Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DAEE146D6347C36A81F84E6FDD597E91F78FC7EA3270A9258F33E8FA870D2880/0/34352e3233392e3231362e302f32322d3234203d3e20323633373032.roa
File: 34352e3233392e3231362e302f32322d3234203d3e20323633373032.roa (raw, json)
Hash identifier: XOYUl+tpZWq13pw1XJQalV54hfXLqPaLWjs1FgEv73g=
Subject key identifier: 19:ED:99:22:10:F8:7A:33:B7:6A:8E:0A:9B:FA:82:03:67:26:49:C6
Certificate issuer: /CN=2D8692867D0888EDE9943E1B31BAED70B4DB4811
Certificate serial: 6CFAFFF6458D50BEBA46DE2E2A6919B14E2BD4A8
Authority key identifier: 2D:86:92:86:7D:08:88:ED:E9:94:3E:1B:31:BA:ED:70:B4:DB:48:11
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D8692867D0888EDE9943E1B31BAED70B4DB4811.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/DAEE146D6347C36A81F84E6FDD597E91F78FC7EA3270A9258F33E8FA870D2880/0/34352e3233392e3231362e302f32322d3234203d3e20323633373032.roa
Signing time: Tue 24 Dec 2024 20:05:00 +0000
ROA not before: Tue 24 Dec 2024 20:00:00 +0000
ROA not after: Tue 23 Dec 2025 20:05:00 +0000
asID: 263702
IP address blocks: 45.239.216.0/22 maxlen: 24
Validation: OK
Signature path: rsync://repository.lacnic.net/rpki/lacnic/DAEE146D6347C36A81F84E6FDD597E91F78FC7EA3270A9258F33E8FA870D2880/0/2D8692867D0888EDE9943E1B31BAED70B4DB4811.crl
rsync://repository.lacnic.net/rpki/lacnic/DAEE146D6347C36A81F84E6FDD597E91F78FC7EA3270A9258F33E8FA870D2880/0/2D8692867D0888EDE9943E1B31BAED70B4DB4811.mft
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D8692867D0888EDE9943E1B31BAED70B4DB4811.cer
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires: Fri 18 Apr 2025 17:00:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:fa:ff:f6:45:8d:50:be:ba:46:de:2e:2a:69:19:b1:4e:2b:d4:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2D8692867D0888EDE9943E1B31BAED70B4DB4811
Validity
Not Before: Dec 24 20:00:00 2024 GMT
Not After : Dec 23 20:05:00 2025 GMT
Subject: CN=19ED992210F87A33B76A8E0A9BFA8203672649C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:94:c5:ce:93:4c:7b:47:9f:3c:7a:68:52:3a:
b7:b5:2a:b6:f8:f1:5b:32:d8:75:36:50:09:b4:3c:
57:d6:c6:7c:a3:8b:4e:b5:5a:6b:b2:19:9c:57:d0:
83:b7:ba:80:1f:83:64:92:78:7e:ac:30:3e:0a:c2:
d3:65:0f:4e:ef:f0:fd:40:f5:39:40:4c:3a:52:55:
e2:45:33:50:a3:39:14:df:bf:12:81:d5:38:f0:7d:
9e:b9:2b:b4:cf:a4:52:fc:ed:90:6f:a5:89:92:81:
c7:a6:c1:ee:1d:45:6a:94:0d:21:e9:f9:7b:d0:ca:
12:81:ad:7e:23:dd:3e:cc:35:72:78:0e:94:5a:2c:
53:96:50:73:bb:2e:af:c6:ab:5a:0b:a2:95:1e:11:
7f:13:ef:e2:2c:34:82:9d:87:6d:cf:3b:ef:3b:b1:
a5:d7:62:d6:1f:0b:04:0e:97:55:8d:bd:cd:f4:d1:
01:b5:40:58:90:0c:10:49:95:37:d5:be:44:11:f5:
e3:08:6c:0e:f3:62:38:94:13:f6:2c:5b:eb:c5:80:
4b:69:b7:7f:57:e9:fa:d2:a1:41:02:cb:08:2a:22:
4c:eb:29:a9:61:18:ed:16:97:ea:64:07:9a:b1:25:
0e:91:d8:7a:5d:d3:a1:dc:bb:41:c2:b2:6d:44:62:
92:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:ED:99:22:10:F8:7A:33:B7:6A:8E:0A:9B:FA:82:03:67:26:49:C6
X509v3 Authority Key Identifier:
keyid:2D:86:92:86:7D:08:88:ED:E9:94:3E:1B:31:BA:ED:70:B4:DB:48:11
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/DAEE146D6347C36A81F84E6FDD597E91F78FC7EA3270A9258F33E8FA870D2880/0/2D8692867D0888EDE9943E1B31BAED70B4DB4811.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2D8692867D0888EDE9943E1B31BAED70B4DB4811.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DAEE146D6347C36A81F84E6FDD597E91F78FC7EA3270A9258F33E8FA870D2880/0/34352e3233392e3231362e302f32322d3234203d3e20323633373032.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.239.216.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:29:4e:da:be:d1:fd:63:e5:37:d8:38:bc:5d:25:cd:6d:18:
2f:92:f2:04:44:61:e0:39:c2:cc:4d:4e:a0:eb:c8:5c:fa:eb:
ae:62:b5:35:8e:1c:ca:91:fb:67:f2:6e:4c:6a:86:9b:10:10:
a2:3e:c9:ac:48:41:76:5c:4e:86:4d:f1:98:86:5c:1d:4d:65:
a9:ee:79:28:7e:1e:32:27:de:e8:43:fd:9f:9e:43:af:b2:a1:
bf:31:d9:fe:72:6b:5e:8b:7f:42:15:81:1d:7b:65:ca:28:b6:
15:5a:0e:ce:a3:c1:7e:3b:71:07:17:43:92:cf:ea:6a:2b:0d:
6a:da:5e:04:fb:ae:83:12:a0:ad:8d:8a:55:bc:37:9d:c9:55:
06:d0:48:87:8f:2b:93:a0:fb:46:c6:f0:7c:bb:75:76:28:53:
c8:ba:dd:a7:1d:44:c6:87:0c:ce:3e:64:1e:31:93:3f:8e:88:
23:2b:6f:45:f5:94:e8:7a:bd:22:78:14:52:23:bd:90:57:b6:
4f:6c:3c:7f:fc:f8:dc:26:1b:2d:9a:d9:07:43:b8:a8:a0:1b:
1e:bb:f4:74:69:48:60:35:27:10:86:f9:2e:c1:c0:79:14:66:
11:90:2d:40:de:62:58:fc:97:b1:1e:5b:65:ba:d9:8f:d4:a8:
49:14:c0:18
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUbPr/9kWNUL66Rt4uKmkZsU4r1KgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMkQ4NjkyODY3RDA4ODhFREU5OTQzRTFCMzFCQUVENzBC
NERCNDgxMTAeFw0yNDEyMjQyMDAwMDBaFw0yNTEyMjMyMDA1MDBaMDMxMTAvBgNV
BAMTKDE5RUQ5OTIyMTBGODdBMzNCNzZBOEUwQTlCRkE4MjAzNjcyNjQ5QzYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjlMXOk0x7R588emhSOre1Krb4
8Vsy2HU2UAm0PFfWxnyji061WmuyGZxX0IO3uoAfg2SSeH6sMD4KwtNlD07v8P1A
9TlATDpSVeJFM1CjORTfvxKB1TjwfZ65K7TPpFL87ZBvpYmSgcemwe4dRWqUDSHp
+XvQyhKBrX4j3T7MNXJ4DpRaLFOWUHO7Lq/Gq1oLopUeEX8T7+IsNIKdh23PO+87
saXXYtYfCwQOl1WNvc300QG1QFiQDBBJlTfVvkQR9eMIbA7zYjiUE/YsW+vFgEtp
t39X6frSoUECywgqIkzrKalhGO0Wl+pkB5qxJQ6R2Hpd06Hcu0HCsm1EYpIHAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUGe2ZIhD4ejO3ao4Km/qCA2cmScYwHwYDVR0j
BBgwFoAULYaShn0IiO3plD4bMbrtcLTbSBEwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9EQUVFMTQ2RDYzNDdDMzZBODFGODRFNkZERDU5N0U5MUY3
OEZDN0VBMzI3MEE5MjU4RjMzRThGQTg3MEQyODgwLzAvMkQ4NjkyODY3RDA4ODhF
REU5OTQzRTFCMzFCQUVENzBCNERCNDgxMS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yRDg2OTI4NjdEMDg4OEVERTk5
NDNFMUIzMUJBRUQ3MEI0REI0ODExLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvREFFRTE0NkQ2MzQ3QzM2QTgxRjg0RTZGREQ1OTdFOTFGNzhGQzdFQTMy
NzBBOTI1OEYzM0U4RkE4NzBEMjg4MC8wLzM0MzUyZTMyMzMzOTJlMzIzMTM2MmUz
MDJmMzIzMjJkMzIzNDIwM2QzZTIwMzIzNjMzMzczMDMyLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLe/Y
MA0GCSqGSIb3DQEBCwUAA4IBAQCLKU7avtH9Y+U32Di8XSXNbRgvkvIERGHgOcLM
TU6g68hc+uuuYrU1jhzKkftn8m5MaoabEBCiPsmsSEF2XE6GTfGYhlwdTWWp7nko
fh4yJ97oQ/2fnkOvsqG/Mdn+cmtei39CFYEde2XKKLYVWg7Oo8F+O3EHF0OSz+pq
Kw1q2l4E+66DEqCtjYpVvDedyVUG0EiHjyuToPtGxvB8u3V2KFPIut2nHUTGhwzO
PmQeMZM/jogjK29F9ZToer0ieBRSI72QV7ZPbDx//PjcJhstmtkHQ7iooBseu/R0
aUhgNScQhvkuwcB5FGYRkC1A3mJY/JexHltlutmP1KhJFMAY
-----END CERTIFICATE-----
Generated at Mon Apr 14 19:57:42 2025 by rpki-client