Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/34171FFEFFD119D3640DAC769DB2DE3BE7308E74A2E551BE8917A5A8D241B031/0/34352e36352e3134382e302f32322d3232203d3e20323635373135.roa
File: 34352e36352e3134382e302f32322d3232203d3e20323635373135.roa (raw, json)
Hash identifier: i1zlPfXsnhNTSyqfkqxObJC+xRbNF5ad302XIqBwc8o=
Subject key identifier: 6E:3D:88:83:CA:B4:20:61:4A:07:AE:ED:99:57:83:4A:0A:6D:CC:90
Certificate issuer: /CN=5998B120B3E73E1A83319F353329C3ABD0E1E67C
Certificate serial: 755E6AB87480C4DE8B12CB791883E887C98F8AF5
Authority key identifier: 59:98:B1:20:B3:E7:3E:1A:83:31:9F:35:33:29:C3:AB:D0:E1:E6:7C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5998B120B3E73E1A83319F353329C3ABD0E1E67C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/34171FFEFFD119D3640DAC769DB2DE3BE7308E74A2E551BE8917A5A8D241B031/0/34352e36352e3134382e302f32322d3232203d3e20323635373135.roa
Signing time: Tue 04 Feb 2025 18:44:52 +0000
ROA not before: Tue 04 Feb 2025 18:39:52 +0000
ROA not after: Tue 03 Feb 2026 18:44:52 +0000
asID: 265715
IP address blocks: 45.65.148.0/22 maxlen: 22
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/34171FFEFFD119D3640DAC769DB2DE3BE7308E74A2E551BE8917A5A8D241B031/0/5998B120B3E73E1A83319F353329C3ABD0E1E67C.crl
rsync://repository.lacnic.net/rpki/lacnic/34171FFEFFD119D3640DAC769DB2DE3BE7308E74A2E551BE8917A5A8D241B031/0/5998B120B3E73E1A83319F353329C3ABD0E1E67C.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5998B120B3E73E1A83319F353329C3ABD0E1E67C.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 11:10:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:5e:6a:b8:74:80:c4:de:8b:12:cb:79:18:83:e8:87:c9:8f:8a:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5998B120B3E73E1A83319F353329C3ABD0E1E67C
Validity
Not Before: Feb 4 18:39:52 2025 GMT
Not After : Feb 3 18:44:52 2026 GMT
Subject: CN=6E3D8883CAB420614A07AEED9957834A0A6DCC90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e4:84:fc:5e:32:01:a6:cf:48:c2:95:74:30:
3c:41:47:5d:a7:85:1b:ed:9f:df:d0:07:b1:42:86:
57:40:0e:b3:7d:7f:fe:f9:e7:96:22:4c:24:3e:bd:
99:2e:d0:76:c2:97:26:23:23:4d:6b:1c:e8:bd:d1:
21:7e:da:9e:cb:d3:f3:e0:d8:bc:3d:76:9e:83:60:
c8:06:2b:dc:32:2d:24:0d:e2:95:95:f7:e7:db:cc:
ac:5a:59:d7:5b:d0:c5:17:f4:9d:22:1f:1b:61:79:
46:7b:52:1a:7c:e6:cb:f7:33:7e:27:aa:da:f0:18:
60:08:fe:97:40:fa:56:3b:50:46:13:03:dc:15:16:
e5:38:cc:64:b6:ba:5e:40:ff:f3:24:df:47:1e:18:
27:87:96:f1:93:29:71:19:5e:8f:7c:d7:5c:2c:e5:
70:91:9c:ff:6b:19:f6:b0:a2:f0:b2:78:cc:00:46:
d2:6f:c1:2e:01:74:8c:70:86:ca:0c:34:a7:2c:66:
7e:e9:9d:f4:d5:8a:bd:15:31:db:b2:ae:04:6e:72:
aa:63:f2:ae:c9:f7:a8:f1:02:42:50:76:03:4a:c8:
dd:e5:80:d5:5a:24:a7:fd:20:a6:09:80:02:39:28:
2d:8b:25:3c:05:0c:84:99:f5:41:5b:2a:47:03:f0:
7c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:3D:88:83:CA:B4:20:61:4A:07:AE:ED:99:57:83:4A:0A:6D:CC:90
X509v3 Authority Key Identifier:
keyid:59:98:B1:20:B3:E7:3E:1A:83:31:9F:35:33:29:C3:AB:D0:E1:E6:7C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/34171FFEFFD119D3640DAC769DB2DE3BE7308E74A2E551BE8917A5A8D241B031/0/5998B120B3E73E1A83319F353329C3ABD0E1E67C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5998B120B3E73E1A83319F353329C3ABD0E1E67C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/34171FFEFFD119D3640DAC769DB2DE3BE7308E74A2E551BE8917A5A8D241B031/0/34352e36352e3134382e302f32322d3232203d3e20323635373135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.148.0/22
Signature Algorithm: sha256WithRSAEncryption
66:32:88:93:4b:48:16:6b:8e:bb:dd:bb:e6:b3:18:18:a7:ed:
76:7c:d9:ea:65:63:8f:12:93:d1:55:bd:2f:42:34:7c:b6:01:
cb:90:f0:c3:81:2c:3f:ec:38:63:b4:82:d2:ba:9a:7d:c0:fa:
7c:98:36:23:ad:b3:94:9e:e9:34:5e:8c:d4:21:8d:8a:0c:e7:
fa:9f:55:ef:c7:ad:11:90:f6:a6:87:63:e6:e6:07:f4:7d:5c:
4a:c7:7a:22:99:a7:47:a5:87:8d:e4:17:d9:e9:45:19:65:22:
45:ca:64:c8:b2:33:b1:c8:73:31:5f:62:72:f3:50:76:6f:94:
82:21:22:ed:6a:12:8f:42:1a:23:68:48:22:ba:71:dc:cf:6e:
b3:44:d8:15:01:67:f5:3a:6e:83:f7:5e:70:9a:d2:ae:8c:d9:
d1:13:43:7e:73:cb:61:60:e0:63:59:46:61:44:34:8d:79:7d:
e4:32:dc:fa:b4:72:34:7b:48:b9:dc:b3:a2:8f:0c:75:5b:40:
92:e6:eb:28:bb:30:bd:62:dd:02:d8:f2:66:cc:3d:65:cd:a6:
8c:bc:2f:6b:db:cb:fd:3d:fc:99:f7:02:72:ef:40:a4:2a:9b:
1d:12:55:31:3d:e3:f1:35:b9:48:7f:2c:8c:a2:73:98:6e:0e:
79:14:9a:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 15:05:16 2025 by rpki-client