Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/77EA999F2FFDE6598FEBAB48ADBB1B1BD5B90AE44644D3039F0241CA1BA658DC/0/34352e3137352e3133392e302f32342d3234203d3e20323637383334.roa
File: 34352e3137352e3133392e302f32342d3234203d3e20323637383334.roa (raw, json)
Hash identifier: IntmmTcAhw5I59oKK8Zz3jlBtAsrp68QbnkZeyQhwsk=
Subject key identifier: 23:55:22:D4:E5:2C:36:78:9F:F9:F7:16:AD:93:EB:37:D0:A4:A4:AA
Certificate issuer: /CN=D2F7F610DA168FB1B0A47B65FB92BD5365773B03
Certificate serial: 55F74F184EDD335A0E0327E98E18D97350A26D84
Authority key identifier: D2:F7:F6:10:DA:16:8F:B1:B0:A4:7B:65:FB:92:BD:53:65:77:3B:03
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D2F7F610DA168FB1B0A47B65FB92BD5365773B03.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/77EA999F2FFDE6598FEBAB48ADBB1B1BD5B90AE44644D3039F0241CA1BA658DC/0/34352e3137352e3133392e302f32342d3234203d3e20323637383334.roa
Signing time: Tue 04 Feb 2025 18:30:58 +0000
ROA not before: Tue 04 Feb 2025 18:25:58 +0000
ROA not after: Tue 03 Feb 2026 18:30:58 +0000
asID: 267834
IP address blocks: 45.175.139.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/77EA999F2FFDE6598FEBAB48ADBB1B1BD5B90AE44644D3039F0241CA1BA658DC/0/D2F7F610DA168FB1B0A47B65FB92BD5365773B03.crl
rsync://repository.lacnic.net/rpki/lacnic/77EA999F2FFDE6598FEBAB48ADBB1B1BD5B90AE44644D3039F0241CA1BA658DC/0/D2F7F610DA168FB1B0A47B65FB92BD5365773B03.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D2F7F610DA168FB1B0A47B65FB92BD5365773B03.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
55:f7:4f:18:4e:dd:33:5a:0e:03:27:e9:8e:18:d9:73:50:a2:6d:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D2F7F610DA168FB1B0A47B65FB92BD5365773B03
Validity
Not Before: Feb 4 18:25:58 2025 GMT
Not After : Feb 3 18:30:58 2026 GMT
Subject: CN=235522D4E52C36789FF9F716AD93EB37D0A4A4AA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:32:fb:3a:4e:a2:5e:c9:3e:fe:e6:1c:cf:4e:
d3:6d:de:7a:b5:f8:fc:cc:3f:d2:5a:ff:a4:90:c3:
3b:65:a5:98:59:59:ad:39:b2:ea:79:13:a8:e9:a1:
ac:7b:2c:27:db:c2:31:d2:36:2f:87:ff:64:fc:17:
b9:eb:22:ad:5d:c1:04:2b:bc:26:14:4c:99:58:0b:
0d:43:9a:e7:e1:c9:10:a7:38:95:a5:91:20:4b:33:
2e:89:b9:95:b3:5d:24:ee:b4:ef:f7:96:ff:a2:47:
7e:a7:06:52:f9:52:8b:5e:d7:18:46:5c:d0:9e:db:
7c:1b:d6:97:ff:17:99:28:e2:90:2b:8d:e1:1c:34:
20:4f:e8:1f:51:1f:45:fd:f1:25:a1:db:9e:4e:3a:
09:6c:ca:7c:c7:0e:73:d7:eb:71:9b:37:14:fe:9e:
53:9e:0d:a7:36:6f:61:c5:8a:b9:82:22:e3:43:b0:
82:4f:fa:f0:75:ff:3d:1d:37:da:0c:f6:e4:ff:e8:
0e:9c:45:97:8c:8e:22:a1:03:2c:01:ea:04:8a:80:
81:d1:25:ee:42:65:f9:b6:7c:40:64:2c:26:33:c4:
f7:cb:80:53:08:83:78:b0:b9:de:e3:cc:e1:0c:02:
61:90:60:4a:72:3d:5d:9a:d2:ad:55:43:d1:08:9d:
f5:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:55:22:D4:E5:2C:36:78:9F:F9:F7:16:AD:93:EB:37:D0:A4:A4:AA
X509v3 Authority Key Identifier:
keyid:D2:F7:F6:10:DA:16:8F:B1:B0:A4:7B:65:FB:92:BD:53:65:77:3B:03
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/77EA999F2FFDE6598FEBAB48ADBB1B1BD5B90AE44644D3039F0241CA1BA658DC/0/D2F7F610DA168FB1B0A47B65FB92BD5365773B03.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D2F7F610DA168FB1B0A47B65FB92BD5365773B03.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/77EA999F2FFDE6598FEBAB48ADBB1B1BD5B90AE44644D3039F0241CA1BA658DC/0/34352e3137352e3133392e302f32342d3234203d3e20323637383334.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.175.139.0/24
Signature Algorithm: sha256WithRSAEncryption
74:2f:1b:d5:fc:1b:12:40:c5:ac:27:b3:2a:ed:0b:10:56:67:
76:74:65:5e:c9:7a:3a:f3:fc:dd:3c:6c:8b:d9:02:56:8c:7e:
97:68:ca:92:3a:14:7d:bb:83:bf:c7:82:98:38:89:b9:e0:82:
e3:6c:6d:0e:aa:16:8b:74:af:95:a4:1b:ee:d9:d6:61:2c:22:
56:65:5d:85:90:4c:77:23:28:d0:de:82:41:83:88:88:64:9d:
b4:db:2f:83:eb:d2:c9:54:0e:1d:17:98:2b:79:37:0e:26:4c:
eb:d1:75:01:bf:f8:db:33:a0:90:52:80:ab:10:32:ac:cc:e6:
5b:ab:3f:92:b3:dd:d5:b9:ce:d6:e9:5b:d8:b2:a4:d9:7d:28:
b7:8e:c9:cb:79:52:fb:ba:77:eb:85:2d:43:d1:b4:f9:c6:42:
45:56:fa:bc:fe:21:60:88:66:1a:9d:80:84:c3:f5:16:b0:c1:
2c:29:c2:47:c5:86:2d:85:1c:cc:24:f6:b5:8c:00:58:fb:b0:
20:a0:47:a1:4f:da:b1:a4:b3:35:b2:d1:df:b6:17:7a:56:88:
cc:ce:72:3f:e7:47:58:3e:03:ec:a5:67:10:ef:2c:1b:85:70:
23:49:24:1e:ed:d2:fc:dc:74:1e:c7:f8:3d:c8:8a:60:e2:80:
44:d8:16:f3
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUVfdPGE7dM1oOAyfpjhjZc1CibYQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRDJGN0Y2MTBEQTE2OEZCMUIwQTQ3QjY1RkI5MkJENTM2
NTc3M0IwMzAeFw0yNTAyMDQxODI1NThaFw0yNjAyMDMxODMwNThaMDMxMTAvBgNV
BAMTKDIzNTUyMkQ0RTUyQzM2Nzg5RkY5RjcxNkFEOTNFQjM3RDBBNEE0QUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQMvs6TqJeyT7+5hzPTtNt3nq1
+PzMP9Ja/6SQwztlpZhZWa05sup5E6jpoax7LCfbwjHSNi+H/2T8F7nrIq1dwQQr
vCYUTJlYCw1DmufhyRCnOJWlkSBLMy6JuZWzXSTutO/3lv+iR36nBlL5Uote1xhG
XNCe23wb1pf/F5ko4pArjeEcNCBP6B9RH0X98SWh255OOglsynzHDnPX63GbNxT+
nlOeDac2b2HFirmCIuNDsIJP+vB1/z0dN9oM9uT/6A6cRZeMjiKhAywB6gSKgIHR
Je5CZfm2fEBkLCYzxPfLgFMIg3iwud7jzOEMAmGQYEpyPV2a0q1VQ9EInfXhAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUI1Ui1OUsNnif+fcWrZPrN9CkpKowHwYDVR0j
BBgwFoAU0vf2ENoWj7GwpHtl+5K9U2V3OwMwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy83N0VBOTk5RjJGRkRFNjU5OEZFQkFCNDhBREJCMUIxQkQ1
QjkwQUU0NDY0NEQzMDM5RjAyNDFDQTFCQTY1OERDLzAvRDJGN0Y2MTBEQTE2OEZC
MUIwQTQ3QjY1RkI5MkJENTM2NTc3M0IwMy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9EMkY3RjYxMERBMTY4RkIxQjBB
NDdCNjVGQjkyQkQ1MzY1NzczQjAzLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNzdFQTk5OUYyRkZERTY1OThGRUJBQjQ4QURCQjFCMUJENUI5MEFFNDQ2
NDREMzAzOUYwMjQxQ0ExQkE2NThEQy8wLzM0MzUyZTMxMzczNTJlMzEzMzM5MmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNjM3MzgzMzM0LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALa+L
MA0GCSqGSIb3DQEBCwUAA4IBAQB0LxvV/BsSQMWsJ7Mq7QsQVmd2dGVeyXo68/zd
PGyL2QJWjH6XaMqSOhR9u4O/x4KYOIm54ILjbG0OqhaLdK+VpBvu2dZhLCJWZV2F
kEx3IyjQ3oJBg4iIZJ202y+D69LJVA4dF5greTcOJkzr0XUBv/jbM6CQUoCrEDKs
zOZbqz+Ss93Vuc7W6VvYsqTZfSi3jsnLeVL7unfrhS1D0bT5xkJFVvq8/iFgiGYa
nYCEw/UWsMEsKcJHxYYthRzMJPa1jABY+7AgoEehT9qxpLM1stHfthd6VojMznI/
50dYPgPspWcQ7ywbhXAjSSQe7dL83HQex/g9yIpg4oBE2Bbz
-----END CERTIFICATE-----
Generated at Mon Apr 14 17:35:51 2025 by rpki-client