Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D2E0ADE40F592875F93669F9033FD2584409DDB0AD29A147DC3D8BFF40C4B012/0/3230302e38352e302e302f31392d3234203d3e203137303739.roa
File: 3230302e38352e302e302f31392d3234203d3e203137303739.roa (raw, json)
Hash identifier: SqvuGr2U/Rf1XHBWfv2qvTEgXmZF04b/H1bDoT+qdvo=
Subject key identifier: 02:A5:82:A2:D0:BF:28:63:21:98:EE:01:C6:46:66:DA:B6:18:9D:1B
Certificate issuer: /CN=7E430D26B905E716C96769CDDDB35113F08000A7
Certificate serial: 5EB1F5AFC5B312A5D239407DA22A0DA35649D523
Authority key identifier: 7E:43:0D:26:B9:05:E7:16:C9:67:69:CD:DD:B3:51:13:F0:80:00:A7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7E430D26B905E716C96769CDDDB35113F08000A7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D2E0ADE40F592875F93669F9033FD2584409DDB0AD29A147DC3D8BFF40C4B012/0/3230302e38352e302e302f31392d3234203d3e203137303739.roa
Signing time: Tue 04 Feb 2025 18:54:20 +0000
ROA not before: Tue 04 Feb 2025 18:49:20 +0000
ROA not after: Tue 03 Feb 2026 18:54:20 +0000
asID: 17079
IP address blocks: 200.85.0.0/19 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/D2E0ADE40F592875F93669F9033FD2584409DDB0AD29A147DC3D8BFF40C4B012/0/7E430D26B905E716C96769CDDDB35113F08000A7.crl
rsync://repository.lacnic.net/rpki/lacnic/D2E0ADE40F592875F93669F9033FD2584409DDB0AD29A147DC3D8BFF40C4B012/0/7E430D26B905E716C96769CDDDB35113F08000A7.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7E430D26B905E716C96769CDDDB35113F08000A7.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 20:38:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:b1:f5:af:c5:b3:12:a5:d2:39:40:7d:a2:2a:0d:a3:56:49:d5:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7E430D26B905E716C96769CDDDB35113F08000A7
Validity
Not Before: Feb 4 18:49:20 2025 GMT
Not After : Feb 3 18:54:20 2026 GMT
Subject: CN=02A582A2D0BF28632198EE01C64666DAB6189D1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:57:de:b5:97:29:81:9b:fc:e2:e3:e8:92:40:
45:e3:2f:1d:32:5f:1c:31:db:15:eb:4d:8e:d0:1d:
60:eb:ab:ed:e5:97:5b:ea:e2:17:e5:66:9a:2e:42:
70:e9:74:d7:a4:75:e8:8a:46:8a:53:56:71:04:78:
12:b1:82:56:ca:eb:e8:51:50:ae:05:6e:71:50:fb:
96:24:fa:a9:98:14:15:d2:62:6e:fc:69:c3:35:c7:
4d:da:df:38:58:c1:36:d7:ad:20:c4:c1:43:d3:53:
58:0a:5d:0b:fb:50:99:89:a9:3a:d8:31:77:3d:fd:
c5:4c:e1:82:13:79:53:62:7a:90:1c:81:94:b9:66:
a1:d4:4a:94:eb:10:c3:7f:65:71:6c:f9:f2:17:59:
01:dc:79:09:99:c7:d3:6f:d5:b4:a1:ab:1d:38:d6:
06:9b:37:3d:01:92:d0:1d:2c:55:d8:68:8a:d1:99:
17:09:03:ad:43:e7:e7:19:0c:97:4b:fc:ba:5d:e8:
1c:8d:5c:fe:a8:31:f8:f1:98:b4:03:58:3f:d5:b4:
6e:4d:a6:d7:af:e2:83:7a:8f:fe:48:2e:6b:82:2a:
97:91:79:53:f7:58:d2:a7:f5:5e:f0:b0:1e:01:0b:
b3:bc:d8:df:86:e7:14:1b:16:7f:0a:34:d6:62:2f:
f5:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:A5:82:A2:D0:BF:28:63:21:98:EE:01:C6:46:66:DA:B6:18:9D:1B
X509v3 Authority Key Identifier:
keyid:7E:43:0D:26:B9:05:E7:16:C9:67:69:CD:DD:B3:51:13:F0:80:00:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D2E0ADE40F592875F93669F9033FD2584409DDB0AD29A147DC3D8BFF40C4B012/0/7E430D26B905E716C96769CDDDB35113F08000A7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7E430D26B905E716C96769CDDDB35113F08000A7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D2E0ADE40F592875F93669F9033FD2584409DDB0AD29A147DC3D8BFF40C4B012/0/3230302e38352e302e302f31392d3234203d3e203137303739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.85.0.0/19
Signature Algorithm: sha256WithRSAEncryption
8f:d2:fd:71:e7:00:88:2e:77:8f:d1:3b:5d:72:d0:e7:56:69:
8f:c9:a6:cc:2e:a8:f7:29:45:93:c1:99:25:6e:a8:7b:73:64:
ec:28:3a:a2:84:a7:12:7e:67:59:e2:6a:ee:a7:9f:c1:e4:b9:
1c:75:23:4e:60:0b:14:6d:92:8a:1b:af:b8:df:7b:77:40:0c:
48:50:63:39:db:08:91:59:c2:aa:8d:e2:46:ad:dc:3f:f0:9c:
1e:6a:34:c4:93:2f:1d:1e:be:49:4c:cd:ae:f1:1e:58:27:3c:
87:63:8c:39:0a:ba:7b:d0:c5:9d:9d:ea:d2:44:46:99:c7:9f:
71:e4:7f:20:c3:ec:1e:1d:df:71:28:12:6a:f9:f6:ab:97:3a:
e0:2c:fb:17:5b:a1:14:7b:ae:2a:e5:26:aa:75:46:8c:7f:6f:
02:8d:8a:d5:a7:76:aa:84:e9:9a:bb:4f:57:7e:1e:87:31:fc:
80:76:41:54:ea:b5:1d:87:e2:0c:43:56:db:91:72:0b:ba:e0:
b4:fd:cb:e7:cc:ca:36:6a:f4:e1:12:41:0c:37:23:80:64:09:
eb:4e:0b:ca:34:d7:b9:14:be:54:e6:09:58:b2:4e:99:47:8e:
01:1a:d0:34:fb:fb:1c:d3:11:79:75:af:95:7f:77:ac:2d:64:
2c:0b:dc:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 12:32:36 2025 by rpki-client