Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e33382e302f32342d3234203d3e2037343138.roa
File: 3230302e32392e33382e302f32342d3234203d3e2037343138.roa (raw, json)
Hash identifier: uD7GtsD7uD7O2i28IKO6LT4nN2XL9ypfw0ziqPigW+Y=
Subject key identifier: 33:99:64:B6:B7:D8:3F:2E:61:C5:24:83:1D:1A:BD:8B:75:41:B2:05
Certificate issuer: /CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Certificate serial: 2173751BFAD2EB7FBB871662EF859FB6377C4E9E
Authority key identifier: 25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e33382e302f32342d3234203d3e2037343138.roa
Signing time: Tue 04 Feb 2025 18:30:02 +0000
ROA not before: Tue 04 Feb 2025 18:25:02 +0000
ROA not after: Tue 03 Feb 2026 18:30:02 +0000
asID: 7418
IP address blocks: 200.29.38.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl
rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 12:41:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:73:75:1b:fa:d2:eb:7f:bb:87:16:62:ef:85:9f:b6:37:7c:4e:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25CD6A4FBC8BEE34A2DC371793A09E274E0E3661
Validity
Not Before: Feb 4 18:25:02 2025 GMT
Not After : Feb 3 18:30:02 2026 GMT
Subject: CN=339964B6B7D83F2E61C524831D1ABD8B7541B205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:9b:0b:d8:20:a4:20:b8:77:de:a1:85:4a:9f:
c8:3b:71:1d:32:2c:5d:8c:84:02:ca:90:3b:29:71:
cf:d9:50:97:a2:01:8f:97:68:3e:1b:6d:78:7c:5d:
b2:5a:4b:bc:33:67:c4:31:07:c0:20:04:f8:08:0f:
3f:71:9b:52:8b:c3:cf:15:da:78:4e:1b:1c:38:e6:
ec:62:e1:6f:13:8c:95:31:13:61:c0:2f:42:4c:61:
57:b8:f6:53:73:08:68:b8:0a:92:5f:8d:8b:5e:ff:
f4:b9:7a:29:07:5b:1e:34:5a:05:4d:31:be:fd:5e:
b0:b0:91:8b:06:d4:23:12:95:91:0d:be:af:4d:0a:
9e:4c:c6:4c:0c:a8:e3:21:d7:ff:eb:6f:84:34:66:
23:a4:ef:e2:4e:94:b8:5a:45:c5:c4:23:80:c0:5d:
bf:f1:e3:c0:d7:19:e6:14:d0:c5:03:4b:13:f7:f0:
c5:44:0f:ae:ed:92:6d:2e:59:1b:ce:1e:59:f1:d2:
d3:f8:37:15:ce:2c:bf:b2:d9:f7:c3:0d:82:82:81:
b2:90:fa:d8:0b:0c:d7:9e:92:b8:f9:b8:40:fe:6f:
f3:29:23:5f:af:40:69:e2:15:77:8a:45:87:f9:80:
11:ee:62:3d:80:81:2b:b1:6a:55:8e:37:e5:20:ae:
bc:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:99:64:B6:B7:D8:3F:2E:61:C5:24:83:1D:1A:BD:8B:75:41:B2:05
X509v3 Authority Key Identifier:
keyid:25:CD:6A:4F:BC:8B:EE:34:A2:DC:37:17:93:A0:9E:27:4E:0E:36:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/25CD6A4FBC8BEE34A2DC371793A09E274E0E3661.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D952BACB6D27E48267036F7CBD6CC4ADEE60BA1D1CFF5EF59481A90BA2071DD7/0/3230302e32392e33382e302f32342d3234203d3e2037343138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.29.38.0/24
Signature Algorithm: sha256WithRSAEncryption
85:b4:c3:4f:1a:7c:29:e8:bb:4c:96:cb:96:ae:18:2f:4d:79:
60:1b:2e:80:03:ca:08:fa:c2:1f:ea:7d:6e:48:ec:64:1b:5e:
20:60:d5:e2:04:8e:9e:a1:a0:75:68:f7:3b:96:26:2b:63:bc:
65:a0:bc:78:e8:b6:0d:00:94:32:ca:59:ad:d2:60:b8:72:97:
9f:b4:85:9f:7b:b6:1b:f1:63:47:4f:46:34:5b:10:94:46:59:
b5:24:e7:d4:dc:b0:9c:96:bb:a7:af:5f:8c:01:f8:19:29:4a:
51:89:14:6f:1f:3a:4d:73:2f:1d:54:a3:ce:bb:34:10:81:33:
7d:d5:a9:ec:29:fd:2d:8d:82:69:d0:8a:8e:da:4f:b8:d0:19:
21:c7:f0:92:50:01:91:8d:7d:0f:c3:76:93:d8:68:d2:50:0d:
af:75:80:42:ab:d5:7f:4a:b7:97:58:30:5f:b6:6c:46:dc:34:
9b:c7:c1:e2:30:3a:36:4d:4c:b7:08:6f:91:40:ff:b8:8e:0c:
23:b1:94:de:5e:e9:ed:f6:1f:0b:12:1b:9f:e6:c7:9d:04:4c:
cd:cb:85:ea:74:4f:82:03:1c:40:c8:4c:b1:87:16:0e:60:95:
35:0a:bb:86:e9:2f:2c:e4:2d:cc:4a:5a:ee:f1:7e:61:56:4f:
cf:47:5a:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 09:09:52 2025 by rpki-client