Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3D597C5D3A278EA56F9B0B669807AF2EA429D758CF27567E05936C3E80DC3CFE/0/34352e3232342e3132342e302f32322d3234203d3e203532333237.roa
File: 34352e3232342e3132342e302f32322d3234203d3e203532333237.roa (raw, json)
Hash identifier: rbXATAFs01phQVjgKkSeizDw75MTmD8xS33mp4kClw4=
Subject key identifier: A0:B7:EA:37:56:A7:1F:8B:30:91:4F:F2:43:B2:A1:8D:B4:88:A7:27
Certificate issuer: /CN=6C43D070D53868DD0F1A352EAB84A7642B5CEF73
Certificate serial: EBC21663CC8C35F6C8132AA8699FEF7888014B
Authority key identifier: 6C:43:D0:70:D5:38:68:DD:0F:1A:35:2E:AB:84:A7:64:2B:5C:EF:73
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6C43D070D53868DD0F1A352EAB84A7642B5CEF73.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/3D597C5D3A278EA56F9B0B669807AF2EA429D758CF27567E05936C3E80DC3CFE/0/34352e3232342e3132342e302f32322d3234203d3e203532333237.roa
Signing time: Wed 05 Feb 2025 19:09:08 +0000
ROA not before: Wed 05 Feb 2025 19:04:08 +0000
ROA not after: Wed 04 Feb 2026 19:09:08 +0000
asID: 52327
IP address blocks: 45.224.124.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/3D597C5D3A278EA56F9B0B669807AF2EA429D758CF27567E05936C3E80DC3CFE/0/6C43D070D53868DD0F1A352EAB84A7642B5CEF73.crl
rsync://repository.lacnic.net/rpki/lacnic/3D597C5D3A278EA56F9B0B669807AF2EA429D758CF27567E05936C3E80DC3CFE/0/6C43D070D53868DD0F1A352EAB84A7642B5CEF73.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6C43D070D53868DD0F1A352EAB84A7642B5CEF73.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 21:47:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
eb:c2:16:63:cc:8c:35:f6:c8:13:2a:a8:69:9f:ef:78:88:01:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6C43D070D53868DD0F1A352EAB84A7642B5CEF73
Validity
Not Before: Feb 5 19:04:08 2025 GMT
Not After : Feb 4 19:09:08 2026 GMT
Subject: CN=A0B7EA3756A71F8B30914FF243B2A18DB488A727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:41:e7:91:ce:d9:1b:f3:37:11:c9:b4:46:13:
49:02:17:9b:3b:55:b9:cd:84:c5:b3:bb:d0:41:41:
31:c5:2c:99:ca:44:5c:1b:ee:06:71:e4:ae:4d:23:
a5:58:c9:56:a3:bd:03:f0:15:9e:08:23:12:72:a3:
c7:cf:7a:2d:7f:20:be:0f:86:52:b7:2a:a6:70:71:
35:49:f6:c1:65:7f:fc:b5:c6:0b:b5:12:e2:3f:58:
84:78:b1:8f:07:43:bd:a1:1b:8b:c3:c0:51:45:b3:
fe:58:d9:98:c0:ba:32:e9:4f:d6:ff:3b:e1:4e:25:
7a:3f:ed:08:39:49:bb:19:8a:25:09:b1:73:0c:14:
13:15:25:9a:7b:f8:fe:67:af:5c:77:98:70:08:7c:
02:a8:3b:17:cf:86:22:dc:3f:79:2b:69:98:ae:15:
e9:c5:75:92:ca:2f:6c:e2:2a:60:4a:8d:48:d4:9b:
e3:cf:d5:8c:95:05:28:cd:eb:b1:7c:65:67:f8:24:
7f:78:c1:f1:1e:7d:ae:2a:a5:c5:95:5c:56:61:db:
f6:09:25:89:7c:e7:eb:e1:0b:e3:7c:54:81:6d:b0:
3b:a4:cd:fe:fa:b4:aa:34:97:66:28:f8:20:06:72:
f6:ba:3a:21:4c:3d:ea:d6:a5:30:30:47:43:a1:94:
ee:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:B7:EA:37:56:A7:1F:8B:30:91:4F:F2:43:B2:A1:8D:B4:88:A7:27
X509v3 Authority Key Identifier:
keyid:6C:43:D0:70:D5:38:68:DD:0F:1A:35:2E:AB:84:A7:64:2B:5C:EF:73
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/3D597C5D3A278EA56F9B0B669807AF2EA429D758CF27567E05936C3E80DC3CFE/0/6C43D070D53868DD0F1A352EAB84A7642B5CEF73.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/6C43D070D53868DD0F1A352EAB84A7642B5CEF73.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3D597C5D3A278EA56F9B0B669807AF2EA429D758CF27567E05936C3E80DC3CFE/0/34352e3232342e3132342e302f32322d3234203d3e203532333237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.224.124.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:9b:4f:06:42:68:98:3a:58:b0:e3:c2:af:66:ee:21:76:ce:
64:90:0f:6d:fb:1a:03:42:ea:39:be:2f:2c:a2:d2:18:1c:2b:
b2:c1:06:47:28:14:22:b1:5f:97:76:b6:cc:37:81:37:56:f9:
29:f0:cc:41:0d:5e:69:56:bb:20:b9:ff:11:22:79:f8:98:06:
c5:1c:e4:5f:0f:57:f4:76:fe:31:bc:1b:98:16:88:49:0d:d7:
67:6a:2c:c2:1c:cf:ca:76:dd:e9:42:ee:18:21:27:f0:0e:28:
ca:84:1b:c2:2a:da:91:9b:85:6f:67:be:9a:61:80:28:05:b6:
d4:83:f2:16:17:2d:d0:c5:b3:4f:d5:7a:48:70:a1:61:24:87:
3c:dc:b8:42:97:38:57:90:1a:d0:4c:b7:13:fd:f9:59:7b:1f:
de:9c:cd:b8:64:eb:2d:4a:b7:e9:76:7d:d4:bd:ae:47:45:0c:
a1:f7:0a:91:e4:3a:75:47:75:01:68:48:bd:e1:93:c5:29:7e:
06:d3:13:f9:f1:51:ff:d4:26:e9:20:a1:2f:22:c0:5a:ae:ee:
ee:25:82:31:10:04:0b:1e:3c:7c:58:b2:82:ff:dc:eb:e2:79:
79:b8:a9:0c:04:5f:af:a5:48:2c:01:51:77:db:14:55:9f:81:
b1:3f:40:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 17:57:26 2025 by rpki-client