Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F7959A2DB129AB6818B9F2CDFCA54039039708CB847724BB23423576862D4A7F/0/3230312e3231382e31312e302f32342d3234203d3e20323632323132.roa
File: 3230312e3231382e31312e302f32342d3234203d3e20323632323132.roa (raw, json)
Hash identifier: XMnWssxTZWuIv5W7VRaaenp0ZRQsolkXW1Rcmgvx07c=
Subject key identifier: EB:DA:1D:25:05:E9:78:2A:2D:06:1C:74:3A:F0:E7:1D:27:96:17:7B
Certificate issuer: /CN=96F6D055361134166E9B66FB555FF27DCEDBF85D
Certificate serial: 5B3A05950B0423FE406408942D57B3C8EF4A57BC
Authority key identifier: 96:F6:D0:55:36:11:34:16:6E:9B:66:FB:55:5F:F2:7D:CE:DB:F8:5D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/96F6D055361134166E9B66FB555FF27DCEDBF85D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/F7959A2DB129AB6818B9F2CDFCA54039039708CB847724BB23423576862D4A7F/0/3230312e3231382e31312e302f32342d3234203d3e20323632323132.roa
Signing time: Tue 04 Feb 2025 18:11:17 +0000
ROA not before: Tue 04 Feb 2025 18:06:17 +0000
ROA not after: Tue 03 Feb 2026 18:11:17 +0000
asID: 262212
IP address blocks: 201.218.11.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/F7959A2DB129AB6818B9F2CDFCA54039039708CB847724BB23423576862D4A7F/0/96F6D055361134166E9B66FB555FF27DCEDBF85D.crl
rsync://repository.lacnic.net/rpki/lacnic/F7959A2DB129AB6818B9F2CDFCA54039039708CB847724BB23423576862D4A7F/0/96F6D055361134166E9B66FB555FF27DCEDBF85D.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/96F6D055361134166E9B66FB555FF27DCEDBF85D.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 18:38:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:3a:05:95:0b:04:23:fe:40:64:08:94:2d:57:b3:c8:ef:4a:57:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96F6D055361134166E9B66FB555FF27DCEDBF85D
Validity
Not Before: Feb 4 18:06:17 2025 GMT
Not After : Feb 3 18:11:17 2026 GMT
Subject: CN=EBDA1D2505E9782A2D061C743AF0E71D2796177B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e1:b8:ee:f3:f8:48:db:60:aa:6d:d4:32:2c:
e3:26:b4:71:2b:0f:5f:8b:aa:2c:15:53:62:5e:b7:
2f:57:57:44:df:02:03:dc:bc:0e:38:05:d1:9b:55:
ea:a0:ac:07:5e:3e:c5:17:6d:06:e6:91:48:85:0d:
b9:b0:4b:d8:20:97:85:1a:7b:0d:c3:a7:89:38:26:
37:8a:91:bb:b2:40:14:48:3f:6d:4e:08:26:27:79:
7b:65:05:b2:f4:6b:86:1c:d5:c4:0e:a6:e7:7d:f1:
72:4b:ea:d4:4b:15:d3:69:48:35:40:98:f0:2b:c9:
4d:6b:ec:55:e2:c4:ac:67:58:53:d4:6b:9f:ba:32:
59:eb:58:53:9a:e4:ce:a4:03:4b:12:3b:0b:4d:48:
41:75:fa:f2:fe:4e:d2:78:ae:4d:19:9b:0b:89:41:
fc:64:9b:36:1a:bb:c8:29:7f:9c:60:04:5e:89:6d:
22:f9:46:96:21:19:23:88:1c:5a:0f:30:c3:32:3a:
a2:8d:55:5c:04:44:7c:1a:2f:5c:0b:26:2e:97:f4:
4b:a4:e2:63:db:a3:d0:e0:e8:20:a2:73:7d:c1:50:
8a:b8:94:02:e2:34:b9:23:84:a0:78:4e:5a:7e:20:
1e:fc:9d:3c:7d:45:c7:6f:bf:ad:4f:fd:ba:24:7e:
d4:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:DA:1D:25:05:E9:78:2A:2D:06:1C:74:3A:F0:E7:1D:27:96:17:7B
X509v3 Authority Key Identifier:
keyid:96:F6:D0:55:36:11:34:16:6E:9B:66:FB:55:5F:F2:7D:CE:DB:F8:5D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/F7959A2DB129AB6818B9F2CDFCA54039039708CB847724BB23423576862D4A7F/0/96F6D055361134166E9B66FB555FF27DCEDBF85D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/96F6D055361134166E9B66FB555FF27DCEDBF85D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F7959A2DB129AB6818B9F2CDFCA54039039708CB847724BB23423576862D4A7F/0/3230312e3231382e31312e302f32342d3234203d3e20323632323132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.218.11.0/24
Signature Algorithm: sha256WithRSAEncryption
79:f4:e5:53:5f:10:4d:bf:4f:14:10:c2:2f:ad:8a:a8:a4:ae:
17:f3:13:41:40:09:f3:1f:ab:c1:d7:3c:47:01:42:fb:f2:4f:
17:5b:9c:24:8b:3b:26:7a:ce:10:18:2f:98:9b:f2:aa:26:05:
a8:a3:16:1b:0f:b6:f2:dd:f6:11:b8:6f:07:63:b6:ab:73:c1:
75:e8:7c:32:04:8f:aa:3e:08:a1:6e:09:98:17:14:19:b3:7c:
2a:cf:5b:63:45:54:de:e0:fa:4c:e3:7f:c0:51:30:cb:5f:ca:
41:88:54:e1:6d:2b:c0:1e:8e:a7:55:c7:87:7a:54:f6:4f:07:
51:38:ea:c3:5b:e5:84:d2:28:92:dc:ea:c5:76:59:01:d5:00:
51:09:e8:64:02:27:a8:04:68:3a:71:67:96:73:57:5e:10:ba:
c2:af:d2:39:d9:45:82:dd:2c:14:37:f1:93:c0:07:f3:68:20:
7b:28:2d:f8:ce:b6:25:29:fc:ed:7d:27:f3:f2:9c:03:fe:2d:
98:42:4c:5e:d0:9d:ce:57:0b:e8:fe:a8:4e:8f:33:b5:63:cc:
46:7a:ca:b5:c3:6e:4a:74:09:6a:2c:41:90:d8:da:b6:f2:19:
a8:cf:e0:1f:35:1c:17:01:24:ff:c7:76:e6:c8:86:0a:ae:84:
03:c8:45:01
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUWzoFlQsEI/5AZAiULVezyO9KV7wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTZGNkQwNTUzNjExMzQxNjZFOUI2NkZCNTU1RkYyN0RD
RURCRjg1RDAeFw0yNTAyMDQxODA2MTdaFw0yNjAyMDMxODExMTdaMDMxMTAvBgNV
BAMTKEVCREExRDI1MDVFOTc4MkEyRDA2MUM3NDNBRjBFNzFEMjc5NjE3N0IwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCg4bju8/hI22CqbdQyLOMmtHEr
D1+LqiwVU2Jety9XV0TfAgPcvA44BdGbVeqgrAdePsUXbQbmkUiFDbmwS9ggl4Ua
ew3Dp4k4JjeKkbuyQBRIP21OCCYneXtlBbL0a4Yc1cQOpud98XJL6tRLFdNpSDVA
mPAryU1r7FXixKxnWFPUa5+6MlnrWFOa5M6kA0sSOwtNSEF1+vL+TtJ4rk0ZmwuJ
QfxkmzYau8gpf5xgBF6JbSL5RpYhGSOIHFoPMMMyOqKNVVwERHwaL1wLJi6X9Euk
4mPbo9Dg6CCic33BUIq4lALiNLkjhKB4Tlp+IB78nTx9Rcdvv61P/bokftTxAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQU69odJQXpeCotBhx0OvDnHSeWF3swHwYDVR0j
BBgwFoAUlvbQVTYRNBZum2b7VV/yfc7b+F0wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9GNzk1OUEyREIxMjlBQjY4MThCOUYyQ0RGQ0E1NDAzOTAz
OTcwOENCODQ3NzI0QkIyMzQyMzU3Njg2MkQ0QTdGLzAvOTZGNkQwNTUzNjExMzQx
NjZFOUI2NkZCNTU1RkYyN0RDRURCRjg1RC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85NkY2RDA1NTM2MTEzNDE2NkU5
QjY2RkI1NTVGRjI3RENFREJGODVELmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRjc5NTlBMkRCMTI5QUI2ODE4QjlGMkNERkNBNTQwMzkwMzk3MDhDQjg0
NzcyNEJCMjM0MjM1NzY4NjJENEE3Ri8wLzMyMzAzMTJlMzIzMTM4MmUzMTMxMmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNjMyMzIzMTMyLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAydoL
MA0GCSqGSIb3DQEBCwUAA4IBAQB59OVTXxBNv08UEMIvrYqopK4X8xNBQAnzH6vB
1zxHAUL78k8XW5wkizsmes4QGC+Ym/KqJgWooxYbD7by3fYRuG8HY7arc8F16Hwy
BI+qPgihbgmYFxQZs3wqz1tjRVTe4PpM43/AUTDLX8pBiFThbSvAHo6nVceHelT2
TwdROOrDW+WE0iiS3OrFdlkB1QBRCehkAieoBGg6cWeWc1deELrCr9I52UWC3SwU
N/GTwAfzaCB7KC34zrYlKfztfSfz8pwD/i2YQkxe0J3OVwvo/qhOjzO1Y8xGesq1
w25KdAlqLEGQ2Nq28hmoz+AfNRwXAST/x3bmyIYKroQDyEUB
-----END CERTIFICATE-----
Generated at Mon Apr 14 08:59:00 2025 by rpki-client