Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DE025ADE63A9177898D7E1EF1103089E82D18CE0541050F4C849516A60F77423/0/3137302e3233332e3139342e302f32342d3234203d3e203532353130.roa
File: 3137302e3233332e3139342e302f32342d3234203d3e203532353130.roa (raw, json)
Hash identifier: rj54lYV+VQ1BSiYVw5TlNvGzTl4b463tgSHq8WBhi5g=
Subject key identifier: 8E:61:12:1F:A7:E1:E3:73:84:4E:95:4C:2A:06:4D:63:C5:C3:B9:23
Certificate issuer: /CN=2636D4CBEDBE7A0F4D43DC1621DE3D1936645F3D
Certificate serial: 2133FBA86ACD65C5955C30D89726A9A6D3259A29
Authority key identifier: 26:36:D4:CB:ED:BE:7A:0F:4D:43:DC:16:21:DE:3D:19:36:64:5F:3D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2636D4CBEDBE7A0F4D43DC1621DE3D1936645F3D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/DE025ADE63A9177898D7E1EF1103089E82D18CE0541050F4C849516A60F77423/0/3137302e3233332e3139342e302f32342d3234203d3e203532353130.roa
Signing time: Tue 04 Feb 2025 18:31:46 +0000
ROA not before: Tue 04 Feb 2025 18:26:46 +0000
ROA not after: Tue 03 Feb 2026 18:31:46 +0000
asID: 52510
IP address blocks: 170.233.194.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/DE025ADE63A9177898D7E1EF1103089E82D18CE0541050F4C849516A60F77423/0/2636D4CBEDBE7A0F4D43DC1621DE3D1936645F3D.crl
rsync://repository.lacnic.net/rpki/lacnic/DE025ADE63A9177898D7E1EF1103089E82D18CE0541050F4C849516A60F77423/0/2636D4CBEDBE7A0F4D43DC1621DE3D1936645F3D.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2636D4CBEDBE7A0F4D43DC1621DE3D1936645F3D.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 16:35:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
21:33:fb:a8:6a:cd:65:c5:95:5c:30:d8:97:26:a9:a6:d3:25:9a:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2636D4CBEDBE7A0F4D43DC1621DE3D1936645F3D
Validity
Not Before: Feb 4 18:26:46 2025 GMT
Not After : Feb 3 18:31:46 2026 GMT
Subject: CN=8E61121FA7E1E373844E954C2A064D63C5C3B923
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:2f:0f:59:5c:89:40:f7:c3:92:45:e5:d6:d8:
fa:10:81:7b:12:11:17:e1:13:cf:e2:99:4c:f7:e7:
d7:e2:4e:fc:2b:4f:4f:55:1b:05:48:c0:a0:93:99:
a1:0f:8e:71:19:6d:72:ad:eb:c7:51:70:9c:3f:6c:
43:69:18:a7:b9:ff:d8:ef:89:2e:7a:67:8e:a7:1f:
7a:06:6b:38:88:b1:e6:20:ad:6a:15:3a:52:c4:51:
d9:3e:35:77:3d:07:6a:67:f6:c3:d7:c7:89:6d:00:
ce:f5:4e:f1:e3:d2:0a:c1:73:66:ac:02:ad:b0:b2:
0f:f1:b7:6f:d4:90:bf:f4:ed:c4:ea:89:11:84:b5:
1f:5e:63:03:e6:a7:ff:24:7f:bf:87:24:53:13:bf:
98:ba:c7:68:63:02:c7:ad:9f:a7:ab:df:71:7f:74:
53:51:2a:9f:b3:09:97:ff:f8:28:16:c8:da:ca:21:
28:bb:b0:b1:40:7b:23:88:e4:f5:a6:58:fc:39:1f:
e4:0c:19:c7:c0:c1:49:eb:8c:b6:27:55:98:7c:a1:
3d:db:a9:3d:f7:92:47:0e:45:78:65:4a:52:c4:b9:
fa:12:f5:2e:ed:9a:41:c8:44:3f:3d:59:d2:c8:2a:
2d:09:69:57:b6:6e:68:7d:1f:6e:44:90:d0:3d:6a:
31:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:61:12:1F:A7:E1:E3:73:84:4E:95:4C:2A:06:4D:63:C5:C3:B9:23
X509v3 Authority Key Identifier:
keyid:26:36:D4:CB:ED:BE:7A:0F:4D:43:DC:16:21:DE:3D:19:36:64:5F:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/DE025ADE63A9177898D7E1EF1103089E82D18CE0541050F4C849516A60F77423/0/2636D4CBEDBE7A0F4D43DC1621DE3D1936645F3D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2636D4CBEDBE7A0F4D43DC1621DE3D1936645F3D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DE025ADE63A9177898D7E1EF1103089E82D18CE0541050F4C849516A60F77423/0/3137302e3233332e3139342e302f32342d3234203d3e203532353130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.233.194.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:75:9f:21:e5:35:34:48:28:5f:3e:95:3d:db:12:a5:ef:f9:
5e:4a:6d:5c:54:f4:d7:14:50:a9:75:83:40:59:93:7f:58:15:
3f:03:8d:f1:c9:12:1e:ea:82:89:b1:8f:a5:19:d6:2f:0b:e4:
a3:0d:e3:7c:0b:d8:6c:d9:2d:a2:d0:25:c3:8d:c3:cb:f0:90:
20:e3:15:4b:af:96:f1:d6:ea:5a:56:fc:87:03:a7:3b:91:4e:
ad:1a:20:59:59:38:fd:19:39:bc:55:43:2f:80:a8:95:d9:23:
77:62:93:25:df:09:c0:c9:a3:1d:f1:0a:8a:67:09:d8:51:17:
f1:33:5b:f1:e9:75:6b:b6:5d:70:2e:53:18:c0:17:16:91:a7:
fb:29:32:44:0f:f2:8c:31:34:b0:b2:21:45:27:dd:12:95:53:
21:06:4d:bb:3f:5d:23:6f:46:be:dc:3d:b6:48:b6:af:f5:6c:
92:92:36:b4:3f:47:36:c2:49:71:69:8d:b8:cd:d4:76:cd:17:
eb:fb:7f:5f:f6:c4:be:d2:7b:a3:c0:20:9e:a3:00:01:f9:b6:
06:99:65:bd:b2:b3:6c:fc:12:53:8f:97:07:32:8d:1c:6f:43:
d5:95:99:23:81:f0:a3:10:2f:94:08:6c:43:22:88:d3:36:7d:
ca:a9:92:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 22:35:39 2025 by rpki-client