Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0B4592EA1FBE99BB0E6E1524335D45CE6025A2A7399D3206FDF8C111D7D90E45/0/34352e3232382e31382e302f32342d3234203d3e20323636363835.roa
File: 34352e3232382e31382e302f32342d3234203d3e20323636363835.roa (raw, json)
Hash identifier: vpXSt+Z4fJ4BkvJKcfTCd6LHHTOYGTU3B88vDm5DF3g=
Subject key identifier: 43:82:3B:3D:5E:9C:8B:D8:EB:D9:70:AF:A3:33:20:5B:B0:BA:15:90
Certificate issuer: /CN=A91EA82506B0E7F6BACFA600950807C98CE9C2B3
Certificate serial: 34285FD151D7CA30ED0873A7E2A3A4D5191246C5
Authority key identifier: A9:1E:A8:25:06:B0:E7:F6:BA:CF:A6:00:95:08:07:C9:8C:E9:C2:B3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A91EA82506B0E7F6BACFA600950807C98CE9C2B3.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0B4592EA1FBE99BB0E6E1524335D45CE6025A2A7399D3206FDF8C111D7D90E45/0/34352e3232382e31382e302f32342d3234203d3e20323636363835.roa
Signing time: Tue 04 Feb 2025 18:41:54 +0000
ROA not before: Tue 04 Feb 2025 18:36:54 +0000
ROA not after: Tue 03 Feb 2026 18:41:54 +0000
asID: 266685
IP address blocks: 45.228.18.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/0B4592EA1FBE99BB0E6E1524335D45CE6025A2A7399D3206FDF8C111D7D90E45/0/A91EA82506B0E7F6BACFA600950807C98CE9C2B3.crl
rsync://repository.lacnic.net/rpki/lacnic/0B4592EA1FBE99BB0E6E1524335D45CE6025A2A7399D3206FDF8C111D7D90E45/0/A91EA82506B0E7F6BACFA600950807C98CE9C2B3.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A91EA82506B0E7F6BACFA600950807C98CE9C2B3.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
34:28:5f:d1:51:d7:ca:30:ed:08:73:a7:e2:a3:a4:d5:19:12:46:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EA82506B0E7F6BACFA600950807C98CE9C2B3
Validity
Not Before: Feb 4 18:36:54 2025 GMT
Not After : Feb 3 18:41:54 2026 GMT
Subject: CN=43823B3D5E9C8BD8EBD970AFA333205BB0BA1590
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d0:42:e8:29:c8:19:f2:e0:f2:11:5a:45:10:
9f:b8:ce:94:2f:42:4f:58:25:24:d6:b4:9a:64:8b:
4a:b6:86:96:fa:9c:8f:9e:05:5a:16:fa:60:17:c8:
32:69:8d:33:69:b8:12:6f:a0:89:98:e6:e8:19:12:
d7:99:a9:0f:8b:53:f8:bd:80:22:4e:e9:77:63:4b:
d6:50:d0:48:5e:da:9a:0d:c6:f8:28:85:7b:38:5f:
8f:c7:69:c8:68:c3:85:f7:9a:c1:36:ba:b7:93:d7:
e5:75:47:86:b7:89:4d:6a:80:bb:74:18:f9:5e:b8:
61:01:77:c5:7d:0b:56:9b:45:29:97:b5:b2:7b:4f:
36:82:ab:56:5d:ec:ec:93:9d:6c:21:93:aa:f3:48:
8d:47:de:54:c6:94:2f:2d:5a:cc:6f:99:e0:f6:5c:
50:ab:cf:41:35:8f:89:00:ea:d4:fe:0f:d2:27:16:
4e:c9:8f:8b:8d:1d:2f:db:7b:08:27:81:be:da:a3:
3a:77:ec:62:48:9a:ae:27:66:08:9e:c2:56:17:ae:
b3:1d:22:81:e5:a2:c0:3b:7e:c9:dc:70:ba:48:46:
bc:54:c5:34:4f:26:8c:c1:21:e5:e1:68:b5:83:78:
01:01:93:fc:d6:99:e9:02:9e:1a:27:a1:92:95:25:
c3:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:82:3B:3D:5E:9C:8B:D8:EB:D9:70:AF:A3:33:20:5B:B0:BA:15:90
X509v3 Authority Key Identifier:
keyid:A9:1E:A8:25:06:B0:E7:F6:BA:CF:A6:00:95:08:07:C9:8C:E9:C2:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0B4592EA1FBE99BB0E6E1524335D45CE6025A2A7399D3206FDF8C111D7D90E45/0/A91EA82506B0E7F6BACFA600950807C98CE9C2B3.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A91EA82506B0E7F6BACFA600950807C98CE9C2B3.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0B4592EA1FBE99BB0E6E1524335D45CE6025A2A7399D3206FDF8C111D7D90E45/0/34352e3232382e31382e302f32342d3234203d3e20323636363835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.228.18.0/24
Signature Algorithm: sha256WithRSAEncryption
18:d8:db:11:da:43:a8:86:2e:25:9a:cd:89:ed:b5:ec:2e:48:
21:52:81:d4:ff:29:4e:bb:13:79:f7:a4:82:41:f6:53:f1:79:
23:59:eb:89:7b:5c:65:ae:3d:e9:61:76:7b:77:04:9f:04:29:
f6:61:d6:3d:01:0a:d5:93:d0:27:29:30:36:95:a2:56:df:e9:
c4:d2:31:a0:34:8f:09:1c:59:8f:61:dd:07:7e:8a:64:e3:26:
a8:d0:5b:d9:4b:66:4b:20:b4:35:ff:2b:2d:7c:f8:02:d0:11:
69:56:c1:2c:2c:e8:a3:54:63:aa:86:ae:97:09:88:89:f4:c6:
1a:de:fc:5c:1d:ba:c0:38:49:45:f8:22:86:16:36:04:5d:f4:
59:b2:03:9c:f1:f2:6c:b5:f7:c0:2c:6d:cc:b0:9b:13:d7:f6:
2b:af:2d:0a:87:37:ad:fd:36:7e:85:ba:03:93:32:a5:6c:16:
21:03:71:de:db:6c:9c:ec:c6:bf:6c:1c:c5:93:be:7f:f9:75:
43:e9:75:57:a0:5f:d6:d8:93:d7:51:dc:9c:b9:13:8f:3e:c6:
be:b3:de:62:b1:3d:3f:ca:be:90:ad:99:1e:b4:ce:57:72:59:
64:59:ac:64:21:9f:14:4e:03:c8:a0:f9:19:cd:e6:3b:f3:12:
bb:5f:e3:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 16:58:32 2025 by rpki-client