Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E673182B88BF611C219B8AAAAABFA070D5D229D94B5C3959D65E0D27AC02C043/0/3230312e3135392e3234342e302f32342d3234203d3e20323635353135.roa
File: 3230312e3135392e3234342e302f32342d3234203d3e20323635353135.roa (raw, json)
Hash identifier: s5tyUgaPGpTj/BdtzeB8FEzBRAH8yjz8SKLHD30Y3hI=
Subject key identifier: 23:85:91:95:A8:F4:E0:37:FC:7C:E5:09:D8:A1:FB:D5:43:13:38:ED
Certificate issuer: /CN=BD43B3A76583426984FFC51B907F3FD29E2F3BB0
Certificate serial: 3AA88B1C5620C218460129270D58DD874C9AEFE5
Authority key identifier: BD:43:B3:A7:65:83:42:69:84:FF:C5:1B:90:7F:3F:D2:9E:2F:3B:B0
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD43B3A76583426984FFC51B907F3FD29E2F3BB0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E673182B88BF611C219B8AAAAABFA070D5D229D94B5C3959D65E0D27AC02C043/0/3230312e3135392e3234342e302f32342d3234203d3e20323635353135.roa
Signing time: Tue 04 Feb 2025 14:25:00 +0000
ROA not before: Tue 04 Feb 2025 14:20:00 +0000
ROA not after: Tue 03 Feb 2026 14:25:00 +0000
asID: 265515
IP address blocks: 201.159.244.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/E673182B88BF611C219B8AAAAABFA070D5D229D94B5C3959D65E0D27AC02C043/0/BD43B3A76583426984FFC51B907F3FD29E2F3BB0.crl
rsync://repository.lacnic.net/rpki/lacnic/E673182B88BF611C219B8AAAAABFA070D5D229D94B5C3959D65E0D27AC02C043/0/BD43B3A76583426984FFC51B907F3FD29E2F3BB0.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD43B3A76583426984FFC51B907F3FD29E2F3BB0.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 09:41:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:a8:8b:1c:56:20:c2:18:46:01:29:27:0d:58:dd:87:4c:9a:ef:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD43B3A76583426984FFC51B907F3FD29E2F3BB0
Validity
Not Before: Feb 4 14:20:00 2025 GMT
Not After : Feb 3 14:25:00 2026 GMT
Subject: CN=23859195A8F4E037FC7CE509D8A1FBD5431338ED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:41:db:18:23:48:e6:f0:19:fd:d4:4f:3f:e4:
fb:84:a1:c3:1f:45:9f:7d:80:60:13:17:5f:69:c7:
d5:d0:46:2d:be:9f:b7:4d:44:f0:d8:7b:99:44:e5:
c6:2a:85:6b:ef:78:21:92:81:b8:c0:03:0b:08:5d:
55:61:6c:3e:39:35:3e:10:49:a7:af:44:8c:fa:39:
6d:5a:f7:fb:c2:be:39:d3:d7:4a:6e:c9:a4:b5:bf:
83:c8:56:01:a0:50:b0:26:9e:16:4f:06:0a:bc:86:
d5:cd:92:2c:01:8d:f5:c0:bd:6b:e9:45:cf:7b:7a:
f8:15:d9:95:a8:79:50:89:a9:e2:cf:16:49:dc:96:
71:92:38:b5:67:f4:1f:82:ba:2b:2a:42:c2:3b:1f:
9d:2c:05:95:6f:10:4b:f0:97:c7:87:3e:f5:71:82:
71:35:26:a0:8d:fd:b7:78:86:98:e4:3a:b9:ab:5e:
c6:21:34:d9:69:b1:6c:9b:e1:07:3d:8c:7e:06:5d:
9b:8c:05:2d:68:24:c3:9c:c3:b3:28:50:62:c2:27:
80:69:10:03:ac:55:cc:78:a3:20:f2:65:74:d1:c7:
c0:2a:01:6a:97:84:f4:c3:c0:2b:d5:68:da:85:54:
a2:c2:29:0a:cc:0a:8c:bd:b8:48:c4:f0:6c:de:28:
fd:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:85:91:95:A8:F4:E0:37:FC:7C:E5:09:D8:A1:FB:D5:43:13:38:ED
X509v3 Authority Key Identifier:
keyid:BD:43:B3:A7:65:83:42:69:84:FF:C5:1B:90:7F:3F:D2:9E:2F:3B:B0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/E673182B88BF611C219B8AAAAABFA070D5D229D94B5C3959D65E0D27AC02C043/0/BD43B3A76583426984FFC51B907F3FD29E2F3BB0.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD43B3A76583426984FFC51B907F3FD29E2F3BB0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E673182B88BF611C219B8AAAAABFA070D5D229D94B5C3959D65E0D27AC02C043/0/3230312e3135392e3234342e302f32342d3234203d3e20323635353135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.159.244.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:46:60:42:26:87:92:e8:47:4e:9d:e3:06:b1:e4:66:62:95:
3e:10:e7:53:39:7f:05:60:f7:86:f0:18:d7:71:21:cf:19:9f:
f7:d9:4f:ce:64:d9:5f:26:d5:96:60:cd:59:3e:b3:49:f1:21:
03:41:4e:3b:58:2e:9d:c3:7b:9d:7a:4b:67:7e:b9:42:17:db:
5a:11:53:8e:ba:49:5f:ed:75:75:ca:c2:25:5a:db:62:f8:87:
4a:25:6b:ac:b3:7d:0b:cd:7e:ad:df:03:78:c9:bc:7d:80:a4:
8e:5c:e9:f6:30:ff:91:bf:23:65:a5:f5:ab:49:25:c1:1f:cb:
2e:e8:90:e8:a8:50:02:81:f4:93:c2:7b:d8:43:a6:35:31:0d:
81:48:01:86:ae:3d:0b:77:eb:ce:a5:a1:4c:56:c6:3a:b2:5e:
34:ac:40:e5:e9:50:4e:c7:08:c3:d3:08:50:8a:e3:f4:fc:17:
1b:8e:30:6d:fa:92:1a:21:ff:54:82:8d:c0:56:33:ba:54:bd:
ac:db:19:19:95:f6:71:c4:07:62:72:be:fc:65:7c:08:d5:0b:
6e:04:3d:63:da:d9:9b:d6:54:81:81:fa:ac:12:70:ed:0e:a5:
88:9c:97:bc:3f:61:d7:ca:04:20:9d:f0:23:c3:33:b7:b5:ee:
fd:87:7a:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 16:58:35 2025 by rpki-client