Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/34352e36352e3133382e302f32342d3234203d3e20323733303031.roa
File: 34352e36352e3133382e302f32342d3234203d3e20323733303031.roa (raw, json)
Hash identifier: Glkwm5SfS/FPkIUKIgkcudoZpc9ahhYqAsNFGXUj0gM=
Subject key identifier: 4A:51:2A:E7:BB:B2:FA:09:2F:A3:BB:E6:4E:C4:D6:4C:D4:19:93:F2
Certificate issuer: /CN=2F03E5143F966EB03984AA596151B47F0A7C38E2
Certificate serial: 4AFB0D228ADF7F3EADC5A028557D91C940266092
Authority key identifier: 2F:03:E5:14:3F:96:6E:B0:39:84:AA:59:61:51:B4:7F:0A:7C:38:E2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2F03E5143F966EB03984AA596151B47F0A7C38E2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/34352e36352e3133382e302f32342d3234203d3e20323733303031.roa
Signing time: Tue 04 Feb 2025 17:59:01 +0000
ROA not before: Tue 04 Feb 2025 17:54:01 +0000
ROA not after: Tue 03 Feb 2026 17:59:01 +0000
asID: 273001
IP address blocks: 45.65.138.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/2F03E5143F966EB03984AA596151B47F0A7C38E2.crl
rsync://repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/2F03E5143F966EB03984AA596151B47F0A7C38E2.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2F03E5143F966EB03984AA596151B47F0A7C38E2.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 23:27:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:fb:0d:22:8a:df:7f:3e:ad:c5:a0:28:55:7d:91:c9:40:26:60:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F03E5143F966EB03984AA596151B47F0A7C38E2
Validity
Not Before: Feb 4 17:54:01 2025 GMT
Not After : Feb 3 17:59:01 2026 GMT
Subject: CN=4A512AE7BBB2FA092FA3BBE64EC4D64CD41993F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f4:b7:5b:aa:c7:bb:26:70:bb:33:d6:16:69:
86:bc:d2:c9:87:0f:c2:ea:6e:c3:bc:bf:d1:85:dd:
7a:5c:5e:77:42:61:56:02:76:d3:f4:ef:7d:5f:e2:
40:d0:17:54:c9:21:79:08:3b:c3:19:db:33:12:34:
d8:78:97:2e:fd:17:8b:4f:5f:f0:9a:7b:e6:05:70:
52:19:49:1c:ad:51:f3:ec:80:bf:28:cc:7d:6d:d0:
52:51:93:56:ba:1e:1b:eb:53:fa:06:be:9b:7d:ea:
c6:fa:62:f4:6c:38:15:97:2a:87:d7:ec:7a:21:f9:
e1:ad:41:e0:f2:ea:ab:83:03:6a:41:f2:fd:72:c3:
f2:97:42:78:a4:84:2b:4c:84:ac:1f:97:9f:75:37:
ce:64:49:e8:39:a5:6d:9d:66:20:82:72:f3:80:5f:
64:d5:89:26:dd:55:3f:8b:33:52:5d:5f:25:7f:3b:
0a:39:27:72:f9:8c:b0:d6:2e:23:9d:79:97:f8:de:
74:16:aa:43:2e:d2:0f:32:4e:85:df:98:37:c6:42:
f7:18:a2:dd:55:9f:09:41:60:89:23:9f:c9:66:ac:
a1:81:ec:65:b4:ae:f9:53:61:57:6d:6a:ce:54:75:
15:90:40:8a:79:e4:d4:c9:ad:99:e0:5f:9f:ce:06:
ff:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:51:2A:E7:BB:B2:FA:09:2F:A3:BB:E6:4E:C4:D6:4C:D4:19:93:F2
X509v3 Authority Key Identifier:
keyid:2F:03:E5:14:3F:96:6E:B0:39:84:AA:59:61:51:B4:7F:0A:7C:38:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/2F03E5143F966EB03984AA596151B47F0A7C38E2.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2F03E5143F966EB03984AA596151B47F0A7C38E2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/34352e36352e3133382e302f32342d3234203d3e20323733303031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.138.0/24
Signature Algorithm: sha256WithRSAEncryption
93:42:07:55:61:22:21:78:69:7d:b9:d9:2e:55:1d:e9:3c:8c:
f7:fb:89:22:d2:ea:dc:19:66:58:41:e0:80:3b:a0:5f:bb:1b:
a4:81:b4:70:c8:30:f5:51:6f:e5:2e:56:b9:77:ab:00:57:1c:
7f:c3:79:41:7d:e1:b9:db:4d:6d:1b:08:d2:29:69:f1:ca:5e:
ae:8f:cf:0e:75:6a:64:04:13:76:ef:e9:ed:ec:d5:53:40:6b:
06:77:16:4e:ea:7b:da:76:9e:7a:f7:c9:97:74:34:4d:42:ec:
07:19:20:38:3a:ba:a3:6a:a3:b4:b9:74:21:69:5b:2d:16:b6:
a1:1d:c9:46:11:db:4f:ff:b8:f5:ba:e2:e2:e8:17:fe:ef:8f:
63:06:99:55:ef:9a:d4:55:bc:5f:71:8f:bc:b0:36:6f:85:1d:
41:61:8b:85:bc:9e:71:0e:1c:98:ac:66:24:ed:65:93:87:4b:
5d:49:53:aa:2f:74:4b:e3:46:df:b9:52:43:2d:2c:b7:8b:50:
a6:a8:c6:8a:2c:0c:bc:32:df:df:5d:d4:bc:c8:2d:ca:8b:42:
fe:08:10:5a:ac:7c:10:1a:2d:e8:2e:1b:8b:a1:53:c9:1b:f1:
af:e7:74:27:35:17:14:43:ad:0d:b5:dd:6a:20:39:1e:bc:07:
f8:0a:d8:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 11:08:36 2025 by rpki-client