Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/54002EB3EC2BBE4384251AB2E4F211EF7DD07E7F3A927E356B79C45938598F64/0/34352e3136392e3134342e302f32322d3234203d3e20323731373935.roa
File: 34352e3136392e3134342e302f32322d3234203d3e20323731373935.roa (raw, json)
Hash identifier: Cv/PP2Djw7+Q+zMiAM4kvV9DGLhHfY3kkRBsAbR8izE=
Subject key identifier: 59:21:D5:28:55:B1:C9:98:57:0E:DE:08:F7:D6:34:D2:3F:50:16:4F
Certificate issuer: /CN=DD2D25C642478D5D4DCAB0135DBBD87109D394CC
Certificate serial: 322CE5AE7D46624853424A8A7BB91083C01BCA7C
Authority key identifier: DD:2D:25:C6:42:47:8D:5D:4D:CA:B0:13:5D:BB:D8:71:09:D3:94:CC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DD2D25C642478D5D4DCAB0135DBBD87109D394CC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/54002EB3EC2BBE4384251AB2E4F211EF7DD07E7F3A927E356B79C45938598F64/0/34352e3136392e3134342e302f32322d3234203d3e20323731373935.roa
Signing time: Wed 02 Apr 2025 23:13:42 +0000
ROA not before: Wed 02 Apr 2025 23:08:42 +0000
ROA not after: Wed 01 Apr 2026 23:13:42 +0000
asID: 271795
IP address blocks: 45.169.144.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/54002EB3EC2BBE4384251AB2E4F211EF7DD07E7F3A927E356B79C45938598F64/0/DD2D25C642478D5D4DCAB0135DBBD87109D394CC.crl
rsync://repository.lacnic.net/rpki/lacnic/54002EB3EC2BBE4384251AB2E4F211EF7DD07E7F3A927E356B79C45938598F64/0/DD2D25C642478D5D4DCAB0135DBBD87109D394CC.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DD2D25C642478D5D4DCAB0135DBBD87109D394CC.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 23:57:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:2c:e5:ae:7d:46:62:48:53:42:4a:8a:7b:b9:10:83:c0:1b:ca:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DD2D25C642478D5D4DCAB0135DBBD87109D394CC
Validity
Not Before: Apr 2 23:08:42 2025 GMT
Not After : Apr 1 23:13:42 2026 GMT
Subject: CN=5921D52855B1C998570EDE08F7D634D23F50164F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:90:9a:1d:ca:31:6d:e1:8f:86:88:95:ce:ca:
4d:ff:6a:84:18:97:3c:97:88:bf:73:09:bd:9d:32:
52:87:0c:c3:d8:9a:04:94:47:dd:ef:01:87:b9:22:
e0:93:a2:c3:cc:cf:39:be:81:1a:70:23:d0:82:df:
ec:30:ea:66:14:1c:72:53:66:28:2b:95:52:3a:c1:
cf:19:b6:51:2d:55:5d:8f:44:57:6b:07:60:4f:88:
60:4b:ab:ab:f3:a6:07:b0:42:b6:7c:5b:8c:99:ac:
0e:95:19:10:c7:4d:dc:43:98:e2:e9:43:95:9d:ca:
d9:f6:8e:88:75:66:b7:c3:a4:4c:7c:45:fa:27:f1:
9c:f9:94:82:5c:a9:f3:94:d5:1c:98:dd:d0:e6:91:
0b:ce:af:76:3e:a6:4f:c1:41:d6:9e:f3:5e:d0:6d:
df:2b:ae:5f:83:97:9e:b7:68:96:eb:39:a2:80:e8:
34:9e:c2:80:d4:25:57:9f:96:9a:23:35:15:28:1b:
2e:9c:d9:92:36:2c:ff:e6:ed:2b:c4:ec:b1:f1:51:
6e:b9:ba:b1:99:f9:fa:b4:f6:36:cc:4c:64:c2:80:
74:28:e7:a9:fc:2f:fb:bd:58:32:20:28:11:14:7f:
7d:c8:c5:9e:ba:bd:40:31:6e:8d:70:ca:a8:e9:cf:
42:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:21:D5:28:55:B1:C9:98:57:0E:DE:08:F7:D6:34:D2:3F:50:16:4F
X509v3 Authority Key Identifier:
keyid:DD:2D:25:C6:42:47:8D:5D:4D:CA:B0:13:5D:BB:D8:71:09:D3:94:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/54002EB3EC2BBE4384251AB2E4F211EF7DD07E7F3A927E356B79C45938598F64/0/DD2D25C642478D5D4DCAB0135DBBD87109D394CC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/DD2D25C642478D5D4DCAB0135DBBD87109D394CC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/54002EB3EC2BBE4384251AB2E4F211EF7DD07E7F3A927E356B79C45938598F64/0/34352e3136392e3134342e302f32322d3234203d3e20323731373935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.169.144.0/22
Signature Algorithm: sha256WithRSAEncryption
41:c2:1e:b8:78:7e:8c:2f:cd:ce:c6:ef:af:04:b4:2b:f7:9a:
a9:55:c4:fa:c2:ad:91:27:d9:b8:c3:96:14:bf:a1:69:fe:19:
bb:47:86:f6:e9:ca:74:1e:75:12:a2:96:fc:14:84:04:15:d8:
66:00:cc:f9:ac:62:a7:e9:55:f9:63:59:9f:5c:09:4d:0a:da:
87:67:54:01:2e:25:e5:55:5a:4f:8e:73:a3:53:4d:23:34:94:
24:32:2f:22:4d:03:68:65:52:cc:40:f1:70:7c:5d:df:26:01:
b0:8c:0a:ea:e9:9b:5e:5d:5a:4b:e0:b1:10:d1:ae:ac:3a:8e:
e1:c7:70:3c:c9:48:7d:b7:83:5b:6f:b0:ac:56:d0:98:90:12:
f3:4d:e2:a4:69:28:b9:d0:cb:38:6f:9d:0d:78:2b:0d:64:a1:
28:94:04:8c:de:69:a5:24:2a:bf:5a:65:fd:f8:f4:b5:f5:e7:
86:81:97:0d:b6:f1:07:e6:16:d3:5a:ff:e7:ac:f8:6a:c0:d2:
1a:ba:33:51:f5:f5:bc:69:3d:07:bc:03:e9:97:57:ed:85:fa:
ca:2f:67:67:53:9f:48:c1:0e:2b:77:d7:fe:63:5e:fb:19:fc:
6f:c0:22:3f:bd:9e:fb:11:ae:7b:b0:d9:8e:d1:1e:19:ec:9b:
57:84:e3:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 12:38:06 2025 by rpki-client