Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A0FB08AD1CC3CF28E449F4B551589B1C823288F290AF57FCF3D78F89B82D3CC9/0/34352e3232342e3138382e302f32322d3234203d3e20323635383632.roa
File: 34352e3232342e3138382e302f32322d3234203d3e20323635383632.roa (raw, json)
Hash identifier: 0EE8S7WsOarPoLX3M4Da2nuhNnTZv2VcZ1souu0v8/U=
Subject key identifier: 9A:C9:20:CE:90:09:0F:71:F0:AC:86:91:32:94:19:27:06:45:25:47
Certificate issuer: /CN=91DBB2B4BA25E471DBFD1AB6849163BEA077E1A6
Certificate serial: 6192EB3BE461C391C231D06E9555547616C193A4
Authority key identifier: 91:DB:B2:B4:BA:25:E4:71:DB:FD:1A:B6:84:91:63:BE:A0:77:E1:A6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/91DBB2B4BA25E471DBFD1AB6849163BEA077E1A6.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A0FB08AD1CC3CF28E449F4B551589B1C823288F290AF57FCF3D78F89B82D3CC9/0/34352e3232342e3138382e302f32322d3234203d3e20323635383632.roa
Signing time: Tue 04 Feb 2025 18:12:42 +0000
ROA not before: Tue 04 Feb 2025 18:07:42 +0000
ROA not after: Tue 03 Feb 2026 18:12:42 +0000
asID: 265862
IP address blocks: 45.224.188.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/A0FB08AD1CC3CF28E449F4B551589B1C823288F290AF57FCF3D78F89B82D3CC9/0/91DBB2B4BA25E471DBFD1AB6849163BEA077E1A6.crl
rsync://repository.lacnic.net/rpki/lacnic/A0FB08AD1CC3CF28E449F4B551589B1C823288F290AF57FCF3D78F89B82D3CC9/0/91DBB2B4BA25E471DBFD1AB6849163BEA077E1A6.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/91DBB2B4BA25E471DBFD1AB6849163BEA077E1A6.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Thu 17 Apr 2025 21:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:92:eb:3b:e4:61:c3:91:c2:31:d0:6e:95:55:54:76:16:c1:93:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91DBB2B4BA25E471DBFD1AB6849163BEA077E1A6
Validity
Not Before: Feb 4 18:07:42 2025 GMT
Not After : Feb 3 18:12:42 2026 GMT
Subject: CN=9AC920CE90090F71F0AC86913294192706452547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b0:89:2c:21:e8:fd:0e:3e:8f:d4:3a:59:a0:
01:92:79:b2:08:25:65:78:c7:d3:76:70:28:17:6b:
4e:ca:a1:43:eb:8f:45:f8:a7:36:88:18:d9:3a:3d:
e1:9d:d9:1a:4f:ec:fb:ca:a1:78:22:58:ba:db:09:
00:78:5a:a9:83:63:bb:ee:ca:fd:d5:cb:04:16:2d:
f5:53:50:b5:c1:6c:cb:b0:44:67:9c:b0:4e:b0:b3:
b9:72:17:ec:cc:94:d4:8e:7e:2e:2c:7a:b6:f0:9e:
e5:ef:57:1c:2b:36:cd:4c:cb:73:79:b9:23:b1:34:
be:b3:a6:ba:4f:d6:f9:a3:26:81:c8:60:3c:fc:8c:
67:9f:d7:d4:42:6b:6d:c9:3f:87:97:32:34:d5:72:
5d:bb:c1:44:24:89:e0:ed:1b:6f:bd:62:b8:1c:f9:
67:af:06:57:b0:1e:3c:d4:0d:61:c6:f5:39:30:79:
48:81:49:7c:77:41:20:f9:df:84:c7:69:5b:ce:48:
3e:1a:f4:8b:56:52:e5:a1:19:e0:f5:71:4d:a7:5e:
e2:08:48:03:5a:8e:15:3b:3d:8e:16:40:2e:ce:09:
2f:60:65:22:7c:e7:fa:23:47:78:60:15:ce:3e:93:
3e:24:44:32:6e:b5:80:00:87:36:fb:c6:17:50:13:
30:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:C9:20:CE:90:09:0F:71:F0:AC:86:91:32:94:19:27:06:45:25:47
X509v3 Authority Key Identifier:
keyid:91:DB:B2:B4:BA:25:E4:71:DB:FD:1A:B6:84:91:63:BE:A0:77:E1:A6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A0FB08AD1CC3CF28E449F4B551589B1C823288F290AF57FCF3D78F89B82D3CC9/0/91DBB2B4BA25E471DBFD1AB6849163BEA077E1A6.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/91DBB2B4BA25E471DBFD1AB6849163BEA077E1A6.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A0FB08AD1CC3CF28E449F4B551589B1C823288F290AF57FCF3D78F89B82D3CC9/0/34352e3232342e3138382e302f32322d3234203d3e20323635383632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.224.188.0/22
Signature Algorithm: sha256WithRSAEncryption
c0:62:eb:2d:a4:05:1c:f2:a6:80:a2:e9:f0:38:4f:64:f9:80:
d7:78:9f:65:55:77:9c:d9:33:d9:ce:8f:35:9a:88:a0:30:e9:
b0:65:95:79:0f:c1:61:fc:ab:ae:01:5d:b5:a4:53:7e:52:38:
24:33:62:40:ef:fe:da:bb:3f:13:f1:fa:31:cc:3f:e7:15:ba:
bf:35:97:7a:b8:6b:99:23:0b:a0:2a:23:39:1d:bc:07:cc:f6:
2c:94:a3:0c:c2:9f:12:fe:de:ad:4b:c9:81:46:c4:ce:00:44:
0f:4e:aa:e7:a5:38:f3:37:93:76:d2:58:da:98:76:d6:0e:5d:
e9:cc:9f:e7:4b:e5:ca:7b:7d:9e:94:92:de:62:6e:7e:db:a2:
c7:9f:8c:78:53:bf:f7:12:10:eb:57:aa:cb:98:f4:2f:3f:9d:
1e:cb:74:43:23:18:31:1b:77:9a:26:3b:ed:69:d0:86:6b:a1:
b8:5e:0c:8d:75:c9:5b:f4:6a:04:b1:d3:a9:f5:2b:06:48:45:
f6:38:2c:f1:b6:c9:7a:65:df:77:2b:ae:8e:7b:e8:f3:7f:77:
9c:0d:93:16:fe:7a:02:b4:77:26:7a:b4:79:69:50:f5:30:b2:
e3:a6:0f:60:ac:1a:7f:d3:ac:67:98:7b:04:5c:cc:9d:23:cf:
5b:df:cd:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:13:34 2025 by rpki-client