Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3138312e3232352e3131322e302f32302d3234203d3e203532343839.roa
File: 3138312e3232352e3131322e302f32302d3234203d3e203532343839.roa (raw, json)
Hash identifier: tyeF/Cz1H2vCNsCStuw/VAz9quWAnafQmwwJOErqV0U=
Subject key identifier: 37:8A:17:F5:B5:E0:C4:F9:FF:F7:CC:1B:58:6D:2E:5E:50:1C:35:2A
Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Certificate serial: 5E1D7C9F2810DD38255638D57FB90C527D9DC7D5
Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3138312e3232352e3131322e302f32302d3234203d3e203532343839.roa
Signing time: Tue 04 Feb 2025 18:29:42 +0000
ROA not before: Tue 04 Feb 2025 18:24:42 +0000
ROA not after: Tue 03 Feb 2026 18:29:42 +0000
asID: 52489
IP address blocks: 181.225.112.0/20 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl
rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Wed 30 Apr 2025 05:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:1d:7c:9f:28:10:dd:38:25:56:38:d5:7f:b9:0c:52:7d:9d:c7:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Validity
Not Before: Feb 4 18:24:42 2025 GMT
Not After : Feb 3 18:29:42 2026 GMT
Subject: CN=378A17F5B5E0C4F9FFF7CC1B586D2E5E501C352A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:19:b5:1c:a3:9e:09:08:9c:92:fb:a9:79:f2:
32:63:30:19:d3:2f:45:28:02:a2:50:fa:d2:6f:7f:
e4:92:04:05:dc:ba:89:bf:55:40:eb:cf:64:38:d9:
77:9d:04:db:18:e6:23:84:10:f2:f8:f8:0e:90:62:
2c:2d:78:6c:d9:41:49:a8:c2:c0:8d:a1:3c:c2:8b:
ed:f7:eb:2e:ed:c1:99:22:e8:f2:90:9e:cd:5e:db:
65:37:37:58:38:04:4d:01:3f:2e:7b:04:a0:07:79:
c9:4b:b7:41:c8:d6:2a:a5:c1:d6:4c:d7:5f:4c:d4:
a3:3b:9c:59:f2:27:92:93:d3:3e:fa:1e:9f:cd:b2:
ba:e8:a7:7c:ce:f5:2f:73:8f:00:d3:a8:d3:d8:76:
f5:8c:b8:64:09:87:3b:e2:fb:03:73:ee:0f:98:12:
dd:df:9d:1a:4a:a0:3f:b4:8f:40:c2:7d:b8:d8:8d:
76:9d:4d:64:1d:4e:6d:d4:23:44:3d:ca:2b:82:4a:
34:aa:d9:c8:2b:47:97:4b:04:89:fd:a6:ca:72:9e:
e8:e2:4e:13:93:04:3d:1d:e1:3a:27:99:e4:10:51:
8a:72:87:e7:42:4d:fd:b8:ac:9f:40:01:1b:e8:d0:
b4:e9:98:18:78:99:5e:eb:f4:7b:d3:dc:92:98:ca:
38:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:8A:17:F5:B5:E0:C4:F9:FF:F7:CC:1B:58:6D:2E:5E:50:1C:35:2A
X509v3 Authority Key Identifier:
keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3138312e3232352e3131322e302f32302d3234203d3e203532343839.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
181.225.112.0/20
Signature Algorithm: sha256WithRSAEncryption
ba:47:11:e2:aa:56:d7:12:14:e6:0f:f6:90:ba:a2:77:34:b4:
28:8b:cf:69:74:99:6e:96:fc:ca:cb:33:b9:94:35:c9:7d:90:
fb:6d:00:74:24:f2:6f:2c:58:c9:bb:89:f9:55:8a:ae:d2:97:
28:e8:ab:c8:d0:af:d9:5c:16:2f:0a:70:af:f7:5f:56:c3:89:
b1:e3:02:eb:52:0f:fd:ec:0f:be:0f:d4:9a:22:d2:ee:aa:37:
c7:00:f7:12:c6:26:8e:22:19:38:7a:68:28:2e:53:ad:50:d0:
17:38:5f:54:e4:4e:b5:c7:05:59:00:5f:5b:36:23:05:a1:b2:
ba:a4:30:4c:f6:de:d1:2a:10:c2:d3:3c:e9:cf:00:c1:5a:ef:
01:3a:98:ca:cd:2f:ab:78:71:f2:a1:49:19:57:4d:cb:88:40:
0f:17:59:16:30:f9:8f:0c:0a:43:89:b0:09:11:4b:c2:99:1e:
08:2e:ea:91:51:ce:f3:1a:93:28:a9:6a:8a:cc:ef:0d:bb:d0:
56:fa:d7:7e:c2:7f:67:34:b9:44:a0:4f:2e:a5:80:57:68:ce:
5b:1b:b8:cb:f0:67:74:cc:75:3e:91:86:12:15:e2:78:72:b0:
ff:20:78:03:59:6f:02:5e:76:c7:6b:06:0e:01:02:75:57:52:
f8:d1:78:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 08:26:57 2025 by rpki-client