Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D0031AF9140330F49D96A996203C233366AF745032360C72A3E483578589C570/0/323830313a31613a333030303a3a2f34382d3438203d3e20323033.roa
File: 323830313a31613a333030303a3a2f34382d3438203d3e20323033.roa (raw, json)
Hash identifier: NeLBzw3aEsR8ydFi5MtAWoqhyVGc5f0EamyJ9TzWMio=
Subject key identifier: FB:7D:E6:9F:BD:AF:7E:75:02:0C:15:03:2C:D1:4F:AE:E0:D2:81:65
Certificate issuer: /CN=120EEB9D1E85BF303E5FAB185F5A397B834333F0
Certificate serial: 694A81F45ABE0FF98302F732BF9E93587700FE38
Authority key identifier: 12:0E:EB:9D:1E:85:BF:30:3E:5F:AB:18:5F:5A:39:7B:83:43:33:F0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/120EEB9D1E85BF303E5FAB185F5A397B834333F0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D0031AF9140330F49D96A996203C233366AF745032360C72A3E483578589C570/0/323830313a31613a333030303a3a2f34382d3438203d3e20323033.roa
Signing time: Tue 04 Feb 2025 18:38:02 +0000
ROA not before: Tue 04 Feb 2025 18:33:02 +0000
ROA not after: Tue 03 Feb 2026 18:38:02 +0000
asID: 203
IP address blocks: 2801:1a:3000::/48 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/D0031AF9140330F49D96A996203C233366AF745032360C72A3E483578589C570/0/120EEB9D1E85BF303E5FAB185F5A397B834333F0.crl
rsync://repository.lacnic.net/rpki/lacnic/D0031AF9140330F49D96A996203C233366AF745032360C72A3E483578589C570/0/120EEB9D1E85BF303E5FAB185F5A397B834333F0.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/120EEB9D1E85BF303E5FAB185F5A397B834333F0.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
69:4a:81:f4:5a:be:0f:f9:83:02:f7:32:bf:9e:93:58:77:00:fe:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=120EEB9D1E85BF303E5FAB185F5A397B834333F0
Validity
Not Before: Feb 4 18:33:02 2025 GMT
Not After : Feb 3 18:38:02 2026 GMT
Subject: CN=FB7DE69FBDAF7E75020C15032CD14FAEE0D28165
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:e8:09:1b:ff:ee:9c:75:9c:46:f0:6c:94:6e:
48:af:8c:83:bd:5a:de:ca:cc:49:d8:55:63:dd:d8:
e9:93:40:51:63:96:2d:0e:36:e3:4d:63:93:d6:47:
57:e1:86:6e:2a:3e:1b:bb:90:ec:97:95:02:83:ed:
36:88:66:65:44:65:bb:09:a1:5d:f0:d7:f5:a9:35:
fc:c0:91:47:66:9d:a9:5e:63:47:61:e6:2f:df:f9:
bb:4c:62:87:7f:99:81:72:1c:2e:e4:59:5f:49:1f:
55:74:e3:4e:0c:60:8e:98:6e:48:7b:88:84:31:1d:
d8:27:98:c5:03:2b:66:7d:ca:8d:02:9e:cf:be:cc:
0b:73:58:f2:a8:bb:09:ca:09:b9:ed:c3:21:3e:60:
7c:d6:51:78:07:63:fa:a5:da:24:e4:65:c4:2e:48:
af:eb:82:b6:01:79:0e:98:b0:78:c9:93:bf:a3:70:
3d:72:a6:b3:a2:d9:c6:86:72:65:29:b4:a9:41:11:
a4:fb:87:05:05:fb:b9:60:8b:2a:43:1d:f5:e0:c5:
b0:b5:a4:7a:1a:53:31:08:bf:c0:bd:7c:cb:5e:43:
8f:4a:09:dd:26:e8:3d:08:e5:58:f1:e5:d0:d6:4c:
22:7d:4d:06:4f:b0:47:0e:41:f1:8e:24:c9:72:7e:
66:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:7D:E6:9F:BD:AF:7E:75:02:0C:15:03:2C:D1:4F:AE:E0:D2:81:65
X509v3 Authority Key Identifier:
keyid:12:0E:EB:9D:1E:85:BF:30:3E:5F:AB:18:5F:5A:39:7B:83:43:33:F0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D0031AF9140330F49D96A996203C233366AF745032360C72A3E483578589C570/0/120EEB9D1E85BF303E5FAB185F5A397B834333F0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/120EEB9D1E85BF303E5FAB185F5A397B834333F0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D0031AF9140330F49D96A996203C233366AF745032360C72A3E483578589C570/0/323830313a31613a333030303a3a2f34382d3438203d3e20323033.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:1a:3000::/48
Signature Algorithm: sha256WithRSAEncryption
1c:bc:6d:a4:1f:b3:62:83:fd:56:05:d5:d2:bb:b1:0b:fc:51:
6f:9f:c0:d9:55:7c:2c:8f:63:ab:60:11:a5:6f:08:2f:1b:42:
42:70:ee:51:51:66:7f:26:b1:ed:61:56:f5:93:d2:12:d7:a2:
44:fc:4d:82:e6:28:83:55:7f:9b:58:9d:3c:15:e3:f5:0e:f5:
09:5d:69:0e:7e:0d:88:77:12:f2:d3:bc:05:ba:bb:10:77:75:
8e:7f:98:6f:2c:3c:85:4c:60:ea:00:a8:1c:f9:2f:4a:09:69:
bc:b0:bd:35:5a:e0:c4:9d:75:06:68:f7:73:bc:80:f1:88:a7:
4c:6a:ba:1e:a3:4e:14:25:17:9a:5b:90:1e:bd:68:9d:b9:23:
7b:8b:bf:5c:bb:4c:ae:08:e1:e3:ee:d9:bc:c9:99:1a:c3:2e:
79:4b:f7:32:7a:75:d1:df:bf:99:e0:47:21:12:60:f0:39:5b:
a8:e5:46:6d:54:55:ad:5b:44:d2:2f:b8:a9:7c:55:13:94:58:
c6:d9:da:85:4e:62:6f:5b:49:b6:0c:85:2b:7f:2d:02:01:2c:
64:4e:fd:ba:18:e1:f1:ab:4e:bd:06:64:a0:18:53:9d:67:bf:
a1:0f:8e:2e:10:64:ba:48:fe:fc:76:8c:02:47:1e:11:80:7f:
fe:08:8c:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 12:52:21 2025 by rpki-client