Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E579BF8D5E48275B6F11AB178D05BB56B07B67D522BA447C8114064F9FC77CA5/0/3136382e3233322e32382e302f32322d3234203d3e20333934363834.roa
File: 3136382e3233322e32382e302f32322d3234203d3e20333934363834.roa (raw, json)
Hash identifier: Cvvhotx9LG+zV0O30/DgnU1Le/4NaSR7UPjqYOdCe5E=
Subject key identifier: E5:84:57:6E:46:50:FF:51:30:0F:56:9C:3D:D9:49:71:D0:61:5A:8A
Certificate issuer: /CN=3D8CF3696583CC1AFB700F202360AEB49355D862
Certificate serial: 430D4CF1E787D273D14C69C8CA8CA82A85801B3F
Authority key identifier: 3D:8C:F3:69:65:83:CC:1A:FB:70:0F:20:23:60:AE:B4:93:55:D8:62
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3D8CF3696583CC1AFB700F202360AEB49355D862.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E579BF8D5E48275B6F11AB178D05BB56B07B67D522BA447C8114064F9FC77CA5/0/3136382e3233322e32382e302f32322d3234203d3e20333934363834.roa
Signing time: Tue 04 Feb 2025 18:49:19 +0000
ROA not before: Tue 04 Feb 2025 18:44:19 +0000
ROA not after: Tue 03 Feb 2026 18:49:19 +0000
asID: 394684
IP address blocks: 168.232.28.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/E579BF8D5E48275B6F11AB178D05BB56B07B67D522BA447C8114064F9FC77CA5/0/3D8CF3696583CC1AFB700F202360AEB49355D862.crl
rsync://repository.lacnic.net/rpki/lacnic/E579BF8D5E48275B6F11AB178D05BB56B07B67D522BA447C8114064F9FC77CA5/0/3D8CF3696583CC1AFB700F202360AEB49355D862.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3D8CF3696583CC1AFB700F202360AEB49355D862.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 20:38:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:0d:4c:f1:e7:87:d2:73:d1:4c:69:c8:ca:8c:a8:2a:85:80:1b:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3D8CF3696583CC1AFB700F202360AEB49355D862
Validity
Not Before: Feb 4 18:44:19 2025 GMT
Not After : Feb 3 18:49:19 2026 GMT
Subject: CN=E584576E4650FF51300F569C3DD94971D0615A8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4d:7f:07:48:31:ad:ce:49:70:23:4e:4c:d9:
03:62:e7:17:2d:84:55:bf:6b:ae:9f:cd:9d:9b:5e:
c9:e0:c6:67:be:7c:b7:9b:22:d8:bf:13:4d:79:5c:
c2:2f:3e:de:27:af:1b:a1:7c:a4:27:68:9f:82:1b:
d2:f6:e0:98:0a:10:f4:ea:4c:ee:4d:64:97:3d:46:
32:8c:b3:32:99:eb:cf:46:e0:44:b6:39:91:2c:93:
6b:70:c8:cf:2b:f3:8b:f5:37:ca:3d:de:3c:7f:69:
06:30:06:cc:14:0d:97:e1:4d:61:a8:17:73:8a:6c:
a4:bb:c8:ec:a1:51:64:c6:af:00:98:52:33:26:23:
b0:16:13:39:e5:58:f2:7d:62:b0:df:83:d0:1c:3a:
4a:ea:84:20:44:87:15:82:ac:f6:72:f8:8a:b9:08:
6b:bf:8f:5f:2e:7f:b9:26:02:84:67:3d:a4:09:1c:
2b:ce:d2:d6:d8:17:05:2b:e7:c9:f4:d1:64:ac:b8:
bb:52:1d:db:9e:7f:d3:76:26:5c:9a:c7:80:1f:65:
28:de:66:e6:e6:32:04:bb:37:f9:87:ac:ff:e5:6e:
ca:6f:89:21:a0:12:33:16:58:74:9a:34:e5:4c:90:
10:c3:fa:0c:24:6e:2a:44:1f:30:11:e5:d0:32:dc:
b3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:84:57:6E:46:50:FF:51:30:0F:56:9C:3D:D9:49:71:D0:61:5A:8A
X509v3 Authority Key Identifier:
keyid:3D:8C:F3:69:65:83:CC:1A:FB:70:0F:20:23:60:AE:B4:93:55:D8:62
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/E579BF8D5E48275B6F11AB178D05BB56B07B67D522BA447C8114064F9FC77CA5/0/3D8CF3696583CC1AFB700F202360AEB49355D862.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3D8CF3696583CC1AFB700F202360AEB49355D862.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E579BF8D5E48275B6F11AB178D05BB56B07B67D522BA447C8114064F9FC77CA5/0/3136382e3233322e32382e302f32322d3234203d3e20333934363834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.232.28.0/22
Signature Algorithm: sha256WithRSAEncryption
54:9c:ca:db:7d:25:33:f5:e4:17:bc:52:16:7f:2e:9e:a8:f3:
89:65:bd:51:ab:6e:b9:36:96:63:27:14:67:93:e3:68:ba:0b:
1c:15:88:ff:1d:60:24:b5:89:84:39:4c:4f:d3:b0:67:bf:da:
c6:01:4a:8c:85:80:b1:2d:21:d6:4e:cf:fc:0e:91:d0:92:a6:
c3:4f:db:db:fc:c2:a9:c4:f0:1f:e6:a1:17:c6:d1:7b:60:fd:
6e:6d:fc:48:f3:4f:2a:df:70:91:76:95:d5:3e:21:1c:af:7c:
e4:59:09:5e:14:96:63:b5:92:4e:ea:96:90:82:f5:85:b0:34:
93:d4:cb:77:ea:13:3c:73:81:11:52:7b:7c:2c:d2:f2:10:9b:
bd:e8:23:17:04:4a:1c:c5:66:a7:66:c1:a1:03:bc:83:0d:5b:
90:63:d0:b4:f3:fd:c0:82:d7:57:40:9c:be:41:ca:34:64:7f:
9c:5c:34:25:0e:4b:59:42:16:26:4c:14:df:13:18:b7:f1:d8:
3e:62:39:cb:48:ad:65:01:b0:a1:6d:28:74:2a:b4:19:ae:ce:
63:f2:99:e6:aa:03:89:32:3c:e0:42:a8:3f:d9:85:63:4b:e2:
c1:8c:04:57:c4:7a:ff:a2:5f:58:27:07:e4:1c:60:a3:4b:58:
a5:1a:25:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 19:29:15 2025 by rpki-client