Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/B71FA917AC5D4BB1E2583D10EB947DE9D70CA3402A57038D36CD1B0260931005/0/34352e372e3235322e302f32322d3234203d3e20323635373339.roa
File: 34352e372e3235322e302f32322d3234203d3e20323635373339.roa (raw, json)
Hash identifier: oWQSqlcdx4/yT7qjsV+illIbnlSc+E/9dg4NF7vSbYk=
Subject key identifier: 50:A1:0B:58:62:53:89:FF:92:E8:B8:C4:A3:68:B3:2D:77:11:E6:A3
Certificate issuer: /CN=20B580A52C15A7B0EC2B5A243E5E5217D6DE9E75
Certificate serial: 2DFDE7B12F4D93F10E6A351BE63D438A5EC3797C
Authority key identifier: 20:B5:80:A5:2C:15:A7:B0:EC:2B:5A:24:3E:5E:52:17:D6:DE:9E:75
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/20B580A52C15A7B0EC2B5A243E5E5217D6DE9E75.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/B71FA917AC5D4BB1E2583D10EB947DE9D70CA3402A57038D36CD1B0260931005/0/34352e372e3235322e302f32322d3234203d3e20323635373339.roa
Signing time: Tue 04 Feb 2025 18:56:16 +0000
ROA not before: Tue 04 Feb 2025 18:51:16 +0000
ROA not after: Tue 03 Feb 2026 18:56:16 +0000
asID: 265739
IP address blocks: 45.7.252.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/B71FA917AC5D4BB1E2583D10EB947DE9D70CA3402A57038D36CD1B0260931005/0/20B580A52C15A7B0EC2B5A243E5E5217D6DE9E75.crl
rsync://repository.lacnic.net/rpki/lacnic/B71FA917AC5D4BB1E2583D10EB947DE9D70CA3402A57038D36CD1B0260931005/0/20B580A52C15A7B0EC2B5A243E5E5217D6DE9E75.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/20B580A52C15A7B0EC2B5A243E5E5217D6DE9E75.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 16:43:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:fd:e7:b1:2f:4d:93:f1:0e:6a:35:1b:e6:3d:43:8a:5e:c3:79:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20B580A52C15A7B0EC2B5A243E5E5217D6DE9E75
Validity
Not Before: Feb 4 18:51:16 2025 GMT
Not After : Feb 3 18:56:16 2026 GMT
Subject: CN=50A10B58625389FF92E8B8C4A368B32D7711E6A3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b3:3c:a1:af:e4:fd:e9:ea:1d:e1:a1:7f:10:
af:5b:26:6f:e1:97:19:e5:91:26:c5:bc:f2:23:33:
11:fa:6d:3b:ee:95:1b:8c:17:22:7d:b9:ce:29:3e:
43:18:21:6c:25:fe:f6:b3:c3:6b:c3:0a:62:88:75:
e0:1e:b5:d0:1a:18:16:9e:89:b2:07:20:11:98:fc:
58:5e:b3:7e:bc:d8:ba:07:c4:ac:bf:72:d2:f2:ee:
ea:79:c8:9a:0a:b4:12:95:90:b7:6d:73:9f:ae:44:
9e:1b:cb:54:66:e2:b7:14:1c:49:9d:69:82:72:b2:
4f:d0:42:b8:9c:46:40:ef:82:5f:dd:c1:1e:bd:57:
09:12:a6:35:28:0b:8b:e2:82:f7:14:23:54:56:11:
9e:5d:a7:df:a3:91:c4:6e:8c:50:93:e5:6f:50:97:
56:4a:95:ba:2b:54:b2:bb:b5:cc:c5:af:86:5e:49:
82:25:a9:41:44:19:57:c8:3a:7e:f3:ae:5f:a1:94:
10:ae:fd:7a:7e:76:4e:b1:af:5c:f7:33:4a:0b:cb:
84:e2:d7:f5:92:6b:d4:d8:54:62:1b:b4:80:52:2a:
40:8f:73:08:a3:07:46:19:db:b3:75:ab:21:8e:be:
5b:66:c4:a7:6a:b1:53:ab:28:e7:12:f7:e9:fc:62:
5e:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:A1:0B:58:62:53:89:FF:92:E8:B8:C4:A3:68:B3:2D:77:11:E6:A3
X509v3 Authority Key Identifier:
keyid:20:B5:80:A5:2C:15:A7:B0:EC:2B:5A:24:3E:5E:52:17:D6:DE:9E:75
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/B71FA917AC5D4BB1E2583D10EB947DE9D70CA3402A57038D36CD1B0260931005/0/20B580A52C15A7B0EC2B5A243E5E5217D6DE9E75.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/20B580A52C15A7B0EC2B5A243E5E5217D6DE9E75.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/B71FA917AC5D4BB1E2583D10EB947DE9D70CA3402A57038D36CD1B0260931005/0/34352e372e3235322e302f32322d3234203d3e20323635373339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.7.252.0/22
Signature Algorithm: sha256WithRSAEncryption
99:71:c8:8f:d9:2c:f6:67:d5:9f:5d:a0:ed:86:33:97:26:1f:
eb:5c:07:7f:1b:7f:69:78:d1:0e:2b:84:15:fb:71:05:59:2b:
11:27:74:01:07:23:1f:0c:e9:46:f3:c9:69:2c:61:85:d2:aa:
13:a5:ed:d6:11:a1:dd:7f:f7:47:ec:7b:22:a5:4f:4a:72:ad:
bc:06:b2:b4:da:2d:4e:7e:21:7d:15:88:f7:ed:1c:38:f3:01:
0d:7f:2b:6e:ce:b7:45:3c:c6:f5:74:8a:52:65:bb:10:2c:7a:
25:73:7d:4e:cf:a6:f3:16:e3:47:43:cc:36:c2:6c:13:b4:6b:
a8:d9:1e:c8:72:f4:e8:7f:fb:93:30:cf:da:f3:72:8d:d9:84:
36:e8:86:e5:95:51:9a:fe:78:58:19:d1:47:e8:aa:9f:4d:39:
a8:87:2e:ac:68:c2:a3:57:55:b9:23:be:60:51:e1:9b:78:3d:
cb:8d:7e:cc:14:5c:e8:b7:df:ea:7d:35:96:be:08:eb:34:ab:
2d:a5:7a:a5:8e:45:30:d7:b7:9c:25:b9:a1:22:39:ba:93:1a:
fd:e1:a7:0f:66:70:db:8a:80:c1:ec:25:43:06:2b:2d:c3:d3:
9b:11:bc:d8:84:ba:d2:29:46:9b:16:c5:3f:07:8a:31:bb:df:
68:25:8f:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 16:18:46 2025 by rpki-client