Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/14833F2BFFEA9E2A18C8194640DA219B39EE90CC292CDCEBE367C78EBC52A080/0/34352e3137302e3234392e302f32342d3234203d3e203238343233.roa
File: 34352e3137302e3234392e302f32342d3234203d3e203238343233.roa (raw, json)
Hash identifier: ePGssfolLXU8AoUJhhJEBR38C+LqI2FB3a+krX0u0JQ=
Subject key identifier: 3A:7B:CD:75:91:52:7D:AB:EF:FE:AA:8D:D5:4E:F2:DA:BF:00:99:7F
Certificate issuer: /CN=69FB064988CC6E77E3A9CF5D423A459765DC4E1B
Certificate serial: 4133A96A9C197767E6DCD5C6BF01CCE7C619F461
Authority key identifier: 69:FB:06:49:88:CC:6E:77:E3:A9:CF:5D:42:3A:45:97:65:DC:4E:1B
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/69FB064988CC6E77E3A9CF5D423A459765DC4E1B.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/14833F2BFFEA9E2A18C8194640DA219B39EE90CC292CDCEBE367C78EBC52A080/0/34352e3137302e3234392e302f32342d3234203d3e203238343233.roa
Signing time: Sat 18 Jan 2025 20:45:00 +0000
ROA not before: Sat 18 Jan 2025 20:40:00 +0000
ROA not after: Sat 17 Jan 2026 20:45:00 +0000
asID: 28423
IP address blocks: 45.170.249.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/14833F2BFFEA9E2A18C8194640DA219B39EE90CC292CDCEBE367C78EBC52A080/0/69FB064988CC6E77E3A9CF5D423A459765DC4E1B.crl
rsync://repository.lacnic.net/rpki/lacnic/14833F2BFFEA9E2A18C8194640DA219B39EE90CC292CDCEBE367C78EBC52A080/0/69FB064988CC6E77E3A9CF5D423A459765DC4E1B.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/69FB064988CC6E77E3A9CF5D423A459765DC4E1B.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 14:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
41:33:a9:6a:9c:19:77:67:e6:dc:d5:c6:bf:01:cc:e7:c6:19:f4:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69FB064988CC6E77E3A9CF5D423A459765DC4E1B
Validity
Not Before: Jan 18 20:40:00 2025 GMT
Not After : Jan 17 20:45:00 2026 GMT
Subject: CN=3A7BCD7591527DABEFFEAA8DD54EF2DABF00997F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b0:fd:4c:a7:30:02:0a:e4:7e:74:83:b0:f5:
36:59:7f:ec:ea:ee:ba:ea:fd:0c:b2:2b:9f:42:87:
d5:a4:a6:05:2b:ad:75:48:46:55:9b:19:db:b5:87:
21:f0:d7:27:1a:d7:d2:81:5b:f3:00:3b:d7:bd:5a:
5f:4c:cb:f8:c4:d1:58:2c:e2:2e:6a:e5:b4:f3:d5:
85:ee:a5:35:5d:9e:7b:36:17:c6:e4:19:7d:53:60:
2d:8b:0e:3b:21:76:d5:cf:2e:8c:b4:82:a3:26:a2:
a0:fe:cf:9b:57:97:ab:59:9f:62:1c:e7:8d:63:cb:
00:f9:0e:84:0a:a4:25:48:65:6f:3a:b1:2e:44:da:
6e:c7:33:db:e4:14:0c:69:04:47:58:86:8c:c1:71:
76:bc:51:8c:22:69:2f:01:69:be:ea:01:a6:cb:8c:
66:c6:28:4b:70:42:fb:47:ca:04:04:52:8e:c8:e3:
2a:1c:ac:0a:f7:b2:64:69:fa:de:a0:af:86:e5:ea:
4a:25:db:76:83:59:1a:36:2b:9c:8e:e2:75:8a:36:
33:cb:18:e6:d4:f7:e7:3d:48:8f:38:8b:43:3e:59:
ae:2d:50:be:47:14:02:35:11:cd:f1:10:86:3d:86:
08:31:bc:eb:8c:d3:0f:99:30:05:7a:fa:e5:8e:40:
99:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:7B:CD:75:91:52:7D:AB:EF:FE:AA:8D:D5:4E:F2:DA:BF:00:99:7F
X509v3 Authority Key Identifier:
keyid:69:FB:06:49:88:CC:6E:77:E3:A9:CF:5D:42:3A:45:97:65:DC:4E:1B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/14833F2BFFEA9E2A18C8194640DA219B39EE90CC292CDCEBE367C78EBC52A080/0/69FB064988CC6E77E3A9CF5D423A459765DC4E1B.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/69FB064988CC6E77E3A9CF5D423A459765DC4E1B.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/14833F2BFFEA9E2A18C8194640DA219B39EE90CC292CDCEBE367C78EBC52A080/0/34352e3137302e3234392e302f32342d3234203d3e203238343233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.170.249.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:20:c7:80:e9:0d:05:d9:82:9c:78:b3:e7:92:15:54:95:20:
a8:fd:0a:0c:21:9f:c0:df:4b:b3:b3:e6:17:d3:70:24:09:e7:
e5:bd:54:0d:78:d9:b1:53:16:ab:8f:7d:93:09:0f:b0:c7:b7:
fb:61:3d:34:1a:e6:9b:4d:50:2e:64:9d:f4:38:83:a0:f8:29:
5d:3c:c0:1d:90:2e:cd:f3:4b:3b:8f:b2:20:b5:fa:16:8f:f5:
4f:25:ce:46:41:b7:0f:4f:ab:25:b7:17:48:6a:91:2a:57:1c:
6c:7e:5b:d8:47:42:49:49:af:f1:9d:8b:3b:36:df:50:47:67:
08:2d:ed:68:ec:89:0c:85:62:0c:0a:cf:8a:ab:66:44:43:63:
15:af:65:fa:78:24:ea:3f:d1:65:43:51:4d:88:93:f8:e0:44:
b7:c0:25:39:13:79:ca:86:7a:9b:0b:13:ba:8d:4a:47:9a:93:
ac:03:86:40:09:09:a1:6f:57:90:90:00:e8:a2:78:61:a2:b1:
e0:d6:4b:f8:e6:c0:75:60:62:32:e6:cc:02:e4:9d:f4:fb:6a:
67:87:2a:5e:0c:31:f3:0d:f2:1a:35:2f:d6:4b:b8:42:5d:d1:
1d:9a:b2:d5:63:a3:45:1c:de:a5:f4:8f:be:56:b4:3b:a5:60:
31:bc:60:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 09:39:37 2025 by rpki-client