Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/CD0E054623AC9043C0E299C2C90B143803BD89125B0E863855C49C3B73F7BAA1/0/3230302e312e3132302e302f32322d3234203d3e203237363738.roa
File: 3230302e312e3132302e302f32322d3234203d3e203237363738.roa (raw, json)
Hash identifier: x/D8gJw3YYux4yxmljhBHJqz0IMmr9HF9CmZXLLRfSQ=
Subject key identifier: CA:7A:90:00:EE:D7:0A:58:B5:EF:4D:8F:DF:E2:4A:52:25:7A:0D:86
Certificate issuer: /CN=E35FC2646A9FC8929B694AAAE04D52023AA4680C
Certificate serial: 2F1DA87B8884C2422719A9C196DD0F534115E3E6
Authority key identifier: E3:5F:C2:64:6A:9F:C8:92:9B:69:4A:AA:E0:4D:52:02:3A:A4:68:0C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E35FC2646A9FC8929B694AAAE04D52023AA4680C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/CD0E054623AC9043C0E299C2C90B143803BD89125B0E863855C49C3B73F7BAA1/0/3230302e312e3132302e302f32322d3234203d3e203237363738.roa
Signing time: Tue 04 Feb 2025 20:05:52 +0000
ROA not before: Tue 04 Feb 2025 20:00:52 +0000
ROA not after: Tue 03 Feb 2026 20:05:52 +0000
asID: 27678
IP address blocks: 200.1.120.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/CD0E054623AC9043C0E299C2C90B143803BD89125B0E863855C49C3B73F7BAA1/0/E35FC2646A9FC8929B694AAAE04D52023AA4680C.crl
rsync://repository.lacnic.net/rpki/lacnic/CD0E054623AC9043C0E299C2C90B143803BD89125B0E863855C49C3B73F7BAA1/0/E35FC2646A9FC8929B694AAAE04D52023AA4680C.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E35FC2646A9FC8929B694AAAE04D52023AA4680C.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 07:33:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:1d:a8:7b:88:84:c2:42:27:19:a9:c1:96:dd:0f:53:41:15:e3:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E35FC2646A9FC8929B694AAAE04D52023AA4680C
Validity
Not Before: Feb 4 20:00:52 2025 GMT
Not After : Feb 3 20:05:52 2026 GMT
Subject: CN=CA7A9000EED70A58B5EF4D8FDFE24A52257A0D86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:3a:27:46:f9:72:44:eb:da:9b:40:3b:50:88:
a8:cf:7a:33:73:76:40:98:3c:1a:29:25:0e:75:38:
75:cd:50:8d:5e:b0:69:9c:84:f8:9f:5b:f7:83:1b:
8d:c6:a4:48:e7:e3:92:93:f6:b5:23:9f:fd:e3:e8:
c8:77:40:4d:16:40:1f:80:b8:c2:ac:fa:69:63:e1:
82:22:ea:4c:9d:c3:f0:12:86:1f:c0:04:cc:7b:10:
2b:a6:64:3e:bc:88:c8:02:5c:bf:8f:95:8b:98:46:
b6:f5:18:a7:cc:f0:85:c4:82:36:a1:35:55:f2:39:
c4:a1:a3:fb:96:dc:bc:0d:08:88:73:e8:b5:6e:95:
43:61:fe:02:c6:57:7a:b2:a0:35:e9:ac:e5:d0:a7:
46:97:e6:e1:9c:0b:c5:cc:58:f8:29:25:df:4e:c6:
a3:c9:c6:f2:ad:dc:56:71:8a:fb:b5:41:ef:2a:e7:
a5:08:52:e1:55:20:5b:71:62:6e:ed:31:2a:5f:39:
49:a4:f1:79:c6:db:ad:42:a5:f3:b2:dc:d5:ad:8d:
e3:36:51:31:51:cb:7e:84:90:f7:5e:c1:18:65:11:
e6:af:3b:49:80:0f:02:b9:0c:82:a8:57:86:93:9b:
6f:f0:e9:7b:3e:11:e7:ee:29:37:0c:0d:50:46:66:
af:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:7A:90:00:EE:D7:0A:58:B5:EF:4D:8F:DF:E2:4A:52:25:7A:0D:86
X509v3 Authority Key Identifier:
keyid:E3:5F:C2:64:6A:9F:C8:92:9B:69:4A:AA:E0:4D:52:02:3A:A4:68:0C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/CD0E054623AC9043C0E299C2C90B143803BD89125B0E863855C49C3B73F7BAA1/0/E35FC2646A9FC8929B694AAAE04D52023AA4680C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E35FC2646A9FC8929B694AAAE04D52023AA4680C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/CD0E054623AC9043C0E299C2C90B143803BD89125B0E863855C49C3B73F7BAA1/0/3230302e312e3132302e302f32322d3234203d3e203237363738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.1.120.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:ae:0f:1c:25:67:2e:84:45:6a:95:54:44:b1:fd:ca:e6:64:
fd:83:2c:b6:fc:ef:a0:f2:ef:f5:22:31:1c:f6:43:aa:de:00:
5f:83:b5:f9:a4:6a:e5:d9:3c:2d:df:37:38:5d:79:3b:e9:d4:
7d:e0:c0:69:9d:82:b6:8d:c1:84:06:39:c0:48:d6:47:10:60:
28:11:16:2d:b6:74:94:e4:41:c2:23:e0:02:f6:1c:7c:f8:2a:
22:3b:7e:4c:85:b1:2f:2d:a4:2c:ea:6e:ac:d7:94:86:4b:86:
7f:68:f4:c9:b4:ef:7f:43:52:53:4b:b8:59:6b:f1:8e:dc:b2:
59:09:d6:a7:a4:66:bc:83:89:d3:6d:8d:30:58:3c:e2:81:1b:
2f:51:8e:79:21:68:e7:cd:70:3b:e6:c8:94:29:b2:e1:a6:99:
2f:0f:e7:b4:f8:e5:48:ac:55:c2:eb:e2:50:2f:03:eb:05:a7:
6f:3a:a6:66:27:e9:52:60:69:af:c7:ae:1c:1d:1d:69:62:47:
aa:7a:00:3d:63:4e:eb:cf:29:6d:ad:48:27:7e:cb:fd:13:17:
aa:ec:a0:92:fe:49:5c:0c:34:32:af:f1:40:ff:eb:6d:84:40:
d5:c2:27:58:6f:3a:a2:fd:fa:8b:b0:06:75:ff:cb:79:5f:ba:
f6:49:35:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 14:44:56 2025 by rpki-client