Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DA104D7777B029EDA782DAA6A6F7434FDB777CE68A094979781464EC59FF8A9A/0/36362e3233312e37382e302f32342d3234203d3e20323730303439.roa
File: 36362e3233312e37382e302f32342d3234203d3e20323730303439.roa (raw, json)
Hash identifier: zthvfjmPBco1Go8GOOT8SNVBR0wbufxTZ14Cvn2742M=
Subject key identifier: BA:73:41:F5:DD:C5:02:03:1F:82:28:C9:C9:82:03:59:DA:25:43:CF
Certificate issuer: /CN=C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0
Certificate serial: 4FA6045ECC1AFCCC0CDB659219EB5D383F11AB9D
Authority key identifier: C2:96:7F:F3:10:9E:0A:A7:EE:5E:C1:C6:40:30:0D:5A:00:FF:41:B0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/DA104D7777B029EDA782DAA6A6F7434FDB777CE68A094979781464EC59FF8A9A/0/36362e3233312e37382e302f32342d3234203d3e20323730303439.roa
Signing time: Tue 04 Feb 2025 18:39:40 +0000
ROA not before: Tue 04 Feb 2025 18:34:40 +0000
ROA not after: Tue 03 Feb 2026 18:39:40 +0000
asID: 270049
IP address blocks: 66.231.78.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/DA104D7777B029EDA782DAA6A6F7434FDB777CE68A094979781464EC59FF8A9A/0/C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0.crl
rsync://repository.lacnic.net/rpki/lacnic/DA104D7777B029EDA782DAA6A6F7434FDB777CE68A094979781464EC59FF8A9A/0/C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 06:28:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:a6:04:5e:cc:1a:fc:cc:0c:db:65:92:19:eb:5d:38:3f:11:ab:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0
Validity
Not Before: Feb 4 18:34:40 2025 GMT
Not After : Feb 3 18:39:40 2026 GMT
Subject: CN=BA7341F5DDC502031F8228C9C9820359DA2543CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d1:9e:05:3c:1f:a0:22:e5:c0:16:dc:60:09:
b2:04:aa:af:2e:8f:d2:27:7a:dd:19:56:a4:09:3d:
47:a5:67:eb:c5:86:74:68:f3:93:7a:1e:e1:de:61:
6d:37:3d:f2:b9:6d:ce:9f:3e:e9:20:e0:25:c3:64:
66:4b:be:f6:8c:89:90:65:dd:2b:00:96:2d:5f:34:
f4:c4:e8:51:79:93:0e:89:b1:76:89:6e:72:21:8a:
27:40:f3:8c:ff:2f:ba:85:74:d7:84:4c:ff:82:5d:
b6:48:cd:0f:e3:53:cc:7e:68:f7:5d:36:01:ac:4b:
e8:06:2b:6c:83:5b:ca:9b:73:27:ce:69:5a:ea:06:
b5:3f:c0:fd:c0:7a:10:bb:a4:9d:c8:0f:99:34:68:
f7:b3:b3:da:24:2a:94:63:cc:bd:c9:db:91:27:9f:
4b:57:ff:39:3c:76:bc:3c:51:52:e5:66:cf:43:91:
9e:c1:d0:93:b9:3e:12:b5:e5:2f:4b:81:26:6d:01:
bb:02:2d:6c:57:ca:2c:d0:aa:c2:36:5f:24:e4:09:
0c:02:2d:44:51:ff:db:bc:4f:91:37:3e:32:4b:50:
1b:ac:76:e5:9f:da:6a:50:5b:4d:75:9e:8d:87:93:
44:48:12:b6:f2:79:dd:0f:44:59:e8:74:7a:25:12:
db:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:73:41:F5:DD:C5:02:03:1F:82:28:C9:C9:82:03:59:DA:25:43:CF
X509v3 Authority Key Identifier:
keyid:C2:96:7F:F3:10:9E:0A:A7:EE:5E:C1:C6:40:30:0D:5A:00:FF:41:B0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/DA104D7777B029EDA782DAA6A6F7434FDB777CE68A094979781464EC59FF8A9A/0/C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C2967FF3109E0AA7EE5EC1C640300D5A00FF41B0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DA104D7777B029EDA782DAA6A6F7434FDB777CE68A094979781464EC59FF8A9A/0/36362e3233312e37382e302f32342d3234203d3e20323730303439.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
66.231.78.0/24
Signature Algorithm: sha256WithRSAEncryption
82:c0:f7:ad:33:46:af:a7:a9:1d:50:e5:8b:38:c8:f0:70:c9:
44:fb:69:75:ea:c7:23:93:5c:fc:f2:1e:78:85:4c:cd:c6:83:
9d:f5:be:85:45:c5:f2:17:1e:33:1d:7a:66:6b:a3:8d:10:ba:
d7:f4:d6:c7:ea:fe:87:dc:38:76:a1:46:a5:27:2d:9b:e4:2f:
1f:81:91:e0:17:95:ff:08:56:00:e2:87:e0:3c:76:a9:be:cd:
a8:49:74:2f:4d:f8:e3:db:6c:9c:66:28:ee:39:f3:ea:16:12:
75:40:8a:18:b9:3f:f9:83:a4:a4:29:a5:34:17:c1:cd:61:81:
ec:cb:89:19:3b:d6:10:70:d6:e4:36:cc:37:10:0e:98:e6:57:
76:65:fd:cd:95:77:78:7c:d0:dc:b0:56:84:2f:42:3e:45:d2:
b5:78:a4:d4:ce:71:f4:14:29:40:6b:d1:a2:0f:26:cd:2d:4b:
39:0c:d9:39:c7:8d:8e:0a:88:ac:53:15:98:fb:88:2f:aa:32:
3a:0e:3a:c6:5a:28:a0:b9:04:39:ba:e0:69:11:83:be:1e:4d:
f9:25:28:6c:24:42:cb:ee:c6:13:b3:91:3a:ef:69:d6:a1:55:
23:c2:e5:48:21:a1:2a:dc:27:30:75:fa:bd:22:26:c1:f6:60:
53:c7:c7:60
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUT6YEXswa/MwM22WSGetdOD8Rq50wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzI5NjdGRjMxMDlFMEFBN0VFNUVDMUM2NDAzMDBENUEw
MEZGNDFCMDAeFw0yNTAyMDQxODM0NDBaFw0yNjAyMDMxODM5NDBaMDMxMTAvBgNV
BAMTKEJBNzM0MUY1RERDNTAyMDMxRjgyMjhDOUM5ODIwMzU5REEyNTQzQ0YwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCk0Z4FPB+gIuXAFtxgCbIEqq8u
j9Inet0ZVqQJPUelZ+vFhnRo85N6HuHeYW03PfK5bc6fPukg4CXDZGZLvvaMiZBl
3SsAli1fNPTE6FF5kw6JsXaJbnIhiidA84z/L7qFdNeETP+CXbZIzQ/jU8x+aPdd
NgGsS+gGK2yDW8qbcyfOaVrqBrU/wP3AehC7pJ3ID5k0aPezs9okKpRjzL3J25En
n0tX/zk8drw8UVLlZs9DkZ7B0JO5PhK15S9LgSZtAbsCLWxXyizQqsI2XyTkCQwC
LURR/9u8T5E3PjJLUBusduWf2mpQW011no2Hk0RIErbyed0PRFnodHolEtsjAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUunNB9d3FAgMfgijJyYIDWdolQ88wHwYDVR0j
BBgwFoAUwpZ/8xCeCqfuXsHGQDANWgD/QbAwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9EQTEwNEQ3Nzc3QjAyOUVEQTc4MkRBQTZBNkY3NDM0RkRC
Nzc3Q0U2OEEwOTQ5Nzk3ODE0NjRFQzU5RkY4QTlBLzAvQzI5NjdGRjMxMDlFMEFB
N0VFNUVDMUM2NDAzMDBENUEwMEZGNDFCMC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9DMjk2N0ZGMzEwOUUwQUE3RUU1
RUMxQzY0MDMwMEQ1QTAwRkY0MUIwLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvREExMDRENzc3N0IwMjlFREE3ODJEQUE2QTZGNzQzNEZEQjc3N0NFNjhB
MDk0OTc5NzgxNDY0RUM1OUZGOEE5QS8wLzM2MzYyZTMyMzMzMTJlMzczODJlMzAy
ZjMyMzQyZDMyMzQyMDNkM2UyMDMyMzczMDMwMzQzOS5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAELnTjAN
BgkqhkiG9w0BAQsFAAOCAQEAgsD3rTNGr6epHVDlizjI8HDJRPtpderHI5Nc/PIe
eIVMzcaDnfW+hUXF8hceMx16ZmujjRC61/TWx+r+h9w4dqFGpSctm+QvH4GR4BeV
/whWAOKH4Dx2qb7NqEl0L03449tsnGYo7jnz6hYSdUCKGLk/+YOkpCmlNBfBzWGB
7MuJGTvWEHDW5DbMNxAOmOZXdmX9zZV3eHzQ3LBWhC9CPkXStXik1M5x9BQpQGvR
og8mzS1LOQzZOceNjgqIrFMVmPuIL6oyOg46xloooLkEObrgaRGDvh5N+SUobCRC
y+7GE7OROu9p1qFVI8LlSCGhKtwnMHX6vSImwfZgU8fHYA==
-----END CERTIFICATE-----
Generated at Mon Apr 14 10:41:41 2025 by rpki-client