Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5A1CD0B5EB9FFA748D5E1CC67E9205C6C877B4E803FB33F8811734DC555D4DB2/0/3133382e39342e31322e302f32322d3234203d3e203532333132.roa
File: 3133382e39342e31322e302f32322d3234203d3e203532333132.roa (raw, json)
Hash identifier: 1nfpWsA7d4g65wFYypAVRpxmEiLMPLWNl+yTl/ikoFk=
Subject key identifier: EF:CE:57:0B:98:4C:A4:03:2B:52:73:FD:4F:01:CF:1B:02:4F:6D:23
Certificate issuer: /CN=46B816F254BE102454BE2E382FEA14873A13755C
Certificate serial: 22E8FC66904112F23AC51B806B88A11F77CF3A47
Authority key identifier: 46:B8:16:F2:54:BE:10:24:54:BE:2E:38:2F:EA:14:87:3A:13:75:5C
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/46B816F254BE102454BE2E382FEA14873A13755C.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5A1CD0B5EB9FFA748D5E1CC67E9205C6C877B4E803FB33F8811734DC555D4DB2/0/3133382e39342e31322e302f32322d3234203d3e203532333132.roa
Signing time: Tue 04 Feb 2025 18:15:01 +0000
ROA not before: Tue 04 Feb 2025 18:10:01 +0000
ROA not after: Tue 03 Feb 2026 18:15:01 +0000
asID: 52312
IP address blocks: 138.94.12.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/5A1CD0B5EB9FFA748D5E1CC67E9205C6C877B4E803FB33F8811734DC555D4DB2/0/46B816F254BE102454BE2E382FEA14873A13755C.crl
rsync://repository.lacnic.net/rpki/lacnic/5A1CD0B5EB9FFA748D5E1CC67E9205C6C877B4E803FB33F8811734DC555D4DB2/0/46B816F254BE102454BE2E382FEA14873A13755C.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/46B816F254BE102454BE2E382FEA14873A13755C.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 20:38:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:e8:fc:66:90:41:12:f2:3a:c5:1b:80:6b:88:a1:1f:77:cf:3a:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46B816F254BE102454BE2E382FEA14873A13755C
Validity
Not Before: Feb 4 18:10:01 2025 GMT
Not After : Feb 3 18:15:01 2026 GMT
Subject: CN=EFCE570B984CA4032B5273FD4F01CF1B024F6D23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a0:7d:3b:af:32:f9:a1:54:2d:ce:58:3a:d9:
42:fb:e2:0d:c3:8a:aa:fd:fe:33:db:ac:78:9a:53:
af:10:82:58:25:e8:c6:eb:70:a5:6c:60:d7:4b:c9:
35:dc:39:15:32:10:da:45:a7:58:1c:8b:51:59:21:
05:4c:24:1b:72:d5:ef:6e:a6:78:0b:8f:81:97:86:
c9:73:9c:58:64:ac:f0:23:86:1f:8f:d0:72:21:b1:
11:45:b6:41:34:ea:32:59:86:27:7c:38:07:ab:4b:
c9:6e:3c:69:ea:9e:97:03:96:a7:5a:96:d8:08:7a:
e5:20:da:8d:79:07:a4:56:30:90:73:8f:38:cc:14:
54:41:a9:6a:12:af:cf:6b:84:87:42:25:73:cd:e9:
c3:a6:e3:b0:48:88:5d:dc:ed:4f:e8:ae:20:d8:dd:
89:94:df:59:c2:a7:ba:e2:b1:54:64:81:c0:12:95:
af:2a:c2:ce:ef:55:02:74:3b:a0:88:7a:4b:70:1e:
0c:db:14:4a:ad:54:0b:02:98:45:33:79:d3:1b:5d:
31:20:15:22:d8:69:be:00:56:38:bd:03:3e:0f:a6:
15:d5:9c:59:e6:b5:da:67:53:fa:3d:d1:d6:df:68:
05:7c:fd:78:d5:cf:27:91:63:b0:a6:6c:53:f4:ae:
c9:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:CE:57:0B:98:4C:A4:03:2B:52:73:FD:4F:01:CF:1B:02:4F:6D:23
X509v3 Authority Key Identifier:
keyid:46:B8:16:F2:54:BE:10:24:54:BE:2E:38:2F:EA:14:87:3A:13:75:5C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5A1CD0B5EB9FFA748D5E1CC67E9205C6C877B4E803FB33F8811734DC555D4DB2/0/46B816F254BE102454BE2E382FEA14873A13755C.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/46B816F254BE102454BE2E382FEA14873A13755C.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5A1CD0B5EB9FFA748D5E1CC67E9205C6C877B4E803FB33F8811734DC555D4DB2/0/3133382e39342e31322e302f32322d3234203d3e203532333132.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.94.12.0/22
Signature Algorithm: sha256WithRSAEncryption
86:52:ee:c9:0b:ae:5e:f1:81:fb:9c:e7:7d:ed:5b:04:d2:df:
4a:43:ce:fc:e7:b1:44:cd:52:a9:d5:bb:cb:f4:68:31:fe:bd:
ab:f5:1f:4d:c9:07:ff:5b:df:55:5b:b9:90:0c:a3:d6:48:a6:
f3:98:81:f9:ef:08:51:51:ec:a8:a5:4e:da:55:3f:44:82:d0:
37:d8:15:43:c6:6d:be:de:1d:e4:1d:26:50:08:cc:2a:08:60:
fb:7c:ca:cf:54:19:cd:21:71:90:82:b4:f9:68:c3:97:cb:13:
b7:a8:1b:09:67:3c:43:cb:ec:ce:ea:24:96:8c:eb:50:32:6d:
78:4d:df:99:15:bb:c6:db:c2:8e:f5:23:7e:9c:dd:ad:0d:77:
69:6b:61:74:97:ac:89:c8:9e:34:30:4c:76:4e:4e:28:b1:bb:
c8:7a:e5:d5:29:86:ca:ae:3c:1c:ed:f8:9d:5c:6d:52:a5:c8:
82:9f:21:17:20:47:5c:a9:11:9e:b6:77:72:dd:2f:c2:6e:9a:
24:90:2f:66:5c:35:96:e0:d6:2b:ad:5e:b2:b3:42:6c:fd:74:
e4:d0:b6:20:6f:04:4f:cb:d4:14:6a:a3:c9:cc:da:78:ee:8c:
70:22:ec:78:46:f3:87:d7:d8:77:55:b3:92:c4:56:56:a1:f9:
cd:43:fc:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 22:57:07 2025 by rpki-client