Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/CE8E1685E153FC4EB9919C52C7DA2B793C30180023365E96F73E7DAC6A04E9FD/0/323830333a623830303a3a2f33322d3634203d3e20323632323032.roa
File: 323830333a623830303a3a2f33322d3634203d3e20323632323032.roa (raw, json)
Hash identifier: IOwtCq0mZvXUhVPf6cjzgwLLhozltK6BRGnvhdWAnc8=
Subject key identifier: D9:87:78:08:3F:07:EC:92:46:DE:26:83:52:FC:59:77:01:52:E9:6B
Certificate issuer: /CN=C3A4C72D613B89220886ECA00755498ABF1F663F
Certificate serial: 547D11DA9BF74B216576D04167118A406E149493
Authority key identifier: C3:A4:C7:2D:61:3B:89:22:08:86:EC:A0:07:55:49:8A:BF:1F:66:3F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C3A4C72D613B89220886ECA00755498ABF1F663F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/CE8E1685E153FC4EB9919C52C7DA2B793C30180023365E96F73E7DAC6A04E9FD/0/323830333a623830303a3a2f33322d3634203d3e20323632323032.roa
Signing time: Tue 04 Feb 2025 18:39:54 +0000
ROA not before: Tue 04 Feb 2025 18:34:54 +0000
ROA not after: Tue 03 Feb 2026 18:39:54 +0000
asID: 262202
IP address blocks: 2803:b800::/32 maxlen: 64
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/CE8E1685E153FC4EB9919C52C7DA2B793C30180023365E96F73E7DAC6A04E9FD/0/C3A4C72D613B89220886ECA00755498ABF1F663F.crl
rsync://repository.lacnic.net/rpki/lacnic/CE8E1685E153FC4EB9919C52C7DA2B793C30180023365E96F73E7DAC6A04E9FD/0/C3A4C72D613B89220886ECA00755498ABF1F663F.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C3A4C72D613B89220886ECA00755498ABF1F663F.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 03:20:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:7d:11:da:9b:f7:4b:21:65:76:d0:41:67:11:8a:40:6e:14:94:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C3A4C72D613B89220886ECA00755498ABF1F663F
Validity
Not Before: Feb 4 18:34:54 2025 GMT
Not After : Feb 3 18:39:54 2026 GMT
Subject: CN=D98778083F07EC9246DE268352FC59770152E96B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:05:af:a6:2b:a9:c8:6e:40:28:07:d3:86:58:
df:e0:46:0b:aa:cc:a7:94:ac:03:58:e9:5f:6d:d0:
4e:7a:63:93:f5:87:9c:e1:7c:aa:8a:d0:97:23:34:
d8:4f:54:f4:b8:e2:c8:d4:7a:e0:5b:b5:cd:6a:f3:
5f:94:f4:50:8b:a7:51:2c:09:59:64:26:9c:b6:7f:
66:0a:de:17:e0:08:87:43:c5:99:bf:7a:cd:e3:35:
2b:eb:f8:c1:d3:f4:60:32:0e:75:58:24:ab:e3:20:
08:ed:a7:94:06:58:09:d0:c0:06:1c:6c:e8:fc:04:
94:68:22:8e:be:3b:9e:18:a8:f5:bb:43:5f:7c:24:
56:1c:a9:d0:fc:57:47:18:b4:0e:9d:b8:04:ad:e4:
22:b7:e0:d0:47:a8:1d:2a:20:ff:06:f6:8e:38:b8:
a2:29:cb:6d:1d:20:80:44:f7:78:3a:cd:fe:5c:99:
84:b3:51:f2:5f:7d:2e:b5:a8:54:8a:d9:c4:f7:cb:
eb:23:47:60:85:7f:c7:23:a5:a7:3e:14:56:df:48:
e4:40:44:4b:1e:73:20:82:95:d9:b2:0a:fe:19:42:
76:43:5b:cb:43:9e:d8:55:86:10:33:0b:cd:ed:bd:
13:cb:a1:f2:dc:92:06:62:5a:09:9e:6d:11:ab:87:
aa:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:87:78:08:3F:07:EC:92:46:DE:26:83:52:FC:59:77:01:52:E9:6B
X509v3 Authority Key Identifier:
keyid:C3:A4:C7:2D:61:3B:89:22:08:86:EC:A0:07:55:49:8A:BF:1F:66:3F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/CE8E1685E153FC4EB9919C52C7DA2B793C30180023365E96F73E7DAC6A04E9FD/0/C3A4C72D613B89220886ECA00755498ABF1F663F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C3A4C72D613B89220886ECA00755498ABF1F663F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/CE8E1685E153FC4EB9919C52C7DA2B793C30180023365E96F73E7DAC6A04E9FD/0/323830333a623830303a3a2f33322d3634203d3e20323632323032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:b800::/32
Signature Algorithm: sha256WithRSAEncryption
38:55:aa:eb:a2:cb:dc:85:71:50:d6:ee:32:3d:6d:ed:16:c5:
68:85:6d:f5:5d:c7:a0:6e:fd:13:86:05:5a:4e:6a:02:20:45:
b4:25:d3:02:b3:d9:9b:60:5f:57:98:ed:48:a0:05:85:3e:26:
48:86:17:4c:83:1e:33:0c:eb:7f:fe:e5:8b:34:71:46:0f:62:
7f:86:ac:d5:e4:dc:2b:15:09:0e:8b:47:c0:a7:40:cd:b2:3a:
6d:63:b8:99:7b:b8:30:f5:80:3c:ec:59:cb:c7:32:54:8c:ed:
0a:53:f9:26:44:04:31:1a:46:3f:b4:14:05:56:27:8b:0d:16:
a0:62:b0:0e:c8:71:54:e0:f0:17:fd:02:98:8f:42:5a:9b:99:
fb:0e:f9:60:6c:eb:19:4f:77:20:74:35:05:d4:87:39:52:7a:
d0:71:08:c9:30:99:12:3f:b1:5c:cf:a2:7a:6b:3a:1b:51:3a:
c6:13:ed:5e:ae:1c:74:bb:b9:93:79:4f:a6:04:3e:3b:b1:a4:
4e:cd:2f:fd:48:8e:10:2a:ed:09:82:c8:8a:6f:4c:19:0a:44:
98:aa:c7:9b:64:eb:2a:11:69:f4:1b:30:ab:5c:23:51:91:76:
a3:f6:b2:1e:cb:cb:50:82:b5:3d:e8:44:f3:35:12:29:e5:bb:
5d:b6:39:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 04:46:10 2025 by rpki-client