Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E89A25762E817B4ABAD4AE619618A2027CDA10E65EA17AE320EAB24829F102F7/0/323830333a643638303a3a2f33322d3336203d3e20323633323234.roa
File: 323830333a643638303a3a2f33322d3336203d3e20323633323234.roa (raw, json)
Hash identifier: iFfy/fPWKpIoluhGN2CThRqibNtWe9X59SrKN8WRLAM=
Subject key identifier: 80:C6:24:26:22:2B:55:59:62:99:A7:E1:AD:CD:BA:37:53:A8:C5:09
Certificate issuer: /CN=A996A5FE83CDF4C0C2A311F22A2CF3DB1D02C478
Certificate serial: 29136E8642CE984680A20FB05CE3132CEB3FB899
Authority key identifier: A9:96:A5:FE:83:CD:F4:C0:C2:A3:11:F2:2A:2C:F3:DB:1D:02:C4:78
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A996A5FE83CDF4C0C2A311F22A2CF3DB1D02C478.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E89A25762E817B4ABAD4AE619618A2027CDA10E65EA17AE320EAB24829F102F7/0/323830333a643638303a3a2f33322d3336203d3e20323633323234.roa
Signing time: Tue 18 Feb 2025 18:10:08 +0000
ROA not before: Tue 18 Feb 2025 18:05:08 +0000
ROA not after: Tue 17 Feb 2026 18:10:08 +0000
asID: 263224
IP address blocks: 2803:d680::/32 maxlen: 36
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/E89A25762E817B4ABAD4AE619618A2027CDA10E65EA17AE320EAB24829F102F7/0/A996A5FE83CDF4C0C2A311F22A2CF3DB1D02C478.crl
rsync://repository.lacnic.net/rpki/lacnic/E89A25762E817B4ABAD4AE619618A2027CDA10E65EA17AE320EAB24829F102F7/0/A996A5FE83CDF4C0C2A311F22A2CF3DB1D02C478.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A996A5FE83CDF4C0C2A311F22A2CF3DB1D02C478.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:13:6e:86:42:ce:98:46:80:a2:0f:b0:5c:e3:13:2c:eb:3f:b8:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A996A5FE83CDF4C0C2A311F22A2CF3DB1D02C478
Validity
Not Before: Feb 18 18:05:08 2025 GMT
Not After : Feb 17 18:10:08 2026 GMT
Subject: CN=80C62426222B55596299A7E1ADCDBA3753A8C509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:54:be:48:22:a2:cf:b6:de:93:68:6a:b0:b5:
83:b4:73:63:4f:40:9b:a6:87:49:76:55:cb:1e:16:
b3:35:0a:88:cb:a8:1c:bc:bf:19:54:b6:f5:66:d7:
74:3a:d2:88:07:0a:3a:21:e0:f1:6e:2d:5c:f4:f9:
b8:db:78:8d:53:06:db:95:26:ae:db:73:14:b6:70:
cf:00:ab:f8:ec:65:20:01:18:a8:ba:26:55:31:6c:
c6:c7:02:f0:74:65:87:34:6e:be:f6:3c:96:6c:0a:
4f:74:a1:b9:35:df:1c:68:d6:50:cc:70:1c:b2:77:
ec:f9:13:bb:0d:94:28:44:61:2f:e4:c8:4e:d9:e1:
f5:f7:0b:ba:19:fc:6d:f4:d1:04:4d:e3:d3:5e:69:
71:be:e2:17:55:48:b9:6e:b9:4a:9a:47:4b:bb:80:
30:99:17:5a:ca:2a:9f:f1:46:93:e3:1c:53:b1:e4:
99:b7:67:52:29:33:e6:98:c3:83:9a:b3:91:54:bb:
16:be:ae:39:ed:91:9f:37:02:de:8d:04:4c:6d:9b:
94:46:18:1d:8c:20:dd:05:b8:45:81:40:07:59:f2:
28:d2:b3:df:e1:15:d8:a4:21:48:e5:c9:7c:f0:18:
40:b9:8d:43:ac:03:fb:58:6d:71:df:6b:d1:53:7f:
ad:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:C6:24:26:22:2B:55:59:62:99:A7:E1:AD:CD:BA:37:53:A8:C5:09
X509v3 Authority Key Identifier:
keyid:A9:96:A5:FE:83:CD:F4:C0:C2:A3:11:F2:2A:2C:F3:DB:1D:02:C4:78
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/E89A25762E817B4ABAD4AE619618A2027CDA10E65EA17AE320EAB24829F102F7/0/A996A5FE83CDF4C0C2A311F22A2CF3DB1D02C478.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A996A5FE83CDF4C0C2A311F22A2CF3DB1D02C478.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E89A25762E817B4ABAD4AE619618A2027CDA10E65EA17AE320EAB24829F102F7/0/323830333a643638303a3a2f33322d3336203d3e20323633323234.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:d680::/32
Signature Algorithm: sha256WithRSAEncryption
06:f0:6d:c7:c5:94:34:0d:0d:91:ff:4a:6f:89:68:61:9b:8e:
38:fa:6a:dc:04:70:ba:a0:e8:ca:8f:e8:7b:b5:ad:f0:19:c5:
78:9f:71:e6:67:d9:71:3e:bf:7a:58:82:51:7c:39:53:45:8a:
63:44:58:2c:af:44:c9:d2:6e:d5:c6:fc:fc:13:25:f0:d6:0b:
c4:c8:11:e0:3c:0c:65:40:a3:54:ce:1c:ab:0f:aa:a9:28:1e:
5f:fa:1c:29:44:c7:8d:89:92:c2:96:60:67:0a:35:3e:02:31:
d5:c9:bc:5e:b1:31:32:d5:0b:0f:fd:8b:a3:ea:1a:16:12:91:
ee:44:f8:69:a9:1a:4e:8b:4f:f1:70:f3:d8:09:3c:16:17:45:
f1:4c:23:c5:67:68:d4:92:78:4c:4e:2f:f8:89:91:ec:1c:e2:
65:40:3d:4d:7e:89:d8:6d:9f:37:7b:28:7a:cb:73:b2:42:94:
4d:6b:d8:f9:9b:64:56:6e:e7:8d:e2:29:1e:5e:6b:79:60:6d:
52:aa:42:7b:36:43:24:21:6c:7b:68:1b:f3:97:2d:75:73:8d:
1c:8b:37:0b:14:a3:fa:78:a1:b2:67:c0:f2:85:3d:31:be:0b:
42:7d:5c:c0:79:88:36:32:44:6b:f9:9c:7e:bc:23:00:11:94:
55:7e:fa:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 14:33:36 2025 by rpki-client