d:46:cc:34:d9:4f:74:a9:77:
08:41:ae:0a:26:fd:5c:64:f9:66:9d:06:c8:6a:ea:b4:fd:ad:
ae:d8:1c:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 11:42:31 2025 by rpki-client