Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/BAFF476963BEEEFBA925E6094AD61F8FE108B5D47F243A7D2C6288E23FA4F667/0/34352e36352e3230302e302f32342d3234203d3e20323637383933.roa
File: 34352e36352e3230302e302f32342d3234203d3e20323637383933.roa (raw, json)
Hash identifier: 8xhtEDjsw/uXiZVAcUQOCAiyH3Nt1EJHIOOAxF1+/0o=
Subject key identifier: 5E:0E:B4:31:62:98:EC:60:24:9F:1E:60:8B:A7:AB:A9:54:A0:9C:76
Certificate issuer: /CN=3FA213F071F512993E71744BA485B170F0449C83
Certificate serial: 32D4A25E9193CF4C25B8A77516EEC473718CCC95
Authority key identifier: 3F:A2:13:F0:71:F5:12:99:3E:71:74:4B:A4:85:B1:70:F0:44:9C:83
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3FA213F071F512993E71744BA485B170F0449C83.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/BAFF476963BEEEFBA925E6094AD61F8FE108B5D47F243A7D2C6288E23FA4F667/0/34352e36352e3230302e302f32342d3234203d3e20323637383933.roa
Signing time: Tue 04 Feb 2025 18:22:28 +0000
ROA not before: Tue 04 Feb 2025 18:17:28 +0000
ROA not after: Tue 03 Feb 2026 18:22:28 +0000
asID: 267893
IP address blocks: 45.65.200.0/24 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/BAFF476963BEEEFBA925E6094AD61F8FE108B5D47F243A7D2C6288E23FA4F667/0/3FA213F071F512993E71744BA485B170F0449C83.crl
rsync://repository.lacnic.net/rpki/lacnic/BAFF476963BEEEFBA925E6094AD61F8FE108B5D47F243A7D2C6288E23FA4F667/0/3FA213F071F512993E71744BA485B170F0449C83.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3FA213F071F512993E71744BA485B170F0449C83.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
32:d4:a2:5e:91:93:cf:4c:25:b8:a7:75:16:ee:c4:73:71:8c:cc:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3FA213F071F512993E71744BA485B170F0449C83
Validity
Not Before: Feb 4 18:17:28 2025 GMT
Not After : Feb 3 18:22:28 2026 GMT
Subject: CN=5E0EB4316298EC60249F1E608BA7ABA954A09C76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:55:41:42:53:4b:13:99:8c:86:9d:d1:cc:00:
7b:63:a1:8e:99:66:92:76:b8:5e:5e:9b:ab:93:53:
85:f0:fe:13:45:14:7d:7b:dc:f6:27:a6:cf:a8:9b:
c4:56:0a:cc:10:6a:17:c4:31:26:b6:3c:56:b7:12:
88:fb:f7:b2:21:13:4a:be:eb:2e:8d:cd:3b:db:2f:
e3:be:aa:d2:f6:00:1d:38:04:17:b0:f6:ae:17:89:
76:10:b5:73:08:ac:c3:ec:79:f7:56:37:3b:89:1c:
0c:0e:f3:08:6f:70:ba:b2:9b:37:4d:db:72:d5:42:
09:3c:31:47:69:0b:5c:bb:04:f7:30:f9:35:18:8a:
7c:dc:57:4c:9b:39:d8:96:14:83:75:0c:18:2a:c3:
f8:1b:eb:45:f4:42:b1:bb:06:62:fd:86:db:b4:11:
d8:d2:9b:2e:92:a5:9a:0a:46:44:f6:94:3c:30:b8:
ca:aa:52:49:05:b5:93:8f:ff:82:8c:aa:b8:28:76:
15:cf:2f:37:88:74:9c:f5:28:f2:5e:fb:a3:65:b6:
cd:0f:42:be:48:a0:28:0a:36:a4:1e:d3:b7:f0:fc:
61:25:f3:21:05:5c:ab:5d:0f:81:e5:42:d3:e5:47:
77:e7:6a:b4:af:c7:65:fd:9e:e9:c3:50:75:39:ac:
5d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:0E:B4:31:62:98:EC:60:24:9F:1E:60:8B:A7:AB:A9:54:A0:9C:76
X509v3 Authority Key Identifier:
keyid:3F:A2:13:F0:71:F5:12:99:3E:71:74:4B:A4:85:B1:70:F0:44:9C:83
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/BAFF476963BEEEFBA925E6094AD61F8FE108B5D47F243A7D2C6288E23FA4F667/0/3FA213F071F512993E71744BA485B170F0449C83.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3FA213F071F512993E71744BA485B170F0449C83.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/BAFF476963BEEEFBA925E6094AD61F8FE108B5D47F243A7D2C6288E23FA4F667/0/34352e36352e3230302e302f32342d3234203d3e20323637383933.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.200.0/24
Signature Algorithm: sha256WithRSAEncryption
55:7d:5b:12:9d:08:20:39:88:05:9f:d9:22:e1:56:ec:a7:04:
a6:7d:87:00:6e:55:94:7d:82:f0:1b:b7:31:3a:5b:e8:81:c2:
a4:b3:44:cb:54:b5:c5:4e:3d:86:98:f6:08:83:9b:f7:28:66:
4b:52:75:72:e0:14:56:e7:cf:11:31:12:77:5a:93:f3:d5:ea:
37:5e:27:99:93:0a:e3:64:46:f3:8c:c5:bb:8a:99:31:34:23:
37:dd:2a:ab:40:3e:23:8c:82:41:69:b9:0d:50:79:e0:29:9c:
e3:76:b2:ab:6f:21:90:2d:07:76:58:9d:9a:57:a0:1f:37:7c:
1f:92:2a:66:81:b1:79:30:32:4a:64:c2:59:f3:a7:77:66:87:
4d:d5:f0:65:ce:0b:65:7d:bb:0b:da:07:59:89:8c:7f:69:01:
34:b1:c1:68:76:07:05:7e:1b:43:40:3e:3e:26:0b:79:9f:bb:
6d:02:11:11:ba:80:da:a8:06:ff:ed:06:7a:f5:04:2d:16:56:
a2:3a:98:a4:f9:70:44:b5:58:d0:b4:a1:74:d9:84:fe:2b:1d:
8f:17:a0:d3:7b:8b:91:1b:d9:fb:3d:2f:5b:a0:43:67:d9:e0:
87:24:60:4e:e0:1d:ed:91:9d:7b:08:3a:01:15:c5:ea:30:19:
97:91:3d:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 21:11:48 2025 by rpki-client