Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS27860.roa
File: AS27860.roa (raw, json)
Hash identifier: v/BWrZXhTS9CL8NB40MTKEcqP88+fY4C02pqIkuAGXQ=
Subject key identifier: 0A:BD:39:40:79:14:26:3A:8A:8E:10:66:74:85:47:1E:0B:0A:81:4E
Certificate issuer: /CN=5D158BE61CA911BC34A887005B96056F4C474B1E
Certificate serial: 018B7CECFBF3FB923D1F496FC42CFFD6CE32EEB1
Authority key identifier: 5D:15:8B:E6:1C:A9:11:BC:34:A8:87:00:5B:96:05:6F:4C:47:4B:1E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS27860.roa
Signing time: Tue 04 Feb 2025 18:02:46 +0000
ROA not before: Tue 04 Feb 2025 17:57:46 +0000
ROA not after: Tue 03 Feb 2026 18:02:46 +0000
asID: 27860
IP address blocks: 201.218.210.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/5D158BE61CA911BC34A887005B96056F4C474B1E.crl
rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/5D158BE61CA911BC34A887005B96056F4C474B1E.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:7c:ec:fb:f3:fb:92:3d:1f:49:6f:c4:2c:ff:d6:ce:32:ee:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D158BE61CA911BC34A887005B96056F4C474B1E
Validity
Not Before: Feb 4 17:57:46 2025 GMT
Not After : Feb 3 18:02:46 2026 GMT
Subject: CN=0ABD39407914263A8A8E10667485471E0B0A814E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c6:75:f6:1d:78:7f:fa:c1:2e:ae:e4:43:46:
9e:b6:a1:08:03:8f:4f:2d:c4:b5:7f:3c:1c:d9:11:
d6:ce:c1:4b:47:93:d2:f1:32:50:a7:bb:78:b1:20:
8b:2d:50:e7:d2:9c:09:70:f5:e8:72:8d:11:c6:c8:
d8:0e:f6:11:84:60:c6:38:01:33:28:fd:07:34:95:
da:f4:8f:ba:b6:d5:84:a5:ba:3b:38:18:db:a3:9e:
29:58:a4:0d:dd:8b:a0:f5:d6:20:01:8e:01:8c:81:
bc:3c:0e:e4:5a:a9:de:5b:65:22:f9:57:f0:93:b5:
7a:c3:6b:7c:08:79:2c:b6:9e:b8:70:6b:d8:86:4f:
5c:88:c8:08:8b:62:f8:4c:e2:26:e1:8f:ea:c2:10:
97:0f:a6:63:09:2b:b6:bc:f5:e3:aa:fd:68:a4:ac:
c3:0e:03:a8:9e:fa:ed:a3:02:c7:5e:3f:8c:0e:c8:
9f:d9:f6:77:cf:99:2e:2a:6f:db:58:ee:8c:91:be:
da:bc:9f:7a:37:35:f6:9d:1e:66:57:f5:3d:ff:ba:
c2:5a:55:a2:79:fa:e6:d4:bc:a1:0f:11:77:62:9b:
1f:c6:d3:d7:17:3f:54:ef:c1:fc:6b:a9:7a:87:28:
1e:33:93:c7:bf:07:e6:07:58:ee:43:7f:80:37:be:
05:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:BD:39:40:79:14:26:3A:8A:8E:10:66:74:85:47:1E:0B:0A:81:4E
X509v3 Authority Key Identifier:
keyid:5D:15:8B:E6:1C:A9:11:BC:34:A8:87:00:5B:96:05:6F:4C:47:4B:1E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/5D158BE61CA911BC34A887005B96056F4C474B1E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5D158BE61CA911BC34A887005B96056F4C474B1E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D572EA2659715B3B002B9225A1529608FC29328B0BFED7958379A8EF9D006EF5/0/AS27860.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.218.210.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:e8:ee:c9:a9:5f:67:a1:b3:85:ef:f1:fa:90:ac:e0:d8:e3:
5d:6d:0c:5f:db:6e:5c:78:d8:ee:f4:cb:e0:b3:8f:34:b2:bc:
c8:c5:dc:9e:74:fe:4b:cf:f9:ec:48:e1:32:38:55:40:c3:a8:
0b:65:83:eb:04:55:53:bd:c6:32:9a:f3:a5:13:f3:3b:ba:5e:
25:14:29:4c:d9:a5:39:83:91:f6:6a:c8:4d:57:01:81:3e:a1:
19:fe:86:11:04:4f:30:1a:9c:83:95:c9:ea:64:46:1c:81:5e:
c0:4a:32:34:4c:be:55:b2:96:21:38:c9:e9:10:ce:c1:c2:87:
1b:d3:69:35:2b:33:85:d5:70:79:38:20:e8:fa:c2:cb:7b:3c:
8e:e9:cc:17:23:bf:c6:29:dd:8d:a1:bd:a2:e3:08:96:68:b5:
19:5e:3a:5a:72:1f:5a:f6:4d:11:a4:b1:d6:3f:9d:78:b4:36:
9d:f4:9a:11:b3:25:2d:4f:e6:7a:95:10:c5:4b:bf:cf:04:d1:
a3:68:78:e7:ac:e6:32:f8:fc:3a:3e:07:61:ed:56:69:20:e7:
83:3b:67:9b:63:f2:fe:da:72:18:00:50:53:80:e2:19:f3:86:
5b:4e:52:eb:6d:7f:10:15:71:72:c8:fa:c5:6c:bd:50:83:e2:
91:7e:db:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 23:01:35 2025 by rpki-client