Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/843A3AA866138E8A4C9F53BACA9425C2E05F7D6457381AC53270C91C6753715F/0/34352e3137322e3232342e302f32322d3234203d3e20323637383330.roa
File: 34352e3137322e3232342e302f32322d3234203d3e20323637383330.roa (raw, json)
Hash identifier: eV6eWRioUKo3ZWllkR16xg8vvmQbBbZ5GLvhx6gD8gY=
Subject key identifier: 37:D8:4F:79:FA:06:80:35:40:05:57:37:DC:4C:A6:41:61:D0:58:67
Certificate issuer: /CN=949854C65FB68A162199F9EB159DEF051D92FBE6
Certificate serial: 1A0BECF6F60A5567B5B5657BE884590F9BF299CD
Authority key identifier: 94:98:54:C6:5F:B6:8A:16:21:99:F9:EB:15:9D:EF:05:1D:92:FB:E6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/949854C65FB68A162199F9EB159DEF051D92FBE6.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/843A3AA866138E8A4C9F53BACA9425C2E05F7D6457381AC53270C91C6753715F/0/34352e3137322e3232342e302f32322d3234203d3e20323637383330.roa
Signing time: Tue 04 Feb 2025 18:21:52 +0000
ROA not before: Tue 04 Feb 2025 18:16:52 +0000
ROA not after: Tue 03 Feb 2026 18:21:52 +0000
asID: 267830
IP address blocks: 45.172.224.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/843A3AA866138E8A4C9F53BACA9425C2E05F7D6457381AC53270C91C6753715F/0/949854C65FB68A162199F9EB159DEF051D92FBE6.crl
rsync://repository.lacnic.net/rpki/lacnic/843A3AA866138E8A4C9F53BACA9425C2E05F7D6457381AC53270C91C6753715F/0/949854C65FB68A162199F9EB159DEF051D92FBE6.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/949854C65FB68A162199F9EB159DEF051D92FBE6.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:0b:ec:f6:f6:0a:55:67:b5:b5:65:7b:e8:84:59:0f:9b:f2:99:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=949854C65FB68A162199F9EB159DEF051D92FBE6
Validity
Not Before: Feb 4 18:16:52 2025 GMT
Not After : Feb 3 18:21:52 2026 GMT
Subject: CN=37D84F79FA06803540055737DC4CA64161D05867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:e8:f3:a1:b1:02:d8:0a:c8:d7:60:8f:d5:02:
b8:86:64:de:84:cf:2a:3c:41:50:fa:9b:bc:18:29:
c0:d3:1d:32:1f:27:7d:65:d0:44:8c:a9:49:46:e7:
90:a9:5a:ac:67:6e:50:f2:dd:e4:77:cd:d9:56:2c:
44:6b:c2:44:9f:6e:2c:25:66:3d:97:cb:ad:69:20:
d4:22:1c:7d:8e:15:f7:3d:18:6e:e4:88:50:0b:b0:
31:5b:63:69:e7:87:98:63:00:90:00:fe:46:b5:4d:
e1:82:f3:b2:23:1c:74:46:dd:9d:db:2e:c0:ba:c5:
39:82:27:ac:76:2f:61:2f:68:bb:30:2e:4c:75:a5:
17:05:8e:0e:4e:21:47:f7:33:67:bd:8a:8e:32:99:
19:bf:6e:df:2c:23:08:09:80:3d:dd:11:b3:c7:65:
35:2e:90:87:9f:b8:43:de:f2:d7:8d:83:b5:29:0a:
9b:84:a4:16:bf:f3:66:6d:1f:93:e9:80:51:91:01:
78:c2:5e:07:4d:a3:94:3f:d1:f6:62:65:be:7a:20:
92:62:51:d5:5f:e3:53:d9:64:dd:6b:d9:4e:da:a6:
33:6d:39:7b:f2:49:cf:2a:51:8a:40:55:25:16:47:
fd:b9:0f:40:85:51:e1:92:37:27:db:b7:ae:99:eb:
aa:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:D8:4F:79:FA:06:80:35:40:05:57:37:DC:4C:A6:41:61:D0:58:67
X509v3 Authority Key Identifier:
keyid:94:98:54:C6:5F:B6:8A:16:21:99:F9:EB:15:9D:EF:05:1D:92:FB:E6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/843A3AA866138E8A4C9F53BACA9425C2E05F7D6457381AC53270C91C6753715F/0/949854C65FB68A162199F9EB159DEF051D92FBE6.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/949854C65FB68A162199F9EB159DEF051D92FBE6.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/843A3AA866138E8A4C9F53BACA9425C2E05F7D6457381AC53270C91C6753715F/0/34352e3137322e3232342e302f32322d3234203d3e20323637383330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.172.224.0/22
Signature Algorithm: sha256WithRSAEncryption
11:96:92:82:e1:a8:fb:e9:07:22:af:d7:4d:64:7a:53:f4:ed:
35:50:44:d2:a8:30:e1:3d:24:93:84:8f:d5:fa:f9:74:16:70:
9b:c1:ed:f6:7b:ea:b4:16:94:46:36:a5:ef:9d:41:77:44:2c:
00:35:7b:cf:6b:be:6b:d7:df:ac:83:a6:71:96:14:b1:a0:63:
5d:82:60:3e:0e:9d:4a:70:7a:29:69:91:2a:c7:52:5d:82:3c:
c0:69:99:2a:53:7b:0d:93:01:62:5e:f4:c3:51:0f:15:54:bc:
21:cb:cf:eb:5f:05:1c:18:b3:4a:ff:e3:5c:7c:07:be:4b:7c:
3b:69:e6:ee:f5:4a:da:97:0c:e1:72:2b:c3:dd:1b:38:db:a1:
f8:71:c6:7f:f7:b1:1c:8f:46:9f:6e:f7:c8:4a:6f:bb:41:7d:
5e:fc:0f:58:04:c9:ad:1e:34:8e:7a:a5:84:e2:04:18:82:e3:
04:c7:53:59:1a:21:ff:36:84:8d:12:e6:29:cc:03:f0:d2:5f:
d4:06:9d:0d:c5:69:7b:93:a5:9a:50:c2:1c:81:3c:37:1c:24:
5e:91:d5:1d:43:31:97:75:b7:8e:3e:8c:68:c4:a7:9a:76:81:
21:2c:21:26:d8:b6:cd:54:7b:4e:6c:2c:00:ea:35:b3:9d:0c:
df:54:bd:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 22:07:07 2025 by rpki-client