Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/EFD47FE509B3E64564E5815935D08E7559B5703FABFC8F219F3F8E142FFF6AA4/0/323830333a373239303a3830303a3a2f34302d3430203d3e20323732383639.roa
File: 323830333a373239303a3830303a3a2f34302d3430203d3e20323732383639.roa (raw, json)
Hash identifier: CT15OOa20M4KKGtw3sovTmVhgPJv2lnfQ49y39oORUA=
Subject key identifier: AA:6E:A3:DC:38:99:67:BA:CA:90:91:66:F6:2B:82:67:F0:C2:97:83
Certificate issuer: /CN=AEDA4138555E38BF0984DD9CC6D87B98B58F3D88
Certificate serial: 0CCB7ACB2A8F5B13B75D96A62330F2DD6A675CA2
Authority key identifier: AE:DA:41:38:55:5E:38:BF:09:84:DD:9C:C6:D8:7B:98:B5:8F:3D:88
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AEDA4138555E38BF0984DD9CC6D87B98B58F3D88.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/EFD47FE509B3E64564E5815935D08E7559B5703FABFC8F219F3F8E142FFF6AA4/0/323830333a373239303a3830303a3a2f34302d3430203d3e20323732383639.roa
Signing time: Tue 04 Feb 2025 18:28:06 +0000
ROA not before: Tue 04 Feb 2025 18:23:06 +0000
ROA not after: Tue 03 Feb 2026 18:28:06 +0000
asID: 272869
IP address blocks: 2803:7290:800::/40 maxlen: 40
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/EFD47FE509B3E64564E5815935D08E7559B5703FABFC8F219F3F8E142FFF6AA4/0/AEDA4138555E38BF0984DD9CC6D87B98B58F3D88.crl
rsync://repository.lacnic.net/rpki/lacnic/EFD47FE509B3E64564E5815935D08E7559B5703FABFC8F219F3F8E142FFF6AA4/0/AEDA4138555E38BF0984DD9CC6D87B98B58F3D88.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AEDA4138555E38BF0984DD9CC6D87B98B58F3D88.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 21:43:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0c:cb:7a:cb:2a:8f:5b:13:b7:5d:96:a6:23:30:f2:dd:6a:67:5c:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=AEDA4138555E38BF0984DD9CC6D87B98B58F3D88
Validity
Not Before: Feb 4 18:23:06 2025 GMT
Not After : Feb 3 18:28:06 2026 GMT
Subject: CN=AA6EA3DC389967BACA909166F62B8267F0C29783
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:bb:61:23:6a:ea:b0:b6:0f:83:96:65:f4:74:
f7:dc:b5:a6:6a:fc:20:68:7f:40:c7:bb:b8:fe:64:
25:d6:a3:b4:f4:f1:80:ac:ae:d3:d7:ab:08:dc:53:
c1:31:49:52:5e:80:d4:9b:49:c1:e2:a4:27:fd:a2:
a4:35:f1:7e:8a:6e:16:f0:80:fa:57:28:34:d0:0a:
70:75:1e:32:d8:7a:19:1a:a4:bd:eb:4d:fe:47:07:
07:55:86:aa:d8:f8:b9:08:c1:4a:61:fa:29:53:13:
9a:b9:ea:65:9f:50:2e:a9:a5:6d:c6:24:ff:d3:98:
61:c5:64:d0:06:3c:ea:96:db:a1:e3:a8:53:01:92:
aa:ec:ce:9d:6c:5b:e6:c5:ca:39:fa:de:70:e7:00:
ad:af:39:83:33:0b:45:50:d6:cc:20:fd:b3:a7:c5:
5e:28:19:14:a0:19:c5:1c:dc:e9:6b:85:89:54:21:
31:83:ba:76:92:42:1f:ad:d9:ee:29:6b:ff:a4:d8:
b5:82:64:22:39:e3:f6:28:1a:3c:30:1e:67:3a:c2:
a1:80:0c:a7:47:04:3c:14:42:6f:36:b1:c9:64:fa:
c9:e9:4d:f2:b8:5c:44:54:68:64:b0:e0:65:b8:5d:
2b:b6:6d:0e:ce:67:81:30:8a:fa:fc:98:e0:e3:70:
72:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:6E:A3:DC:38:99:67:BA:CA:90:91:66:F6:2B:82:67:F0:C2:97:83
X509v3 Authority Key Identifier:
keyid:AE:DA:41:38:55:5E:38:BF:09:84:DD:9C:C6:D8:7B:98:B5:8F:3D:88
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/EFD47FE509B3E64564E5815935D08E7559B5703FABFC8F219F3F8E142FFF6AA4/0/AEDA4138555E38BF0984DD9CC6D87B98B58F3D88.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AEDA4138555E38BF0984DD9CC6D87B98B58F3D88.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/EFD47FE509B3E64564E5815935D08E7559B5703FABFC8F219F3F8E142FFF6AA4/0/323830333a373239303a3830303a3a2f34302d3430203d3e20323732383639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2803:7290:800::/40
Signature Algorithm: sha256WithRSAEncryption
2e:cc:c0:fe:b7:78:7a:c1:df:b0:59:b3:25:ef:6a:e2:c5:d8:
4e:15:4e:b4:8e:75:3d:61:41:7f:c5:d7:38:6a:bf:6c:8f:3f:
6d:ad:12:53:8b:fc:da:ba:cc:f8:f9:fc:d7:a3:a3:1a:06:73:
7b:21:86:c7:bc:fe:c0:96:c0:11:ab:61:97:12:1e:95:28:29:
25:c8:3f:6e:29:11:44:77:4a:8b:40:e1:db:4d:77:fd:3b:66:
d2:d1:28:07:2b:3f:57:bb:ff:c5:a3:c5:c5:f3:71:20:f7:61:
1c:bb:23:ec:88:bc:07:5b:6a:c1:6a:1c:d3:bf:f2:2b:c7:85:
30:3d:b5:23:20:87:6a:e4:a8:4a:33:9d:0f:17:20:4b:08:fb:
2b:ff:9b:6f:11:6e:94:2a:78:11:ca:8c:eb:4f:16:b4:c0:e9:
9f:ba:8a:90:89:ad:ee:b3:8a:ad:5c:e1:0d:bb:af:a9:05:1e:
23:6b:8b:69:bd:05:1c:ac:d5:3e:60:6d:eb:c1:54:97:77:16:
42:b8:ae:a7:8a:12:9b:5f:a9:0d:53:8f:06:cd:ac:c4:b8:ca:
ad:9a:86:02:47:96:5b:6f:e5:dc:df:1f:f3:c4:b3:69:c8:8e:
8c:c3:9e:18:64:0d:02:fb:00:59:e4:4b:06:33:37:5e:0f:ec:
ac:af:3b:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 15:38:10 2025 by rpki-client