Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/ED81BD5F6096A6AD52178286CD692BFA335006CB16DF0E5FBB8E1CA97372E800/0/323830333a353265303a3a2f33322d313238203d3e20323639393236.roa
File: 323830333a353265303a3a2f33322d313238203d3e20323639393236.roa (raw, json)
Hash identifier: Z2itUpq/HU7LnrWXIE79xnLMWsmUVUQSeVC6onRevds=
Subject key identifier: 3C:4F:8F:9F:89:DB:AB:53:33:51:DD:11:F3:B5:B1:62:DB:D6:06:88
Certificate issuer: /CN=28CCEC43A92B4BCC9B792D757C716F93C5133B6F
Certificate serial: 44EA6ABFADBF4F3595EE60D8F6E21DB33DB597D6
Authority key identifier: 28:CC:EC:43:A9:2B:4B:CC:9B:79:2D:75:7C:71:6F:93:C5:13:3B:6F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/28CCEC43A92B4BCC9B792D757C716F93C5133B6F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/ED81BD5F6096A6AD52178286CD692BFA335006CB16DF0E5FBB8E1CA97372E800/0/323830333a353265303a3a2f33322d313238203d3e20323639393236.roa
Signing time: Tue 04 Feb 2025 18:29:26 +0000
ROA not before: Tue 04 Feb 2025 18:24:26 +0000
ROA not after: Tue 03 Feb 2026 18:29:26 +0000
asID: 269926
IP address blocks: 2803:52e0::/32 maxlen: 128
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/ED81BD5F6096A6AD52178286CD692BFA335006CB16DF0E5FBB8E1CA97372E800/0/28CCEC43A92B4BCC9B792D757C716F93C5133B6F.crl
rsync://repository.lacnic.net/rpki/lacnic/ED81BD5F6096A6AD52178286CD692BFA335006CB16DF0E5FBB8E1CA97372E800/0/28CCEC43A92B4BCC9B792D757C716F93C5133B6F.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/28CCEC43A92B4BCC9B792D757C716F93C5133B6F.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:ea:6a:bf:ad:bf:4f:35:95:ee:60:d8:f6:e2:1d:b3:3d:b5:97:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28CCEC43A92B4BCC9B792D757C716F93C5133B6F
Validity
Not Before: Feb 4 18:24:26 2025 GMT
Not After : Feb 3 18:29:26 2026 GMT
Subject: CN=3C4F8F9F89DBAB533351DD11F3B5B162DBD60688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3d:bd:52:62:1b:38:3e:6b:ac:c6:51:f7:0e:
87:71:f5:76:17:d4:b1:7a:1a:5d:4f:76:5b:02:60:
2a:8b:bc:b6:8e:68:91:03:c9:8b:d4:b2:e5:e0:cf:
6f:c1:f3:f2:cc:bc:97:c4:f0:a9:8d:01:80:e5:4d:
ac:19:8f:ba:2e:aa:7d:09:27:00:bc:c6:dd:57:2b:
0d:ac:6f:2e:c6:98:18:33:0c:1e:fd:89:2b:30:b4:
e7:75:4f:45:84:9c:b1:07:33:08:f1:7b:0a:ee:8e:
a3:87:79:24:28:1b:92:67:aa:ed:33:9b:db:bd:06:
98:d4:23:9a:f6:98:09:21:8d:cb:61:0b:b9:b9:3d:
cd:4c:ae:8e:c5:7c:35:fd:b0:65:81:05:d0:28:04:
d8:f8:0d:dd:77:c1:09:33:85:97:30:2d:85:2c:f7:
68:a6:05:74:05:96:ed:12:3c:52:c2:41:9b:ef:ba:
57:d1:5b:4e:4c:5c:cc:c7:74:e2:9d:80:f0:fd:26:
84:93:f3:bf:06:b1:d6:ef:a1:f3:7a:f8:68:44:66:
89:f0:cd:71:07:44:ac:81:40:d6:1a:90:49:01:44:
d2:2d:3b:98:45:e2:05:56:8c:63:f3:df:90:55:b2:
36:75:74:a4:d0:d0:6c:4f:40:9f:25:48:c1:62:51:
ec:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:4F:8F:9F:89:DB:AB:53:33:51:DD:11:F3:B5:B1:62:DB:D6:06:88
X509v3 Authority Key Identifier:
keyid:28:CC:EC:43:A9:2B:4B:CC:9B:79:2D:75:7C:71:6F:93:C5:13:3B:6F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/ED81BD5F6096A6AD52178286CD692BFA335006CB16DF0E5FBB8E1CA97372E800/0/28CCEC43A92B4BCC9B792D757C716F93C5133B6F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/28CCEC43A92B4BCC9B792D757C716F93C5133B6F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/ED81BD5F6096A6AD52178286CD692BFA335006CB16DF0E5FBB8E1CA97372E800/0/323830333a353265303a3a2f33322d313238203d3e20323639393236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:52e0::/32
Signature Algorithm: sha256WithRSAEncryption
4f:ff:8a:db:c3:8a:91:52:68:06:8f:dd:5c:6c:4d:61:e7:02:
80:de:25:f8:a6:79:42:4d:e6:bc:9b:58:46:99:a8:c5:21:04:
38:c0:d1:23:ff:58:44:ac:d4:de:85:c1:cf:6e:15:24:31:6e:
4a:17:01:b1:7d:68:1c:c0:0b:f6:2d:21:d2:30:6b:66:cd:6a:
94:20:43:07:b9:dd:d8:67:38:5a:20:51:b2:de:a0:8e:bf:4e:
84:0a:69:53:2c:9a:85:f5:3a:e2:a0:00:04:06:7d:ea:2b:26:
be:65:f1:fb:f4:22:bf:10:8d:8d:54:a4:86:1d:50:99:80:47:
bf:00:74:32:0b:14:47:53:cf:07:cc:08:62:60:98:21:a6:83:
e8:0a:4a:72:c6:da:15:54:f8:f3:7d:f9:32:db:9f:7f:8a:fa:
27:70:d1:3a:2a:58:1e:73:32:56:e2:f0:0f:e4:a0:12:0c:cb:
7f:af:85:c3:a5:ea:5a:77:0a:00:c0:77:39:9d:79:ea:52:ad:
8d:2c:da:28:0b:9b:e2:08:7c:6e:78:dd:9a:74:49:85:28:37:
9d:82:93:53:ad:52:6d:c3:2a:49:89:ed:99:68:c8:2f:76:1c:
5a:7f:cf:64:39:72:74:72:f6:61:69:cc:b8:3f:c7:64:d5:6e:
ff:40:0a:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 23:47:52 2025 by rpki-client