Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D0EB6D95615E36DCAD35164A699109792C3FCD3F861B8C7D1A60106AD33FFFE2/0/3230302e39352e3232382e302f32342d3234203d3e20323632393136.roa
File: 3230302e39352e3232382e302f32342d3234203d3e20323632393136.roa (raw, json)
Hash identifier: rYNn1/v7TGj/icQE+Wuf2GaPdQFqstsIqGpDX8sonSE=
Subject key identifier: 37:D4:EB:07:7A:90:4C:4A:59:67:3C:C8:79:29:C9:DD:C5:C0:EC:19
Certificate issuer: /CN=E9771B2D309B05BB8C2F0EA36FF17501E242A19E
Certificate serial: 590AE92C08B5CCD11296412DDEFC5CD3F0848E17
Authority key identifier: E9:77:1B:2D:30:9B:05:BB:8C:2F:0E:A3:6F:F1:75:01:E2:42:A1:9E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E9771B2D309B05BB8C2F0EA36FF17501E242A19E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D0EB6D95615E36DCAD35164A699109792C3FCD3F861B8C7D1A60106AD33FFFE2/0/3230302e39352e3232382e302f32342d3234203d3e20323632393136.roa
Signing time: Tue 13 Aug 2024 16:40:06 +0000
ROA not before: Tue 13 Aug 2024 16:35:06 +0000
ROA not after: Tue 12 Aug 2025 16:40:06 +0000
asID: 262916
IP address blocks: 200.95.228.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/D0EB6D95615E36DCAD35164A699109792C3FCD3F861B8C7D1A60106AD33FFFE2/0/E9771B2D309B05BB8C2F0EA36FF17501E242A19E.crl
rsync://repository.lacnic.net/rpki/lacnic/D0EB6D95615E36DCAD35164A699109792C3FCD3F861B8C7D1A60106AD33FFFE2/0/E9771B2D309B05BB8C2F0EA36FF17501E242A19E.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E9771B2D309B05BB8C2F0EA36FF17501E242A19E.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 21 Apr 2025 11:56:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
59:0a:e9:2c:08:b5:cc:d1:12:96:41:2d:de:fc:5c:d3:f0:84:8e:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E9771B2D309B05BB8C2F0EA36FF17501E242A19E
Validity
Not Before: Aug 13 16:35:06 2024 GMT
Not After : Aug 12 16:40:06 2025 GMT
Subject: CN=37D4EB077A904C4A59673CC87929C9DDC5C0EC19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:3e:f3:81:06:ca:9c:93:5a:c0:a2:cf:16:2f:
ac:77:4c:1d:92:37:38:38:cc:3b:2b:83:73:65:f8:
71:4d:3c:c3:67:fb:b1:ab:2b:1c:73:45:d9:34:d9:
fc:b9:dd:bb:52:68:96:d3:9e:72:26:10:a2:57:73:
67:d4:7d:0d:91:02:59:dd:e2:2e:04:c1:10:2b:29:
5f:90:da:26:e1:9e:cf:ec:9d:82:dd:c2:2f:0b:3d:
1e:55:7b:7e:71:10:41:87:79:ec:8f:21:1a:8d:12:
49:e5:8b:28:f9:05:83:1a:1f:3b:32:c8:a0:04:bb:
dc:f0:b3:60:50:36:28:be:1a:9d:cf:25:60:6b:10:
39:45:d4:a4:97:10:69:db:a2:6a:12:46:a3:c6:6e:
49:17:ee:6a:8c:19:3b:7d:9d:08:95:e5:e3:4d:a0:
a1:c6:c9:53:f7:f3:95:e0:74:ab:4d:f7:b8:f0:1d:
ed:71:8e:e2:c2:81:b6:b7:f7:57:50:58:78:cf:bc:
0d:b8:e4:36:0f:4f:48:bf:4b:57:5d:6f:32:bc:73:
74:5f:d8:47:26:c8:84:6d:18:f3:50:ed:fe:26:13:
59:d8:fa:c9:c7:0a:43:3b:47:b0:0e:e8:bf:60:74:
c0:6f:15:4f:46:ef:d4:70:0f:23:de:68:7c:85:1a:
23:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:D4:EB:07:7A:90:4C:4A:59:67:3C:C8:79:29:C9:DD:C5:C0:EC:19
X509v3 Authority Key Identifier:
keyid:E9:77:1B:2D:30:9B:05:BB:8C:2F:0E:A3:6F:F1:75:01:E2:42:A1:9E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D0EB6D95615E36DCAD35164A699109792C3FCD3F861B8C7D1A60106AD33FFFE2/0/E9771B2D309B05BB8C2F0EA36FF17501E242A19E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E9771B2D309B05BB8C2F0EA36FF17501E242A19E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D0EB6D95615E36DCAD35164A699109792C3FCD3F861B8C7D1A60106AD33FFFE2/0/3230302e39352e3232382e302f32342d3234203d3e20323632393136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.95.228.0/24
Signature Algorithm: sha256WithRSAEncryption
88:e8:09:51:1f:6f:ae:95:8c:3e:92:55:fe:dc:8b:09:08:ae:
73:71:d5:ef:e1:6e:9a:a1:bf:3d:0e:fa:06:bf:90:ae:56:ec:
34:19:8d:29:69:3b:6f:62:4c:01:d4:34:22:60:66:1e:21:4b:
86:94:b9:fe:6f:4a:ce:7c:65:eb:6d:52:8e:bd:0d:fd:e4:3f:
16:61:d0:2b:09:7d:1f:c0:9a:4a:4f:2d:e7:ff:85:bf:cf:73:
72:d5:38:bc:19:67:04:6c:af:c9:21:a4:66:51:dc:89:a2:69:
c6:71:aa:2a:bd:6d:17:3e:7c:3d:09:3b:b7:f8:a1:ba:91:eb:
12:70:30:7f:dd:82:19:85:b2:51:0d:66:fb:13:2b:52:d7:4b:
1e:d4:26:e6:ae:60:04:35:cd:96:47:5c:5e:b5:26:5e:68:15:
4e:a7:80:80:1d:05:0a:db:40:4f:13:25:75:c5:58:9b:ca:43:
1e:ae:00:31:48:15:e9:f4:a9:38:41:57:28:c9:d8:12:7f:2a:
cb:62:8a:8e:29:74:b9:fd:05:10:1d:5c:62:d3:a7:2f:99:4f:
8e:2e:02:22:61:a5:68:60:7d:39:de:54:37:82:eb:c7:00:f0:
e0:a4:80:f2:53:ff:40:11:9a:9c:19:94:94:c3:92:3a:8b:47:
7f:5d:e2:4c
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUWQrpLAi1zNESlkEt3vxc0/CEjhcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRTk3NzFCMkQzMDlCMDVCQjhDMkYwRUEzNkZGMTc1MDFF
MjQyQTE5RTAeFw0yNDA4MTMxNjM1MDZaFw0yNTA4MTIxNjQwMDZaMDMxMTAvBgNV
BAMTKDM3RDRFQjA3N0E5MDRDNEE1OTY3M0NDODc5MjlDOUREQzVDMEVDMTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZPvOBBsqck1rAos8WL6x3TB2S
Nzg4zDsrg3Nl+HFNPMNn+7GrKxxzRdk02fy53btSaJbTnnImEKJXc2fUfQ2RAlnd
4i4EwRArKV+Q2ibhns/snYLdwi8LPR5Ve35xEEGHeeyPIRqNEknliyj5BYMaHzsy
yKAEu9zws2BQNii+Gp3PJWBrEDlF1KSXEGnbomoSRqPGbkkX7mqMGTt9nQiV5eNN
oKHGyVP385XgdKtN97jwHe1xjuLCgba391dQWHjPvA245DYPT0i/S1ddbzK8c3Rf
2EcmyIRtGPNQ7f4mE1nY+snHCkM7R7AO6L9gdMBvFU9G79RwDyPeaHyFGiNBAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUN9TrB3qQTEpZZzzIeSnJ3cXA7BkwHwYDVR0j
BBgwFoAU6XcbLTCbBbuMLw6jb/F1AeJCoZ4wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9EMEVCNkQ5NTYxNUUzNkRDQUQzNTE2NEE2OTkxMDk3OTJD
M0ZDRDNGODYxQjhDN0QxQTYwMTA2QUQzM0ZGRkUyLzAvRTk3NzFCMkQzMDlCMDVC
QjhDMkYwRUEzNkZGMTc1MDFFMjQyQTE5RS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9FOTc3MUIyRDMwOUIwNUJCOEMy
RjBFQTM2RkYxNzUwMUUyNDJBMTlFLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRDBFQjZEOTU2MTVFMzZEQ0FEMzUxNjRBNjk5MTA5NzkyQzNGQ0QzRjg2
MUI4QzdEMUE2MDEwNkFEMzNGRkZFMi8wLzMyMzAzMDJlMzkzNTJlMzIzMjM4MmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNjMyMzkzMTM2LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyF/k
MA0GCSqGSIb3DQEBCwUAA4IBAQCI6AlRH2+ulYw+klX+3IsJCK5zcdXv4W6aob89
DvoGv5CuVuw0GY0paTtvYkwB1DQiYGYeIUuGlLn+b0rOfGXrbVKOvQ395D8WYdAr
CX0fwJpKTy3n/4W/z3Ny1Ti8GWcEbK/JIaRmUdyJomnGcaoqvW0XPnw9CTu3+KG6
kesScDB/3YIZhbJRDWb7EytS10se1CbmrmAENc2WR1xetSZeaBVOp4CAHQUK20BP
EyV1xVibykMergAxSBXp9Kk4QVcoydgSfyrLYoqOKXS5/QUQHVxi06cvmU+OLgIi
YaVoYH053lQ3guvHAPDgpIDyU/9AEZqcGZSUw5I6i0d/XeJM
-----END CERTIFICATE-----
Generated at Thu Apr 17 11:24:45 2025 by rpki-client