Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D986FF7194FB2000A64C23C93E048A61F1672C1CD6C5FB29EAD37980641AFCA7/0/323830333a666665303a3a2f33322d3332203d3e20323731373932.roa
File: 323830333a666665303a3a2f33322d3332203d3e20323731373932.roa (raw, json)
Hash identifier: PsbIF/eT32D4rgM9XHtrv5D3fp2sXLqhRXvNA+yR3DU=
Subject key identifier: 21:83:CF:93:3C:B6:AF:93:93:7B:C9:D6:49:A9:0E:C0:7C:7F:3B:76
Certificate issuer: /CN=0A72DC25D420B15DD00FF3323CB446E7A055F3BE
Certificate serial: 01901203FA4A8CA42368B2B3A97D92920D8B265E
Authority key identifier: 0A:72:DC:25:D4:20:B1:5D:D0:0F:F3:32:3C:B4:46:E7:A0:55:F3:BE
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0A72DC25D420B15DD00FF3323CB446E7A055F3BE.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D986FF7194FB2000A64C23C93E048A61F1672C1CD6C5FB29EAD37980641AFCA7/0/323830333a666665303a3a2f33322d3332203d3e20323731373932.roa
Signing time: Tue 04 Feb 2025 18:18:35 +0000
ROA not before: Tue 04 Feb 2025 18:13:35 +0000
ROA not after: Tue 03 Feb 2026 18:18:35 +0000
asID: 271792
IP address blocks: 2803:ffe0::/32 maxlen: 32
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/D986FF7194FB2000A64C23C93E048A61F1672C1CD6C5FB29EAD37980641AFCA7/0/0A72DC25D420B15DD00FF3323CB446E7A055F3BE.crl
rsync://repository.lacnic.net/rpki/lacnic/D986FF7194FB2000A64C23C93E048A61F1672C1CD6C5FB29EAD37980641AFCA7/0/0A72DC25D420B15DD00FF3323CB446E7A055F3BE.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0A72DC25D420B15DD00FF3323CB446E7A055F3BE.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 23:06:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:12:03:fa:4a:8c:a4:23:68:b2:b3:a9:7d:92:92:0d:8b:26:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0A72DC25D420B15DD00FF3323CB446E7A055F3BE
Validity
Not Before: Feb 4 18:13:35 2025 GMT
Not After : Feb 3 18:18:35 2026 GMT
Subject: CN=2183CF933CB6AF93937BC9D649A90EC07C7F3B76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:98:49:37:fa:55:9d:5b:2b:06:ad:0a:5d:58:
2f:cd:3f:e1:64:2e:39:76:f4:63:4c:25:e8:f0:21:
89:9d:28:a2:d8:e7:55:91:72:7d:a1:01:e5:44:c2:
1d:88:37:7f:4b:01:59:da:c4:7c:d8:78:08:55:57:
b5:86:e1:9a:da:de:16:e7:39:63:96:c0:36:6e:72:
7a:58:a8:47:ad:bc:95:07:bd:ae:3c:5b:5b:4d:d4:
bb:2c:16:90:c5:cf:5e:4e:4c:a8:98:9d:e4:9b:7e:
f2:4b:d2:43:b1:17:a1:b9:0f:48:90:a2:30:b7:e8:
34:0a:74:c8:43:42:35:f9:7c:ce:95:97:3d:51:43:
d7:0e:95:c2:6f:8a:6c:db:07:06:49:cb:e0:86:47:
33:60:16:e4:df:bb:d9:a2:5e:05:ab:f5:d3:53:c3:
02:95:fa:3e:c1:3d:d8:57:a4:11:c8:52:92:da:25:
f4:ed:90:4e:d5:f0:48:ae:50:14:de:8b:62:ff:18:
34:29:7a:ba:b7:89:53:9d:c1:bd:86:03:67:3f:23:
82:51:d4:24:8b:63:0f:b5:0d:23:53:93:f4:96:fb:
51:75:3a:9f:bf:4e:b5:99:a7:64:47:75:28:64:47:
65:f6:b5:3c:17:4a:93:69:b2:4a:28:c2:17:ab:d7:
c2:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:83:CF:93:3C:B6:AF:93:93:7B:C9:D6:49:A9:0E:C0:7C:7F:3B:76
X509v3 Authority Key Identifier:
keyid:0A:72:DC:25:D4:20:B1:5D:D0:0F:F3:32:3C:B4:46:E7:A0:55:F3:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D986FF7194FB2000A64C23C93E048A61F1672C1CD6C5FB29EAD37980641AFCA7/0/0A72DC25D420B15DD00FF3323CB446E7A055F3BE.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0A72DC25D420B15DD00FF3323CB446E7A055F3BE.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D986FF7194FB2000A64C23C93E048A61F1672C1CD6C5FB29EAD37980641AFCA7/0/323830333a666665303a3a2f33322d3332203d3e20323731373932.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:ffe0::/32
Signature Algorithm: sha256WithRSAEncryption
56:71:2c:a9:8d:41:88:19:fc:13:04:75:9a:9f:23:54:c7:3b:
7a:fe:6f:20:ad:7c:19:b1:be:4f:c3:ec:00:58:b3:90:3b:84:
80:63:56:18:72:db:89:6e:4c:f0:d1:9d:55:0d:bd:f0:61:02:
ad:2c:19:ce:14:26:7d:d8:b2:1e:f8:b2:60:f0:ed:b2:0e:2b:
10:c4:fe:8b:b5:38:4c:d3:c5:53:b0:68:98:fc:5d:5a:3f:fe:
cf:48:2b:7c:b1:b0:82:9a:8d:3c:b5:1a:31:48:4e:8c:18:a7:
6e:b9:a7:31:11:02:f0:8f:f3:39:23:cf:77:6a:f5:2c:4d:84:
23:48:5b:0f:f3:3e:9e:77:6d:d8:42:57:b2:d0:51:80:0e:4d:
88:c1:cc:e5:3b:5d:de:72:86:b8:00:5a:cf:79:ce:b6:17:96:
1e:7a:9a:4b:47:36:73:bc:cb:64:7d:ed:39:e1:4a:e3:67:99:
c9:cd:5b:9a:e8:72:b5:44:1b:7b:f9:90:fc:ef:60:7b:9f:88:
ae:fc:8a:cb:90:b2:71:b0:a2:d1:46:e3:a0:0a:1e:7c:28:a6:
3d:0f:94:3f:7f:13:52:ba:bf:da:18:9b:2d:7a:9d:af:ce:6d:
d2:6f:7c:77:92:cc:28:67:f8:5f:36:c0:84:a8:60:09:d0:2a:
7c:0f:3f:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 16:49:20 2025 by rpki-client