Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4423320C805D8BEEFC4242C5671D84456763ADDFADEE04E42A1A1D44DCFBD2A3/0/34352e3233302e382e302f32322d3234203d3e20323636373130.roa
File: 34352e3233302e382e302f32322d3234203d3e20323636373130.roa (raw, json)
Hash identifier: mLPmwLCgJH7/6VKEK4Pcz7wxnHkCNUH5wI8HmFmJB1E=
Subject key identifier: 94:B9:E6:C1:57:26:53:66:16:18:FA:89:6F:C1:16:CB:FD:57:3C:9A
Certificate issuer: /CN=BBDC3068A9AE78384E5A4F4F5244BAE4088059E5
Certificate serial: 19B0372A887C8AD0AE98AC611676A518436B1DE4
Authority key identifier: BB:DC:30:68:A9:AE:78:38:4E:5A:4F:4F:52:44:BA:E4:08:80:59:E5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BBDC3068A9AE78384E5A4F4F5244BAE4088059E5.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/4423320C805D8BEEFC4242C5671D84456763ADDFADEE04E42A1A1D44DCFBD2A3/0/34352e3233302e382e302f32322d3234203d3e20323636373130.roa
Signing time: Thu 06 Feb 2025 13:09:12 +0000
ROA not before: Thu 06 Feb 2025 13:04:12 +0000
ROA not after: Thu 05 Feb 2026 13:09:12 +0000
asID: 266710
IP address blocks: 45.230.8.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/4423320C805D8BEEFC4242C5671D84456763ADDFADEE04E42A1A1D44DCFBD2A3/0/BBDC3068A9AE78384E5A4F4F5244BAE4088059E5.crl
rsync://repository.lacnic.net/rpki/lacnic/4423320C805D8BEEFC4242C5671D84456763ADDFADEE04E42A1A1D44DCFBD2A3/0/BBDC3068A9AE78384E5A4F4F5244BAE4088059E5.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BBDC3068A9AE78384E5A4F4F5244BAE4088059E5.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Wed 30 Apr 2025 05:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
19:b0:37:2a:88:7c:8a:d0:ae:98:ac:61:16:76:a5:18:43:6b:1d:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BBDC3068A9AE78384E5A4F4F5244BAE4088059E5
Validity
Not Before: Feb 6 13:04:12 2025 GMT
Not After : Feb 5 13:09:12 2026 GMT
Subject: CN=94B9E6C1572653661618FA896FC116CBFD573C9A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:b1:49:b2:53:7b:56:29:b9:78:3a:7a:a7:76:
f8:15:96:74:e7:b3:af:73:a2:4f:8b:1c:a9:2c:d6:
bd:2d:3c:96:7e:49:af:1e:9c:86:23:c4:8e:85:3b:
1a:e3:c5:7e:6d:31:81:17:06:c7:ae:e2:2a:4e:b5:
e0:eb:8a:af:22:3b:b2:03:71:dd:33:8d:41:db:3f:
e0:fe:16:cf:3b:9b:89:53:c8:ab:50:ed:47:26:e6:
42:bb:ca:94:5e:2b:f9:f7:91:35:1a:ee:c5:97:15:
0e:de:e5:07:d1:da:17:0a:b6:e5:d3:e6:ca:c3:fa:
58:09:b3:4f:62:5a:c9:10:08:8e:c2:0d:20:4e:d1:
a5:24:cb:9e:3a:2b:30:66:f8:12:1a:e7:25:92:1b:
6e:e3:1e:8f:2d:ca:de:57:6e:e4:8c:a0:d0:d3:02:
1c:40:89:4b:22:e8:b6:7b:d0:d9:88:45:e8:ea:75:
85:94:dc:7e:63:97:e5:9f:5f:b3:79:d5:71:ae:6d:
7a:c1:13:3e:85:cd:5b:2d:58:8f:34:cc:c1:45:12:
72:5b:99:db:83:f5:8c:69:ec:c2:5c:85:28:87:5c:
66:35:d3:6f:b4:53:4e:ed:e6:c9:7e:f3:aa:ad:50:
1d:74:14:03:6a:33:00:0a:99:0e:25:8b:b6:b6:fe:
07:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:B9:E6:C1:57:26:53:66:16:18:FA:89:6F:C1:16:CB:FD:57:3C:9A
X509v3 Authority Key Identifier:
keyid:BB:DC:30:68:A9:AE:78:38:4E:5A:4F:4F:52:44:BA:E4:08:80:59:E5
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/4423320C805D8BEEFC4242C5671D84456763ADDFADEE04E42A1A1D44DCFBD2A3/0/BBDC3068A9AE78384E5A4F4F5244BAE4088059E5.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BBDC3068A9AE78384E5A4F4F5244BAE4088059E5.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4423320C805D8BEEFC4242C5671D84456763ADDFADEE04E42A1A1D44DCFBD2A3/0/34352e3233302e382e302f32322d3234203d3e20323636373130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.230.8.0/22
Signature Algorithm: sha256WithRSAEncryption
21:fe:39:81:33:4f:28:5b:e4:b6:0d:01:83:c1:f6:be:e0:32:
ac:24:b5:30:07:ea:85:50:91:f8:49:1b:0e:f2:89:e0:3b:17:
de:26:12:b7:10:9c:90:17:22:f4:6f:b7:f3:39:d5:62:51:a6:
96:20:40:61:9d:1a:07:56:b7:17:54:10:d9:e9:94:bb:1c:94:
12:9f:07:54:fd:42:d2:d9:53:e6:04:80:38:21:b3:fd:ef:80:
26:e7:d3:48:30:8e:f2:00:ca:9a:7e:98:40:89:7c:b7:1b:e8:
06:c0:62:44:cf:36:6e:16:c7:4b:f2:46:7e:e2:85:5d:09:e8:
89:8a:1a:2c:2f:a8:61:7d:5a:60:b0:3c:6e:7f:34:40:b0:76:
63:97:68:64:9e:5b:78:2b:bc:52:cb:6c:7a:32:26:04:97:2c:
d8:f7:d1:1a:60:7a:0a:94:6d:01:c7:3d:c1:d7:8d:01:6d:9a:
85:06:65:a7:87:f9:c9:45:7a:59:d9:29:9f:f6:ff:5c:96:b2:
fc:ef:b3:b2:71:4f:24:04:11:13:1e:72:f5:e3:5b:35:4a:39:
80:31:46:14:00:d6:d8:fc:79:27:50:8a:86:a0:58:43:7d:d4:
fb:f4:a5:3f:26:b3:75:1f:6f:34:3c:44:09:77:fb:31:9f:11:
2a:ca:a5:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:45:14 2025 by rpki-client