Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D1D6657CEB424D9660DC3B21325EDFE92E85EBDAA3A89692035272E258E405A3/0/3137392e36332e342e302f32322d3234203d3e20323732383031.roa
File: 3137392e36332e342e302f32322d3234203d3e20323732383031.roa (raw, json)
Hash identifier: unVIWL9Rb/hAm0sECiQuIqJTRQGUJ5jwcSLWiyoxrJM=
Subject key identifier: 91:6E:53:D7:50:2B:A9:EF:53:8F:2D:36:BE:29:94:DE:28:2C:0C:35
Certificate issuer: /CN=3834E0AC0F6FE47D0E2819D7BDDECC70CCB2EBE0
Certificate serial: 29261A114CB2417FB41F361A19DC8AB9EF1D1343
Authority key identifier: 38:34:E0:AC:0F:6F:E4:7D:0E:28:19:D7:BD:DE:CC:70:CC:B2:EB:E0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3834E0AC0F6FE47D0E2819D7BDDECC70CCB2EBE0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D1D6657CEB424D9660DC3B21325EDFE92E85EBDAA3A89692035272E258E405A3/0/3137392e36332e342e302f32322d3234203d3e20323732383031.roa
Signing time: Tue 04 Feb 2025 18:15:10 +0000
ROA not before: Tue 04 Feb 2025 18:10:10 +0000
ROA not after: Tue 03 Feb 2026 18:15:10 +0000
asID: 272801
IP address blocks: 179.63.4.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/D1D6657CEB424D9660DC3B21325EDFE92E85EBDAA3A89692035272E258E405A3/0/3834E0AC0F6FE47D0E2819D7BDDECC70CCB2EBE0.crl
rsync://repository.lacnic.net/rpki/lacnic/D1D6657CEB424D9660DC3B21325EDFE92E85EBDAA3A89692035272E258E405A3/0/3834E0AC0F6FE47D0E2819D7BDDECC70CCB2EBE0.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3834E0AC0F6FE47D0E2819D7BDDECC70CCB2EBE0.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:26:1a:11:4c:b2:41:7f:b4:1f:36:1a:19:dc:8a:b9:ef:1d:13:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3834E0AC0F6FE47D0E2819D7BDDECC70CCB2EBE0
Validity
Not Before: Feb 4 18:10:10 2025 GMT
Not After : Feb 3 18:15:10 2026 GMT
Subject: CN=916E53D7502BA9EF538F2D36BE2994DE282C0C35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:51:cc:f5:c2:62:f6:f6:23:3e:65:98:a6:2a:
24:43:b1:99:59:3f:8c:a4:35:fd:5f:55:ee:77:b1:
08:b2:96:e3:01:f3:47:2a:f8:29:16:ed:86:e5:dc:
98:55:db:2c:6d:32:73:92:40:51:a8:92:fa:3d:70:
40:2a:f3:a7:f1:36:8c:87:81:47:80:5b:88:ce:a7:
b1:0c:0f:2c:f4:74:e0:11:ce:e2:e5:04:ce:4e:1e:
44:60:a8:2d:1e:9a:c6:af:32:bc:10:79:19:af:85:
37:a5:55:d3:d9:c8:90:02:e9:88:48:c5:d9:ee:97:
e7:66:9f:ee:60:f6:67:7f:4a:99:11:23:0c:a9:94:
47:83:6e:a0:3e:04:81:e1:5a:e2:33:12:ef:ce:c1:
62:65:a4:48:3d:8d:84:4b:5d:d4:8f:86:db:a1:0a:
ab:d5:40:b1:7b:72:d1:b3:fa:2f:6e:bc:6a:b2:85:
b3:f0:e1:94:78:88:44:f7:13:d7:4f:15:51:97:39:
3c:d7:13:47:fb:80:7c:77:de:e0:2d:16:a8:d1:3a:
f7:3f:60:60:94:3b:6f:16:04:75:31:7f:75:0f:08:
dd:08:c7:14:77:8f:76:a0:a8:bb:77:4e:48:09:52:
8b:08:8e:de:c3:d0:31:cf:f1:d8:ec:b9:8e:da:e8:
9e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:6E:53:D7:50:2B:A9:EF:53:8F:2D:36:BE:29:94:DE:28:2C:0C:35
X509v3 Authority Key Identifier:
keyid:38:34:E0:AC:0F:6F:E4:7D:0E:28:19:D7:BD:DE:CC:70:CC:B2:EB:E0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D1D6657CEB424D9660DC3B21325EDFE92E85EBDAA3A89692035272E258E405A3/0/3834E0AC0F6FE47D0E2819D7BDDECC70CCB2EBE0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3834E0AC0F6FE47D0E2819D7BDDECC70CCB2EBE0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D1D6657CEB424D9660DC3B21325EDFE92E85EBDAA3A89692035272E258E405A3/0/3137392e36332e342e302f32322d3234203d3e20323732383031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
179.63.4.0/22
Signature Algorithm: sha256WithRSAEncryption
93:a2:dd:aa:0c:6f:7d:c3:45:1f:21:63:aa:65:22:c3:da:db:
ba:00:0f:a6:2f:de:cc:dd:fc:0a:f7:ea:e5:0c:e1:11:e5:99:
b5:f8:d1:77:19:8f:dc:cd:20:8f:0f:a9:21:d1:a6:b7:2c:d3:
dd:d2:b0:16:9f:72:f2:79:a7:b9:f9:c6:1e:3a:34:db:0b:6e:
8f:41:6a:99:00:f9:5d:73:d0:30:55:19:31:b8:e6:0c:f8:f7:
0e:4b:75:dd:a9:6f:63:24:02:26:2b:19:ab:89:32:0d:48:5f:
50:ce:ff:27:bd:2f:4b:ec:16:93:04:94:e1:ac:d2:ca:9d:85:
70:f4:bc:dc:6f:68:9e:7c:93:76:a3:20:7e:d2:4d:20:73:3d:
b3:52:43:59:b3:e1:6b:72:d0:5f:a5:a5:85:55:f5:a6:b3:6f:
1b:de:e1:34:93:65:54:c5:67:c1:e3:29:0b:b2:1b:3c:6f:a2:
82:ce:bf:d1:6f:1f:40:2b:fe:76:0b:4d:09:c1:ec:07:7e:39:
e2:41:f6:f3:4a:f8:76:57:a7:18:15:02:d8:e5:c6:7a:45:c7:
88:ca:9e:e4:5d:cf:51:ef:4e:7d:5c:7e:e0:09:63:d7:5f:ff:
b2:1c:38:a6:f2:b3:5a:1b:0d:45:36:b0:77:ac:4f:69:fe:f8:
98:cc:e6:bd
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIUKSYaEUyyQX+0HzYaGdyKue8dE0MwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzgzNEUwQUMwRjZGRTQ3RDBFMjgxOUQ3QkRERUNDNzBD
Q0IyRUJFMDAeFw0yNTAyMDQxODEwMTBaFw0yNjAyMDMxODE1MTBaMDMxMTAvBgNV
BAMTKDkxNkU1M0Q3NTAyQkE5RUY1MzhGMkQzNkJFMjk5NERFMjgyQzBDMzUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClUcz1wmL29iM+ZZimKiRDsZlZ
P4ykNf1fVe53sQiyluMB80cq+CkW7Ybl3JhV2yxtMnOSQFGokvo9cEAq86fxNoyH
gUeAW4jOp7EMDyz0dOARzuLlBM5OHkRgqC0emsavMrwQeRmvhTelVdPZyJAC6YhI
xdnul+dmn+5g9md/SpkRIwyplEeDbqA+BIHhWuIzEu/OwWJlpEg9jYRLXdSPhtuh
CqvVQLF7ctGz+i9uvGqyhbPw4ZR4iET3E9dPFVGXOTzXE0f7gHx33uAtFqjROvc/
YGCUO28WBHUxf3UPCN0IxxR3j3agqLt3TkgJUosIjt7D0DHP8djsuY7a6J49AgMB
AAGjggLGMIICwjAdBgNVHQ4EFgQUkW5T11Arqe9Tjy02vimU3igsDDUwHwYDVR0j
BBgwFoAUODTgrA9v5H0OKBnXvd7McMyy6+AwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9EMUQ2NjU3Q0VCNDI0RDk2NjBEQzNCMjEzMjVFREZFOTJF
ODVFQkRBQTNBODk2OTIwMzUyNzJFMjU4RTQwNUEzLzAvMzgzNEUwQUMwRjZGRTQ3
RDBFMjgxOUQ3QkRERUNDNzBDQ0IyRUJFMC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8zODM0RTBBQzBGNkZFNDdEMEUy
ODE5RDdCRERFQ0M3MENDQjJFQkUwLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRDFENjY1N0NFQjQyNEQ5NjYwREMzQjIxMzI1RURGRTkyRTg1RUJEQUEz
QTg5NjkyMDM1MjcyRTI1OEU0MDVBMy8wLzMxMzczOTJlMzYzMzJlMzQyZTMwMmYz
MjMyMmQzMjM0MjAzZDNlMjAzMjM3MzIzODMwMzEucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAKzPwQwDQYJ
KoZIhvcNAQELBQADggEBAJOi3aoMb33DRR8hY6plIsPa27oAD6Yv3szd/Ar36uUM
4RHlmbX40XcZj9zNII8PqSHRprcs093SsBafcvJ5p7n5xh46NNsLbo9BapkA+V1z
0DBVGTG45gz49w5Ldd2pb2MkAiYrGauJMg1IX1DO/ye9L0vsFpMElOGs0sqdhXD0
vNxvaJ58k3ajIH7STSBzPbNSQ1mz4Wty0F+lpYVV9aazbxve4TSTZVTFZ8HjKQuy
GzxvooLOv9FvH0Ar/nYLTQnB7Ad+OeJB9vNK+HZXpxgVAtjlxnpFx4jKnuRdz1Hv
Tn1cfuAJY9df/7IcOKbys1obDUU2sHesT2n++JjM5r0=
-----END CERTIFICATE-----
Generated at Mon Apr 14 16:35:59 2025 by rpki-client