Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B6CE112AA778D7A1E197C0DBF0EEC17060CFEF80F72FDE0319E174FF4EA9DBE5/0/34352e3232342e382e302f32322d3234203d3e20323636373639.roa
File: 34352e3232342e382e302f32322d3234203d3e20323636373639.roa (raw, json)
Hash identifier: Ar5aIiZhUFgRviMDq4jHI4/vSfKXYonuW7FsYqhY5uU=
Subject key identifier: E3:D7:DA:31:A3:AB:F7:F1:D6:AD:0F:F8:74:8A:12:4E:DD:31:F7:67
Certificate issuer: /CN=F5FCAA8EED4BED6778F4CE2DC5811CE1551F8FCC
Certificate serial: 688696DB7BEB37509E3BBE02F11D10A0EA2AB1AB
Authority key identifier: F5:FC:AA:8E:ED:4B:ED:67:78:F4:CE:2D:C5:81:1C:E1:55:1F:8F:CC
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F5FCAA8EED4BED6778F4CE2DC5811CE1551F8FCC.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B6CE112AA778D7A1E197C0DBF0EEC17060CFEF80F72FDE0319E174FF4EA9DBE5/0/34352e3232342e382e302f32322d3234203d3e20323636373639.roa
Signing time: Tue 04 Feb 2025 18:03:28 +0000
ROA not before: Tue 04 Feb 2025 17:58:28 +0000
ROA not after: Tue 03 Feb 2026 18:03:28 +0000
asID: 266769
IP address blocks: 45.224.8.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/B6CE112AA778D7A1E197C0DBF0EEC17060CFEF80F72FDE0319E174FF4EA9DBE5/0/F5FCAA8EED4BED6778F4CE2DC5811CE1551F8FCC.crl
rsync://repository.lacnic.net/rpki/lacnic/B6CE112AA778D7A1E197C0DBF0EEC17060CFEF80F72FDE0319E174FF4EA9DBE5/0/F5FCAA8EED4BED6778F4CE2DC5811CE1551F8FCC.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F5FCAA8EED4BED6778F4CE2DC5811CE1551F8FCC.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 14:28:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:86:96:db:7b:eb:37:50:9e:3b:be:02:f1:1d:10:a0:ea:2a:b1:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F5FCAA8EED4BED6778F4CE2DC5811CE1551F8FCC
Validity
Not Before: Feb 4 17:58:28 2025 GMT
Not After : Feb 3 18:03:28 2026 GMT
Subject: CN=E3D7DA31A3ABF7F1D6AD0FF8748A124EDD31F767
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:1a:1f:e1:8c:ad:0c:a3:7f:f7:5f:18:e6:8a:
74:a4:ed:89:c1:77:96:bf:53:00:e8:79:7e:24:51:
65:7d:16:08:b5:0e:bb:20:15:a0:ba:6b:d4:8c:01:
a1:0f:d0:21:70:62:20:3d:08:c5:bd:b2:ef:a0:bc:
34:a5:fe:7c:02:39:68:8d:bb:c1:78:c8:3a:20:1c:
ec:46:b7:82:46:06:69:1c:5e:4c:7a:60:39:b1:64:
17:4a:37:f5:47:81:04:e5:63:ef:1a:bb:06:f0:d4:
3a:b8:dd:98:ce:cc:18:f1:c3:b8:09:bf:ff:09:86:
8d:57:7f:4b:12:87:4b:f5:8d:0d:eb:5c:a6:26:e9:
26:c7:c8:56:fd:74:20:48:d7:fa:16:4d:d7:fc:f0:
85:27:d2:0b:b1:e7:56:25:ea:81:6f:99:8d:22:a2:
41:d6:2d:a2:f0:c1:09:9e:4d:60:79:cc:aa:41:84:
c3:51:30:d9:e8:0f:6b:d4:3a:8e:00:a0:e4:94:cd:
28:10:36:16:f6:9b:e8:00:c0:b6:69:da:e9:dd:5f:
88:15:63:77:82:49:35:a4:b4:c2:dc:32:fa:c1:72:
c0:0d:5f:ca:12:ea:b0:1e:38:1f:0f:d3:32:6b:0f:
f5:68:6b:03:7f:c1:dc:ec:0c:17:56:b1:d9:d0:0b:
02:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:D7:DA:31:A3:AB:F7:F1:D6:AD:0F:F8:74:8A:12:4E:DD:31:F7:67
X509v3 Authority Key Identifier:
keyid:F5:FC:AA:8E:ED:4B:ED:67:78:F4:CE:2D:C5:81:1C:E1:55:1F:8F:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/B6CE112AA778D7A1E197C0DBF0EEC17060CFEF80F72FDE0319E174FF4EA9DBE5/0/F5FCAA8EED4BED6778F4CE2DC5811CE1551F8FCC.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F5FCAA8EED4BED6778F4CE2DC5811CE1551F8FCC.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B6CE112AA778D7A1E197C0DBF0EEC17060CFEF80F72FDE0319E174FF4EA9DBE5/0/34352e3232342e382e302f32322d3234203d3e20323636373639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.224.8.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:0b:09:8c:db:dc:98:64:c8:14:be:a9:4e:be:09:99:f8:44:
bc:33:01:1f:09:b3:f1:54:ac:64:b1:af:6b:29:4b:83:08:e8:
ac:f9:f2:db:d4:9d:de:8b:1c:91:0a:17:96:fe:31:c3:ec:13:
6d:7d:70:b9:8f:49:35:95:89:d1:76:75:c7:e1:6a:59:4c:34:
84:87:d7:1d:d9:14:ea:8a:6e:3f:15:f1:38:50:80:fa:d7:79:
b3:f9:c1:da:7d:58:85:f6:1d:ea:ca:d5:44:25:0c:46:a6:cc:
a0:e7:a6:77:be:9f:85:5d:03:a9:18:7c:e8:a3:f9:7d:f0:d3:
62:a7:6b:96:03:17:85:23:dd:7d:ca:75:19:99:41:0f:85:52:
7c:3c:44:c2:ad:e1:46:04:c7:cf:cc:ba:94:b6:e9:0f:36:bc:
41:89:b3:0a:a7:22:82:51:b1:42:e4:c9:43:e8:e2:66:a6:ec:
65:db:fa:b1:17:63:ef:dd:86:76:e6:39:bb:89:ab:7b:57:8b:
33:95:46:11:8a:da:a0:33:a0:aa:b2:36:5d:b8:de:41:af:7d:
75:2c:bd:ca:31:d4:52:d7:c1:3b:91:9c:1b:ed:10:78:a0:1d:
90:16:ee:c2:94:5f:c2:95:7a:d5:bd:8b:95:c9:48:c8:d9:b9:
fa:c1:7f:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 04:06:14 2025 by rpki-client