Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/34171FFEFFD119D3640DAC769DB2DE3BE7308E74A2E551BE8917A5A8D241B031/0/34352e36352e3134382e302f32342d3234203d3e20323635373135.roa
File: 34352e36352e3134382e302f32342d3234203d3e20323635373135.roa (raw, json)
Hash identifier: /eydrSuXwlF+dVC1+Oz1vot91AupgKMz3HpMuMTft84=
Subject key identifier: CE:A2:40:89:C1:4F:74:32:18:10:DE:57:11:A3:E5:DE:22:DF:E5:DE
Certificate issuer: /CN=5998B120B3E73E1A83319F353329C3ABD0E1E67C
Certificate serial: 2CE95140B8C56BAF2D40B1AD8D41EEA8EA21F909
Authority key identifier: 59:98:B1:20:B3:E7:3E:1A:83:31:9F:35:33:29:C3:AB:D0:E1:E6:7C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5998B120B3E73E1A83319F353329C3ABD0E1E67C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/34171FFEFFD119D3640DAC769DB2DE3BE7308E74A2E551BE8917A5A8D241B031/0/34352e36352e3134382e302f32342d3234203d3e20323635373135.roa
Signing time: Tue 04 Feb 2025 18:44:53 +0000
ROA not before: Tue 04 Feb 2025 18:39:53 +0000
ROA not after: Tue 03 Feb 2026 18:44:53 +0000
asID: 265715
IP address blocks: 45.65.148.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/34171FFEFFD119D3640DAC769DB2DE3BE7308E74A2E551BE8917A5A8D241B031/0/5998B120B3E73E1A83319F353329C3ABD0E1E67C.crl
rsync://repository.lacnic.net/rpki/lacnic/34171FFEFFD119D3640DAC769DB2DE3BE7308E74A2E551BE8917A5A8D241B031/0/5998B120B3E73E1A83319F353329C3ABD0E1E67C.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5998B120B3E73E1A83319F353329C3ABD0E1E67C.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 11:10:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:e9:51:40:b8:c5:6b:af:2d:40:b1:ad:8d:41:ee:a8:ea:21:f9:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5998B120B3E73E1A83319F353329C3ABD0E1E67C
Validity
Not Before: Feb 4 18:39:53 2025 GMT
Not After : Feb 3 18:44:53 2026 GMT
Subject: CN=CEA24089C14F74321810DE5711A3E5DE22DFE5DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:b9:e6:aa:6f:6a:66:f5:f2:bd:c0:7d:4d:aa:
78:30:16:3e:af:14:a0:89:43:9d:17:73:37:f0:69:
3e:11:37:f2:2d:64:a6:cd:b1:f0:f8:c6:43:40:7d:
27:28:26:b4:64:9b:cd:c7:a6:7b:21:39:60:ed:51:
d7:2a:2f:2d:bf:7f:88:2f:76:51:73:8e:e3:f4:8c:
47:03:90:0a:82:7e:cf:e0:bb:1a:53:6a:5b:5c:bd:
a5:38:de:73:a8:bf:5a:06:2b:4f:18:7e:df:31:4a:
31:39:65:f8:20:7d:74:d9:0b:54:d7:27:76:67:4f:
01:8d:5d:36:80:42:c6:06:f2:2b:f0:c0:25:3c:04:
a7:ff:5e:e3:9a:34:07:fe:06:b8:29:09:43:6f:7f:
c0:35:bf:98:31:96:c3:d0:3c:5b:2d:6e:58:45:55:
c8:39:64:24:63:0c:8e:bf:8a:a3:b1:d1:39:c2:7b:
d4:28:f2:05:93:73:c5:5b:98:e2:49:13:38:93:2d:
6e:7a:fb:14:fe:c6:d2:4d:30:69:df:5b:6a:d1:56:
09:53:92:1c:67:3d:64:65:e9:ce:1f:20:7d:f4:40:
33:cc:d2:a9:a4:fc:b5:f4:b2:69:a2:f4:51:f7:60:
22:96:6f:07:23:63:48:4c:21:4c:20:55:63:66:6a:
78:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:A2:40:89:C1:4F:74:32:18:10:DE:57:11:A3:E5:DE:22:DF:E5:DE
X509v3 Authority Key Identifier:
keyid:59:98:B1:20:B3:E7:3E:1A:83:31:9F:35:33:29:C3:AB:D0:E1:E6:7C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/34171FFEFFD119D3640DAC769DB2DE3BE7308E74A2E551BE8917A5A8D241B031/0/5998B120B3E73E1A83319F353329C3ABD0E1E67C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/5998B120B3E73E1A83319F353329C3ABD0E1E67C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/34171FFEFFD119D3640DAC769DB2DE3BE7308E74A2E551BE8917A5A8D241B031/0/34352e36352e3134382e302f32342d3234203d3e20323635373135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.148.0/24
Signature Algorithm: sha256WithRSAEncryption
33:6a:4b:73:14:61:76:a7:4b:56:39:28:fb:ef:e0:d5:5d:d0:
57:e4:ab:e6:64:fa:9b:ce:6d:e3:ec:62:80:d0:3c:f3:1f:e7:
b2:43:94:2d:5f:84:3e:a8:d5:f4:be:96:30:46:95:9e:97:00:
65:03:d7:d3:c2:55:9d:e7:14:19:be:58:26:d2:f8:cd:e2:c3:
ab:a4:57:7e:d1:ba:6a:3e:d8:9f:ea:10:a8:81:31:d7:29:21:
3f:b1:19:3f:6e:ff:47:de:67:0e:b2:66:7f:d8:30:55:c9:93:
24:15:23:55:e6:bd:6a:84:60:d8:79:e7:76:77:f4:79:8f:1c:
75:19:b4:5d:be:1a:50:fd:5f:f1:90:1c:d0:42:1c:08:93:94:
6c:b2:eb:90:f1:99:4b:b2:82:88:05:b5:68:7e:32:15:2b:1c:
5a:76:54:6d:1f:f1:17:82:91:93:e5:f1:34:db:68:69:68:68:
7f:29:4a:22:e9:b6:77:a3:c1:c2:db:9d:5d:f8:49:6f:72:84:
73:06:86:e0:5b:c8:93:35:cf:a2:d3:be:dd:ae:44:cb:41:e4:
cb:86:ed:38:17:cc:48:d7:13:63:e6:aa:4e:fe:a0:bb:dc:2b:
12:4e:0c:ac:44:d3:dc:22:d2:86:77:4f:27:c5:85:aa:10:e3:
b6:28:99:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 17:35:55 2025 by rpki-client