Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/A9F469927B0F81FEBAC4A37E099DF3B0B0AB061393553E892480DEF5C4315735/0/3137302e3235342e3137322e302f32322d3332203d3e20323635363431.roa
File: 3137302e3235342e3137322e302f32322d3332203d3e20323635363431.roa (raw, json)
Hash identifier: kEW/DTRmEmnaOL0ovJP0Z3avE3AJFTw4PpNWh84Si3Y=
Subject key identifier: D0:B5:5B:04:37:73:26:1D:6E:4A:3B:B6:72:14:ED:57:9C:FF:A7:73
Certificate issuer: /CN=34B60C1D393D1C566AD654F41E7ED9865CCE3029
Certificate serial: 23F64CD06DE98934D702AF6A27EE871750F7AE02
Authority key identifier: 34:B6:0C:1D:39:3D:1C:56:6A:D6:54:F4:1E:7E:D9:86:5C:CE:30:29
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/34B60C1D393D1C566AD654F41E7ED9865CCE3029.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/A9F469927B0F81FEBAC4A37E099DF3B0B0AB061393553E892480DEF5C4315735/0/3137302e3235342e3137322e302f32322d3332203d3e20323635363431.roa
Signing time: Tue 04 Feb 2025 18:09:17 +0000
ROA not before: Tue 04 Feb 2025 18:04:17 +0000
ROA not after: Tue 03 Feb 2026 18:09:17 +0000
asID: 265641
IP address blocks: 170.254.172.0/22 maxlen: 32
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/A9F469927B0F81FEBAC4A37E099DF3B0B0AB061393553E892480DEF5C4315735/0/34B60C1D393D1C566AD654F41E7ED9865CCE3029.crl
rsync://repository.lacnic.net/rpki/lacnic/A9F469927B0F81FEBAC4A37E099DF3B0B0AB061393553E892480DEF5C4315735/0/34B60C1D393D1C566AD654F41E7ED9865CCE3029.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/34B60C1D393D1C566AD654F41E7ED9865CCE3029.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 03:04:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:f6:4c:d0:6d:e9:89:34:d7:02:af:6a:27:ee:87:17:50:f7:ae:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34B60C1D393D1C566AD654F41E7ED9865CCE3029
Validity
Not Before: Feb 4 18:04:17 2025 GMT
Not After : Feb 3 18:09:17 2026 GMT
Subject: CN=D0B55B043773261D6E4A3BB67214ED579CFFA773
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:69:04:c9:fe:20:bc:c7:29:5d:01:67:ae:38:
ce:a8:4b:b4:a4:d7:2d:66:f5:54:7b:60:42:f1:24:
ab:1e:f0:df:5d:60:54:be:a9:d1:bb:4e:e4:a5:7d:
3e:19:32:84:b2:60:e8:e1:a3:1e:27:d9:74:5f:49:
6a:4d:37:15:52:87:85:67:38:c2:1b:70:eb:c8:70:
1a:bb:e5:97:9c:2e:17:a6:9e:2c:78:5e:10:6d:16:
b8:2d:af:0a:59:60:08:ad:2b:9a:37:0f:cb:df:c0:
28:af:da:55:82:eb:6f:63:8d:e3:4c:79:05:ca:e6:
06:5f:41:d6:34:85:68:b3:97:3c:76:9e:82:f6:3c:
ab:b2:e1:2f:c8:c6:14:20:1f:4c:d8:0b:b2:36:64:
d0:4b:ca:b8:19:2f:bf:6f:43:e2:0b:2f:92:38:87:
c8:be:3b:56:11:b0:0e:44:5e:3e:5e:16:b0:5e:44:
77:d4:8a:c8:ac:27:2f:54:b8:56:36:e9:73:23:3a:
70:00:f0:a4:71:9b:52:3e:f5:e9:76:86:6e:6f:bd:
59:26:53:b8:f0:62:62:d1:2b:bb:cf:aa:80:9c:cd:
a6:69:5d:5a:05:f6:7d:ec:43:fa:6b:0a:d5:0b:60:
d4:17:27:b4:3f:8c:ce:96:12:98:f8:44:d6:ac:e6:
d1:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:B5:5B:04:37:73:26:1D:6E:4A:3B:B6:72:14:ED:57:9C:FF:A7:73
X509v3 Authority Key Identifier:
keyid:34:B6:0C:1D:39:3D:1C:56:6A:D6:54:F4:1E:7E:D9:86:5C:CE:30:29
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/A9F469927B0F81FEBAC4A37E099DF3B0B0AB061393553E892480DEF5C4315735/0/34B60C1D393D1C566AD654F41E7ED9865CCE3029.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/34B60C1D393D1C566AD654F41E7ED9865CCE3029.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/A9F469927B0F81FEBAC4A37E099DF3B0B0AB061393553E892480DEF5C4315735/0/3137302e3235342e3137322e302f32322d3332203d3e20323635363431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.254.172.0/22
Signature Algorithm: sha256WithRSAEncryption
81:a0:92:ca:d8:18:a8:da:12:9e:dc:1d:14:60:b8:d8:98:2b:
cf:7c:6a:36:2b:b1:70:cc:59:ea:28:87:04:1d:db:5e:bc:c6:
eb:3e:22:6a:5c:b2:b7:8b:ff:dd:f5:b0:56:fd:c4:df:93:71:
e0:7c:7e:f3:b3:de:d3:e7:28:83:06:5d:0f:e8:98:2b:15:01:
8c:fc:95:c6:a7:3b:4b:84:c4:2e:cb:9f:cb:96:88:2c:8a:19:
a0:eb:66:75:14:b7:c0:35:d9:7b:17:d6:6c:85:bc:88:c4:a1:
5a:af:53:fb:ec:4f:0c:63:0c:dd:50:6c:a4:26:29:0d:6a:c5:
06:2d:0f:4b:2b:5c:6b:6a:7d:75:c9:ab:53:02:23:4d:53:b1:
55:9b:dc:7b:33:9c:fc:b0:ad:93:a4:b4:74:e2:6e:71:6a:2f:
f0:72:10:8c:d5:f2:7b:4f:01:7c:98:37:ab:ed:fb:79:fa:3c:
2b:e0:27:e3:42:31:7d:94:bf:a5:8f:d0:3a:56:8a:4b:f3:d4:
aa:3b:31:64:bb:ab:d7:05:fa:fd:af:ae:8c:5a:0c:35:e3:8c:
73:4a:fa:89:eb:f4:99:cb:0b:ab:86:d9:b7:f4:17:82:d0:ee:
d5:36:fa:59:aa:4d:ab:41:e5:6e:c8:39:8b:99:b7:a8:53:cf:
10:87:20:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 10:29:09 2025 by rpki-client