Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/CD249A638DDF26FCCA4E323B7A36B7EA28290D4313369036F42DB54976722E49/0/3230312e3135392e3232302e302f32322d3234203d3e203631343638.roa
File: 3230312e3135392e3232302e302f32322d3234203d3e203631343638.roa (raw, json)
Hash identifier: bDT0hBSezXMK8O/gbEsKal4jnW+xuczB1BaG4OHQlhc=
Subject key identifier: CD:16:F9:C3:97:F5:F1:7C:68:30:6E:62:48:B8:69:D2:43:B4:3D:B0
Certificate issuer: /CN=12608F449BBF3F86819F95307654EF5D740A9084
Certificate serial: 12E610D49799EBDE60F19B966EFB6A72356887DD
Authority key identifier: 12:60:8F:44:9B:BF:3F:86:81:9F:95:30:76:54:EF:5D:74:0A:90:84
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/12608F449BBF3F86819F95307654EF5D740A9084.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/CD249A638DDF26FCCA4E323B7A36B7EA28290D4313369036F42DB54976722E49/0/3230312e3135392e3232302e302f32322d3234203d3e203631343638.roa
Signing time: Tue 04 Feb 2025 18:16:09 +0000
ROA not before: Tue 04 Feb 2025 18:11:09 +0000
ROA not after: Tue 03 Feb 2026 18:16:09 +0000
asID: 61468
IP address blocks: 201.159.220.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/CD249A638DDF26FCCA4E323B7A36B7EA28290D4313369036F42DB54976722E49/0/12608F449BBF3F86819F95307654EF5D740A9084.crl
rsync://repository.lacnic.net/rpki/lacnic/CD249A638DDF26FCCA4E323B7A36B7EA28290D4313369036F42DB54976722E49/0/12608F449BBF3F86819F95307654EF5D740A9084.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/12608F449BBF3F86819F95307654EF5D740A9084.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:e6:10:d4:97:99:eb:de:60:f1:9b:96:6e:fb:6a:72:35:68:87:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12608F449BBF3F86819F95307654EF5D740A9084
Validity
Not Before: Feb 4 18:11:09 2025 GMT
Not After : Feb 3 18:16:09 2026 GMT
Subject: CN=CD16F9C397F5F17C68306E6248B869D243B43DB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:5e:3a:58:ee:a9:de:7e:c3:35:4f:59:3b:e8:
34:46:18:98:c5:1e:96:84:ff:fd:59:c3:f5:7a:c6:
b4:ae:2f:0f:44:15:3f:97:36:02:7d:aa:00:24:91:
b6:68:17:bd:43:64:df:f8:98:62:94:2c:0d:d6:99:
f6:f6:4d:29:a7:8d:b0:0f:e6:0f:52:6b:b3:43:b0:
4b:ad:90:52:c4:21:d8:b4:ca:c9:c4:33:67:94:f2:
71:29:27:27:0b:fd:dc:8e:49:2a:8a:82:c4:5c:d6:
9d:5c:66:75:95:4e:05:19:96:07:eb:60:93:a0:92:
42:22:7b:cc:7b:f2:87:27:af:c1:3d:e6:1d:98:92:
03:05:8d:9e:dc:39:af:09:ca:e1:80:40:cb:e8:3b:
19:b4:23:30:6c:62:cc:5c:e6:f1:7b:33:9b:b9:dc:
2a:e6:76:75:a3:48:54:84:f4:3c:2b:41:01:1e:0b:
e8:86:cb:89:68:e6:da:21:c1:54:f8:75:ef:eb:93:
55:f4:51:16:dd:52:d3:39:11:3d:3d:49:d5:07:59:
25:3c:c5:f7:4f:79:1c:84:26:34:0a:03:39:b6:a9:
83:51:f8:ca:35:08:33:2a:0a:5e:46:2f:ad:78:77:
3b:ef:d5:21:e8:4a:de:7e:2b:14:57:4d:c8:43:fd:
09:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:16:F9:C3:97:F5:F1:7C:68:30:6E:62:48:B8:69:D2:43:B4:3D:B0
X509v3 Authority Key Identifier:
keyid:12:60:8F:44:9B:BF:3F:86:81:9F:95:30:76:54:EF:5D:74:0A:90:84
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/CD249A638DDF26FCCA4E323B7A36B7EA28290D4313369036F42DB54976722E49/0/12608F449BBF3F86819F95307654EF5D740A9084.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/12608F449BBF3F86819F95307654EF5D740A9084.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/CD249A638DDF26FCCA4E323B7A36B7EA28290D4313369036F42DB54976722E49/0/3230312e3135392e3232302e302f32322d3234203d3e203631343638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.159.220.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:d5:01:45:46:38:5a:34:b9:27:73:d8:17:c4:a4:8b:4e:81:
fb:fe:47:fe:ef:3e:13:c6:39:33:b3:ab:45:d4:7c:48:86:a9:
f6:19:f3:9d:07:f7:77:59:43:7b:8a:8b:52:c6:97:14:0a:d7:
b8:66:c7:e8:67:e4:a2:6e:48:31:9a:28:15:c8:2a:e5:4f:92:
1b:4b:97:92:c9:61:92:62:84:60:4d:2f:4b:f5:50:15:9a:88:
3e:d0:6d:8c:c4:e8:25:f9:3b:6f:8a:14:cd:d4:d5:a3:26:3b:
74:f7:e3:23:fc:aa:b2:b6:dc:1e:d0:25:60:4b:e1:e6:6c:c8:
97:ba:a6:47:0a:39:a0:07:39:db:9e:11:bc:27:52:df:fd:b3:
c9:b6:b8:ea:44:da:bd:b5:6a:7e:6f:a0:62:4b:90:c2:a5:09:
ae:f8:9b:48:a5:b3:68:b8:1a:d8:9c:22:4b:75:78:a1:a6:62:
01:60:cb:d1:0c:db:1c:2e:d3:ed:ed:b9:26:ed:07:b3:3e:35:
b1:bd:df:b4:10:bc:5c:c4:ba:e3:4f:0d:80:3e:34:fa:06:32:
a6:34:ab:5d:b9:42:33:1b:de:51:44:19:59:dc:c9:db:a2:e3:
a5:dd:80:27:af:3d:19:b1:e5:b9:15:68:03:a2:95:e4:c0:4f:
9e:ab:e2:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 14:33:17 2025 by rpki-client