Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D80FD0D5746E4486974F87F0B58AA3D22DF7A9D340037E73D5DA44A391EE2640/0/34352e342e3132382e302f32322d3234203d3e203232383639.roa
File: 34352e342e3132382e302f32322d3234203d3e203232383639.roa (raw, json)
Hash identifier: wCi/PyzIQfBZpDj6BbxgyxIt2JncayJQtKM6cC1Hxp4=
Subject key identifier: C0:19:28:BB:6F:4B:44:81:8F:77:BD:42:C0:7F:75:64:D1:C5:F1:2F
Certificate issuer: /CN=231411337300474BC5489725C8707684F70A876D
Certificate serial: 790DED37AACDC40D153406F1D51B5FE8557B55B7
Authority key identifier: 23:14:11:33:73:00:47:4B:C5:48:97:25:C8:70:76:84:F7:0A:87:6D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/231411337300474BC5489725C8707684F70A876D.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/D80FD0D5746E4486974F87F0B58AA3D22DF7A9D340037E73D5DA44A391EE2640/0/34352e342e3132382e302f32322d3234203d3e203232383639.roa
Signing time: Tue 04 Feb 2025 18:24:03 +0000
ROA not before: Tue 04 Feb 2025 18:19:03 +0000
ROA not after: Tue 03 Feb 2026 18:24:03 +0000
asID: 22869
IP address blocks: 45.4.128.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/D80FD0D5746E4486974F87F0B58AA3D22DF7A9D340037E73D5DA44A391EE2640/0/231411337300474BC5489725C8707684F70A876D.crl
rsync://repository.lacnic.net/rpki/lacnic/D80FD0D5746E4486974F87F0B58AA3D22DF7A9D340037E73D5DA44A391EE2640/0/231411337300474BC5489725C8707684F70A876D.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/231411337300474BC5489725C8707684F70A876D.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
79:0d:ed:37:aa:cd:c4:0d:15:34:06:f1:d5:1b:5f:e8:55:7b:55:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=231411337300474BC5489725C8707684F70A876D
Validity
Not Before: Feb 4 18:19:03 2025 GMT
Not After : Feb 3 18:24:03 2026 GMT
Subject: CN=C01928BB6F4B44818F77BD42C07F7564D1C5F12F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:85:96:d9:a8:80:a6:f7:13:18:de:9c:cb:57:
82:1f:0e:53:49:8f:3f:91:c1:3c:ab:34:e1:87:fe:
99:3f:55:86:51:57:e6:60:d5:74:d5:84:30:5e:ec:
bb:14:46:f8:a6:74:df:fa:1a:eb:fb:d4:c9:64:fc:
aa:b8:2f:89:59:16:f1:98:b6:0b:3a:37:2e:48:c1:
2b:a6:a9:85:2d:b3:92:f1:10:c7:0c:e5:0b:ff:b1:
6e:47:29:0d:ff:53:79:2f:fb:31:4a:a8:2f:ab:04:
b9:6e:27:68:ef:98:59:0a:20:63:99:eb:0e:21:fa:
e8:85:a3:5f:4b:31:e2:c3:9a:96:c5:26:7e:98:f2:
70:8d:cb:e2:ab:b8:3a:a8:85:b8:22:04:ba:55:57:
f1:46:21:46:eb:60:fa:46:c9:25:7e:a5:64:49:6d:
5c:34:47:1b:a5:db:b5:de:47:07:a3:a3:04:12:50:
99:5a:c3:be:31:8c:e4:1c:ac:89:d1:f4:6e:9a:f1:
41:45:f4:e3:67:a0:21:00:1f:21:e3:09:6d:83:7f:
83:4c:69:74:39:5b:de:1a:7b:02:d1:44:d3:a4:93:
cd:e1:ef:ca:b7:54:e2:b2:e8:a1:6f:59:d7:37:6a:
e0:a4:21:d1:de:0c:21:fc:ab:74:ab:3e:c5:1c:d2:
de:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:19:28:BB:6F:4B:44:81:8F:77:BD:42:C0:7F:75:64:D1:C5:F1:2F
X509v3 Authority Key Identifier:
keyid:23:14:11:33:73:00:47:4B:C5:48:97:25:C8:70:76:84:F7:0A:87:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/D80FD0D5746E4486974F87F0B58AA3D22DF7A9D340037E73D5DA44A391EE2640/0/231411337300474BC5489725C8707684F70A876D.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/231411337300474BC5489725C8707684F70A876D.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D80FD0D5746E4486974F87F0B58AA3D22DF7A9D340037E73D5DA44A391EE2640/0/34352e342e3132382e302f32322d3234203d3e203232383639.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.4.128.0/22
Signature Algorithm: sha256WithRSAEncryption
72:b6:54:3b:c4:05:b7:46:8f:5a:40:76:ba:17:3e:ba:aa:5d:
10:ee:dd:18:1d:d9:9c:8a:e4:2b:0f:f2:f9:c9:79:56:a8:66:
be:f0:e6:b3:58:13:a9:dd:fc:12:ed:08:fe:93:1a:c9:aa:b2:
b8:62:18:33:e1:c5:20:9b:04:c5:88:06:63:b4:cb:e7:24:b2:
9e:10:44:3d:c8:6b:fd:f9:42:f4:74:cd:81:fb:3c:8d:eb:62:
31:59:2a:41:b9:66:71:ba:62:14:a1:ba:13:54:66:c5:8e:84:
a1:64:19:65:d6:06:74:4e:32:6d:1a:a6:6b:4c:c6:e7:7b:40:
f6:a5:e9:46:af:bc:14:77:97:7f:25:fa:9e:7c:61:87:aa:79:
8d:cd:44:82:a2:cf:ac:cc:cc:43:04:e4:40:b5:57:76:9a:9c:
61:e7:3e:5f:44:c7:6a:1a:96:18:31:ec:bf:f4:c8:ee:c7:93:
8e:8c:60:00:b5:c6:ca:bb:da:15:8d:c2:c1:4d:df:e3:a4:61:
4a:1d:1a:d1:f4:d5:40:49:69:e1:32:df:ca:28:dc:2d:60:04:
98:b2:51:93:81:72:cb:43:1f:ba:70:ac:29:72:6a:c3:31:2b:
e4:fc:d6:32:98:4e:5b:d8:ea:bf:37:7d:0d:ea:00:67:d0:45:
a0:12:12:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 11:08:49 2025 by rpki-client