Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3A89790A3A5ADA35D5FECEC48AA3A1FD9456BF021B4C5F97FC873E80CB1B4046/0/34352e342e3130322e302f32342d3234203d3e20323635363733.roa
File: 34352e342e3130322e302f32342d3234203d3e20323635363733.roa (raw, json)
Hash identifier: cw6J+/A3o6J/OdvQwOF6Q8RkhcjccG5JxxkLMv+2FWk=
Subject key identifier: 96:86:07:FE:7E:3E:25:9D:A7:B1:8F:C8:81:96:CF:9B:E7:B4:4B:0C
Certificate issuer: /CN=A663625ACEE986000D86F2BCCF5CED7DE69D4C90
Certificate serial: 49F2EAD28F8F6A5F20C0A5342025FA64DAC067A0
Authority key identifier: A6:63:62:5A:CE:E9:86:00:0D:86:F2:BC:CF:5C:ED:7D:E6:9D:4C:90
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A663625ACEE986000D86F2BCCF5CED7DE69D4C90.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3A89790A3A5ADA35D5FECEC48AA3A1FD9456BF021B4C5F97FC873E80CB1B4046/0/34352e342e3130322e302f32342d3234203d3e20323635363733.roa
Signing time: Tue 04 Feb 2025 18:31:12 +0000
ROA not before: Tue 04 Feb 2025 18:26:12 +0000
ROA not after: Tue 03 Feb 2026 18:31:12 +0000
asID: 265673
IP address blocks: 45.4.102.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/3A89790A3A5ADA35D5FECEC48AA3A1FD9456BF021B4C5F97FC873E80CB1B4046/0/A663625ACEE986000D86F2BCCF5CED7DE69D4C90.crl
rsync://repository.lacnic.net/rpki/lacnic/3A89790A3A5ADA35D5FECEC48AA3A1FD9456BF021B4C5F97FC873E80CB1B4046/0/A663625ACEE986000D86F2BCCF5CED7DE69D4C90.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A663625ACEE986000D86F2BCCF5CED7DE69D4C90.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:f2:ea:d2:8f:8f:6a:5f:20:c0:a5:34:20:25:fa:64:da:c0:67:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A663625ACEE986000D86F2BCCF5CED7DE69D4C90
Validity
Not Before: Feb 4 18:26:12 2025 GMT
Not After : Feb 3 18:31:12 2026 GMT
Subject: CN=968607FE7E3E259DA7B18FC88196CF9BE7B44B0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b1:a0:ae:45:e9:f2:0a:59:0a:c0:fc:a2:4f:
6f:7f:69:93:83:da:34:f8:07:a2:db:29:8b:05:4d:
76:63:4c:3a:f7:79:23:c4:d8:87:bf:27:c1:ad:3e:
fe:a2:7d:4e:30:27:8b:7e:ff:d7:c8:46:22:b4:8c:
b6:52:c6:11:9a:e9:c5:4b:8c:08:72:67:49:b7:7c:
f8:ff:71:e0:b2:2b:91:3e:a9:d3:ab:91:df:7c:ef:
9a:6c:a6:37:1c:ac:7d:2b:f7:c4:97:27:dd:90:56:
5b:e7:fb:be:78:9b:52:dc:9d:27:7f:f4:45:cf:5b:
92:ff:bd:d2:d6:0b:05:1f:d7:60:c4:e1:b3:19:c2:
20:07:b8:33:1f:0d:14:58:bc:23:cd:be:3b:6b:3e:
35:ce:dc:0f:d5:cc:16:6f:85:3b:5f:d1:22:23:eb:
da:3e:3f:b3:19:ae:34:a7:05:cd:95:d3:55:08:05:
bf:40:4d:36:0d:ba:3e:a8:94:76:50:03:87:3b:84:
dd:11:20:71:38:9c:ad:51:d7:a2:9e:9e:1c:05:c8:
b2:82:5d:9f:e4:5e:e1:5c:b8:12:ee:4c:ae:19:eb:
de:27:bd:d5:7e:4e:8c:b4:81:a7:82:e0:ca:8e:d7:
44:68:63:c9:3d:81:db:69:34:66:d7:92:c9:36:1a:
4d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:86:07:FE:7E:3E:25:9D:A7:B1:8F:C8:81:96:CF:9B:E7:B4:4B:0C
X509v3 Authority Key Identifier:
keyid:A6:63:62:5A:CE:E9:86:00:0D:86:F2:BC:CF:5C:ED:7D:E6:9D:4C:90
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3A89790A3A5ADA35D5FECEC48AA3A1FD9456BF021B4C5F97FC873E80CB1B4046/0/A663625ACEE986000D86F2BCCF5CED7DE69D4C90.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A663625ACEE986000D86F2BCCF5CED7DE69D4C90.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3A89790A3A5ADA35D5FECEC48AA3A1FD9456BF021B4C5F97FC873E80CB1B4046/0/34352e342e3130322e302f32342d3234203d3e20323635363733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.4.102.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:a6:52:5a:66:c4:d9:ad:ee:f5:0c:bf:e6:b8:b2:1c:c2:91:
87:fd:72:37:d0:a8:4b:67:de:5b:b6:16:f3:c7:3f:a5:95:ee:
16:07:04:09:7a:44:b5:4b:d8:a6:d7:40:e9:3c:7d:24:1d:30:
0d:a4:b8:55:57:08:17:f5:60:77:d2:87:ca:b4:47:09:71:9c:
dd:9d:3f:96:65:83:ea:54:76:ee:ec:03:a9:67:4d:70:5f:0b:
a9:bd:05:e6:a5:9c:f8:d4:36:56:09:df:d0:f7:ed:03:a2:f2:
79:5f:81:25:7d:b1:d5:d2:c1:b4:0a:54:f2:fc:48:4b:f3:25:
9d:cd:10:15:b5:da:29:de:2b:99:9d:cf:3e:47:e4:92:66:fb:
ab:b3:5f:b4:10:bf:3f:b5:1d:e0:d5:21:71:72:d2:fd:46:e9:
28:38:61:2b:d7:f3:9c:f2:7b:37:23:02:7e:6a:5f:dd:ca:1e:
52:7d:44:1b:94:42:ae:9b:71:ba:b4:b0:d8:23:e4:f4:da:e8:
48:c6:19:7a:14:00:da:a9:a8:b8:9a:e7:e4:48:2d:13:fe:ab:
6c:74:9e:b8:47:09:e7:a6:85:50:b4:19:7b:10:48:6a:9a:96:
c3:16:3f:fc:6f:d6:75:1e:6b:45:86:20:99:48:bb:83:ae:ee:
9d:84:bb:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 12:38:11 2025 by rpki-client