Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A970DD402FA25F52B8F8947DD387547A7791A758B092BC2912E98A9D75092A6F/0/34352e3139312e3130382e302f32322d3232203d3e20323639383836.roa
File: 34352e3139312e3130382e302f32322d3232203d3e20323639383836.roa (raw, json)
Hash identifier: aTo2/+6iPhrQgjeny1Eq8QNGnFjGyq2bLQ3CV8+XMwk=
Subject key identifier: 02:32:90:D7:17:0A:4D:EC:C6:50:A8:D2:F5:E8:62:47:EE:65:09:F0
Certificate issuer: /CN=C45AC49B8C7461E59C144E0149C60D4F74132A43
Certificate serial: 7D5A6355822D28F9540BC82F93ED60229F2F6597
Authority key identifier: C4:5A:C4:9B:8C:74:61:E5:9C:14:4E:01:49:C6:0D:4F:74:13:2A:43
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C45AC49B8C7461E59C144E0149C60D4F74132A43.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A970DD402FA25F52B8F8947DD387547A7791A758B092BC2912E98A9D75092A6F/0/34352e3139312e3130382e302f32322d3232203d3e20323639383836.roa
Signing time: Tue 04 Feb 2025 19:58:26 +0000
ROA not before: Tue 04 Feb 2025 19:53:26 +0000
ROA not after: Tue 03 Feb 2026 19:58:26 +0000
asID: 269886
IP address blocks: 45.191.108.0/22 maxlen: 22
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/A970DD402FA25F52B8F8947DD387547A7791A758B092BC2912E98A9D75092A6F/0/C45AC49B8C7461E59C144E0149C60D4F74132A43.crl
rsync://repository.lacnic.net/rpki/lacnic/A970DD402FA25F52B8F8947DD387547A7791A758B092BC2912E98A9D75092A6F/0/C45AC49B8C7461E59C144E0149C60D4F74132A43.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C45AC49B8C7461E59C144E0149C60D4F74132A43.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 06:54:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:5a:63:55:82:2d:28:f9:54:0b:c8:2f:93:ed:60:22:9f:2f:65:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C45AC49B8C7461E59C144E0149C60D4F74132A43
Validity
Not Before: Feb 4 19:53:26 2025 GMT
Not After : Feb 3 19:58:26 2026 GMT
Subject: CN=023290D7170A4DECC650A8D2F5E86247EE6509F0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:23:ea:8c:9a:87:c3:fc:73:7b:8c:9f:e1:f9:
01:c4:0e:be:75:92:2f:cb:09:66:78:e2:f2:61:29:
6e:b6:d3:a4:bb:de:cb:c8:d8:ec:a3:4a:e8:03:a4:
84:c4:f1:f9:48:84:38:60:2d:6a:80:4e:d4:f4:f5:
8b:55:45:88:87:d5:ee:b9:57:6d:7f:f0:a6:cd:31:
a8:32:eb:83:4f:a5:08:34:d2:ec:bb:40:b7:7b:03:
72:a0:77:62:23:68:61:20:c8:ee:57:73:30:28:e3:
44:c5:c9:50:0e:df:0a:13:94:bd:2f:2c:05:93:ff:
c6:25:5f:33:6e:a9:51:2b:2c:bd:41:28:59:7a:a6:
84:8c:a5:96:10:3f:43:8e:15:f8:ce:4d:6d:ff:6f:
87:6b:d1:38:0f:4d:8b:89:0d:0b:75:d9:24:dc:e7:
96:94:7f:af:80:f8:ab:81:c1:56:c7:26:1f:2b:21:
33:92:7b:fe:3f:e1:6d:0a:ae:0f:3e:65:80:6f:03:
95:b8:27:ad:20:92:56:67:27:a6:3b:59:7e:25:91:
82:d8:fd:c0:99:ee:c3:be:60:4b:50:22:c7:08:a9:
ef:b0:63:18:2e:fd:44:0f:3a:10:39:bf:a3:ba:6e:
85:f8:50:33:de:41:41:ea:3d:cf:49:e5:27:68:60:
a0:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:32:90:D7:17:0A:4D:EC:C6:50:A8:D2:F5:E8:62:47:EE:65:09:F0
X509v3 Authority Key Identifier:
keyid:C4:5A:C4:9B:8C:74:61:E5:9C:14:4E:01:49:C6:0D:4F:74:13:2A:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A970DD402FA25F52B8F8947DD387547A7791A758B092BC2912E98A9D75092A6F/0/C45AC49B8C7461E59C144E0149C60D4F74132A43.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/C45AC49B8C7461E59C144E0149C60D4F74132A43.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A970DD402FA25F52B8F8947DD387547A7791A758B092BC2912E98A9D75092A6F/0/34352e3139312e3130382e302f32322d3232203d3e20323639383836.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.191.108.0/22
Signature Algorithm: sha256WithRSAEncryption
28:37:a8:37:0b:55:00:e2:e8:21:0c:f4:17:c7:31:b2:d8:21:
6b:d1:97:a2:63:77:32:c3:97:2d:ff:43:8f:67:b4:ad:a0:6a:
ee:56:59:b5:99:1c:5c:b0:04:3f:9d:29:0c:ee:ee:f1:85:3e:
16:7b:bf:33:6d:b3:09:e2:ee:67:04:50:11:23:eb:46:83:ae:
ce:aa:3b:4e:2f:c3:f6:a7:2b:1d:7f:68:90:43:c3:74:eb:cc:
fa:31:cb:17:93:a3:a4:e6:7c:78:03:26:aa:1e:91:c6:22:f5:
30:c6:42:85:f9:61:27:97:82:e7:8f:98:57:8c:8f:9a:36:73:
a3:16:6d:f6:6a:33:80:ed:a0:88:5b:dc:03:d2:8c:a9:b3:4b:
75:87:e8:48:33:96:29:46:e2:3a:a3:6b:79:72:c2:25:f8:70:
eb:14:71:50:a5:6f:95:72:40:d6:7a:f5:ba:e7:9e:1d:fd:37:
07:dc:d7:56:ee:29:1e:84:10:b5:16:30:db:6d:04:a2:de:fc:
59:56:96:0b:59:11:4f:6d:06:7d:b3:48:b6:09:1e:f5:73:7f:
71:b9:5a:cc:45:51:b1:27:54:b6:7c:58:ad:fe:5c:d7:67:6d:
3f:9e:4f:69:d2:3f:10:96:7c:b0:b5:ae:5d:1e:bf:3a:81:00:
a7:7f:c8:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 13:30:04 2025 by rpki-client