Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E673182B88BF611C219B8AAAAABFA070D5D229D94B5C3959D65E0D27AC02C043/0/3230312e3135392e3234322e302f32342d3234203d3e203238353532.roa
File: 3230312e3135392e3234322e302f32342d3234203d3e203238353532.roa (raw, json)
Hash identifier: YR3SQNQ3HwEURSJStzbF8gB6bM6t5w4ZznzxAlyhMmM=
Subject key identifier: 98:18:6B:BF:BA:60:94:C1:EC:A4:09:EE:42:76:BC:E6:EE:BC:96:74
Certificate issuer: /CN=BD43B3A76583426984FFC51B907F3FD29E2F3BB0
Certificate serial: 342B3324DB65261422BE829BE7C95883A6BC817E
Authority key identifier: BD:43:B3:A7:65:83:42:69:84:FF:C5:1B:90:7F:3F:D2:9E:2F:3B:B0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD43B3A76583426984FFC51B907F3FD29E2F3BB0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E673182B88BF611C219B8AAAAABFA070D5D229D94B5C3959D65E0D27AC02C043/0/3230312e3135392e3234322e302f32342d3234203d3e203238353532.roa
Signing time: Tue 04 Feb 2025 14:20:01 +0000
ROA not before: Tue 04 Feb 2025 14:15:01 +0000
ROA not after: Tue 03 Feb 2026 14:20:01 +0000
asID: 28552
IP address blocks: 201.159.242.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/E673182B88BF611C219B8AAAAABFA070D5D229D94B5C3959D65E0D27AC02C043/0/BD43B3A76583426984FFC51B907F3FD29E2F3BB0.crl
rsync://repository.lacnic.net/rpki/lacnic/E673182B88BF611C219B8AAAAABFA070D5D229D94B5C3959D65E0D27AC02C043/0/BD43B3A76583426984FFC51B907F3FD29E2F3BB0.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD43B3A76583426984FFC51B907F3FD29E2F3BB0.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 09:41:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:2b:33:24:db:65:26:14:22:be:82:9b:e7:c9:58:83:a6:bc:81:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD43B3A76583426984FFC51B907F3FD29E2F3BB0
Validity
Not Before: Feb 4 14:15:01 2025 GMT
Not After : Feb 3 14:20:01 2026 GMT
Subject: CN=98186BBFBA6094C1ECA409EE4276BCE6EEBC9674
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:67:93:be:07:58:8b:17:f6:61:50:e7:63:26:
80:5d:f3:7d:69:87:41:ca:d6:44:d9:00:66:8d:de:
4c:75:3d:c1:05:4d:33:8d:36:1b:73:9a:30:ee:f9:
db:9b:9b:6f:36:d9:f6:c0:93:c8:83:30:dc:05:3c:
ae:b3:75:60:b8:fa:0c:f8:19:c4:24:fd:9f:8e:1b:
54:72:4e:09:a4:3b:fa:02:2c:83:f0:4d:b7:40:1b:
f7:77:98:22:d7:21:e4:b6:74:fb:2d:e3:34:f1:dd:
72:7a:9d:b5:db:40:f3:01:ac:a8:cf:47:f9:0a:a4:
37:1f:6e:74:31:13:52:de:e9:e0:23:77:11:a4:8e:
a3:f8:30:9d:a8:5c:cf:e2:05:44:2b:7c:10:b2:c9:
67:73:26:6e:05:53:be:8a:c8:b1:66:13:f6:29:e4:
25:d6:f0:9f:51:13:20:40:93:4f:6a:08:8e:8b:4a:
12:72:3b:5c:f7:c4:db:42:e7:61:2c:b2:06:78:0d:
2c:09:b3:eb:84:22:1c:4e:85:e6:fe:3b:19:43:1f:
d8:c0:34:ca:6e:32:d5:09:7c:8d:d6:7e:ba:b5:09:
24:fc:92:4a:be:31:65:cd:2f:7f:e8:0c:82:b6:b2:
56:7d:f3:8b:dc:29:df:55:09:6f:40:7f:0b:70:a4:
38:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:18:6B:BF:BA:60:94:C1:EC:A4:09:EE:42:76:BC:E6:EE:BC:96:74
X509v3 Authority Key Identifier:
keyid:BD:43:B3:A7:65:83:42:69:84:FF:C5:1B:90:7F:3F:D2:9E:2F:3B:B0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/E673182B88BF611C219B8AAAAABFA070D5D229D94B5C3959D65E0D27AC02C043/0/BD43B3A76583426984FFC51B907F3FD29E2F3BB0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD43B3A76583426984FFC51B907F3FD29E2F3BB0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E673182B88BF611C219B8AAAAABFA070D5D229D94B5C3959D65E0D27AC02C043/0/3230312e3135392e3234322e302f32342d3234203d3e203238353532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.159.242.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:db:0d:51:50:62:34:e2:5e:24:c1:76:04:99:25:ab:8d:89:
4d:d9:4d:fd:7d:b7:3b:07:72:bb:36:c1:2b:ff:c8:7d:ee:f9:
f4:27:64:74:b4:c0:b5:8d:f5:cb:ae:11:55:6e:2f:07:1f:a2:
5e:6c:51:7b:8d:37:c0:78:85:d8:47:8e:cf:92:bf:1c:63:b7:
fc:37:6a:46:b3:40:8f:98:73:df:83:47:bf:64:d3:62:aa:b3:
0e:33:e3:d0:c4:6d:be:c6:35:c6:33:9d:5e:39:d4:2e:6e:29:
2c:8e:86:0e:d5:e9:24:d8:3b:1f:2a:72:11:b0:2c:b2:14:9c:
96:76:d3:04:dc:6c:6f:9c:d3:45:a6:83:09:ad:a3:a2:5c:a7:
9a:2d:60:36:f1:88:72:5b:6d:08:9d:8f:4f:69:bf:21:4b:47:
13:a6:41:03:35:13:32:b2:87:c9:36:a6:24:72:5c:3a:21:c0:
6d:3a:b4:eb:7f:56:19:28:ce:51:09:c5:bc:67:7f:14:ca:b9:
ae:ca:e1:58:a2:d3:43:12:43:13:ee:9a:16:02:42:6e:cf:2c:
fe:5f:f9:40:ac:f0:a3:ed:3e:7b:27:ee:72:d4:91:23:13:9e:
ed:0a:b7:8b:6f:e4:3a:18:ce:3f:a8:16:2a:01:48:54:86:49:
40:fb:12:ba
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUNCszJNtlJhQivoKb58lYg6a8gX4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQkQ0M0IzQTc2NTgzNDI2OTg0RkZDNTFCOTA3RjNGRDI5
RTJGM0JCMDAeFw0yNTAyMDQxNDE1MDFaFw0yNjAyMDMxNDIwMDFaMDMxMTAvBgNV
BAMTKDk4MTg2QkJGQkE2MDk0QzFFQ0E0MDlFRTQyNzZCQ0U2RUVCQzk2NzQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkZ5O+B1iLF/ZhUOdjJoBd831p
h0HK1kTZAGaN3kx1PcEFTTONNhtzmjDu+dubm2822fbAk8iDMNwFPK6zdWC4+gz4
GcQk/Z+OG1RyTgmkO/oCLIPwTbdAG/d3mCLXIeS2dPst4zTx3XJ6nbXbQPMBrKjP
R/kKpDcfbnQxE1Le6eAjdxGkjqP4MJ2oXM/iBUQrfBCyyWdzJm4FU76KyLFmE/Yp
5CXW8J9REyBAk09qCI6LShJyO1z3xNtC52EssgZ4DSwJs+uEIhxOheb+OxlDH9jA
NMpuMtUJfI3Wfrq1CST8kkq+MWXNL3/oDIK2slZ984vcKd9VCW9AfwtwpDgNAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUmBhrv7pglMHspAnuQna85u68lnQwHwYDVR0j
BBgwFoAUvUOzp2WDQmmE/8UbkH8/0p4vO7AwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9FNjczMTgyQjg4QkY2MTFDMjE5QjhBQUFBQUJGQTA3MEQ1
RDIyOUQ5NEI1QzM5NTlENjVFMEQyN0FDMDJDMDQzLzAvQkQ0M0IzQTc2NTgzNDI2
OTg0RkZDNTFCOTA3RjNGRDI5RTJGM0JCMC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9CRDQzQjNBNzY1ODM0MjY5ODRG
RkM1MUI5MDdGM0ZEMjlFMkYzQkIwLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRTY3MzE4MkI4OEJGNjExQzIxOUI4QUFBQUFCRkEwNzBENUQyMjlEOTRC
NUMzOTU5RDY1RTBEMjdBQzAyQzA0My8wLzMyMzAzMTJlMzEzNTM5MmUzMjM0MzIy
ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM4MzUzNTMyLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyZ/y
MA0GCSqGSIb3DQEBCwUAA4IBAQBc2w1RUGI04l4kwXYEmSWrjYlN2U39fbc7B3K7
NsEr/8h97vn0J2R0tMC1jfXLrhFVbi8HH6JebFF7jTfAeIXYR47Pkr8cY7f8N2pG
s0CPmHPfg0e/ZNNiqrMOM+PQxG2+xjXGM51eOdQubiksjoYO1ekk2DsfKnIRsCyy
FJyWdtME3GxvnNNFpoMJraOiXKeaLWA28YhyW20InY9Pab8hS0cTpkEDNRMysofJ
NqYkclw6IcBtOrTrf1YZKM5RCcW8Z38UyrmuyuFYotNDEkMT7poWAkJuzyz+X/lA
rPCj7T57J+5y1JEjE57tCreLb+Q6GM4/qBYqAUhUhklA+xK6
-----END CERTIFICATE-----
Generated at Mon Apr 14 16:18:23 2025 by rpki-client