Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/086fbeb6-85d8-47e8-8e95-3497e2967b8f/02c1f3d48d1939d33dbf75d9df382ee8f38d7440.roa
File:                     02c1f3d48d1939d33dbf75d9df382ee8f38d7440.roa (raw, json)
Hash identifier:          OWAA0lYQOuifLOKrlYoYBrf4m+0Nwsoe8FrTtdJgVU8=
Subject key identifier:   C5:49:A4:4E:2B:11:1F:67:43:F1:BF:2E:F8:C3:40:4E:E1:E5:3A:6B
Certificate issuer:       /CN=abc5395f6470797c32ddfe8eb37ee50a47c505fd
Certificate serial:       0629
Authority key identifier: 13:A6:72:D8:AB:A6:7F:39:F5:C3:15:54:9E:93:1D:0E:9C:E8:DE:60
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/abc5395f6470797c32ddfe8eb37ee50a47c505fd.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/086fbeb6-85d8-47e8-8e95-3497e2967b8f/02c1f3d48d1939d33dbf75d9df382ee8f38d7440.roa
Signing time:             Wed 07 Sep 2022 14:14:11 +0000
ROA not before:           Wed 07 Sep 2022 14:11:30 +0000
ROA not after:            Sat 07 Sep 2024 14:11:30 +0000
asID:                     61500
IP address blocks:        138.121.80.0/22 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/086fbeb6-85d8-47e8-8e95-3497e2967b8f/abc5395f6470797c32ddfe8eb37ee50a47c505fd.crl
                          rsync://repository.lacnic.net/rpki/lacnic/086fbeb6-85d8-47e8-8e95-3497e2967b8f/abc5395f6470797c32ddfe8eb37ee50a47c505fd.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/abc5395f6470797c32ddfe8eb37ee50a47c505fd.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 26 Feb 2024 07:43:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1577 (0x629)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=abc5395f6470797c32ddfe8eb37ee50a47c505fd
        Validity
            Not Before: Sep  7 14:11:30 2022 GMT
            Not After : Sep  7 14:11:30 2024 GMT
        Subject: CN=02c1f3d48d1939d33dbf75d9df382ee8f38d7440
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:d8:cb:7e:e5:f9:4a:26:ac:04:7e:b7:c6:78:
                    78:a3:bf:f5:df:ae:9d:50:03:a6:fe:f4:45:ac:02:
                    b0:8a:83:20:10:2c:5d:46:d5:9e:6a:7d:1c:6a:f1:
                    ba:cd:94:77:eb:3b:a6:52:63:af:72:32:b4:70:6e:
                    08:74:2e:fc:e5:1e:59:85:b6:49:5f:b4:4a:88:fc:
                    be:de:40:41:39:1b:57:37:0c:ff:1f:55:c5:44:f0:
                    89:4b:15:e3:66:14:a8:8a:c2:87:d9:f8:9b:36:f0:
                    87:fc:55:c7:ee:cb:cb:a3:c3:d5:9f:f1:c7:72:8c:
                    09:23:49:9c:56:90:40:ad:54:73:f7:c1:22:dc:2b:
                    f2:2f:65:c7:eb:03:af:ba:19:f1:13:04:74:38:ff:
                    b5:5e:03:3d:61:a7:86:86:b9:05:f1:3d:fe:e4:7c:
                    6e:e9:26:cd:02:c6:34:cb:2d:3f:2e:2c:b4:15:31:
                    31:de:59:30:fc:42:36:76:62:21:bc:c2:cb:ec:06:
                    56:85:8d:0c:56:dd:00:34:46:aa:68:9d:23:1c:26:
                    0c:3a:7e:3d:90:3b:e0:9d:da:bb:df:08:76:3d:cd:
                    5c:09:f7:1d:0d:98:9d:dd:af:ed:ca:d5:91:f6:c7:
                    e1:34:50:a1:73:4f:61:51:39:fa:dc:dc:3b:24:63:
                    38:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C5:49:A4:4E:2B:11:1F:67:43:F1:BF:2E:F8:C3:40:4E:E1:E5:3A:6B
            X509v3 Authority Key Identifier:
                keyid:13:A6:72:D8:AB:A6:7F:39:F5:C3:15:54:9E:93:1D:0E:9C:E8:DE:60

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/abc5395f6470797c32ddfe8eb37ee50a47c505fd.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/086fbeb6-85d8-47e8-8e95-3497e2967b8f/02c1f3d48d1939d33dbf75d9df382ee8f38d7440.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/086fbeb6-85d8-47e8-8e95-3497e2967b8f/abc5395f6470797c32ddfe8eb37ee50a47c505fd.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  138.121.80.0/22

    Signature Algorithm: sha256WithRSAEncryption
         a1:cd:f1:98:61:f8:2a:91:5f:b2:0b:e2:fc:1d:b4:3c:b5:4c:
         d2:de:fb:27:bb:4a:4b:70:35:ed:94:8f:c3:1f:df:2f:d4:da:
         73:ab:42:41:d9:bd:7a:e8:97:a5:90:06:f6:46:e6:e5:f9:50:
         4f:15:3a:f7:0c:d0:94:e8:fe:bf:d9:fa:bc:cb:08:82:cc:5e:
         a1:ac:3a:02:c5:15:24:78:02:97:63:91:1f:bc:24:37:2a:e6:
         24:17:ed:f4:7f:c6:f4:e3:45:c5:d9:58:00:82:4d:34:f2:c6:
         fa:d1:3c:61:64:3b:b8:a7:f5:b7:92:a0:be:dc:c6:61:e1:6f:
         c0:d7:42:80:5f:c0:dd:78:cc:b0:ee:2e:19:0f:3a:21:d9:3b:
         95:81:34:af:b2:2e:e7:3f:d7:30:e6:49:81:80:2f:16:75:ae:
         ad:86:bc:d5:95:47:25:d9:f5:a1:20:95:70:c1:65:ce:eb:22:
         48:2c:95:57:7a:4a:64:d0:49:50:47:02:a8:c7:32:42:fd:cd:
         23:b0:d7:cc:0b:2d:af:f6:e8:5f:89:c6:93:0e:04:91:d3:d5:
         98:fb:a9:7d:89:8f:e1:9b:26:a4:b6:90:b9:3c:a1:a1:09:03:
         b2:20:92:f2:89:7b:9c:fa:38:f6:e1:8b:88:5d:7b:21:ef:9c:
         3c:2a:4f:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 23 11:27:44 2024 by rpki-client on console-ams.rpki-client.org