Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3A683DB2EBE484C7A3536C34C158206B843D3CEF91146C49CF97FC4668FAD41C/0/34352e3232342e32302e302f32322d3234203d3e203532343638.roa
File: 34352e3232342e32302e302f32322d3234203d3e203532343638.roa (raw, json)
Hash identifier: ZI3RPl82o4abO+livM/Bt/B/oxtDTU/VzAxIKJ7uQog=
Subject key identifier: 12:79:D1:E7:E0:CD:4B:EB:C7:44:29:C4:65:FF:F6:85:62:54:9F:2B
Certificate issuer: /CN=665E210B6EA50ABEA68925B6683D57E0A94D5CCF
Certificate serial: 53935B5F5469CDEEA1338AEEBD01532908634068
Authority key identifier: 66:5E:21:0B:6E:A5:0A:BE:A6:89:25:B6:68:3D:57:E0:A9:4D:5C:CF
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/665E210B6EA50ABEA68925B6683D57E0A94D5CCF.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3A683DB2EBE484C7A3536C34C158206B843D3CEF91146C49CF97FC4668FAD41C/0/34352e3232342e32302e302f32322d3234203d3e203532343638.roa
Signing time: Tue 04 Feb 2025 18:16:50 +0000
ROA not before: Tue 04 Feb 2025 18:11:50 +0000
ROA not after: Tue 03 Feb 2026 18:16:50 +0000
asID: 52468
IP address blocks: 45.224.20.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/3A683DB2EBE484C7A3536C34C158206B843D3CEF91146C49CF97FC4668FAD41C/0/665E210B6EA50ABEA68925B6683D57E0A94D5CCF.crl
rsync://repository.lacnic.net/rpki/lacnic/3A683DB2EBE484C7A3536C34C158206B843D3CEF91146C49CF97FC4668FAD41C/0/665E210B6EA50ABEA68925B6683D57E0A94D5CCF.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/665E210B6EA50ABEA68925B6683D57E0A94D5CCF.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 04:06:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:93:5b:5f:54:69:cd:ee:a1:33:8a:ee:bd:01:53:29:08:63:40:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=665E210B6EA50ABEA68925B6683D57E0A94D5CCF
Validity
Not Before: Feb 4 18:11:50 2025 GMT
Not After : Feb 3 18:16:50 2026 GMT
Subject: CN=1279D1E7E0CD4BEBC74429C465FFF68562549F2B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:87:e2:27:b3:ea:11:5d:ae:5b:f1:42:95:69:
82:5d:4e:06:0d:64:67:f1:53:74:c4:a2:0c:64:5e:
38:bf:6f:f3:7d:3f:96:cd:fd:05:f9:e9:b4:a0:83:
64:42:13:6d:23:ba:b2:8e:39:bf:18:0f:82:39:b3:
c3:f2:65:6a:d5:54:27:32:2e:ef:9e:5a:26:24:54:
d3:14:b8:c1:05:21:0f:f1:e4:4f:77:52:3c:bd:89:
3a:f1:d5:bb:99:75:24:e8:94:ab:2e:95:bf:32:34:
db:60:ac:70:2d:4e:f1:1c:39:25:9f:d0:2b:ce:bb:
00:95:82:7a:43:4a:93:0f:7d:9f:15:c1:40:95:a1:
21:37:8a:84:aa:ed:82:2c:13:64:ec:fe:b6:40:4b:
b9:09:5b:39:88:ef:4b:5f:33:b2:13:ca:6f:7c:3a:
78:a1:ba:1d:10:ca:00:2d:7a:a2:ea:8a:df:c8:81:
c0:e8:f6:ec:f8:59:85:f4:d7:b7:3f:48:c1:fa:d5:
78:41:f5:dd:93:36:6a:b9:cb:80:ec:51:36:77:32:
d5:f9:22:d3:50:e2:a9:0f:73:0a:7c:f7:b6:f8:3f:
5d:b5:3f:3f:f8:38:ba:d9:cc:ae:cc:23:26:a6:fd:
a0:8b:ab:8c:4a:60:09:45:18:49:b9:36:b6:27:91:
ba:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:79:D1:E7:E0:CD:4B:EB:C7:44:29:C4:65:FF:F6:85:62:54:9F:2B
X509v3 Authority Key Identifier:
keyid:66:5E:21:0B:6E:A5:0A:BE:A6:89:25:B6:68:3D:57:E0:A9:4D:5C:CF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3A683DB2EBE484C7A3536C34C158206B843D3CEF91146C49CF97FC4668FAD41C/0/665E210B6EA50ABEA68925B6683D57E0A94D5CCF.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/665E210B6EA50ABEA68925B6683D57E0A94D5CCF.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3A683DB2EBE484C7A3536C34C158206B843D3CEF91146C49CF97FC4668FAD41C/0/34352e3232342e32302e302f32322d3234203d3e203532343638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.224.20.0/22
Signature Algorithm: sha256WithRSAEncryption
81:5e:fa:86:65:55:2f:32:fa:c7:ad:5f:8e:79:12:a1:c9:6f:
26:3d:7e:fa:08:be:d0:62:58:08:dd:b5:ce:a4:50:37:1c:48:
21:bf:cd:5a:3b:1e:c8:db:20:0d:75:fa:26:43:19:a8:50:da:
ac:fa:71:0a:93:45:d0:89:f2:66:7e:f5:00:f5:26:00:11:1c:
60:5c:e1:0d:65:61:5b:4b:36:c6:c3:7b:8e:d7:03:09:7d:f8:
a3:74:7c:d8:1f:4c:f9:4e:c5:15:23:19:ce:34:a3:11:5d:b7:
da:5e:27:ba:e8:a8:8c:37:61:ee:b1:f4:ab:ea:cf:a0:4a:19:
cb:57:d5:ee:76:30:07:5f:2c:9f:d4:31:43:32:a7:53:7b:08:
9c:af:fe:0f:1e:5a:a7:08:b1:b4:02:b9:3c:a6:42:fb:74:0d:
91:f2:dd:d2:5b:81:23:5b:c1:fb:ef:78:1c:ba:0d:42:a0:d6:
37:57:d9:44:5a:f5:2c:3f:a4:2e:40:ab:bb:71:b7:3c:26:64:
35:d6:4f:0f:fa:38:59:95:d9:04:0d:6f:9d:1a:58:34:37:4f:
4f:88:13:4e:88:62:2d:4d:63:fb:4b:27:5c:8f:e1:f0:30:a7:
2f:11:0f:2a:93:c4:65:90:18:bd:34:09:92:19:aa:71:ed:cb:
e7:f2:7a:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 08:17:03 2025 by rpki-client