Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D2347CF04CD5F902AED1B8C3B72F7BA62FF27D689128DFE4380B7725C8FD5C83/0/3133382e33362e3232302e302f32322d3234203d3e20323637373230.roa
File: 3133382e33362e3232302e302f32322d3234203d3e20323637373230.roa (raw, json)
Hash identifier: 0g7dUyTLXyjcDGTSdWRufwlX3Z920OKgJ8JQKyZd3d0=
Subject key identifier: 9E:2D:AE:3A:AA:D7:9D:4B:31:E1:62:1B:43:7B:DC:D7:92:DC:92:D2
Certificate issuer: /CN=79FCE3F00B8897ABD1F04D767EFA878BE2AF0B4C
Certificate serial: 74BF200D5EEB1C71167650B41E62E9B2D3BFCDFF
Authority key identifier: 79:FC:E3:F0:0B:88:97:AB:D1:F0:4D:76:7E:FA:87:8B:E2:AF:0B:4C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/79FCE3F00B8897ABD1F04D767EFA878BE2AF0B4C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D2347CF04CD5F902AED1B8C3B72F7BA62FF27D689128DFE4380B7725C8FD5C83/0/3133382e33362e3232302e302f32322d3234203d3e20323637373230.roa
Signing time: Tue 04 Feb 2025 20:00:10 +0000
ROA not before: Tue 04 Feb 2025 19:55:10 +0000
ROA not after: Tue 03 Feb 2026 20:00:10 +0000
asID: 267720
IP address blocks: 138.36.220.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/D2347CF04CD5F902AED1B8C3B72F7BA62FF27D689128DFE4380B7725C8FD5C83/0/79FCE3F00B8897ABD1F04D767EFA878BE2AF0B4C.crl
rsync://repository.lacnic.net/rpki/lacnic/D2347CF04CD5F902AED1B8C3B72F7BA62FF27D689128DFE4380B7725C8FD5C83/0/79FCE3F00B8897ABD1F04D767EFA878BE2AF0B4C.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/79FCE3F00B8897ABD1F04D767EFA878BE2AF0B4C.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
74:bf:20:0d:5e:eb:1c:71:16:76:50:b4:1e:62:e9:b2:d3:bf:cd:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79FCE3F00B8897ABD1F04D767EFA878BE2AF0B4C
Validity
Not Before: Feb 4 19:55:10 2025 GMT
Not After : Feb 3 20:00:10 2026 GMT
Subject: CN=9E2DAE3AAAD79D4B31E1621B437BDCD792DC92D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fb:e2:c1:44:7e:a9:89:2a:f2:9f:f9:9f:96:
d1:fe:28:81:fc:c2:99:ea:11:0a:2f:9d:bc:80:02:
9c:99:84:24:52:f7:9e:db:27:ca:72:f3:1e:87:de:
c5:df:51:58:7e:0f:07:bb:9c:79:31:34:05:72:20:
79:0f:22:29:ac:e0:2c:a6:e8:0f:9b:85:8f:66:f1:
a0:4e:b2:c7:17:d2:e1:62:51:7f:49:e9:23:45:68:
e8:38:e0:07:da:4b:b5:ca:a6:e6:f9:ea:1e:9d:63:
f4:50:b0:f6:00:45:d8:f4:a9:85:2a:ab:e9:1f:da:
93:54:e7:1e:9f:44:7f:b7:5f:9e:a1:55:b7:2b:cd:
a8:e9:c9:ad:7a:dc:52:d2:b6:6e:c6:fa:09:70:db:
7d:ec:3d:6b:a9:a1:6e:45:5c:8c:2b:a2:f4:5a:51:
18:71:58:27:dd:65:1f:22:d3:f1:29:96:3c:a0:91:
41:c7:ba:34:7a:78:bb:0d:cf:81:56:93:34:6b:9d:
29:9b:1a:ce:f5:ab:09:5a:d9:59:e7:68:65:ff:f0:
eb:12:79:0c:f2:eb:55:09:17:64:b7:25:36:c9:3e:
70:fa:91:a7:1e:e8:82:16:a3:c9:88:92:1e:49:73:
73:4d:7e:ef:d5:23:d1:4f:ae:01:ae:cf:43:e1:87:
09:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:2D:AE:3A:AA:D7:9D:4B:31:E1:62:1B:43:7B:DC:D7:92:DC:92:D2
X509v3 Authority Key Identifier:
keyid:79:FC:E3:F0:0B:88:97:AB:D1:F0:4D:76:7E:FA:87:8B:E2:AF:0B:4C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D2347CF04CD5F902AED1B8C3B72F7BA62FF27D689128DFE4380B7725C8FD5C83/0/79FCE3F00B8897ABD1F04D767EFA878BE2AF0B4C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/79FCE3F00B8897ABD1F04D767EFA878BE2AF0B4C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D2347CF04CD5F902AED1B8C3B72F7BA62FF27D689128DFE4380B7725C8FD5C83/0/3133382e33362e3232302e302f32322d3234203d3e20323637373230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.36.220.0/22
Signature Algorithm: sha256WithRSAEncryption
23:a1:51:35:09:2c:a6:36:c1:99:68:59:f7:7c:b5:0a:56:61:
9c:6c:83:0e:b0:86:14:0f:f5:69:e5:47:c1:4e:f1:42:3f:07:
db:42:53:ab:ec:05:e1:07:9e:f9:71:51:a5:98:67:3b:fd:0c:
4b:d4:3c:f8:90:4f:21:d9:85:4d:47:d8:7d:e9:55:93:07:81:
1b:fb:c8:d8:ab:42:2c:84:e8:bc:fe:3a:42:67:de:1c:9f:32:
86:1f:a1:5f:8a:02:31:d9:2c:22:f7:3d:76:b7:03:6a:86:e0:
4b:e3:c0:9e:90:d7:0a:94:2e:25:89:37:64:33:b1:47:3e:c9:
5f:ac:7e:1d:55:7a:95:f3:c1:16:0d:0c:ec:83:36:bf:b4:63:
c8:c8:58:97:fd:3d:8d:e0:99:e0:aa:ab:fd:29:f9:3b:ed:7f:
4a:d6:8b:a5:52:37:3e:52:68:e0:7b:d0:53:96:7e:33:6c:e8:
ec:d0:47:de:15:2d:f3:83:55:57:ed:61:d8:b8:6e:6c:8e:75:
f1:98:35:5b:a4:19:db:9e:d0:de:63:81:c8:26:29:4c:84:28:
52:1b:10:30:76:24:89:4a:78:2b:68:6c:de:68:d3:39:f4:40:
72:6d:9b:85:cd:d1:fb:94:0b:14:41:01:09:b6:ae:71:a0:65:
d2:bd:7c:ab
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUdL8gDV7rHHEWdlC0HmLpstO/zf8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzlGQ0UzRjAwQjg4OTdBQkQxRjA0RDc2N0VGQTg3OEJF
MkFGMEI0QzAeFw0yNTAyMDQxOTU1MTBaFw0yNjAyMDMyMDAwMTBaMDMxMTAvBgNV
BAMTKDlFMkRBRTNBQUFENzlENEIzMUUxNjIxQjQzN0JEQ0Q3OTJEQzkyRDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCq++LBRH6piSryn/mfltH+KIH8
wpnqEQovnbyAApyZhCRS957bJ8py8x6H3sXfUVh+Dwe7nHkxNAVyIHkPIims4Cym
6A+bhY9m8aBOsscX0uFiUX9J6SNFaOg44AfaS7XKpub56h6dY/RQsPYARdj0qYUq
q+kf2pNU5x6fRH+3X56hVbcrzajpya163FLStm7G+glw233sPWupoW5FXIwrovRa
URhxWCfdZR8i0/EpljygkUHHujR6eLsNz4FWkzRrnSmbGs71qwla2VnnaGX/8OsS
eQzy61UJF2S3JTbJPnD6kace6IIWo8mIkh5Jc3NNfu/VI9FPrgGuz0PhhwmRAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUni2uOqrXnUsx4WIbQ3vc15LcktIwHwYDVR0j
BBgwFoAUefzj8AuIl6vR8E12fvqHi+KvC0wwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9EMjM0N0NGMDRDRDVGOTAyQUVEMUI4QzNCNzJGN0JBNjJG
RjI3RDY4OTEyOERGRTQzODBCNzcyNUM4RkQ1QzgzLzAvNzlGQ0UzRjAwQjg4OTdB
QkQxRjA0RDc2N0VGQTg3OEJFMkFGMEI0Qy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC83OUZDRTNGMDBCODg5N0FCRDFG
MDRENzY3RUZBODc4QkUyQUYwQjRDLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRDIzNDdDRjA0Q0Q1RjkwMkFFRDFCOEMzQjcyRjdCQTYyRkYyN0Q2ODkx
MjhERkU0MzgwQjc3MjVDOEZENUM4My8wLzMxMzMzODJlMzMzNjJlMzIzMjMwMmUz
MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjM3MzczMjMwLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCiiTc
MA0GCSqGSIb3DQEBCwUAA4IBAQAjoVE1CSymNsGZaFn3fLUKVmGcbIMOsIYUD/Vp
5UfBTvFCPwfbQlOr7AXhB575cVGlmGc7/QxL1Dz4kE8h2YVNR9h96VWTB4Eb+8jY
q0IshOi8/jpCZ94cnzKGH6FfigIx2Swi9z12twNqhuBL48CekNcKlC4liTdkM7FH
PslfrH4dVXqV88EWDQzsgza/tGPIyFiX/T2N4Jngqqv9Kfk77X9K1oulUjc+Umjg
e9BTln4zbOjs0EfeFS3zg1VX7WHYuG5sjnXxmDVbpBnbntDeY4HIJilMhChSGxAw
diSJSngraGzeaNM59EBybZuFzdH7lAsUQQEJtq5xoGXSvXyr
-----END CERTIFICATE-----
Generated at Mon Apr 14 08:58:58 2025 by rpki-client