Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1BD03842362FAEFBF288DCD0380BB080EF1C244FE30A23E48FDC62394E1F048D/0/34352e37312e3139362e302f32322d3233203d3e20323635383238.roa
File: 34352e37312e3139362e302f32322d3233203d3e20323635383238.roa (raw, json)
Hash identifier: XzXzp/3lYInb8ZuWvvOXkX/CnfSNZ5B1mGGKr1Qlmu4=
Subject key identifier: 9E:80:CC:AF:BE:31:08:BA:01:12:98:E8:0F:FF:62:36:CF:D7:6C:F0
Certificate issuer: /CN=B9AB59A03A8D1B251F8F5C17B450A8C25F5636EE
Certificate serial: 76C2DA6832DF31EADF1DC1320AC264AEA8836E99
Authority key identifier: B9:AB:59:A0:3A:8D:1B:25:1F:8F:5C:17:B4:50:A8:C2:5F:56:36:EE
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B9AB59A03A8D1B251F8F5C17B450A8C25F5636EE.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1BD03842362FAEFBF288DCD0380BB080EF1C244FE30A23E48FDC62394E1F048D/0/34352e37312e3139362e302f32322d3233203d3e20323635383238.roa
Signing time: Tue 04 Feb 2025 18:49:27 +0000
ROA not before: Tue 04 Feb 2025 18:44:27 +0000
ROA not after: Tue 03 Feb 2026 18:49:27 +0000
asID: 265828
IP address blocks: 45.71.196.0/22 maxlen: 23
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/1BD03842362FAEFBF288DCD0380BB080EF1C244FE30A23E48FDC62394E1F048D/0/B9AB59A03A8D1B251F8F5C17B450A8C25F5636EE.crl
rsync://repository.lacnic.net/rpki/lacnic/1BD03842362FAEFBF288DCD0380BB080EF1C244FE30A23E48FDC62394E1F048D/0/B9AB59A03A8D1B251F8F5C17B450A8C25F5636EE.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B9AB59A03A8D1B251F8F5C17B450A8C25F5636EE.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 04:47:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:c2:da:68:32:df:31:ea:df:1d:c1:32:0a:c2:64:ae:a8:83:6e:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B9AB59A03A8D1B251F8F5C17B450A8C25F5636EE
Validity
Not Before: Feb 4 18:44:27 2025 GMT
Not After : Feb 3 18:49:27 2026 GMT
Subject: CN=9E80CCAFBE3108BA011298E80FFF6236CFD76CF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:83:0b:9c:d3:54:aa:4d:54:61:a4:2c:42:83:
bd:a8:af:dd:fb:fe:f8:63:32:8f:2e:d8:c5:c1:6e:
28:2e:19:1e:f8:96:6e:a6:20:7b:60:36:cc:56:c2:
3c:12:ad:8e:58:1d:73:96:b8:48:9a:86:17:c9:a0:
e6:d9:e4:7d:bc:1b:86:20:aa:bf:c7:c5:3d:0d:e6:
fc:53:a2:69:af:5d:df:a8:7e:0e:6d:78:e4:93:66:
fb:64:b3:b1:5b:fc:e7:13:a7:9a:e0:5c:e6:6f:d7:
1e:dc:1c:7a:91:d2:23:5f:30:68:a6:8b:e5:f8:42:
8f:0e:4f:86:46:28:b2:99:0e:7c:e8:84:2b:f2:e4:
0c:96:f2:95:4a:fb:bd:c2:a2:ca:49:f9:c2:cb:42:
3d:be:b2:eb:4b:87:1e:dc:64:1a:e2:f9:52:aa:b4:
8f:4b:73:91:30:b6:7f:56:d3:8e:90:8c:65:93:51:
d0:71:d7:44:e0:8a:c1:b5:38:58:6a:eb:23:4f:9f:
9d:ba:fc:dd:c4:c9:7c:d3:09:3b:ba:9e:a4:f1:5d:
f9:0d:05:08:27:30:ed:04:7c:11:a1:1c:2a:7f:54:
c4:5d:73:d7:1f:9f:ec:07:35:ff:b3:67:97:38:30:
a5:08:3b:9a:ea:fb:16:20:4c:e2:83:65:e9:43:59:
62:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:80:CC:AF:BE:31:08:BA:01:12:98:E8:0F:FF:62:36:CF:D7:6C:F0
X509v3 Authority Key Identifier:
keyid:B9:AB:59:A0:3A:8D:1B:25:1F:8F:5C:17:B4:50:A8:C2:5F:56:36:EE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1BD03842362FAEFBF288DCD0380BB080EF1C244FE30A23E48FDC62394E1F048D/0/B9AB59A03A8D1B251F8F5C17B450A8C25F5636EE.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B9AB59A03A8D1B251F8F5C17B450A8C25F5636EE.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1BD03842362FAEFBF288DCD0380BB080EF1C244FE30A23E48FDC62394E1F048D/0/34352e37312e3139362e302f32322d3233203d3e20323635383238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.71.196.0/22
Signature Algorithm: sha256WithRSAEncryption
49:fd:74:48:2b:8d:8a:02:9b:eb:1b:af:df:cb:71:1d:dc:d0:
e7:aa:2c:d4:e9:c7:41:1e:c6:bc:6e:d8:a2:1b:e3:3e:c9:61:
d3:20:63:b3:c5:bd:f2:77:47:ff:c9:dd:95:06:cf:01:4d:ec:
a3:83:be:6e:de:06:fd:fe:28:1b:af:b3:24:ca:57:35:ab:f6:
e7:99:f6:c4:75:7b:e6:6e:78:67:f9:8a:e6:bf:99:b2:52:4c:
79:e1:e6:1d:bc:29:91:4a:fc:47:8c:33:5c:d6:d3:91:ca:e1:
b0:1d:2b:bb:ab:57:0c:0d:0d:55:65:43:f4:29:c3:b6:ce:2f:
89:3f:22:8d:12:be:50:3b:26:91:7c:81:e1:f7:43:c1:11:bc:
f9:c0:53:a3:47:ef:00:03:cf:2e:61:3d:d3:a9:b9:d9:18:49:
42:fc:ed:85:49:03:73:ac:81:f4:aa:a3:6b:a2:6a:47:62:76:
18:64:90:96:7f:9b:41:81:da:66:16:3b:3b:47:22:8f:18:e1:
fd:cb:02:87:b7:19:e1:81:0c:a9:c6:3b:58:97:18:84:fe:13:
62:62:8d:da:3e:ac:d7:af:3e:a3:96:e6:c4:9b:bc:24:d0:b0:
0d:f4:75:ca:da:90:f3:c8:05:c0:dd:67:2d:14:9f:91:50:ec:
07:3f:eb:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 16:58:36 2025 by rpki-client