Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3A89790A3A5ADA35D5FECEC48AA3A1FD9456BF021B4C5F97FC873E80CB1B4046/0/34352e342e3130312e302f32342d3234203d3e20323635363733.roa
File: 34352e342e3130312e302f32342d3234203d3e20323635363733.roa (raw, json)
Hash identifier: jjEdMXCdFLIsBV+3SqdtUqqnN8D9XCRTrAEHZ1+q1ms=
Subject key identifier: 4A:B4:01:B6:BA:C2:5B:CE:4F:96:AF:DA:06:7B:18:65:74:83:55:96
Certificate issuer: /CN=A663625ACEE986000D86F2BCCF5CED7DE69D4C90
Certificate serial: 60E675C503C939DED14359D20948A33BE8EB2092
Authority key identifier: A6:63:62:5A:CE:E9:86:00:0D:86:F2:BC:CF:5C:ED:7D:E6:9D:4C:90
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A663625ACEE986000D86F2BCCF5CED7DE69D4C90.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3A89790A3A5ADA35D5FECEC48AA3A1FD9456BF021B4C5F97FC873E80CB1B4046/0/34352e342e3130312e302f32342d3234203d3e20323635363733.roa
Signing time: Tue 04 Feb 2025 18:31:12 +0000
ROA not before: Tue 04 Feb 2025 18:26:12 +0000
ROA not after: Tue 03 Feb 2026 18:31:12 +0000
asID: 265673
IP address blocks: 45.4.101.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/3A89790A3A5ADA35D5FECEC48AA3A1FD9456BF021B4C5F97FC873E80CB1B4046/0/A663625ACEE986000D86F2BCCF5CED7DE69D4C90.crl
rsync://repository.lacnic.net/rpki/lacnic/3A89790A3A5ADA35D5FECEC48AA3A1FD9456BF021B4C5F97FC873E80CB1B4046/0/A663625ACEE986000D86F2BCCF5CED7DE69D4C90.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A663625ACEE986000D86F2BCCF5CED7DE69D4C90.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 10:32:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
60:e6:75:c5:03:c9:39:de:d1:43:59:d2:09:48:a3:3b:e8:eb:20:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A663625ACEE986000D86F2BCCF5CED7DE69D4C90
Validity
Not Before: Feb 4 18:26:12 2025 GMT
Not After : Feb 3 18:31:12 2026 GMT
Subject: CN=4AB401B6BAC25BCE4F96AFDA067B186574835596
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:52:c8:57:79:5c:be:16:ed:57:7d:17:0d:fb:
b4:4a:ca:ab:00:47:30:61:f5:e9:c5:4a:63:a3:83:
f2:83:f7:2b:9a:4d:89:33:68:d6:b1:4b:ed:f7:c5:
26:ce:0f:ff:bd:dc:7b:9c:c7:35:44:29:ca:68:7c:
0d:03:d2:a5:29:cb:dc:51:16:d3:b1:43:43:9b:8e:
e5:bc:ca:89:33:86:76:50:3b:ca:13:f4:71:c0:70:
1d:6a:14:87:5c:96:80:4b:a4:8a:bc:30:cd:80:b8:
8a:85:b1:81:da:e0:9d:fc:80:67:cd:02:6f:8f:d0:
30:14:db:28:7a:4c:1a:6e:f0:10:f8:91:8d:82:78:
ba:b7:e9:74:e7:f6:8c:87:0b:15:ba:22:66:8b:e2:
50:f1:06:11:8c:d0:38:fa:e5:29:69:78:81:4f:c9:
4e:8e:17:ff:bc:3f:c6:95:19:49:73:61:47:b7:03:
a1:e0:a4:51:6d:79:06:72:08:2b:f1:ea:72:57:70:
53:88:0b:12:e3:aa:3e:76:48:91:b9:f4:5f:9e:72:
57:f7:59:10:d3:ca:59:6f:e7:73:21:6c:41:67:63:
41:fb:79:d1:be:14:13:8c:f9:94:42:c2:9a:72:02:
30:8d:4c:94:b5:19:58:71:07:67:4e:ea:7d:7f:45:
f5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:B4:01:B6:BA:C2:5B:CE:4F:96:AF:DA:06:7B:18:65:74:83:55:96
X509v3 Authority Key Identifier:
keyid:A6:63:62:5A:CE:E9:86:00:0D:86:F2:BC:CF:5C:ED:7D:E6:9D:4C:90
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3A89790A3A5ADA35D5FECEC48AA3A1FD9456BF021B4C5F97FC873E80CB1B4046/0/A663625ACEE986000D86F2BCCF5CED7DE69D4C90.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A663625ACEE986000D86F2BCCF5CED7DE69D4C90.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3A89790A3A5ADA35D5FECEC48AA3A1FD9456BF021B4C5F97FC873E80CB1B4046/0/34352e342e3130312e302f32342d3234203d3e20323635363733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.4.101.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:ef:81:3f:d6:59:a9:16:54:70:07:ae:5d:e5:dc:7d:f3:77:
dc:e8:da:3a:b0:fc:d9:9c:84:b7:69:84:04:12:e7:98:f2:dd:
ef:b7:3f:89:66:e1:b4:23:d2:74:43:23:27:34:a7:2f:f5:71:
6e:c8:8e:ca:0c:01:d9:56:f7:bc:e4:8e:0b:50:7f:fc:34:15:
21:04:2e:e5:7c:8f:1e:3d:77:cf:56:60:2b:d1:4e:52:2b:03:
bb:fc:e2:ed:0b:23:d9:62:e6:92:f9:30:e4:69:20:fd:fc:af:
72:4b:30:23:81:4c:4e:8a:e6:c7:8f:36:26:c6:1d:f3:79:6f:
41:cb:09:5c:8a:b3:3c:13:89:07:2d:3c:b4:43:12:21:5e:ac:
ee:26:fd:88:02:da:9b:55:33:7c:89:e8:9c:a6:70:19:e8:06:
b6:87:ae:f4:01:15:97:f7:e5:eb:9e:ac:3c:ac:b4:fb:4b:0b:
35:18:c8:5d:ec:eb:6e:62:d6:d6:91:80:04:ff:3e:1c:1a:d8:
31:9c:43:3e:54:15:ec:31:b9:55:2c:44:56:77:53:c9:45:42:
9b:52:f9:49:6d:e3:14:46:58:54:f7:71:33:e9:1e:35:97:4c:
27:ab:64:f7:05:81:b9:e3:83:24:a3:ec:52:73:13:8d:15:70:
22:ab:9b:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 12:03:36 2025 by rpki-client