Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/178D44243B7EB62CED10BC816A4F79EC3CA6F407C96BE8BF7645BB7B032D390E/0/3137302e3234342e3234302e302f32322d3234203d3e20323635363331.roa
File:                     3137302e3234342e3234302e302f32322d3234203d3e20323635363331.roa (raw, json)
Hash identifier:          tPkd6vFBx/sOxeRG1ra7luLANKrnUyxpR9hBkMGgnFY=
Subject key identifier:   4B:54:9A:E4:A3:DC:50:55:16:75:97:86:E7:CC:35:61:59:C4:3F:98
Certificate issuer:       /CN=A309E2A48572D6A82E05CA806C7D2108377001D8
Certificate serial:       1AD34B6B2B4568DADD8510B7602F8FD87AD3E786
Authority key identifier: A3:09:E2:A4:85:72:D6:A8:2E:05:CA:80:6C:7D:21:08:37:70:01:D8
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A309E2A48572D6A82E05CA806C7D2108377001D8.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/178D44243B7EB62CED10BC816A4F79EC3CA6F407C96BE8BF7645BB7B032D390E/0/3137302e3234342e3234302e302f32322d3234203d3e20323635363331.roa
Signing time:             Tue 23 Jun 2026 18:49:09 +0000
ROA not before:           Tue 23 Jun 2026 18:44:09 +0000
ROA not after:            Tue 22 Jun 2027 18:49:09 +0000
asID:                     265631
IP address blocks:        170.244.240.0/22 maxlen: 24
Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/178D44243B7EB62CED10BC816A4F79EC3CA6F407C96BE8BF7645BB7B032D390E/0/A309E2A48572D6A82E05CA806C7D2108377001D8.crl
                          rsync://repository.lacnic.net/rpki/lacnic/178D44243B7EB62CED10BC816A4F79EC3CA6F407C96BE8BF7645BB7B032D390E/0/A309E2A48572D6A82E05CA806C7D2108377001D8.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A309E2A48572D6A82E05CA806C7D2108377001D8.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Tue 21 Jul 2026 14:14:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1a:d3:4b:6b:2b:45:68:da:dd:85:10:b7:60:2f:8f:d8:7a:d3:e7:86
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A309E2A48572D6A82E05CA806C7D2108377001D8
        Validity
            Not Before: Jun 23 18:44:09 2026 GMT
            Not After : Jun 22 18:49:09 2027 GMT
        Subject: CN=4B549AE4A3DC505516759786E7CC356159C43F98
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:23:04:a9:7c:e5:0b:97:ea:7e:7f:9c:fc:1f:
                    35:b7:62:05:1a:69:5b:90:4f:cd:c6:b8:32:6e:89:
                    59:e5:3a:44:9c:1c:6e:ed:47:4e:3c:18:ec:cb:29:
                    c4:63:78:44:38:01:ef:03:1d:82:6a:6f:3c:35:c8:
                    04:b2:27:e3:5c:ee:40:ee:d8:6b:58:a6:9c:66:50:
                    91:a7:94:f7:8e:23:f4:0b:cb:0f:14:dd:48:d1:0a:
                    09:7c:7f:bb:a4:ca:5b:9c:bc:ef:da:b4:04:7a:94:
                    86:13:70:d5:7b:0a:65:fc:84:39:ec:d6:c4:f8:e3:
                    77:58:0e:88:aa:a7:ad:32:53:cd:55:eb:2b:f4:ed:
                    ee:a8:d1:0b:20:f1:5c:21:d8:8f:55:1b:ba:11:bb:
                    11:b6:a9:05:24:80:70:af:52:f5:32:9b:be:f9:be:
                    e4:46:48:3a:19:32:61:e5:7f:22:1a:b2:9c:80:14:
                    1a:fb:60:27:0b:c5:6c:2d:e8:6d:e9:19:66:6b:0f:
                    d9:63:a9:e9:c7:04:26:b1:7b:3d:6a:90:c7:c5:ee:
                    e5:21:0d:40:67:c6:6f:37:24:5a:e6:3f:53:9e:2b:
                    60:50:7d:59:e9:8f:3d:51:e2:1f:76:17:6f:d7:c9:
                    05:d5:6f:fd:1d:af:07:1c:00:01:1d:12:e3:d8:30:
                    e8:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4B:54:9A:E4:A3:DC:50:55:16:75:97:86:E7:CC:35:61:59:C4:3F:98
            X509v3 Authority Key Identifier:
                keyid:A3:09:E2:A4:85:72:D6:A8:2E:05:CA:80:6C:7D:21:08:37:70:01:D8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/178D44243B7EB62CED10BC816A4F79EC3CA6F407C96BE8BF7645BB7B032D390E/0/A309E2A48572D6A82E05CA806C7D2108377001D8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A309E2A48572D6A82E05CA806C7D2108377001D8.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/178D44243B7EB62CED10BC816A4F79EC3CA6F407C96BE8BF7645BB7B032D390E/0/3137302e3234342e3234302e302f32322d3234203d3e20323635363331.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  170.244.240.0/22

    Signature Algorithm: sha256WithRSAEncryption
         a2:50:f7:da:7b:e2:38:5c:07:ce:f1:4f:d9:ef:48:ba:db:91:
         2e:1d:d7:01:25:3e:e0:76:3e:d3:a4:df:23:4c:9c:b3:13:85:
         f7:57:c3:53:2e:5f:43:ff:20:23:42:e6:90:a7:5f:ef:71:80:
         d4:a1:08:a0:c2:4b:f0:83:66:98:3e:a3:a0:f7:c1:2d:f4:68:
         d1:5c:a1:ee:35:da:17:5f:f5:99:d4:72:8b:00:95:1a:a6:b2:
         8b:93:32:95:02:e2:dc:ac:19:7d:66:e6:b3:0d:74:05:b3:62:
         fc:92:42:24:7b:7e:24:57:fe:ff:f9:8c:be:19:4b:42:bc:76:
         fb:85:95:69:d4:c5:52:4d:87:f1:8a:16:39:2b:5c:a0:d1:bc:
         f0:d0:f3:9e:9e:18:6e:b7:e2:8d:f7:9a:2a:29:ec:2c:b8:0b:
         85:38:9d:64:ae:6f:37:86:2a:f2:6d:82:5f:54:e7:e6:9d:1d:
         57:17:af:b4:63:dd:ff:c6:91:14:82:53:8c:06:98:31:e3:02:
         48:ab:9d:5c:3f:33:ff:73:4a:36:97:a7:91:90:b1:59:7a:41:
         16:9b:c3:5a:2a:de:82:74:0c:7c:0e:76:27:bd:75:82:b1:63:
         11:49:88:c7:66:e2:65:e9:8c:c5:b6:c8:4c:bc:20:51:18:27:
         6f:62:5f:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 18 09:34:20 2026 by rpki-client