Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/220391039701C79346B76FB10EAB6F4717EA71ED125CCFE9B95744CF0340C919/0/3139302e38332e37382e302f32332d3234203d3e203134303830.roa
File:                     3139302e38332e37382e302f32332d3234203d3e203134303830.roa (raw, json)
Hash identifier:          tlE6TsVaXg1bCHtxd8jLHTztuKszudO36qNccjFa8xg=
Subject key identifier:   EA:0B:7D:DB:C4:28:F2:2B:38:E4:F1:A6:94:48:0A:64:5E:58:67:D5
Certificate issuer:       /CN=A597442BE252949C19F9D69F7BF6A9CDDB54134B
Certificate serial:       339F1DA5CEC967547A8BAE6DC4A49FF2345FBC82
Authority key identifier: A5:97:44:2B:E2:52:94:9C:19:F9:D6:9F:7B:F6:A9:CD:DB:54:13:4B
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A597442BE252949C19F9D69F7BF6A9CDDB54134B.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/220391039701C79346B76FB10EAB6F4717EA71ED125CCFE9B95744CF0340C919/0/3139302e38332e37382e302f32332d3234203d3e203134303830.roa
Signing time:             Tue 05 Mar 2024 18:14:14 +0000
ROA not before:           Tue 05 Mar 2024 18:09:14 +0000
ROA not after:            Tue 04 Mar 2025 18:14:14 +0000
asID:                     14080
IP address blocks:        190.83.78.0/23 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/220391039701C79346B76FB10EAB6F4717EA71ED125CCFE9B95744CF0340C919/0/A597442BE252949C19F9D69F7BF6A9CDDB54134B.crl
                          rsync://repository.lacnic.net/rpki/lacnic/220391039701C79346B76FB10EAB6F4717EA71ED125CCFE9B95744CF0340C919/0/A597442BE252949C19F9D69F7BF6A9CDDB54134B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A597442BE252949C19F9D69F7BF6A9CDDB54134B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Wed 26 Jun 2024 10:27:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            33:9f:1d:a5:ce:c9:67:54:7a:8b:ae:6d:c4:a4:9f:f2:34:5f:bc:82
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A597442BE252949C19F9D69F7BF6A9CDDB54134B
        Validity
            Not Before: Mar  5 18:09:14 2024 GMT
            Not After : Mar  4 18:14:14 2025 GMT
        Subject: CN=EA0B7DDBC428F22B38E4F1A694480A645E5867D5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:0c:e2:78:a3:ba:71:5e:5f:5a:8b:65:66:49:
                    4a:96:6c:6c:7f:3d:55:4e:c2:d3:5a:ab:f2:66:88:
                    5e:cd:1b:65:9c:a6:2c:e3:12:77:b6:79:49:2a:ac:
                    e5:fc:29:3a:1d:ad:6b:51:3d:38:ab:57:d5:d9:b7:
                    ba:2a:c3:94:f9:a6:f7:65:2b:ac:07:67:f2:05:b1:
                    3d:62:c2:c2:c0:e0:5c:b5:71:e7:7a:68:dc:30:2e:
                    33:9b:a3:0c:19:11:2f:0e:7c:fd:38:6b:fe:c4:19:
                    bd:f0:44:6a:7c:9b:1b:cd:bf:a0:25:e8:45:08:0d:
                    23:be:ed:ae:20:15:11:76:34:32:83:91:ae:16:36:
                    2a:45:27:6f:07:f0:ab:59:de:1b:f3:cc:9f:a4:51:
                    29:91:87:08:73:0e:71:18:da:1b:05:78:ea:85:54:
                    69:a2:94:e6:bd:32:04:58:3e:ee:77:b3:f6:10:51:
                    c4:80:ba:65:39:b5:ae:90:a0:15:13:e0:8b:2f:b8:
                    55:96:ab:22:fe:09:b6:ad:a3:38:57:6b:c4:b5:55:
                    1c:be:9a:71:87:ce:b9:bf:48:d4:75:b7:24:4d:9b:
                    d3:08:71:3a:d2:d1:99:71:86:ad:64:5e:c9:f5:a0:
                    3e:f2:ca:4b:30:71:3a:ee:d4:c6:b9:ae:bc:81:45:
                    68:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:0B:7D:DB:C4:28:F2:2B:38:E4:F1:A6:94:48:0A:64:5E:58:67:D5
            X509v3 Authority Key Identifier:
                keyid:A5:97:44:2B:E2:52:94:9C:19:F9:D6:9F:7B:F6:A9:CD:DB:54:13:4B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/220391039701C79346B76FB10EAB6F4717EA71ED125CCFE9B95744CF0340C919/0/A597442BE252949C19F9D69F7BF6A9CDDB54134B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A597442BE252949C19F9D69F7BF6A9CDDB54134B.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/220391039701C79346B76FB10EAB6F4717EA71ED125CCFE9B95744CF0340C919/0/3139302e38332e37382e302f32332d3234203d3e203134303830.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.83.78.0/23

    Signature Algorithm: sha256WithRSAEncryption
         a1:d9:e2:da:92:79:3d:a7:ba:c0:f4:cd:77:98:82:22:51:37:
         d7:d3:b2:d0:a7:6e:6d:9c:90:56:6e:bd:d4:69:e6:8e:3d:2e:
         a1:45:fd:c0:43:42:c9:49:9a:f3:a2:3d:03:9a:40:7c:48:7e:
         cd:41:47:a5:29:01:9b:7b:87:ea:cf:dd:95:61:22:ad:d5:0c:
         c5:9e:5d:f4:0c:88:d4:c2:d3:e4:95:7d:35:b9:74:d0:81:e4:
         b8:a1:0c:cb:9c:4e:39:05:2d:b9:a3:8f:7d:2c:5b:c5:4b:d9:
         9d:4e:25:06:56:76:5c:c6:f2:1d:18:cf:89:b1:74:cd:62:6c:
         5b:3f:ff:fd:a7:42:62:67:c3:e7:9e:95:11:8e:62:c9:b1:0e:
         f7:26:ce:f9:21:37:92:11:35:85:d0:e4:72:c4:bc:b8:5e:5a:
         e7:99:62:0a:fb:de:25:56:43:a5:42:1e:e0:be:54:ed:fa:e1:
         fa:11:8f:14:a8:fc:7d:4e:11:d0:29:6f:78:9c:eb:c6:c9:6e:
         9b:85:73:09:a0:29:69:1a:a5:9c:2a:4e:6c:3a:d6:14:14:6c:
         c2:f5:28:65:09:45:ed:ec:6d:be:17:56:cc:92:d4:ff:cc:45:
         45:27:ae:cd:d1:fb:8e:98:93:4e:3e:f1:61:ec:f9:73:15:5e:
         f5:68:ba:f6
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIUM58dpc7JZ1R6i65txKSf8jRfvIIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQTU5NzQ0MkJFMjUyOTQ5QzE5RjlENjlGN0JGNkE5Q0RE
QjU0MTM0QjAeFw0yNDAzMDUxODA5MTRaFw0yNTAzMDQxODE0MTRaMDMxMTAvBgNV
BAMTKEVBMEI3RERCQzQyOEYyMkIzOEU0RjFBNjk0NDgwQTY0NUU1ODY3RDUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3DOJ4o7pxXl9ai2VmSUqWbGx/
PVVOwtNaq/JmiF7NG2WcpizjEne2eUkqrOX8KTodrWtRPTirV9XZt7oqw5T5pvdl
K6wHZ/IFsT1iwsLA4Fy1ced6aNwwLjObowwZES8OfP04a/7EGb3wRGp8mxvNv6Al
6EUIDSO+7a4gFRF2NDKDka4WNipFJ28H8KtZ3hvzzJ+kUSmRhwhzDnEY2hsFeOqF
VGmilOa9MgRYPu53s/YQUcSAumU5ta6QoBUT4IsvuFWWqyL+CbatozhXa8S1VRy+
mnGHzrm/SNR1tyRNm9MIcTrS0Zlxhq1kXsn1oD7yykswcTru1Ma5rryBRWgVAgMB
AAGjggLGMIICwjAdBgNVHQ4EFgQU6gt928Qo8is45PGmlEgKZF5YZ9UwHwYDVR0j
BBgwFoAUpZdEK+JSlJwZ+dafe/apzdtUE0swDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8yMjAzOTEwMzk3MDFDNzkzNDZCNzZGQjEwRUFCNkY0NzE3
RUE3MUVEMTI1Q0NGRTlCOTU3NDRDRjAzNDBDOTE5LzAvQTU5NzQ0MkJFMjUyOTQ5
QzE5RjlENjlGN0JGNkE5Q0REQjU0MTM0Qi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9BNTk3NDQyQkUyNTI5NDlDMTlG
OUQ2OUY3QkY2QTlDRERCNTQxMzRCLmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMjIwMzkxMDM5NzAxQzc5MzQ2Qjc2RkIxMEVBQjZGNDcxN0VBNzFFRDEy
NUNDRkU5Qjk1NzQ0Q0YwMzQwQzkxOS8wLzMxMzkzMDJlMzgzMzJlMzczODJlMzAy
ZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzQzMDM4MzAucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAG+U04wDQYJ
KoZIhvcNAQELBQADggEBAKHZ4tqSeT2nusD0zXeYgiJRN9fTstCnbm2ckFZuvdRp
5o49LqFF/cBDQslJmvOiPQOaQHxIfs1BR6UpAZt7h+rP3ZVhIq3VDMWeXfQMiNTC
0+SVfTW5dNCB5LihDMucTjkFLbmjj30sW8VL2Z1OJQZWdlzG8h0Yz4mxdM1ibFs/
//2nQmJnw+eelRGOYsmxDvcmzvkhN5IRNYXQ5HLEvLheWueZYgr73iVWQ6VCHuC+
VO364foRjxSo/H1OEdApb3ic68bJbpuFcwmgKWkapZwqTmw61hQUbML1KGUJRe3s
bb4XVsyS1P/MRUUnrs3R+46Yk04+8WHs+XMVXvVouvY=
-----END CERTIFICATE-----
Generated at Sat Jun 22 03:12:12 2024 by rpki-client on console-ams.rpki-client.org