Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/396892F76FAAB3BF5E2DBB2EE31CAFB9B17C4BD6420A6A87E1097F0FD8E13D53/0/34352e3137312e38312e302f32342d3234203d3e20323731373736.roa
File: 34352e3137312e38312e302f32342d3234203d3e20323731373736.roa (raw, json)
Hash identifier: KDIq+Y5hnkWOSctPrtLo2ftrtt+M2XUJiQVZDr/cYy4=
Subject key identifier: BF:6A:63:49:ED:E8:EF:C9:41:40:C7:21:B5:D6:E7:83:BF:5D:64:73
Certificate issuer: /CN=FE8F8DA2CA31F636CFFAE253DD8F62F84E08BE28
Certificate serial: 0783DCF19F6FA4CEF32BCF30C383FC8C28A5BD28
Authority key identifier: FE:8F:8D:A2:CA:31:F6:36:CF:FA:E2:53:DD:8F:62:F8:4E:08:BE:28
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FE8F8DA2CA31F636CFFAE253DD8F62F84E08BE28.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/396892F76FAAB3BF5E2DBB2EE31CAFB9B17C4BD6420A6A87E1097F0FD8E13D53/0/34352e3137312e38312e302f32342d3234203d3e20323731373736.roa
Signing time: Tue 04 Feb 2025 19:57:52 +0000
ROA not before: Tue 04 Feb 2025 19:52:52 +0000
ROA not after: Tue 03 Feb 2026 19:57:52 +0000
asID: 271776
IP address blocks: 45.171.81.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/396892F76FAAB3BF5E2DBB2EE31CAFB9B17C4BD6420A6A87E1097F0FD8E13D53/0/FE8F8DA2CA31F636CFFAE253DD8F62F84E08BE28.crl
rsync://repository.lacnic.net/rpki/lacnic/396892F76FAAB3BF5E2DBB2EE31CAFB9B17C4BD6420A6A87E1097F0FD8E13D53/0/FE8F8DA2CA31F636CFFAE253DD8F62F84E08BE28.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FE8F8DA2CA31F636CFFAE253DD8F62F84E08BE28.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:83:dc:f1:9f:6f:a4:ce:f3:2b:cf:30:c3:83:fc:8c:28:a5:bd:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FE8F8DA2CA31F636CFFAE253DD8F62F84E08BE28
Validity
Not Before: Feb 4 19:52:52 2025 GMT
Not After : Feb 3 19:57:52 2026 GMT
Subject: CN=BF6A6349EDE8EFC94140C721B5D6E783BF5D6473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d1:9a:3e:5c:a1:36:01:9c:71:d3:a1:ac:ad:
2a:ba:88:e3:ac:0a:89:85:c8:85:8d:92:d9:ed:d9:
1d:98:32:82:e0:51:03:71:65:2e:d4:07:14:23:a2:
de:52:3e:85:ff:3f:99:d3:95:0d:36:1e:b4:db:78:
41:69:ba:51:0a:1d:6a:b1:df:b4:fc:02:6b:c1:69:
9a:f4:0c:d6:e9:ff:98:d1:e2:09:28:c8:58:b7:fc:
d4:71:2a:06:7e:b9:96:ea:0a:f3:9d:cf:87:1f:72:
87:53:7c:1e:3b:81:67:83:c7:39:54:71:78:d8:c8:
f1:87:fe:05:cc:45:9d:31:b0:16:da:39:24:dd:3d:
41:a3:28:93:50:b4:57:67:2a:64:d8:8a:56:67:6d:
8b:17:76:09:f5:a1:5a:25:66:d2:00:ea:c8:96:8e:
32:98:95:42:ad:6b:13:98:0f:2d:cf:0e:8a:db:05:
27:f5:ec:28:5c:0a:fa:5e:ef:12:da:0f:ad:c4:9c:
93:97:2f:e9:5e:f0:9e:71:8f:37:f5:56:d6:fb:c6:
49:b5:6b:08:b9:7a:27:98:80:3e:6c:de:0e:8c:a6:
5f:77:6f:7d:39:a0:fa:7e:5b:42:e4:cd:67:ca:47:
68:d4:ea:ff:ab:11:1d:2d:f2:47:46:0c:61:a1:5e:
8e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:6A:63:49:ED:E8:EF:C9:41:40:C7:21:B5:D6:E7:83:BF:5D:64:73
X509v3 Authority Key Identifier:
keyid:FE:8F:8D:A2:CA:31:F6:36:CF:FA:E2:53:DD:8F:62:F8:4E:08:BE:28
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/396892F76FAAB3BF5E2DBB2EE31CAFB9B17C4BD6420A6A87E1097F0FD8E13D53/0/FE8F8DA2CA31F636CFFAE253DD8F62F84E08BE28.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FE8F8DA2CA31F636CFFAE253DD8F62F84E08BE28.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/396892F76FAAB3BF5E2DBB2EE31CAFB9B17C4BD6420A6A87E1097F0FD8E13D53/0/34352e3137312e38312e302f32342d3234203d3e20323731373736.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.171.81.0/24
Signature Algorithm: sha256WithRSAEncryption
62:ae:09:10:9d:3b:00:63:df:9a:dc:c2:b4:ba:f6:da:42:81:
f0:0f:2f:c1:a8:09:63:f2:6a:5b:4b:41:86:3d:b9:5a:89:3e:
00:34:b4:04:ce:b4:37:b8:03:6c:ba:4f:82:89:bb:93:5c:73:
4e:73:e0:1c:d9:56:11:83:83:e9:e6:1c:8b:ee:d5:03:4c:6f:
42:d4:54:c0:22:f8:30:0a:74:fe:50:36:3a:28:46:dc:ef:f7:
83:02:8b:c2:73:d2:31:ed:fe:9d:d0:fc:e8:dc:ad:c4:2f:ed:
cd:e9:cd:f6:44:97:73:2b:1b:ad:42:ba:df:fa:f4:b3:3d:8b:
c0:6a:b8:12:57:04:90:7e:28:9e:59:7b:07:33:55:a0:61:7c:
d8:a1:c3:4c:b8:d6:94:18:b7:ab:cd:5b:b2:d1:b8:24:ae:6e:
01:d7:9a:50:12:81:8d:6f:f4:38:bb:4b:81:2d:05:b5:e6:f2:
ab:79:d7:77:dc:b2:b9:d1:07:32:47:11:c3:cd:2c:88:0e:b1:
c9:f1:40:89:86:72:c3:fc:e8:81:f2:cf:3c:03:19:02:7c:fd:
b4:c7:14:db:5c:90:21:86:48:8d:37:8c:77:03:a2:f6:c5:05:
a2:cc:5c:cf:33:2f:07:13:d1:28:44:5a:37:ce:64:17:fb:b9:
9a:da:6c:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 10:11:20 2025 by rpki-client