Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E9F4385A8DF88768BA6C5AB9B9AEBC9B1088332CD56BE59A9E2EB53021712668/0/323830303a3834303a3a2f33322d3438203d3e203139343232.roa
File: 323830303a3834303a3a2f33322d3438203d3e203139343232.roa (raw, json)
Hash identifier: v1XTeuLnkFkqjmIujtdMrcN/PStt5Ykw3bnLHsnetxw=
Subject key identifier: AA:BE:66:82:99:F8:85:81:7D:AD:4B:37:63:DA:72:48:70:22:0E:A2
Certificate issuer: /CN=88041F15365A423BC08F92BC69A5F909644042C2
Certificate serial: 67078C00C3D9E38991105D3425BFFA35F7C7836A
Authority key identifier: 88:04:1F:15:36:5A:42:3B:C0:8F:92:BC:69:A5:F9:09:64:40:42:C2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/88041F15365A423BC08F92BC69A5F909644042C2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E9F4385A8DF88768BA6C5AB9B9AEBC9B1088332CD56BE59A9E2EB53021712668/0/323830303a3834303a3a2f33322d3438203d3e203139343232.roa
Signing time: Fri 21 Feb 2025 15:10:36 +0000
ROA not before: Fri 21 Feb 2025 15:05:36 +0000
ROA not after: Fri 20 Feb 2026 15:10:36 +0000
asID: 19422
IP address blocks: 2800:840::/32 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/E9F4385A8DF88768BA6C5AB9B9AEBC9B1088332CD56BE59A9E2EB53021712668/0/88041F15365A423BC08F92BC69A5F909644042C2.crl
rsync://repository.lacnic.net/rpki/lacnic/E9F4385A8DF88768BA6C5AB9B9AEBC9B1088332CD56BE59A9E2EB53021712668/0/88041F15365A423BC08F92BC69A5F909644042C2.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/88041F15365A423BC08F92BC69A5F909644042C2.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:07:8c:00:c3:d9:e3:89:91:10:5d:34:25:bf:fa:35:f7:c7:83:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88041F15365A423BC08F92BC69A5F909644042C2
Validity
Not Before: Feb 21 15:05:36 2025 GMT
Not After : Feb 20 15:10:36 2026 GMT
Subject: CN=AABE668299F885817DAD4B3763DA724870220EA2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:bd:fc:17:a1:78:2b:7b:e7:ea:5b:f8:d3:ad:
87:8e:d6:10:4f:79:a5:60:fb:b4:ca:d0:bb:96:84:
a1:1c:ec:20:18:4e:f9:96:a5:81:77:59:8c:55:29:
66:55:a5:fc:58:27:05:13:31:22:da:9c:cd:a3:9e:
40:40:37:ab:69:b6:7e:a8:98:cc:33:fd:24:65:1d:
3c:d2:31:b0:27:3b:a4:df:1a:79:4b:26:1e:4f:de:
f3:42:a1:60:f3:6d:71:dd:d9:18:cb:f4:c7:75:3d:
a3:db:08:5b:38:ab:4a:75:a5:e7:f9:c5:a4:8c:e9:
97:5c:e1:25:25:dd:ca:15:3d:d8:e4:99:da:5f:0f:
92:ca:99:57:7f:64:1c:74:be:06:5f:d2:2d:2d:26:
81:65:50:cb:4e:ab:07:c1:44:d4:41:96:b0:d1:4a:
71:79:7b:0d:44:d9:6d:ca:23:47:e2:d7:a8:75:c9:
33:93:eb:68:37:d2:f3:f5:aa:af:26:ce:35:61:b7:
1d:6d:dc:0f:55:f5:91:52:27:26:a7:f3:78:9c:a6:
79:47:3e:1d:75:f7:e3:a5:13:df:fe:6d:50:ad:bf:
59:71:63:aa:20:a0:8f:4e:c6:5a:70:20:ac:73:61:
c5:b4:da:d7:56:a0:c6:a9:02:4e:4e:8a:90:6d:d5:
df:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:BE:66:82:99:F8:85:81:7D:AD:4B:37:63:DA:72:48:70:22:0E:A2
X509v3 Authority Key Identifier:
keyid:88:04:1F:15:36:5A:42:3B:C0:8F:92:BC:69:A5:F9:09:64:40:42:C2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/E9F4385A8DF88768BA6C5AB9B9AEBC9B1088332CD56BE59A9E2EB53021712668/0/88041F15365A423BC08F92BC69A5F909644042C2.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/88041F15365A423BC08F92BC69A5F909644042C2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E9F4385A8DF88768BA6C5AB9B9AEBC9B1088332CD56BE59A9E2EB53021712668/0/323830303a3834303a3a2f33322d3438203d3e203139343232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2800:840::/32
Signature Algorithm: sha256WithRSAEncryption
84:f0:cf:0c:fc:83:08:9d:04:82:0c:88:e1:f0:77:2b:90:3c:
35:ce:a5:97:f5:9a:52:47:f6:5f:39:ec:b8:d2:02:80:4a:e3:
97:33:eb:6c:ce:7f:5f:a7:e1:25:e6:73:ff:8f:36:c8:d2:ac:
82:a9:99:25:f0:80:e9:34:a2:6a:6f:f2:35:7e:4e:05:bf:df:
14:d6:04:66:42:06:09:f5:0d:b2:ef:48:0e:a1:5d:90:84:c6:
dc:04:cd:4c:19:a2:8c:81:00:6a:c7:6e:79:2c:7b:37:0f:01:
54:d2:6c:b3:7f:20:20:48:48:b4:21:a6:9f:4f:dd:4e:ec:d4:
4e:b7:89:72:d7:34:4b:89:ff:39:e9:9a:41:1d:17:5f:1c:e9:
40:b1:16:85:5e:65:44:d5:24:49:f6:c2:1f:f6:b6:f3:80:70:
df:d4:96:b8:94:34:d7:4c:2b:99:e0:6b:53:21:27:ed:57:8c:
22:40:6b:ce:1a:4c:91:02:4f:dd:45:47:52:70:b5:58:ba:05:
0e:fd:d3:8d:53:23:34:80:59:aa:dd:3e:dc:ae:48:32:47:85:
9e:5c:8d:57:f4:e6:dc:c0:49:fa:ee:5f:16:13:8e:d3:14:c6:
5e:65:83:25:57:d3:ed:86:bf:79:91:f0:fe:c7:c9:c8:f2:c4:
72:e9:49:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 11:08:40 2025 by rpki-client