Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8F8B058EEBE5F0126CB5CF857141D29C8C547C2202AB9F080385A4F3CF857438/0/34352e3233372e34352e302f32342d3234203d3e20323636383134.roa
File: 34352e3233372e34352e302f32342d3234203d3e20323636383134.roa (raw, json)
Hash identifier: YYugQCdOJyxKgKy5RVnfyxl9QTKyuQ/DSbKbdZe2vTw=
Subject key identifier: 11:4B:DB:57:1F:25:20:EF:10:F8:D6:65:61:04:C6:93:7A:0B:B7:03
Certificate issuer: /CN=0DA02DE51F3AE9D4444B29FE5FC85286C264521F
Certificate serial: 03D11FE2DDBC2C76A401B8B3674753548A3D40A6
Authority key identifier: 0D:A0:2D:E5:1F:3A:E9:D4:44:4B:29:FE:5F:C8:52:86:C2:64:52:1F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0DA02DE51F3AE9D4444B29FE5FC85286C264521F.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/8F8B058EEBE5F0126CB5CF857141D29C8C547C2202AB9F080385A4F3CF857438/0/34352e3233372e34352e302f32342d3234203d3e20323636383134.roa
Signing time: Wed 05 Feb 2025 20:45:01 +0000
ROA not before: Wed 05 Feb 2025 20:40:01 +0000
ROA not after: Wed 04 Feb 2026 20:45:01 +0000
asID: 266814
IP address blocks: 45.237.45.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/8F8B058EEBE5F0126CB5CF857141D29C8C547C2202AB9F080385A4F3CF857438/0/0DA02DE51F3AE9D4444B29FE5FC85286C264521F.crl
rsync://repository.lacnic.net/rpki/lacnic/8F8B058EEBE5F0126CB5CF857141D29C8C547C2202AB9F080385A4F3CF857438/0/0DA02DE51F3AE9D4444B29FE5FC85286C264521F.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0DA02DE51F3AE9D4444B29FE5FC85286C264521F.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Mon 14 Apr 2025 20:38:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:d1:1f:e2:dd:bc:2c:76:a4:01:b8:b3:67:47:53:54:8a:3d:40:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0DA02DE51F3AE9D4444B29FE5FC85286C264521F
Validity
Not Before: Feb 5 20:40:01 2025 GMT
Not After : Feb 4 20:45:01 2026 GMT
Subject: CN=114BDB571F2520EF10F8D6656104C6937A0BB703
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a6:ec:f3:ea:03:d1:57:39:a9:67:d6:4e:81:
f3:2f:3d:13:8e:4f:9f:43:3e:cb:88:57:23:25:38:
47:27:b9:fe:1a:97:32:38:9d:f9:a1:20:97:a4:40:
cb:b4:6f:04:ba:4d:f7:a2:dd:9d:87:60:f2:1f:17:
cb:82:82:fd:d0:78:72:db:6c:40:9e:3e:ec:93:8a:
d7:8e:a6:be:de:01:ee:83:7f:6e:1c:c1:a3:f5:31:
e0:c9:0f:1d:88:c6:a4:cf:a1:58:ef:15:0d:2d:ab:
01:38:64:5d:b2:6a:08:f6:0f:3d:8b:24:f8:88:5d:
7e:18:c8:6a:13:82:10:ac:79:30:76:91:62:9a:7c:
7a:54:83:35:99:82:61:8e:8b:11:88:38:ec:80:ea:
6d:f9:67:92:38:6c:85:03:68:a7:f3:ac:86:3a:aa:
f2:08:38:83:49:ed:b3:94:79:5c:d5:63:f0:91:3a:
d4:e8:f8:ba:ba:5a:f2:d0:02:94:de:ec:ae:ce:2e:
63:5f:77:d6:f5:d0:ba:4e:1b:e3:42:7a:f1:91:03:
a4:b7:02:c9:93:a5:57:a2:20:c7:c9:13:31:f2:47:
1a:d3:5c:b9:2f:90:4e:e6:28:d9:a9:93:e8:51:34:
4b:70:4f:80:e6:a0:c6:bd:a3:a9:51:30:04:80:b0:
9f:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:4B:DB:57:1F:25:20:EF:10:F8:D6:65:61:04:C6:93:7A:0B:B7:03
X509v3 Authority Key Identifier:
keyid:0D:A0:2D:E5:1F:3A:E9:D4:44:4B:29:FE:5F:C8:52:86:C2:64:52:1F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/8F8B058EEBE5F0126CB5CF857141D29C8C547C2202AB9F080385A4F3CF857438/0/0DA02DE51F3AE9D4444B29FE5FC85286C264521F.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0DA02DE51F3AE9D4444B29FE5FC85286C264521F.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8F8B058EEBE5F0126CB5CF857141D29C8C547C2202AB9F080385A4F3CF857438/0/34352e3233372e34352e302f32342d3234203d3e20323636383134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.237.45.0/24
Signature Algorithm: sha256WithRSAEncryption
26:32:46:55:23:8d:16:9f:2f:91:70:38:e6:dd:ce:fb:ac:78:
57:7c:62:af:07:c6:9a:56:eb:6c:9e:19:91:a5:d3:40:ee:74:
36:6b:de:b2:81:e1:61:3a:a8:6f:e7:6e:63:e7:8a:79:49:4f:
39:fe:5d:f2:a3:2f:c8:3e:18:8d:40:ae:96:fa:90:3e:ef:a3:
f0:66:d4:05:81:0f:e9:7d:35:cc:96:1a:ef:f4:6e:c5:12:05:
f0:12:fa:49:fa:f0:55:88:1f:b3:bb:5f:2b:cf:bf:b5:66:62:
2c:bc:d9:9d:72:c8:7c:b4:93:06:7e:b8:f3:de:3c:d6:7a:db:
c9:4d:a1:81:c8:a9:de:62:df:06:55:00:00:8f:96:f2:1a:d9:
b6:08:7c:45:60:ce:2a:d0:ce:ee:cd:55:61:eb:44:06:f5:29:
60:78:4e:3d:d8:e4:62:01:f1:d1:8c:2b:53:ab:94:8d:78:c7:
4a:bb:60:e7:6d:33:8a:26:76:6a:ea:10:61:a2:3f:61:70:01:
32:ab:f1:c7:1c:8f:47:be:e6:c3:6f:60:af:6a:4e:23:1c:6a:
f3:2c:72:d5:62:e6:03:a0:c4:cb:31:73:c4:70:9b:71:50:3e:
a4:a3:95:4f:92:10:5a:2d:b6:e8:db:fe:ca:82:c4:f7:b4:40:
a6:a5:8d:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 22:19:29 2025 by rpki-client