Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1b7924a2-bf21-496d-a8e0-cf890812a577/e6c009e7059a7cc8ea4e1a21766315ca34190f8e.roa
File:                     e6c009e7059a7cc8ea4e1a21766315ca34190f8e.roa (raw, json)
Hash identifier:          q1ZrC3+LPxpeglKZboqpF2013lMw1fXnOgJSkQpadO8=
Subject key identifier:   2B:86:97:50:5C:CE:8C:7A:24:BB:2E:E5:3D:A8:E7:61:55:D5:9E:E0
Certificate issuer:       /CN=e4c05daa3a6e5aa60346bc5b6a8b22c4c14ccb2c
Certificate serial:       0D19AB
Authority key identifier: 17:73:3B:88:7C:39:A9:14:85:6A:EE:36:19:17:FC:E1:34:73:86:CD
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e4c05daa3a6e5aa60346bc5b6a8b22c4c14ccb2c.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/1b7924a2-bf21-496d-a8e0-cf890812a577/e6c009e7059a7cc8ea4e1a21766315ca34190f8e.roa
Signing time:             Wed 24 Mar 2021 14:39:14 +0000
ROA not before:           Wed 24 Mar 2021 14:39:13 +0000
ROA not after:            Tue 24 Mar 2026 14:39:13 +0000
asID:                     23487
IP address blocks:        190.63.0.0/16 maxlen: 24
                          190.111.64.0/20 maxlen: 24
                          190.111.80.0/20 maxlen: 24
                          200.25.192.0/20 maxlen: 24
                          200.25.208.0/20 maxlen: 24
                          2800:430::/32 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/1b7924a2-bf21-496d-a8e0-cf890812a577/e4c05daa3a6e5aa60346bc5b6a8b22c4c14ccb2c.crl
                          rsync://repository.lacnic.net/rpki/lacnic/1b7924a2-bf21-496d-a8e0-cf890812a577/e4c05daa3a6e5aa60346bc5b6a8b22c4c14ccb2c.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e4c05daa3a6e5aa60346bc5b6a8b22c4c14ccb2c.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Tue 16 Apr 2024 22:30:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 858539 (0xd19ab)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e4c05daa3a6e5aa60346bc5b6a8b22c4c14ccb2c
        Validity
            Not Before: Mar 24 14:39:13 2021 GMT
            Not After : Mar 24 14:39:13 2026 GMT
        Subject: CN=e6c009e7059a7cc8ea4e1a21766315ca34190f8e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:27:1c:e5:37:19:22:72:72:ae:d7:25:d3:11:
                    4f:6f:69:44:91:76:47:67:da:7f:95:e2:dc:d5:aa:
                    92:71:01:c4:1e:28:89:ab:f8:b2:26:04:24:a3:80:
                    c6:d0:05:70:1b:83:6e:5e:a4:f5:c9:79:47:55:89:
                    52:72:f8:22:2b:ef:9e:dd:30:14:90:5c:ec:b1:81:
                    ee:86:9c:f2:cd:a1:ba:a7:3e:da:3c:9b:0b:87:37:
                    77:5c:d3:63:89:59:5f:18:55:9b:f1:41:8b:6b:c0:
                    9e:02:2d:7e:f1:80:46:5d:b2:27:d2:42:ec:8b:21:
                    02:a5:78:96:33:76:52:fd:be:6d:9a:c0:ad:b3:13:
                    7e:7b:5f:ef:29:fb:f4:5d:a7:93:6e:03:f8:77:f9:
                    12:1a:c4:9f:d5:fc:79:cf:63:4f:0a:46:d9:df:16:
                    27:6d:65:9e:d0:81:5c:b0:a9:f5:23:ba:88:d5:1a:
                    1a:9a:4e:c8:b4:7a:41:3d:42:dd:c2:c7:f6:40:79:
                    cb:db:1a:2f:15:b1:d9:79:2c:f4:d7:73:57:32:13:
                    46:7f:12:e3:b7:c7:0c:a4:9f:93:50:de:d4:fb:7f:
                    fa:4e:df:c8:b3:f5:e3:81:14:4f:87:6e:76:08:11:
                    ac:6f:00:58:8f:32:ca:6d:66:7a:d6:4b:ff:08:0e:
                    9b:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2B:86:97:50:5C:CE:8C:7A:24:BB:2E:E5:3D:A8:E7:61:55:D5:9E:E0
            X509v3 Authority Key Identifier:
                keyid:17:73:3B:88:7C:39:A9:14:85:6A:EE:36:19:17:FC:E1:34:73:86:CD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e4c05daa3a6e5aa60346bc5b6a8b22c4c14ccb2c.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1b7924a2-bf21-496d-a8e0-cf890812a577/e6c009e7059a7cc8ea4e1a21766315ca34190f8e.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/1b7924a2-bf21-496d-a8e0-cf890812a577/e4c05daa3a6e5aa60346bc5b6a8b22c4c14ccb2c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.63.0.0/16
                  190.111.64.0/19
                  200.25.192.0/19
                IPv6:
                  2800:430::/32

    Signature Algorithm: sha256WithRSAEncryption
         80:10:9c:ad:06:4f:84:37:fe:11:e3:fd:16:d5:c1:68:47:e6:
         64:a0:1b:b1:b0:29:38:6e:6b:e3:f6:e4:e8:e1:10:58:45:9a:
         9f:da:18:de:dc:29:9d:de:dd:73:48:59:55:d9:cd:02:71:cc:
         2b:ca:24:ae:9c:fd:12:5d:1e:24:73:c6:13:33:9d:99:dc:9d:
         4d:08:c9:a4:1c:ed:75:01:20:63:92:06:7a:18:ac:7d:e2:7e:
         b6:c1:c5:d5:ca:2e:54:ac:c0:9d:34:a1:f2:f2:a4:c9:f3:36:
         1f:84:82:d3:98:9f:c6:cf:64:40:9c:b0:d4:28:8f:06:5e:39:
         9d:bb:06:a6:a8:89:66:af:6e:d5:c8:05:a6:89:f1:89:5b:45:
         14:19:2e:24:7c:08:62:d5:15:82:04:ff:4b:38:e6:ca:65:c0:
         b8:73:94:2f:05:5a:43:6a:85:b9:df:d1:98:28:33:07:5a:6e:
         3b:b1:26:8c:02:d4:21:ce:31:f7:f7:fe:21:2c:6c:10:90:47:
         a0:17:29:b5:d8:02:4b:29:70:2e:4f:e9:d6:a3:15:3a:6d:85:
         3e:18:58:6d:bb:d1:5a:bc:7d:96:32:99:6f:12:b6:a1:61:ae:
         f8:f4:91:d8:3b:43:f4:2d:9e:ee:b8:c0:d9:bb:ef:5f:f9:71:
         8b:96:ab:2a
-----BEGIN CERTIFICATE-----
MIIFWjCCBEKgAwIBAgIDDRmrMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGU0
YzA1ZGFhM2E2ZTVhYTYwMzQ2YmM1YjZhOGIyMmM0YzE0Y2NiMmMwHhcNMjEwMzI0
MTQzOTEzWhcNMjYwMzI0MTQzOTEzWjAzMTEwLwYDVQQDEyhlNmMwMDllNzA1OWE3
Y2M4ZWE0ZTFhMjE3NjYzMTVjYTM0MTkwZjhlMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAnicc5TcZInJyrtcl0xFPb2lEkXZHZ9p/leLc1aqScQHEHiiJ
q/iyJgQko4DG0AVwG4NuXqT1yXlHVYlScvgiK++e3TAUkFzssYHuhpzyzaG6pz7a
PJsLhzd3XNNjiVlfGFWb8UGLa8CeAi1+8YBGXbIn0kLsiyECpXiWM3ZS/b5tmsCt
sxN+e1/vKfv0XaeTbgP4d/kSGsSf1fx5z2NPCkbZ3xYnbWWe0IFcsKn1I7qI1Roa
mk7ItHpBPULdwsf2QHnL2xovFbHZeSz013NXMhNGfxLjt8cMpJ+TUN7U+3/6Tt/I
s/XjgRRPh252CBGsbwBYjzLKbWZ61kv/CA6bLQIDAQABo4ICdTCCAnEwHQYDVR0O
BBYEFCuGl1Bczox6JLsu5T2o52FV1Z7gMB8GA1UdIwQYMBaAFBdzO4h8OakUhWru
NhkX/OE0c4bNMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvZTRjMDVk
YWEzYTZlNWFhNjAzNDZiYzViNmE4YjIyYzRjMTRjY2IyYy5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMWI3OTI0YTItYmYyMS00OTZkLWE4ZTAtY2Y4OTA4
MTJhNTc3L2U2YzAwOWU3MDU5YTdjYzhlYTRlMWEyMTc2NjMxNWNhMzQxOTBmOGUu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8xYjc5MjRhMi1iZjIxLTQ5NmQtYThlMC1jZjg5
MDgxMmE1NzcvZTRjMDVkYWEzYTZlNWFhNjAzNDZiYzViNmE4YjIyYzRjMTRjY2Iy
Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA5BggrBgEFBQcBBwEB/wQq
MCgwFwQCAAEwEQMDAL4/AwQFvm9AAwQFyBnAMA0EAgACMAcDBQAoAAQwMA0GCSqG
SIb3DQEBCwUAA4IBAQCAEJytBk+EN/4R4/0W1cFoR+ZkoBuxsCk4bmvj9uTo4RBY
RZqf2hje3Cmd3t1zSFlV2c0CccwryiSunP0SXR4kc8YTM52Z3J1NCMmkHO11ASBj
kgZ6GKx94n62wcXVyi5UrMCdNKHy8qTJ8zYfhILTmJ/Gz2RAnLDUKI8GXjmduwam
qIlmr27VyAWmifGJW0UUGS4kfAhi1RWCBP9LOObKZcC4c5QvBVpDaoW539GYKDMH
Wm47sSaMAtQhzjH39/4hLGwQkEegFym12AJLKXAuT+nWoxU6bYU+GFhtu9FavH2W
MplvErahYa749JHYO0P0LZ7uuMDZu+9f+XGLlqsq
-----END CERTIFICATE-----
Generated at Sun Apr 14 05:33:32 2024 by rpki-client on console-ams.rpki-client.org