Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/34352e36352e3133392e302f32342d3234203d3e20323733303031.roa
File: 34352e36352e3133392e302f32342d3234203d3e20323733303031.roa (raw, json)
Hash identifier: 0Ho2PfmYsog8nplEcxUtJICjnPlc12L/+fBTOqM0u0Q=
Subject key identifier: 06:73:01:F5:BE:80:73:73:D9:DD:E5:AF:4E:BF:CB:71:83:F1:4B:BD
Certificate issuer: /CN=2F03E5143F966EB03984AA596151B47F0A7C38E2
Certificate serial: 67FFB559380FCA85E2A1F237531AD0E851EFF530
Authority key identifier: 2F:03:E5:14:3F:96:6E:B0:39:84:AA:59:61:51:B4:7F:0A:7C:38:E2
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2F03E5143F966EB03984AA596151B47F0A7C38E2.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/34352e36352e3133392e302f32342d3234203d3e20323733303031.roa
Signing time: Tue 04 Feb 2025 17:59:00 +0000
ROA not before: Tue 04 Feb 2025 17:54:00 +0000
ROA not after: Tue 03 Feb 2026 17:59:00 +0000
asID: 273001
IP address blocks: 45.65.139.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/2F03E5143F966EB03984AA596151B47F0A7C38E2.crl
rsync://repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/2F03E5143F966EB03984AA596151B47F0A7C38E2.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2F03E5143F966EB03984AA596151B47F0A7C38E2.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 23:27:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
67:ff:b5:59:38:0f:ca:85:e2:a1:f2:37:53:1a:d0:e8:51:ef:f5:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F03E5143F966EB03984AA596151B47F0A7C38E2
Validity
Not Before: Feb 4 17:54:00 2025 GMT
Not After : Feb 3 17:59:00 2026 GMT
Subject: CN=067301F5BE807373D9DDE5AF4EBFCB7183F14BBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:e8:5e:40:52:a0:6f:9d:6d:48:7f:dd:68:92:
00:f8:a1:50:a1:72:d3:69:74:5e:c9:75:da:48:31:
a3:e6:e4:5f:02:75:47:c8:b4:43:fc:17:c9:bc:1f:
7a:3e:e8:79:78:84:0f:6a:b7:af:5a:b4:a1:0a:cb:
43:4d:59:b5:3a:d3:ea:49:42:e2:60:ee:da:5e:55:
54:ae:cb:53:bc:23:04:9f:0b:02:f0:de:d1:78:9a:
26:f3:94:04:b7:d0:6e:9a:5e:38:ca:3f:07:54:b1:
9b:af:e1:29:73:bf:22:68:0b:c5:7c:d1:0a:89:30:
f9:3a:b3:55:9a:19:be:b3:99:b2:c0:2f:2d:03:af:
02:81:da:32:83:39:ec:a1:87:ab:3b:31:ba:f0:01:
13:f0:01:9a:53:f4:1e:d6:03:20:a9:a2:04:48:1b:
c9:15:e8:01:7b:98:fd:47:bf:d3:27:d6:2f:38:5b:
b5:f4:3a:f4:47:0e:ba:c5:0a:f9:f9:62:16:82:29:
77:4f:14:51:cb:c5:b7:29:4f:ee:60:98:f8:02:08:
2c:99:96:2c:20:cd:30:91:bd:7c:52:e8:75:bf:fe:
f8:d9:68:f3:9e:80:05:7a:a2:73:f1:04:86:6f:c6:
83:10:e5:88:5a:21:7c:ea:b0:5d:03:05:d2:24:40:
af:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:73:01:F5:BE:80:73:73:D9:DD:E5:AF:4E:BF:CB:71:83:F1:4B:BD
X509v3 Authority Key Identifier:
keyid:2F:03:E5:14:3F:96:6E:B0:39:84:AA:59:61:51:B4:7F:0A:7C:38:E2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/2F03E5143F966EB03984AA596151B47F0A7C38E2.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2F03E5143F966EB03984AA596151B47F0A7C38E2.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5F383C52DD577D2D1AF1BAFB4267EED76B9B5540FFD452F7C66C0129A8204519/0/34352e36352e3133392e302f32342d3234203d3e20323733303031.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.139.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:8e:74:00:2e:2b:56:e7:9e:06:bb:b4:7e:30:8d:11:3f:79:
d1:ef:74:02:e6:7c:d4:c1:bd:93:2f:92:a2:5f:fe:0e:ba:5d:
a5:dc:36:4e:a9:84:89:98:83:9c:4c:64:4d:4d:dc:63:1a:9f:
b5:f5:2b:7f:d5:0a:cc:79:64:5e:5d:a2:43:ab:f1:d5:65:e2:
c1:7f:e4:33:53:1e:a9:e1:db:f6:58:be:64:4f:2a:11:b6:ea:
fd:3b:c9:c4:bd:58:18:80:f2:94:67:5b:f1:c1:d4:7d:18:61:
83:6f:ae:d4:97:89:4d:7e:ab:d2:1c:68:15:72:8f:43:e3:9f:
6a:02:67:45:5f:b4:f3:f9:2b:9a:7d:e9:d5:b0:da:f8:31:b0:
84:51:fc:e7:3f:24:4d:4b:dc:c7:ec:3b:b6:b7:38:58:55:19:
51:10:bd:87:96:13:83:c5:e6:ad:c2:3e:98:2a:12:77:09:e0:
22:29:68:2f:19:c3:9b:81:32:b2:68:f7:19:e6:50:c6:4d:7e:
35:33:6e:6f:da:9e:50:8a:a3:95:0e:0b:d4:13:34:bc:b1:08:
8f:2c:6e:78:4a:e9:0b:fd:d3:60:06:27:fe:a2:21:71:8a:16:
78:d2:9d:cd:a3:45:02:57:8f:cf:86:e8:dc:88:ad:1c:f7:1e:
7b:ab:e7:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 10:55:13 2025 by rpki-client