Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F157BD59DABCB6D961AC0F2D00BA596759FAC82A0EAEDE7D129DF241CBEFBF19/0/323830303a3332303a3430383a3a2f34362d3438203d3e203237383832.roa
File: 323830303a3332303a3430383a3a2f34362d3438203d3e203237383832.roa (raw, json)
Hash identifier: j1TmTFjAuGymu2HxdweQ2egIR9YfW3F5waaCmpfjx5U=
Subject key identifier: 24:C5:C1:9B:9E:3D:C7:E2:75:52:46:5E:38:BC:BF:16:43:54:10:99
Certificate issuer: /CN=B3866813178FF550E6FCABCD492387DD1D0E08A5
Certificate serial: 2DF9958579EF7598AA2826640D4AE87B49E89142
Authority key identifier: B3:86:68:13:17:8F:F5:50:E6:FC:AB:CD:49:23:87:DD:1D:0E:08:A5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B3866813178FF550E6FCABCD492387DD1D0E08A5.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F157BD59DABCB6D961AC0F2D00BA596759FAC82A0EAEDE7D129DF241CBEFBF19/0/323830303a3332303a3430383a3a2f34362d3438203d3e203237383832.roa
Signing time: Tue 04 Feb 2025 20:05:42 +0000
ROA not before: Tue 04 Feb 2025 20:00:42 +0000
ROA not after: Tue 03 Feb 2026 20:05:42 +0000
asID: 27882
IP address blocks: 2800:320:408::/46 maxlen: 48
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/F157BD59DABCB6D961AC0F2D00BA596759FAC82A0EAEDE7D129DF241CBEFBF19/0/B3866813178FF550E6FCABCD492387DD1D0E08A5.crl
rsync://repository.lacnic.net/rpki/lacnic/F157BD59DABCB6D961AC0F2D00BA596759FAC82A0EAEDE7D129DF241CBEFBF19/0/B3866813178FF550E6FCABCD492387DD1D0E08A5.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B3866813178FF550E6FCABCD492387DD1D0E08A5.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 20:38:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:f9:95:85:79:ef:75:98:aa:28:26:64:0d:4a:e8:7b:49:e8:91:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B3866813178FF550E6FCABCD492387DD1D0E08A5
Validity
Not Before: Feb 4 20:00:42 2025 GMT
Not After : Feb 3 20:05:42 2026 GMT
Subject: CN=24C5C19B9E3DC7E27552465E38BCBF1643541099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:95:a7:bd:85:d4:38:10:08:22:ca:ae:5c:a3:
02:93:24:b4:59:a1:2c:b0:84:42:0b:0f:4a:22:e4:
3a:be:67:7c:8e:82:90:65:4b:eb:66:d9:4b:89:03:
e2:3d:c4:f0:7a:c9:ea:e9:b4:b4:cf:86:c8:12:5f:
a8:07:ea:2f:74:34:1e:ab:8f:e9:d0:5b:63:b0:67:
45:43:15:37:45:5a:46:5f:44:44:2a:8b:56:10:2e:
ab:fc:a0:2f:31:9a:f7:b5:10:cb:0d:9f:d7:0e:4f:
b8:44:10:8e:69:4b:14:7e:c2:37:a8:ac:0e:19:7c:
a6:3c:71:77:4d:17:46:28:4e:e2:8b:04:b8:0e:59:
16:46:49:9e:bd:b8:2d:e6:1c:3f:3e:b5:90:c5:33:
65:aa:92:2c:56:a7:b5:58:de:a8:d6:b9:94:72:12:
95:be:ed:e1:eb:2b:be:4d:4e:f0:c9:5c:18:7e:df:
c1:d5:0d:75:70:19:30:c4:03:82:ce:d0:97:cc:e7:
48:8b:91:98:c8:1f:e1:68:6a:6b:e1:86:99:e7:37:
37:60:b9:79:9b:1a:e0:a8:61:33:17:e6:71:06:24:
3e:13:f3:ac:5a:ae:2d:86:32:86:c6:e7:32:6e:ba:
be:5a:62:3e:17:7d:26:15:8b:99:0b:a8:a1:d3:bc:
9f:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:C5:C1:9B:9E:3D:C7:E2:75:52:46:5E:38:BC:BF:16:43:54:10:99
X509v3 Authority Key Identifier:
keyid:B3:86:68:13:17:8F:F5:50:E6:FC:AB:CD:49:23:87:DD:1D:0E:08:A5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/F157BD59DABCB6D961AC0F2D00BA596759FAC82A0EAEDE7D129DF241CBEFBF19/0/B3866813178FF550E6FCABCD492387DD1D0E08A5.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B3866813178FF550E6FCABCD492387DD1D0E08A5.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F157BD59DABCB6D961AC0F2D00BA596759FAC82A0EAEDE7D129DF241CBEFBF19/0/323830303a3332303a3430383a3a2f34362d3438203d3e203237383832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2800:320:408::/46
Signature Algorithm: sha256WithRSAEncryption
67:e3:c7:73:c5:62:99:43:48:10:67:db:a3:e8:15:e6:b6:80:
b0:5c:11:95:59:d8:68:c0:d2:71:e5:90:15:9a:eb:2e:77:35:
21:0f:94:d7:57:c2:c2:19:94:1a:3d:2e:9f:dc:ca:a5:12:eb:
cd:cc:88:dd:59:ee:e1:92:6e:76:a1:97:82:b5:f4:61:51:bb:
dd:98:ea:6e:f5:87:a0:0b:1a:7d:8e:97:5f:d7:45:31:98:a8:
a6:12:58:8c:5c:fa:07:ca:3e:1e:07:54:80:e1:00:e8:4a:dd:
cc:47:51:82:53:5b:4d:6b:55:f6:08:b1:63:dd:80:cc:2d:b1:
e3:19:16:62:4b:1c:02:4b:ba:9d:a5:fb:da:3a:ca:d8:6b:3c:
1d:c9:4e:eb:78:f1:eb:d7:1f:40:87:fa:ae:81:56:1c:e6:66:
bd:18:d7:ab:16:f8:d4:9f:f1:5c:42:0d:7c:b7:4e:7c:7e:0c:
0d:bd:ac:7c:8b:f6:d8:a4:33:66:95:ac:0c:64:53:e6:d5:29:
a7:48:73:b2:c6:0a:a6:6d:ad:56:5e:13:f5:26:7b:fd:31:a7:
ca:9d:af:71:bf:50:76:f8:c4:55:e1:53:c4:2f:ff:d0:73:ce:
bb:86:fd:f4:99:ea:6c:70:86:5d:30:9e:ae:41:f8:21:1c:b7:
48:71:61:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 18:59:33 2025 by rpki-client