Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/21fb162d-aabe-4def-9aee-8edef86525f2/b9498ef8f903a359feab270c289f9653e3295c8f.roa
File:                     b9498ef8f903a359feab270c289f9653e3295c8f.roa (raw, json)
Hash identifier:          LskFe7oMtpnKLskgGeFl5x9Q0h23WrEtdUKlrL6gOQs=
Subject key identifier:   E1:2F:9B:6E:69:59:85:8F:72:32:28:68:88:1A:FE:0F:D2:87:4F:A8
Certificate issuer:       /CN=ec1523bbfba437489e206b8b056d0290c63fddbc
Certificate serial:       0498
Authority key identifier: DC:B8:CB:8E:D8:B0:05:B6:A3:D6:60:45:E4:4B:58:E4:D3:BF:13:16
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ec1523bbfba437489e206b8b056d0290c63fddbc.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/21fb162d-aabe-4def-9aee-8edef86525f2/b9498ef8f903a359feab270c289f9653e3295c8f.roa
Signing time:             Sat 03 Jun 2023 15:15:30 +0000
ROA not before:           Fri 02 Jun 2023 15:15:29 +0000
ROA not after:            Tue 03 Jun 2025 15:15:29 +0000
asID:                     265816
IP address blocks:        190.115.204.0/22 maxlen: 22

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/21fb162d-aabe-4def-9aee-8edef86525f2/ec1523bbfba437489e206b8b056d0290c63fddbc.crl
                          rsync://repository.lacnic.net/rpki/lacnic/21fb162d-aabe-4def-9aee-8edef86525f2/ec1523bbfba437489e206b8b056d0290c63fddbc.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ec1523bbfba437489e206b8b056d0290c63fddbc.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Fri 01 Mar 2024 15:12:08 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1176 (0x498)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ec1523bbfba437489e206b8b056d0290c63fddbc
        Validity
            Not Before: Jun  2 15:15:29 2023 GMT
            Not After : Jun  3 15:15:29 2025 GMT
        Subject: CN=b9498ef8f903a359feab270c289f9653e3295c8f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:84:bf:c9:ba:9e:f5:52:91:41:11:e3:df:af:ed:
                    ea:d3:70:13:10:4f:ef:85:9b:08:c3:5d:3a:be:7d:
                    e8:4b:8e:9b:f4:f8:68:a1:19:a3:9f:f8:1d:d3:83:
                    d7:9e:d4:46:11:ae:c1:39:62:01:f8:8c:91:dd:c0:
                    6c:c9:17:36:a1:bc:54:be:71:ae:bf:04:03:63:e5:
                    ec:3e:72:03:07:dd:23:f6:e8:54:7a:7a:17:a5:d9:
                    f1:fa:cf:6d:ad:fd:ba:9b:44:7e:23:68:12:eb:6e:
                    71:ef:44:fd:83:04:97:7f:2e:53:56:b2:e3:6b:30:
                    2c:ec:d6:f0:24:b2:f7:aa:7e:4f:c2:89:1e:08:fa:
                    1a:72:5e:f0:b8:3b:a7:c6:14:98:15:6c:29:5a:74:
                    a9:91:35:51:d3:3c:f4:3d:77:56:bc:3c:27:8f:d1:
                    f2:7c:da:84:fb:1e:28:a9:fd:71:c4:d1:97:df:e6:
                    71:47:1c:aa:66:67:06:32:ff:3f:56:47:11:2f:67:
                    35:4c:ba:33:af:15:70:cc:a0:b0:95:db:1b:a0:d5:
                    37:7b:a6:fc:df:88:db:8f:74:b6:8e:93:d5:5d:f2:
                    89:f3:11:fb:ef:25:21:24:7a:89:b6:df:3f:d6:a2:
                    91:70:f4:e9:84:10:bb:0b:b6:c3:8e:f5:2c:dc:99:
                    a9:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E1:2F:9B:6E:69:59:85:8F:72:32:28:68:88:1A:FE:0F:D2:87:4F:A8
            X509v3 Authority Key Identifier:
                keyid:DC:B8:CB:8E:D8:B0:05:B6:A3:D6:60:45:E4:4B:58:E4:D3:BF:13:16

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ec1523bbfba437489e206b8b056d0290c63fddbc.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/21fb162d-aabe-4def-9aee-8edef86525f2/b9498ef8f903a359feab270c289f9653e3295c8f.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/21fb162d-aabe-4def-9aee-8edef86525f2/ec1523bbfba437489e206b8b056d0290c63fddbc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.115.204.0/22

    Signature Algorithm: sha256WithRSAEncryption
         2c:48:5c:6d:eb:db:01:7d:fc:8d:9f:f1:06:10:23:64:c1:6f:
         74:27:95:2b:3d:90:69:9e:fb:66:de:1d:56:95:5b:66:6d:8d:
         3c:54:1a:bd:8a:59:18:fb:01:2a:56:b2:3e:8f:e5:2c:af:73:
         aa:40:74:d7:98:c4:a1:f1:ef:38:13:ad:42:43:11:7d:91:7c:
         3e:0d:24:57:60:d6:1e:d5:d6:14:d7:d3:e8:dd:4a:14:74:91:
         9f:62:c6:42:97:7a:3b:08:fd:c0:f3:b7:6f:88:96:ac:7e:1b:
         e3:59:92:89:ac:42:a4:a8:91:3c:4b:31:51:52:21:1d:47:1b:
         cb:c8:6c:06:aa:79:d1:7e:9f:7c:05:d9:ba:d6:5b:fb:39:c6:
         83:30:ba:c1:04:21:49:ff:05:ee:d6:2b:75:29:6f:bc:48:14:
         09:a6:9e:ab:1d:17:a8:65:c9:8d:82:15:f2:71:e1:9c:3b:21:
         26:00:94:dc:85:d9:7a:9f:13:b9:1f:af:4c:3d:ba:46:b5:25:
         10:f0:15:18:86:6d:51:a8:32:f4:2f:2e:4d:29:6f:24:52:61:
         0d:a0:0a:ee:37:57:09:e6:e5:a9:45:3c:de:07:44:b3:2e:6a:
         23:33:00:75:97:a2:d1:2b:0d:c2:86:e6:16:d9:51:0f:da:bd:
         41:8c:e4:84
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgICBJgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoZWMx
NTIzYmJmYmE0Mzc0ODllMjA2YjhiMDU2ZDAyOTBjNjNmZGRiYzAeFw0yMzA2MDIx
NTE1MjlaFw0yNTA2MDMxNTE1MjlaMDMxMTAvBgNVBAMTKGI5NDk4ZWY4ZjkwM2Ez
NTlmZWFiMjcwYzI4OWY5NjUzZTMyOTVjOGYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCEv8m6nvVSkUER49+v7erTcBMQT++FmwjDXTq+fehLjpv0+Gih
GaOf+B3Tg9ee1EYRrsE5YgH4jJHdwGzJFzahvFS+ca6/BANj5ew+cgMH3SP26FR6
ehel2fH6z22t/bqbRH4jaBLrbnHvRP2DBJd/LlNWsuNrMCzs1vAksveqfk/CiR4I
+hpyXvC4O6fGFJgVbCladKmRNVHTPPQ9d1a8PCeP0fJ82oT7Hiip/XHE0Zff5nFH
HKpmZwYy/z9WRxEvZzVMujOvFXDMoLCV2xug1Td7pvzfiNuPdLaOk9Vd8onzEfvv
JSEkeom23z/WopFw9OmEELsLtsOO9SzcmamVAgMBAAGjggJbMIICVzAdBgNVHQ4E
FgQU4S+bbmlZhY9yMihoiBr+D9KHT6gwHwYDVR0jBBgwFoAU3LjLjtiwBbaj1mBF
5EtY5NO/ExYwDgYDVR0PAQH/BAQDAgeAMIGaBggrBgEFBQcBAQSBjTCBijCBhwYI
KwYBBQUHMAKGe3JzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kvbGFj
bmljLzQ4ZjA4M2JiLWY2MDMtNDg5My05OTkwLTAyODRjMDRjZWI4NS9lYzE1MjNi
YmZiYTQzNzQ4OWUyMDZiOGIwNTZkMDI5MGM2M2ZkZGJjLmNlcjCBmgYIKwYBBQUH
AQsEgY0wgYowgYcGCCsGAQUFBzALhntyc3luYzovL3JlcG9zaXRvcnkubGFjbmlj
Lm5ldC9ycGtpL2xhY25pYy8yMWZiMTYyZC1hYWJlLTRkZWYtOWFlZS04ZWRlZjg2
NTI1ZjIvYjk0OThlZjhmOTAzYTM1OWZlYWIyNzBjMjg5Zjk2NTNlMzI5NWM4Zi5y
b2EwgY8GA1UdHwSBhzCBhDCBgaB/oH2Ge3JzeW5jOi8vcmVwb3NpdG9yeS5sYWNu
aWMubmV0L3Jwa2kvbGFjbmljLzIxZmIxNjJkLWFhYmUtNGRlZi05YWVlLThlZGVm
ODY1MjVmMi9lYzE1MjNiYmZiYTQzNzQ4OWUyMDZiOGIwNTZkMDI5MGM2M2ZkZGJj
LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw
DjAMBAIAATAGAwQCvnPMMA0GCSqGSIb3DQEBCwUAA4IBAQAsSFxt69sBffyNn/EG
ECNkwW90J5UrPZBpnvtm3h1WlVtmbY08VBq9ilkY+wEqVrI+j+Usr3OqQHTXmMSh
8e84E61CQxF9kXw+DSRXYNYe1dYU19Po3UoUdJGfYsZCl3o7CP3A87dviJasfhvj
WZKJrEKkqJE8SzFRUiEdRxvLyGwGqnnRfp98Bdm61lv7OcaDMLrBBCFJ/wXu1it1
KW+8SBQJpp6rHReoZcmNghXyceGcOyEmAJTchdl6nxO5H69MPbpGtSUQ8BUYhm1R
qDL0Ly5NKW8kUmENoAruN1cJ5uWpRTzeB0SzLmojMwB1l6LRKw3ChuYW2VEP2r1B
jOSE
-----END CERTIFICATE-----
Generated at Tue Feb 27 16:10:15 2024 by rpki-client on console-fra.rpki-client.org