Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D6633A8732FC2FBB1FC821D3A7390B5E1B0220A07672532B53E32506040C0B44/0/3139302e36312e34302e302f32312d3234203d3e203532343638.roa
File: 3139302e36312e34302e302f32312d3234203d3e203532343638.roa (raw, json)
Hash identifier: S5Bq2twTFfMiSMz8fHzTx3Z39YwVtGzFsT30OLITWCU=
Subject key identifier: CD:2E:28:89:50:A0:19:7A:62:96:80:8E:CD:DC:1A:B4:DA:89:7B:E1
Certificate issuer: /CN=8616AFEEE37AE6340A6524D920AA474EED6B6A70
Certificate serial: 70D2EBD77CB8C6C342137AB271D1D235A5F52943
Authority key identifier: 86:16:AF:EE:E3:7A:E6:34:0A:65:24:D9:20:AA:47:4E:ED:6B:6A:70
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8616AFEEE37AE6340A6524D920AA474EED6B6A70.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D6633A8732FC2FBB1FC821D3A7390B5E1B0220A07672532B53E32506040C0B44/0/3139302e36312e34302e302f32312d3234203d3e203532343638.roa
Signing time: Tue 04 Feb 2025 20:04:16 +0000
ROA not before: Tue 04 Feb 2025 19:59:16 +0000
ROA not after: Tue 03 Feb 2026 20:04:16 +0000
asID: 52468
IP address blocks: 190.61.40.0/21 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/D6633A8732FC2FBB1FC821D3A7390B5E1B0220A07672532B53E32506040C0B44/0/8616AFEEE37AE6340A6524D920AA474EED6B6A70.crl
rsync://repository.lacnic.net/rpki/lacnic/D6633A8732FC2FBB1FC821D3A7390B5E1B0220A07672532B53E32506040C0B44/0/8616AFEEE37AE6340A6524D920AA474EED6B6A70.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8616AFEEE37AE6340A6524D920AA474EED6B6A70.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 07:24:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
70:d2:eb:d7:7c:b8:c6:c3:42:13:7a:b2:71:d1:d2:35:a5:f5:29:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8616AFEEE37AE6340A6524D920AA474EED6B6A70
Validity
Not Before: Feb 4 19:59:16 2025 GMT
Not After : Feb 3 20:04:16 2026 GMT
Subject: CN=CD2E288950A0197A6296808ECDDC1AB4DA897BE1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b4:f0:45:34:0c:b9:54:9b:d3:54:e6:a3:cd:
7a:84:2b:23:d3:4c:10:1e:4e:f9:91:17:5c:1f:9f:
65:1b:f8:a2:9e:d5:34:b6:f0:07:0c:95:8a:9b:d3:
32:ec:c2:f2:f0:b0:d9:48:8e:58:04:7c:b4:45:38:
4e:9b:fb:a4:96:5e:14:0a:02:22:48:ab:82:82:03:
ac:00:f7:45:b6:9b:ff:34:6f:0f:66:ff:01:b8:36:
f1:99:4c:44:fe:d6:95:06:42:d9:95:6f:99:f8:2b:
97:13:dd:a5:f6:a9:90:1a:dc:e1:be:96:18:f1:46:
9d:7c:48:45:20:af:71:28:bf:04:60:1f:30:46:8c:
b9:e7:5b:ac:13:45:83:74:c7:6f:be:9c:65:27:20:
ba:02:d1:a9:a4:8e:98:69:86:1b:91:ba:34:98:c3:
6a:20:8c:94:25:1b:11:03:23:d2:88:f7:24:0d:53:
a3:0d:98:6c:4c:4e:df:9c:a7:71:15:26:aa:db:5b:
35:09:90:2d:12:a6:98:be:41:6c:1d:96:a6:b1:d2:
11:3f:d6:dc:45:20:5c:a9:b6:40:46:ca:5d:c1:e7:
fd:60:42:55:4f:de:3d:76:dd:22:63:e0:1f:24:22:
b8:4b:52:60:b4:49:e5:22:16:73:f7:7d:7f:4c:aa:
e9:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:2E:28:89:50:A0:19:7A:62:96:80:8E:CD:DC:1A:B4:DA:89:7B:E1
X509v3 Authority Key Identifier:
keyid:86:16:AF:EE:E3:7A:E6:34:0A:65:24:D9:20:AA:47:4E:ED:6B:6A:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D6633A8732FC2FBB1FC821D3A7390B5E1B0220A07672532B53E32506040C0B44/0/8616AFEEE37AE6340A6524D920AA474EED6B6A70.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8616AFEEE37AE6340A6524D920AA474EED6B6A70.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D6633A8732FC2FBB1FC821D3A7390B5E1B0220A07672532B53E32506040C0B44/0/3139302e36312e34302e302f32312d3234203d3e203532343638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.61.40.0/21
Signature Algorithm: sha256WithRSAEncryption
23:04:03:d0:66:c0:fa:a9:fd:6e:0c:e3:44:ff:49:a4:83:4b:
9a:d3:87:94:b3:d3:e5:81:26:50:cd:33:02:8e:e3:6b:85:94:
9e:44:e6:76:6d:25:b8:88:47:c7:2c:c2:f5:06:d9:9c:73:fc:
3d:4b:e9:f6:3a:cc:00:bd:14:da:a7:d6:74:cd:b6:65:ce:f6:
3d:ee:07:2f:d5:07:b2:bc:93:b2:90:ca:4f:59:b6:69:da:7e:
75:32:a3:88:0a:80:aa:f5:22:dc:85:a8:c5:e5:73:2c:0a:bc:
3b:ac:2f:5f:a4:e5:d8:de:5a:6a:72:59:a5:25:71:b7:01:1a:
a7:93:3a:57:5a:b2:00:fc:5f:88:67:5e:0d:3c:3b:d7:19:a5:
27:5f:aa:63:84:e4:3e:da:ad:1d:b6:b7:b8:95:06:db:18:a2:
e9:68:51:13:64:4d:b4:ae:58:7a:44:01:3d:7b:5f:aa:9a:4e:
16:3d:3c:b4:e1:02:ea:e9:d9:8f:a5:ef:95:33:f3:6c:a4:ec:
8b:af:a3:8c:ca:01:36:ab:3a:be:cd:ed:0e:4c:12:67:a3:51:
e8:d6:e3:b5:22:56:c1:de:b5:ad:35:1c:74:09:14:ac:97:e2:
39:c1:9a:7f:e3:0b:d2:ff:b6:9b:d1:56:b7:68:60:5c:7e:d0:
17:3f:0a:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 16:18:33 2025 by rpki-client