Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1f1f1cc1-247d-4f2b-a1e9-d6910bc6b651/0ee474d904ba1086bb8dd435550ee8d920ab58c2.roa
File:                     0ee474d904ba1086bb8dd435550ee8d920ab58c2.roa (raw, json)
Hash identifier:          hsqfY4OKGHboD5KAetbu97X/sGND+HlVo3KWEg1qumA=
Subject key identifier:   21:33:DC:E8:AF:50:2F:C7:71:31:5C:66:9C:4B:9A:1B:DA:33:62:6A
Certificate issuer:       /CN=8b212b3e5e4578c90e2826cd05317ea5fc56e905
Certificate serial:       0B7042
Authority key identifier: 4F:E8:6D:76:9C:07:98:95:E0:0C:CF:90:9A:79:7B:CA:0B:83:03:1A
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8b212b3e5e4578c90e2826cd05317ea5fc56e905.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/1f1f1cc1-247d-4f2b-a1e9-d6910bc6b651/0ee474d904ba1086bb8dd435550ee8d920ab58c2.roa
Signing time:             Wed 24 Mar 2021 14:45:18 +0000
ROA not before:           Wed 24 Mar 2021 14:45:18 +0000
ROA not after:            Tue 24 Mar 2026 14:45:18 +0000
asID:                     52468
IP address blocks:        45.185.128.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/1f1f1cc1-247d-4f2b-a1e9-d6910bc6b651/8b212b3e5e4578c90e2826cd05317ea5fc56e905.crl
                          rsync://repository.lacnic.net/rpki/lacnic/1f1f1cc1-247d-4f2b-a1e9-d6910bc6b651/8b212b3e5e4578c90e2826cd05317ea5fc56e905.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8b212b3e5e4578c90e2826cd05317ea5fc56e905.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Tue 27 Feb 2024 21:42:22 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 749634 (0xb7042)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8b212b3e5e4578c90e2826cd05317ea5fc56e905
        Validity
            Not Before: Mar 24 14:45:18 2021 GMT
            Not After : Mar 24 14:45:18 2026 GMT
        Subject: CN=0ee474d904ba1086bb8dd435550ee8d920ab58c2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8c:3d:9a:3d:80:41:af:b6:80:19:3a:7b:7c:6b:
                    ca:bc:93:5b:e7:9b:11:c2:dc:51:78:b3:88:2b:bf:
                    1a:a7:80:eb:2d:ae:ef:ae:39:e8:77:2f:96:0c:04:
                    f8:83:20:c8:7d:b2:7e:20:40:f8:f5:78:5d:5a:06:
                    25:2b:55:59:37:6c:99:6d:6b:ef:be:0c:8c:e6:8d:
                    ec:5c:a9:29:70:97:cf:06:97:71:08:07:b6:6b:b6:
                    76:f8:e6:38:59:d0:0c:31:55:b6:a9:1e:6f:76:91:
                    a5:5b:d9:16:14:4b:79:57:df:e6:54:de:1a:ee:6c:
                    87:f9:7b:b3:1f:bd:c0:31:75:5f:d1:c6:e0:eb:45:
                    d2:02:34:a2:ed:d6:b0:d5:bb:16:f5:ac:1a:ea:b3:
                    8b:e8:5d:94:08:95:0b:c3:81:92:ff:b6:4f:25:2d:
                    b9:70:ca:05:29:68:37:78:6e:a5:d7:e8:8c:ab:47:
                    79:94:a8:8a:7b:64:f3:fd:05:30:75:07:2d:22:07:
                    36:b5:e5:40:26:ee:ed:d5:8d:2c:85:af:09:23:6d:
                    b8:fb:a8:94:e7:3e:6b:f3:17:cf:a6:15:55:84:df:
                    fc:6a:e3:11:0f:fe:52:f0:d6:d2:9c:94:7d:9a:ff:
                    8d:5a:87:f2:40:5b:dd:ab:00:5e:80:fe:8b:f4:cd:
                    ac:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                21:33:DC:E8:AF:50:2F:C7:71:31:5C:66:9C:4B:9A:1B:DA:33:62:6A
            X509v3 Authority Key Identifier:
                keyid:4F:E8:6D:76:9C:07:98:95:E0:0C:CF:90:9A:79:7B:CA:0B:83:03:1A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8b212b3e5e4578c90e2826cd05317ea5fc56e905.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1f1f1cc1-247d-4f2b-a1e9-d6910bc6b651/0ee474d904ba1086bb8dd435550ee8d920ab58c2.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/1f1f1cc1-247d-4f2b-a1e9-d6910bc6b651/8b212b3e5e4578c90e2826cd05317ea5fc56e905.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.185.128.0/24

    Signature Algorithm: sha256WithRSAEncryption
         10:df:9b:e8:e2:f1:e1:b2:a9:8b:23:56:10:3d:1b:7f:f7:49:
         f7:f9:a3:0c:a6:83:da:f1:c5:82:3d:ae:c0:66:6e:c2:83:79:
         30:a9:9e:28:57:78:41:e8:4b:d3:ca:dc:e6:81:1a:60:50:dc:
         b0:23:48:73:8d:09:e4:ad:51:7b:1a:a2:55:f0:57:78:9a:5c:
         55:03:02:e9:6f:2d:eb:f8:99:b0:01:09:3d:10:07:4d:35:1f:
         0c:b5:19:12:35:93:2f:04:bb:d7:d1:1d:c1:ae:6e:4e:41:66:
         15:7c:bb:85:4f:1d:f3:4f:c3:e3:bf:6d:2b:4d:a7:62:0f:ca:
         9c:7b:92:11:61:85:50:84:43:c6:08:16:81:86:48:28:4b:ee:
         55:a3:a3:e7:e7:a7:48:23:9e:2a:15:e9:b3:aa:6b:9c:46:73:
         9c:92:4f:4d:cd:19:ac:23:5c:ee:a5:19:0b:07:2f:53:a4:a0:
         81:05:65:e6:b3:cf:4a:e7:2b:c2:00:ee:3c:e0:ef:72:b8:84:
         e9:0d:da:02:f6:e4:0e:23:3d:4d:86:1e:c0:79:42:cd:68:b1:
         42:e4:08:60:e7:60:25:87:23:f6:66:f4:22:ee:72:81:92:d8:
         bd:49:35:ff:80:94:27:71:78:b0:81:6d:c8:cc:49:24:f4:cb:
         3b:8d:e4:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Feb 24 22:36:24 2024 by rpki-client on console-ams.rpki-client.org