Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5908941AC14891934A6AB9537E6AC980A20D5FEB8F41AC8436184D5C68486FC8/0/34352e37312e3230302e302f32332d3234203d3e203532343638.roa
File: 34352e37312e3230302e302f32332d3234203d3e203532343638.roa (raw, json)
Hash identifier: 57eCR40CgkqgrMfV9y8YI6zgN/EJS7gcW7IbQ/w5pQ0=
Subject key identifier: E5:B4:74:21:DB:EF:40:F9:65:BA:32:CF:2F:92:06:DA:34:DE:F9:19
Certificate issuer: /CN=F0922EC2833EAD17A747DBA885C8FF32611CEA72
Certificate serial: 055AB32EA648A9C1B63EDBD0B547D8A358E79AB5
Authority key identifier: F0:92:2E:C2:83:3E:AD:17:A7:47:DB:A8:85:C8:FF:32:61:1C:EA:72
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F0922EC2833EAD17A747DBA885C8FF32611CEA72.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5908941AC14891934A6AB9537E6AC980A20D5FEB8F41AC8436184D5C68486FC8/0/34352e37312e3230302e302f32332d3234203d3e203532343638.roa
Signing time: Tue 04 Feb 2025 18:14:42 +0000
ROA not before: Tue 04 Feb 2025 18:09:42 +0000
ROA not after: Tue 03 Feb 2026 18:14:42 +0000
asID: 52468
IP address blocks: 45.71.200.0/23 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/5908941AC14891934A6AB9537E6AC980A20D5FEB8F41AC8436184D5C68486FC8/0/F0922EC2833EAD17A747DBA885C8FF32611CEA72.crl
rsync://repository.lacnic.net/rpki/lacnic/5908941AC14891934A6AB9537E6AC980A20D5FEB8F41AC8436184D5C68486FC8/0/F0922EC2833EAD17A747DBA885C8FF32611CEA72.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F0922EC2833EAD17A747DBA885C8FF32611CEA72.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 13:05:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:5a:b3:2e:a6:48:a9:c1:b6:3e:db:d0:b5:47:d8:a3:58:e7:9a:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F0922EC2833EAD17A747DBA885C8FF32611CEA72
Validity
Not Before: Feb 4 18:09:42 2025 GMT
Not After : Feb 3 18:14:42 2026 GMT
Subject: CN=E5B47421DBEF40F965BA32CF2F9206DA34DEF919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b5:93:c6:ec:44:b4:23:8b:e1:de:4c:6b:9c:
f6:33:63:89:2f:2a:af:f7:a5:87:9c:91:54:8e:a4:
21:3d:21:c8:cf:7e:a6:75:e6:34:a9:46:86:50:04:
d3:5b:8b:7f:5b:a2:96:2a:5c:95:a3:06:aa:8b:bb:
0c:16:27:92:92:3e:a5:c6:8e:7e:bb:62:40:09:44:
97:9c:67:b6:a8:68:73:d4:02:91:be:54:ec:36:d8:
b9:07:21:f9:17:22:a5:a2:2b:94:59:23:3c:1b:7f:
34:06:39:28:bb:e6:34:af:60:f4:5d:df:f6:94:06:
4c:15:97:de:eb:fc:d0:27:dd:2b:0d:2e:1c:f9:9f:
7e:ac:f1:25:f5:c2:56:c1:51:06:ce:93:86:8b:f6:
29:c0:61:46:61:cd:59:ed:b6:f6:92:fb:1a:7d:56:
41:54:62:ca:b1:23:3f:1d:ec:ac:36:37:9a:8b:9c:
41:e1:08:27:9d:c0:0c:7a:61:d7:81:3a:7e:79:3e:
e5:8c:f7:c6:8d:62:ac:9c:5b:53:39:0a:d1:04:2f:
4f:d8:56:39:99:42:00:7a:8c:79:b6:db:d8:1e:f1:
3e:fc:d8:31:2c:95:7e:04:41:bd:34:e4:6c:0e:b2:
c9:a2:eb:5e:14:5b:79:5c:0a:98:86:92:dd:f0:28:
a7:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:B4:74:21:DB:EF:40:F9:65:BA:32:CF:2F:92:06:DA:34:DE:F9:19
X509v3 Authority Key Identifier:
keyid:F0:92:2E:C2:83:3E:AD:17:A7:47:DB:A8:85:C8:FF:32:61:1C:EA:72
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5908941AC14891934A6AB9537E6AC980A20D5FEB8F41AC8436184D5C68486FC8/0/F0922EC2833EAD17A747DBA885C8FF32611CEA72.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F0922EC2833EAD17A747DBA885C8FF32611CEA72.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5908941AC14891934A6AB9537E6AC980A20D5FEB8F41AC8436184D5C68486FC8/0/34352e37312e3230302e302f32332d3234203d3e203532343638.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.71.200.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:6e:da:eb:23:f8:0c:10:a1:ba:3f:b6:54:21:1e:cc:c8:a9:
74:0e:59:67:a5:16:1b:f5:37:85:62:7a:e2:e0:14:c3:f0:ac:
d6:c8:fa:b1:c9:d7:e7:d4:b0:37:40:d8:ce:e1:12:6c:ee:6c:
06:a5:8f:cc:3f:68:1e:a8:24:df:d0:aa:38:30:56:30:d1:fe:
dd:b6:ed:37:44:91:40:c3:02:4e:6c:5e:be:64:8b:7b:9c:19:
63:5a:9b:1b:26:fd:29:08:8a:1b:2f:cc:c8:9f:8b:75:1a:ad:
37:75:94:ce:6d:c6:b3:89:94:18:ab:f3:3a:4b:d7:4f:c6:a1:
9d:2c:41:d2:84:01:b0:16:0a:dd:95:f0:1a:38:76:8b:5b:32:
9b:a4:f1:94:7e:0a:47:12:37:e3:a5:bc:ee:58:fb:36:43:b0:
6e:dc:f2:5e:1a:2a:2c:7f:31:28:6f:a7:64:e2:7c:01:88:68:
8c:85:24:cd:a0:e4:49:b9:39:98:d0:7d:91:9c:01:6c:d4:4c:
d8:d6:4f:68:0e:e5:e4:ab:32:f3:e4:a3:18:41:8e:8e:85:be:
22:ce:f3:b6:1c:28:3e:06:94:b4:96:17:5c:7e:b2:15:6d:6e:
b4:45:03:41:1b:f9:1b:75:9f:2a:76:5d:ce:f4:d0:96:15:09:
c0:53:f2:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 16:18:36 2025 by rpki-client