Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F7959A2DB129AB6818B9F2CDFCA54039039708CB847724BB23423576862D4A7F/0/3136382e3139372e3138382e302f32322d3234203d3e203237393437.roa
File: 3136382e3139372e3138382e302f32322d3234203d3e203237393437.roa (raw, json)
Hash identifier: N4xcfJZrrvn8jIGQ/mtextuTQ1yAmsQmPuYnbIaR2oI=
Subject key identifier: D1:FE:F6:7C:D7:87:15:62:CE:99:FF:9B:A4:20:E5:79:0C:BF:98:AF
Certificate issuer: /CN=96F6D055361134166E9B66FB555FF27DCEDBF85D
Certificate serial: 3FEEA5F73718CF738F38D8FE57749B0CF4C725E3
Authority key identifier: 96:F6:D0:55:36:11:34:16:6E:9B:66:FB:55:5F:F2:7D:CE:DB:F8:5D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/96F6D055361134166E9B66FB555FF27DCEDBF85D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F7959A2DB129AB6818B9F2CDFCA54039039708CB847724BB23423576862D4A7F/0/3136382e3139372e3138382e302f32322d3234203d3e203237393437.roa
Signing time: Tue 04 Feb 2025 18:11:27 +0000
ROA not before: Tue 04 Feb 2025 18:06:27 +0000
ROA not after: Tue 03 Feb 2026 18:11:27 +0000
asID: 27947
IP address blocks: 168.197.188.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/F7959A2DB129AB6818B9F2CDFCA54039039708CB847724BB23423576862D4A7F/0/96F6D055361134166E9B66FB555FF27DCEDBF85D.crl
rsync://repository.lacnic.net/rpki/lacnic/F7959A2DB129AB6818B9F2CDFCA54039039708CB847724BB23423576862D4A7F/0/96F6D055361134166E9B66FB555FF27DCEDBF85D.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/96F6D055361134166E9B66FB555FF27DCEDBF85D.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 18:38:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:ee:a5:f7:37:18:cf:73:8f:38:d8:fe:57:74:9b:0c:f4:c7:25:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96F6D055361134166E9B66FB555FF27DCEDBF85D
Validity
Not Before: Feb 4 18:06:27 2025 GMT
Not After : Feb 3 18:11:27 2026 GMT
Subject: CN=D1FEF67CD7871562CE99FF9BA420E5790CBF98AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:43:a3:55:e9:76:04:92:7b:21:10:36:e4:91:
32:50:2f:10:08:62:2c:c4:cc:02:95:97:e2:ef:c1:
54:c1:f9:33:96:a1:19:3e:3b:39:b7:81:6e:5e:b0:
b1:6a:cf:4e:01:4e:d8:18:7b:33:4c:31:88:0f:da:
6b:6c:9d:40:0a:e9:13:4d:e6:6e:c3:e5:76:d3:30:
62:26:1d:13:48:68:38:ae:81:30:a8:7b:82:0b:54:
71:ce:42:fb:62:b9:9d:cd:82:2f:5d:c5:2c:77:a9:
3a:54:91:6b:c3:f8:b6:54:42:1e:29:78:2a:4a:b9:
7c:b3:fc:7f:14:33:a2:2e:77:a5:b0:82:1f:2a:fb:
da:e0:00:e9:73:3f:7f:b4:c3:11:36:0a:17:9a:5d:
b7:5a:98:c8:9d:70:8e:ef:cd:e9:4d:c2:26:c5:0a:
87:a2:1c:eb:95:1a:64:e6:19:a5:f7:54:c3:b9:e0:
27:e0:56:2f:05:0e:59:6e:dd:09:40:1e:94:d4:16:
f4:8d:6d:01:14:c3:df:b1:cf:5e:af:69:a9:94:dc:
6e:e5:94:b1:b0:e1:fb:ee:ce:29:19:b5:38:4a:cb:
07:78:2b:08:51:7d:a9:4a:88:e6:91:3d:4c:e3:c3:
f1:4f:05:33:bd:c5:4a:12:28:dd:c7:29:85:a6:91:
e1:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:FE:F6:7C:D7:87:15:62:CE:99:FF:9B:A4:20:E5:79:0C:BF:98:AF
X509v3 Authority Key Identifier:
keyid:96:F6:D0:55:36:11:34:16:6E:9B:66:FB:55:5F:F2:7D:CE:DB:F8:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/F7959A2DB129AB6818B9F2CDFCA54039039708CB847724BB23423576862D4A7F/0/96F6D055361134166E9B66FB555FF27DCEDBF85D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/96F6D055361134166E9B66FB555FF27DCEDBF85D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F7959A2DB129AB6818B9F2CDFCA54039039708CB847724BB23423576862D4A7F/0/3136382e3139372e3138382e302f32322d3234203d3e203237393437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.197.188.0/22
Signature Algorithm: sha256WithRSAEncryption
82:07:d5:81:d1:61:d1:47:4c:e2:96:26:1e:ae:88:e6:cb:8d:
ec:b5:09:3e:8f:5f:7b:e4:e6:41:3b:70:fe:5f:34:9d:66:91:
48:f8:68:79:0f:56:d4:9c:bf:32:03:e9:03:fe:a2:3e:53:f1:
f6:53:86:19:31:e8:e7:49:b9:5e:32:fe:e1:1d:58:cd:b3:fb:
f2:c0:aa:d6:79:e2:8d:8b:5e:2c:15:36:e9:15:1d:44:6c:c5:
64:e4:de:18:64:7f:9d:28:e7:3e:de:7e:ca:80:26:5b:6a:65:
73:35:7e:56:17:6f:82:ed:f7:6e:f7:e1:27:fd:e5:eb:1a:ee:
17:c4:6a:99:aa:b5:44:78:76:65:7f:8f:fe:51:4e:b7:ec:95:
9c:96:5d:32:32:5b:db:a4:e1:65:31:4e:c8:f5:a7:21:a5:53:
f6:1e:8a:c6:f0:83:76:be:f8:fc:55:98:95:f0:43:60:41:49:
e9:c3:2a:43:4f:7f:bc:40:c0:c2:4c:fe:d4:88:b0:59:d5:29:
2b:66:6c:89:8e:81:a7:12:f0:55:93:3f:48:e2:a9:70:4d:cb:
e4:01:c5:79:1d:c7:52:7c:17:3c:64:e6:22:24:d6:f6:55:80:
13:b1:2e:28:09:db:b2:05:0b:24:6a:41:4c:55:46:21:b2:cb:
2a:68:38:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 02:58:44 2025 by rpki-client