Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1865a074-ac31-4cf7-9a92-5fa934dbd6ed/089ce6e6e435ea8f71dd73134491c77e997083d6.roa
File:                     089ce6e6e435ea8f71dd73134491c77e997083d6.roa (raw, json)
Hash identifier:          2L7ctACHsO868wIen0dFcb+bGbUpgn6gdKk4rI7eGmg=
Subject key identifier:   4E:7A:56:E5:71:0F:40:D8:9F:A0:C1:D3:6D:CF:A5:C4:6C:E7:E0:D0
Certificate issuer:       /CN=6700d78d2e18243ea736c1288c50a9461ced8b3c
Certificate serial:       200326
Authority key identifier: 6D:16:7E:D1:DD:2E:65:DE:1D:97:BA:EC:8C:20:55:AD:DC:17:37:C8
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/6700d78d2e18243ea736c1288c50a9461ced8b3c.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/1865a074-ac31-4cf7-9a92-5fa934dbd6ed/089ce6e6e435ea8f71dd73134491c77e997083d6.roa
Signing time:             Wed 01 Feb 2023 20:36:52 +0000
ROA not before:           Tue 31 Jan 2023 20:35:55 +0000
ROA not after:            Sat 01 Feb 2025 20:35:55 +0000
asID:                     262171
IP address blocks:        190.93.174.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/1865a074-ac31-4cf7-9a92-5fa934dbd6ed/6700d78d2e18243ea736c1288c50a9461ced8b3c.crl
                          rsync://repository.lacnic.net/rpki/lacnic/1865a074-ac31-4cf7-9a92-5fa934dbd6ed/6700d78d2e18243ea736c1288c50a9461ced8b3c.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/6700d78d2e18243ea736c1288c50a9461ced8b3c.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 03:49:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2097958 (0x200326)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6700d78d2e18243ea736c1288c50a9461ced8b3c
        Validity
            Not Before: Jan 31 20:35:55 2023 GMT
            Not After : Feb  1 20:35:55 2025 GMT
        Subject: CN=089ce6e6e435ea8f71dd73134491c77e997083d6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:80:1a:a8:33:a4:dd:42:de:c0:cd:0f:1e:5e:6e:
                    f6:cd:f9:0b:7b:c1:b9:c0:28:75:41:10:76:43:36:
                    6b:41:bd:8d:70:a3:ec:49:b9:fe:9b:2b:92:a0:4f:
                    fc:b7:b2:bf:45:35:7c:b7:09:c9:40:4f:41:49:5a:
                    c2:4f:6e:aa:58:8a:76:98:dd:06:7c:83:ee:86:c2:
                    f1:d0:e6:f8:74:7d:0e:ed:b2:68:df:aa:61:38:96:
                    be:5d:33:10:ae:4c:25:fc:33:05:bc:7e:80:72:6e:
                    d9:b9:80:c6:aa:0e:c0:3d:ad:32:17:d5:d3:6c:66:
                    d8:63:7c:47:d7:79:09:e2:fe:15:5f:d0:ed:2c:a6:
                    20:87:2f:bc:e4:b8:69:db:65:8f:af:15:1e:4e:9c:
                    21:c6:6e:94:07:29:27:11:f9:60:98:64:b0:c8:9a:
                    e9:a5:40:21:e8:5e:20:cb:f2:59:51:19:63:a5:c8:
                    d2:65:3a:c9:55:71:32:7e:ce:84:a2:03:b8:e3:14:
                    11:7f:97:ca:7f:76:2e:a7:0d:69:a3:b8:be:ec:a8:
                    de:7c:99:b3:d4:d9:e6:86:9f:a1:03:8b:a4:d2:fa:
                    82:71:44:7d:3b:cb:33:b2:17:da:c4:69:04:75:27:
                    d8:e3:e0:c0:ea:ed:0e:df:5f:bd:09:5b:81:e0:33:
                    d9:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4E:7A:56:E5:71:0F:40:D8:9F:A0:C1:D3:6D:CF:A5:C4:6C:E7:E0:D0
            X509v3 Authority Key Identifier:
                keyid:6D:16:7E:D1:DD:2E:65:DE:1D:97:BA:EC:8C:20:55:AD:DC:17:37:C8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/6700d78d2e18243ea736c1288c50a9461ced8b3c.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1865a074-ac31-4cf7-9a92-5fa934dbd6ed/089ce6e6e435ea8f71dd73134491c77e997083d6.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/1865a074-ac31-4cf7-9a92-5fa934dbd6ed/6700d78d2e18243ea736c1288c50a9461ced8b3c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.93.174.0/24

    Signature Algorithm: sha256WithRSAEncryption
         72:31:dd:46:99:d3:ef:26:f5:a5:d9:fb:e2:1f:10:61:ec:55:
         31:c3:9e:05:d4:7f:b6:a7:a5:04:fc:30:64:a8:ab:99:0a:16:
         1b:2d:79:ce:85:f7:3a:3e:9c:a8:06:ed:a8:1a:ba:20:2e:84:
         f2:67:fc:ae:61:15:1b:94:7a:da:cf:3c:21:42:38:25:eb:6c:
         b6:b0:33:88:0d:38:c3:11:86:f8:2c:61:2b:78:72:17:c8:6e:
         55:ed:af:4f:4d:a5:97:cc:a3:e2:da:75:a3:54:3a:d2:ea:0c:
         76:9f:be:a5:9c:a7:91:f9:6c:c5:60:12:0b:84:0d:79:0e:c1:
         8a:b9:11:df:44:db:a9:3d:72:56:56:c7:63:92:02:88:f7:32:
         9b:c8:85:d8:1d:5b:df:9a:c7:65:7b:fb:c8:5d:19:e5:50:1a:
         51:37:70:46:a3:ca:ec:b2:cd:c0:93:1d:af:ab:4d:75:3b:db:
         38:2b:5f:a8:a8:a2:22:f2:ae:0a:2f:31:a3:f5:33:00:7b:97:
         f3:9c:de:7c:28:cd:48:d7:8d:89:ab:d3:29:07:26:32:66:9c:
         d3:f1:5c:11:3c:36:04:16:a5:a6:71:60:5a:12:46:e6:cc:57:
         66:bf:93:46:b0:73:c7:70:d2:2c:38:44:26:d2:14:25:fa:06:
         b2:9f:68:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 11:17:36 2024 by rpki-client on console-fra.rpki-client.org