Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1847714d-49dc-4914-b7c4-efe78e9a10c2/243731583246aac4b1e5a61d3a9461144ee109c9.roa
File:                     243731583246aac4b1e5a61d3a9461144ee109c9.roa (raw, json)
Hash identifier:          e6D08Xgvn5rJoLqg2AWjYrBSg6UzyM54ugNTN886tso=
Subject key identifier:   A8:9A:E8:4A:3C:6F:7F:6A:97:F5:2A:2B:5F:6B:DF:A8:3B:2C:71:49
Certificate issuer:       /CN=bd7f33cd5376098fb55565247f8dae5ea5de2952
Certificate serial:       0D178C
Authority key identifier: A6:04:C9:CB:35:2E:0C:6A:F1:2E:E5:72:B5:4F:8C:35:1B:BF:1C:87
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/bd7f33cd5376098fb55565247f8dae5ea5de2952.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/1847714d-49dc-4914-b7c4-efe78e9a10c2/243731583246aac4b1e5a61d3a9461144ee109c9.roa
Signing time:             Wed 24 Mar 2021 14:39:31 +0000
ROA not before:           Wed 24 Mar 2021 14:39:30 +0000
ROA not after:            Tue 24 Mar 2026 14:39:30 +0000
asID:                     27958
IP address blocks:        200.50.232.0/21 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/1847714d-49dc-4914-b7c4-efe78e9a10c2/bd7f33cd5376098fb55565247f8dae5ea5de2952.crl
                          rsync://repository.lacnic.net/rpki/lacnic/1847714d-49dc-4914-b7c4-efe78e9a10c2/bd7f33cd5376098fb55565247f8dae5ea5de2952.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/bd7f33cd5376098fb55565247f8dae5ea5de2952.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 04 Mar 2024 08:17:34 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 857996 (0xd178c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bd7f33cd5376098fb55565247f8dae5ea5de2952
        Validity
            Not Before: Mar 24 14:39:30 2021 GMT
            Not After : Mar 24 14:39:30 2026 GMT
        Subject: CN=243731583246aac4b1e5a61d3a9461144ee109c9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8d:c8:9e:fa:48:74:ef:19:2d:65:71:dc:f4:49:
                    3d:f6:3a:ca:c0:c0:01:c4:fd:4a:fb:e3:35:f0:e7:
                    38:aa:c1:c9:77:76:b0:9a:16:19:b1:cb:14:ac:e4:
                    6a:63:7e:0c:73:9e:64:47:91:4b:0d:65:ee:ab:cf:
                    41:a7:c1:47:a9:77:04:66:73:88:0f:55:fc:97:ef:
                    75:27:ca:67:e0:39:86:7c:2b:b2:e4:53:42:2c:47:
                    be:c6:ec:d0:c9:8e:cb:16:a7:4e:f0:80:7b:0e:fd:
                    b5:52:8a:ff:d4:49:8b:76:02:90:ac:e2:83:d1:a6:
                    94:78:9f:fd:5d:02:68:31:ed:e4:4f:87:dc:00:a1:
                    6b:db:eb:11:33:43:14:60:69:1b:b4:3f:95:e4:18:
                    d5:15:f3:88:1b:1f:39:fc:f8:74:43:9e:28:00:a1:
                    f7:49:14:6d:26:f6:f9:46:95:8f:f5:89:b5:5e:96:
                    5c:e3:3c:b3:73:b7:64:6d:3a:be:c7:fc:9e:52:df:
                    9f:71:86:22:39:30:82:f3:cc:e2:d3:70:28:0b:34:
                    74:60:06:22:dd:71:0b:37:c7:4d:15:07:d0:09:2f:
                    c8:4f:7d:ea:7e:f3:16:a6:31:53:6a:8a:d8:80:de:
                    54:75:e3:01:2c:ab:0b:10:84:7c:f7:17:e9:6d:38:
                    3f:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A8:9A:E8:4A:3C:6F:7F:6A:97:F5:2A:2B:5F:6B:DF:A8:3B:2C:71:49
            X509v3 Authority Key Identifier:
                keyid:A6:04:C9:CB:35:2E:0C:6A:F1:2E:E5:72:B5:4F:8C:35:1B:BF:1C:87

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/bd7f33cd5376098fb55565247f8dae5ea5de2952.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1847714d-49dc-4914-b7c4-efe78e9a10c2/243731583246aac4b1e5a61d3a9461144ee109c9.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/1847714d-49dc-4914-b7c4-efe78e9a10c2/bd7f33cd5376098fb55565247f8dae5ea5de2952.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.50.232.0/21

    Signature Algorithm: sha256WithRSAEncryption
         9d:09:a1:f3:ed:88:06:b4:13:ca:da:53:f2:16:08:36:b2:45:
         c5:e6:fc:08:bd:24:c2:d9:dc:bf:18:8e:5d:c4:9c:e2:5a:9f:
         f8:57:1f:1a:fb:ff:53:e8:87:d6:b4:e9:0e:02:cd:4f:3f:5d:
         9e:1e:e0:98:ae:6e:95:30:b7:cf:b2:33:57:9c:c5:1d:63:fa:
         62:42:57:a6:c0:40:16:3d:bd:4c:44:0f:f9:8f:2b:0b:c7:36:
         ec:f7:21:e3:bd:a0:4d:a3:41:ce:2f:10:1d:73:be:e1:2b:bc:
         a3:d2:41:01:cb:e9:02:c2:f1:64:2f:41:3f:22:d2:aa:27:bc:
         11:ee:cf:2d:39:c1:15:7f:b3:ee:94:c2:d2:a0:a8:e1:63:e3:
         ff:8c:71:67:4d:22:4d:9f:52:a9:85:02:82:33:af:56:9a:12:
         5b:cc:3b:f6:bd:d5:c0:29:4a:a6:3b:39:59:a0:be:22:7f:b4:
         4d:d7:93:f1:e0:1e:3a:fc:8f:0b:39:cb:70:f2:ac:b5:85:c0:
         d5:f0:e0:43:6d:48:f9:4c:9a:90:ea:66:44:15:37:de:a4:f4:
         22:64:a0:fa:39:7b:44:1c:89:b2:7e:bc:c8:ab:56:45:f5:ef:
         9c:36:d5:e3:5e:dc:5e:e1:dd:16:13:e6:6e:f0:46:17:cc:87:
         4f:0d:28:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 1 14:18:08 2024 by rpki-client on console-ams.rpki-client.org