Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F05478C9C515385E94F82E3AB38543A78BC47CDEC6E505A291FBBD6024DB2335/0/3135382e39372e36342e302f32332d3233203d3e2033363430.roa
File: 3135382e39372e36342e302f32332d3233203d3e2033363430.roa (raw, json)
Hash identifier: h0m+8FuCPvCm1KIhXwBEEk1rsVpG9AhABjmCw5W6Zuc=
Subject key identifier: 91:A3:68:E9:90:3D:29:61:47:83:09:A1:97:91:58:B9:8C:AB:4F:36
Certificate issuer: /CN=A43F1B6CCD8EC4C05D6D9C298DCE821A2D444419
Certificate serial: 31D9799F6C292DBBDC57EAD4EA5433D688879126
Authority key identifier: A4:3F:1B:6C:CD:8E:C4:C0:5D:6D:9C:29:8D:CE:82:1A:2D:44:44:19
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A43F1B6CCD8EC4C05D6D9C298DCE821A2D444419.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F05478C9C515385E94F82E3AB38543A78BC47CDEC6E505A291FBBD6024DB2335/0/3135382e39372e36342e302f32332d3233203d3e2033363430.roa
Signing time: Tue 04 Feb 2025 20:03:12 +0000
ROA not before: Tue 04 Feb 2025 19:58:12 +0000
ROA not after: Tue 03 Feb 2026 20:03:12 +0000
asID: 3640
IP address blocks: 158.97.64.0/23 maxlen: 23
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/F05478C9C515385E94F82E3AB38543A78BC47CDEC6E505A291FBBD6024DB2335/0/A43F1B6CCD8EC4C05D6D9C298DCE821A2D444419.crl
rsync://repository.lacnic.net/rpki/lacnic/F05478C9C515385E94F82E3AB38543A78BC47CDEC6E505A291FBBD6024DB2335/0/A43F1B6CCD8EC4C05D6D9C298DCE821A2D444419.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A43F1B6CCD8EC4C05D6D9C298DCE821A2D444419.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Wed 30 Apr 2025 01:23:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
31:d9:79:9f:6c:29:2d:bb:dc:57:ea:d4:ea:54:33:d6:88:87:91:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A43F1B6CCD8EC4C05D6D9C298DCE821A2D444419
Validity
Not Before: Feb 4 19:58:12 2025 GMT
Not After : Feb 3 20:03:12 2026 GMT
Subject: CN=91A368E9903D2961478309A1979158B98CAB4F36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:15:14:73:7b:54:d3:a4:c1:b0:59:a9:a9:e9:
18:e3:00:2d:ef:a7:af:3a:27:92:93:ef:1d:a9:ad:
e3:35:f1:20:e9:64:cd:df:75:9e:67:75:1a:41:98:
7e:24:6a:dd:a3:91:5b:09:a8:50:5f:3d:35:eb:f7:
d7:3b:d4:9e:95:53:09:d1:b9:8e:54:ed:a1:41:e1:
99:28:3d:d1:b9:de:4f:9a:d5:59:22:ec:da:c0:90:
c6:d7:1f:a7:84:ce:5e:2b:65:37:74:a2:99:78:bf:
b0:dd:c1:73:3f:27:af:ac:16:b4:64:9d:5c:bc:c0:
9b:5e:dd:e8:aa:a0:70:92:32:0a:bd:c5:28:55:80:
2b:34:85:59:11:2d:1d:5d:a7:58:fc:de:bf:6b:bb:
8e:a1:20:b3:ce:1a:25:3c:32:b5:46:63:a4:7c:22:
93:c8:98:bc:97:91:75:f9:cc:6f:0b:a1:a9:1e:29:
27:27:3e:6c:9c:59:59:81:10:b9:28:6d:85:46:a3:
5a:80:bc:f3:c0:1d:39:29:02:7c:4f:93:07:53:4b:
ad:48:a5:d2:bf:bc:91:15:37:8f:3d:3f:51:1d:cf:
22:86:c8:40:8b:38:ba:ed:a0:df:75:9b:2c:3e:ff:
3f:38:3c:6c:7f:84:ac:12:20:67:7f:2f:69:e0:70:
1b:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A3:68:E9:90:3D:29:61:47:83:09:A1:97:91:58:B9:8C:AB:4F:36
X509v3 Authority Key Identifier:
keyid:A4:3F:1B:6C:CD:8E:C4:C0:5D:6D:9C:29:8D:CE:82:1A:2D:44:44:19
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/F05478C9C515385E94F82E3AB38543A78BC47CDEC6E505A291FBBD6024DB2335/0/A43F1B6CCD8EC4C05D6D9C298DCE821A2D444419.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A43F1B6CCD8EC4C05D6D9C298DCE821A2D444419.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F05478C9C515385E94F82E3AB38543A78BC47CDEC6E505A291FBBD6024DB2335/0/3135382e39372e36342e302f32332d3233203d3e2033363430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.97.64.0/23
Signature Algorithm: sha256WithRSAEncryption
3f:05:6a:01:ad:96:95:1f:0b:a1:7b:8d:c1:bc:dc:3a:2e:51:
12:03:83:0b:44:e0:2c:56:97:2c:3f:46:cd:4d:2c:77:97:92:
a3:a1:22:24:cb:c9:27:f7:dc:10:9f:a5:e9:08:aa:2e:8e:13:
ac:b2:c3:8a:fa:29:93:1f:51:52:16:09:2f:6e:f8:ea:06:32:
e1:f3:9e:81:7e:36:55:6d:73:8e:14:68:2d:ec:b6:e2:c7:e2:
f8:a4:6b:84:42:ac:08:0c:74:be:85:82:20:77:1b:15:47:b0:
1b:bf:fb:95:ba:6d:de:49:bd:f4:09:09:c0:6c:fb:14:39:f2:
40:d8:e1:01:36:db:17:e8:99:df:07:18:19:64:39:60:47:ea:
3b:60:39:db:9e:16:c6:c0:81:ec:15:6c:09:98:9f:dd:d5:ce:
2c:35:72:80:10:2e:67:0e:8e:09:b1:ce:f2:3b:0c:e2:a1:9f:
ce:48:8f:2f:36:fc:47:89:c1:de:76:13:50:94:a8:d1:bf:c7:
13:33:c4:9c:81:47:62:55:9a:e0:63:cf:57:84:62:e4:14:44:
67:a8:97:0b:14:1c:eb:cb:b2:45:d2:f7:1f:ce:3d:b6:f5:89:
0c:84:c2:b6:5c:17:0e:71:3f:69:37:de:3d:a5:a3:f3:4e:16:
ab:cf:23:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 03:43:20 2025 by rpki-client