Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8ABDFF8AC1F52EB03F4F2120204D33DF0617CBD11AF7D961AECA6C66C7BDEE10/0/34352e3138362e32342e302f32332d3233203d3e20323639383134.roa
File: 34352e3138362e32342e302f32332d3233203d3e20323639383134.roa (raw, json)
Hash identifier: C/I1GIQRgR5NIpnc/W7tSOsA9X5FYBBfA6GLBj09sLc=
Subject key identifier: C4:20:67:B1:1A:A8:89:A8:A1:DF:9E:0B:AA:15:92:DC:27:80:FD:8A
Certificate issuer: /CN=8DA82200D0E6AB11C84BB7FA99D7B0530B02D3F7
Certificate serial: 0384CA73C2ED75082FF720AEF3C1D438B2233D11
Authority key identifier: 8D:A8:22:00:D0:E6:AB:11:C8:4B:B7:FA:99:D7:B0:53:0B:02:D3:F7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8DA82200D0E6AB11C84BB7FA99D7B0530B02D3F7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8ABDFF8AC1F52EB03F4F2120204D33DF0617CBD11AF7D961AECA6C66C7BDEE10/0/34352e3138362e32342e302f32332d3233203d3e20323639383134.roa
Signing time: Tue 04 Feb 2025 18:09:00 +0000
ROA not before: Tue 04 Feb 2025 18:04:00 +0000
ROA not after: Tue 03 Feb 2026 18:09:00 +0000
asID: 269814
IP address blocks: 45.186.24.0/23 maxlen: 23
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/8ABDFF8AC1F52EB03F4F2120204D33DF0617CBD11AF7D961AECA6C66C7BDEE10/0/8DA82200D0E6AB11C84BB7FA99D7B0530B02D3F7.crl
rsync://repository.lacnic.net/rpki/lacnic/8ABDFF8AC1F52EB03F4F2120204D33DF0617CBD11AF7D961AECA6C66C7BDEE10/0/8DA82200D0E6AB11C84BB7FA99D7B0530B02D3F7.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8DA82200D0E6AB11C84BB7FA99D7B0530B02D3F7.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 08:56:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:84:ca:73:c2:ed:75:08:2f:f7:20:ae:f3:c1:d4:38:b2:23:3d:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8DA82200D0E6AB11C84BB7FA99D7B0530B02D3F7
Validity
Not Before: Feb 4 18:04:00 2025 GMT
Not After : Feb 3 18:09:00 2026 GMT
Subject: CN=C42067B11AA889A8A1DF9E0BAA1592DC2780FD8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:22:ac:68:88:0d:fb:39:60:55:da:d8:80:95:
ce:c7:ce:a9:c1:e7:ac:00:48:94:8d:7f:35:59:4e:
1b:72:91:29:d9:69:9d:8d:cd:bc:5a:2d:4b:5f:a0:
eb:cf:75:1c:db:1b:b5:87:12:36:46:03:e1:68:b5:
47:df:09:b9:cf:a7:03:3b:8a:ab:d3:34:cd:35:f8:
11:78:59:99:4b:2b:04:76:57:bf:63:99:25:a9:00:
45:57:53:bd:a6:af:0b:92:bf:2d:68:9b:bf:74:d7:
40:88:82:46:32:c2:9d:28:42:4b:25:6a:73:64:07:
a1:8b:9f:b9:d3:7b:a6:2e:6a:f1:87:08:92:04:38:
0c:f2:12:3b:67:5f:7a:eb:ca:0f:a7:40:93:fd:8d:
10:6a:81:b2:71:a6:4d:d3:4b:1b:ff:36:00:0d:7d:
26:5b:ee:de:bc:1b:eb:ed:2c:60:87:2d:d0:39:93:
b5:e7:7e:3a:5b:b3:c1:b4:93:21:98:96:b1:d7:15:
58:da:b5:3d:f9:1c:e1:45:53:6d:09:88:31:cc:a8:
af:c5:31:cb:fb:74:32:42:37:01:ef:83:b9:8e:e1:
1e:4f:b0:72:b2:0d:1c:33:97:f1:7e:41:0d:c4:ea:
86:83:a4:fc:e4:fc:49:fe:f9:3b:4e:9f:3c:d5:ac:
95:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:20:67:B1:1A:A8:89:A8:A1:DF:9E:0B:AA:15:92:DC:27:80:FD:8A
X509v3 Authority Key Identifier:
keyid:8D:A8:22:00:D0:E6:AB:11:C8:4B:B7:FA:99:D7:B0:53:0B:02:D3:F7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8ABDFF8AC1F52EB03F4F2120204D33DF0617CBD11AF7D961AECA6C66C7BDEE10/0/8DA82200D0E6AB11C84BB7FA99D7B0530B02D3F7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8DA82200D0E6AB11C84BB7FA99D7B0530B02D3F7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8ABDFF8AC1F52EB03F4F2120204D33DF0617CBD11AF7D961AECA6C66C7BDEE10/0/34352e3138362e32342e302f32332d3233203d3e20323639383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.186.24.0/23
Signature Algorithm: sha256WithRSAEncryption
76:10:1c:41:19:3a:6c:b9:0a:54:bc:00:01:3e:8d:f2:34:0d:
02:20:74:0e:53:54:b3:18:f5:67:3c:2a:0b:38:8b:37:98:ae:
4e:f2:a0:df:87:7c:d9:bb:74:60:bc:8c:42:e9:b0:a2:f0:d3:
e4:ca:06:fd:39:8e:a4:82:5c:b6:1d:53:19:13:6c:e5:18:43:
ac:17:1b:09:71:ff:9d:6c:e6:0b:83:75:a2:c7:50:4e:78:67:
46:3b:42:21:9f:cf:6e:9b:30:44:ab:e6:d3:7a:94:ad:02:e6:
d9:77:69:ce:f2:39:70:46:ef:f7:68:c0:4c:4f:f1:00:3b:2b:
4a:8a:bb:94:5e:0e:54:83:d0:f0:59:bb:9e:14:81:75:f3:49:
dd:96:85:41:2b:e8:7e:60:94:fe:a0:14:94:db:e3:50:1f:a4:
8a:a1:4a:4b:03:59:6b:9d:b9:32:e1:16:0c:18:6e:2b:18:85:
6d:49:b3:75:d7:16:66:7a:62:4c:d4:f8:73:95:c8:8e:ce:fc:
4b:7b:f9:21:3e:a7:67:a8:2c:7c:99:6c:aa:e8:cb:60:bc:1d:
18:d4:55:07:bc:69:44:2c:da:6e:61:d9:38:64:60:fc:67:13:
30:76:db:29:e4:3d:4f:71:21:e3:b6:a0:3b:8b:a5:42:e1:ba:
98:09:6b:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 11:42:43 2025 by rpki-client