Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D0A76A37CCDDA60FAA3806F550F54723B2051F7F40A6BAEBF1D865EC3591B80D/0/323830333a636230303a3a2f33322d3438203d3e203236363139.roa
File: 323830333a636230303a3a2f33322d3438203d3e203236363139.roa (raw, json)
Hash identifier: kIcGkUpfytyxDQycf/dNT5XFTd/Rduql027AsbrfBhk=
Subject key identifier: D7:B8:37:A1:81:E3:89:86:F2:73:F0:F6:8E:69:F0:79:32:22:45:58
Certificate issuer: /CN=AD66E9F5C3C11A5F71AC100BC05A9958EF2148C9
Certificate serial: 2FEDE8EC914C89BBF94348F16D7AF085CE246828
Authority key identifier: AD:66:E9:F5:C3:C1:1A:5F:71:AC:10:0B:C0:5A:99:58:EF:21:48:C9
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AD66E9F5C3C11A5F71AC100BC05A9958EF2148C9.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D0A76A37CCDDA60FAA3806F550F54723B2051F7F40A6BAEBF1D865EC3591B80D/0/323830333a636230303a3a2f33322d3438203d3e203236363139.roa
Signing time: Mon 09 Dec 2024 20:00:01 +0000
ROA not before: Mon 09 Dec 2024 19:55:01 +0000
ROA not after: Mon 08 Dec 2025 20:00:01 +0000
asID: 26619
IP address blocks: 2803:cb00::/32 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/D0A76A37CCDDA60FAA3806F550F54723B2051F7F40A6BAEBF1D865EC3591B80D/0/AD66E9F5C3C11A5F71AC100BC05A9958EF2148C9.crl
rsync://repository.lacnic.net/rpki/lacnic/D0A76A37CCDDA60FAA3806F550F54723B2051F7F40A6BAEBF1D865EC3591B80D/0/AD66E9F5C3C11A5F71AC100BC05A9958EF2148C9.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AD66E9F5C3C11A5F71AC100BC05A9958EF2148C9.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:ed:e8:ec:91:4c:89:bb:f9:43:48:f1:6d:7a:f0:85:ce:24:68:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AD66E9F5C3C11A5F71AC100BC05A9958EF2148C9
Validity
Not Before: Dec 9 19:55:01 2024 GMT
Not After : Dec 8 20:00:01 2025 GMT
Subject: CN=D7B837A181E38986F273F0F68E69F07932224558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6e:ea:8b:04:6d:79:70:bc:1c:1b:d1:87:ef:
62:a6:d2:46:77:2d:1e:29:69:12:56:b8:71:32:16:
82:76:a1:05:8e:8b:a3:51:e9:c9:ee:a7:cf:2f:2e:
f8:f0:f7:89:a7:dc:d9:8a:f8:76:f8:29:dc:04:63:
3f:ee:66:ba:fa:43:fa:8d:df:d7:b4:fd:42:07:82:
8c:3a:bc:c3:36:87:95:80:f0:d3:ab:a2:5d:c0:c4:
51:9c:24:5c:1c:99:9c:a5:4e:44:cb:21:51:ad:89:
fb:cb:36:ad:17:eb:9b:6c:c9:47:4a:78:66:82:6b:
1c:70:62:22:25:30:9e:1d:81:90:9b:f8:37:41:6c:
e8:2a:2a:5e:a0:79:0f:b3:a2:1d:3d:3b:11:c6:73:
81:96:58:fc:9a:b6:c8:81:03:08:9c:f4:b2:3f:39:
e4:31:de:7b:01:74:2c:58:b9:45:bd:c3:0f:c7:31:
a4:e5:c7:23:82:82:91:f0:87:44:8e:63:31:26:ea:
19:74:f0:5f:d0:62:ab:0a:b0:8a:d5:5a:e9:44:cb:
53:54:76:7f:d2:07:d7:04:96:6f:cf:f4:ad:0d:c4:
2e:0b:d9:f2:e1:59:59:1e:19:0e:0d:22:47:4a:d4:
8b:b1:26:b5:47:ab:36:fa:4b:e1:f2:73:59:c0:db:
e1:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:B8:37:A1:81:E3:89:86:F2:73:F0:F6:8E:69:F0:79:32:22:45:58
X509v3 Authority Key Identifier:
keyid:AD:66:E9:F5:C3:C1:1A:5F:71:AC:10:0B:C0:5A:99:58:EF:21:48:C9
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D0A76A37CCDDA60FAA3806F550F54723B2051F7F40A6BAEBF1D865EC3591B80D/0/AD66E9F5C3C11A5F71AC100BC05A9958EF2148C9.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AD66E9F5C3C11A5F71AC100BC05A9958EF2148C9.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D0A76A37CCDDA60FAA3806F550F54723B2051F7F40A6BAEBF1D865EC3591B80D/0/323830333a636230303a3a2f33322d3438203d3e203236363139.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:cb00::/32
Signature Algorithm: sha256WithRSAEncryption
41:65:dd:56:90:cb:06:f8:6f:cb:23:38:e5:a8:8e:2e:9d:b5:
82:a3:66:a4:46:63:66:3e:a8:f5:8b:bd:20:40:8e:56:95:c6:
c5:16:bf:eb:7d:ed:cc:f9:31:45:54:2e:dc:b6:d4:71:42:83:
ba:ee:f7:e4:01:b6:9c:46:6f:bd:a5:f9:11:0a:2f:51:32:d0:
c3:c6:38:8b:a5:ae:42:01:7e:17:2c:47:56:21:48:1f:5c:51:
fa:a7:ff:1a:21:03:04:ed:a5:9f:05:f4:dd:6e:ef:d0:2c:84:
f4:1d:4f:83:23:31:e3:07:84:b7:fd:fe:05:f6:62:0f:0b:54:
c6:ca:36:cd:5c:b3:a2:92:5d:bd:0b:4a:ec:74:b9:8e:ea:2f:
c4:d1:61:2a:6f:d2:f4:48:bf:c0:f5:09:01:23:66:04:67:6e:
bb:91:75:87:bd:2e:08:1f:35:22:73:d6:bd:ba:60:a8:25:11:
55:b7:d7:19:5f:bf:94:93:70:1d:0d:c6:9b:83:dd:08:a5:3b:
e7:69:50:74:cf:91:62:b8:b5:c0:de:b1:2d:af:68:a5:8b:f5:
d2:f2:6e:a7:6c:a3:0d:3e:cb:df:6a:66:f7:0f:e6:9b:68:93:
d8:a2:a7:42:cc:92:37:50:7f:c0:24:d5:a9:ac:13:25:a7:37:
2b:ec:ba:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 02:21:40 2025 by rpki-client