Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/241b5edd-68e5-4ea0-b535-52ecf99a0891/22f2dd60acb734828954d9fd0c031937deeb5a10.roa
File:                     22f2dd60acb734828954d9fd0c031937deeb5a10.roa (raw, json)
Hash identifier:          ZrK0BFgcEwDNBkXIdjLLxCz7rZzTVwfeq1EaEJpG9YI=
Subject key identifier:   FD:DE:38:15:4D:02:07:6A:6A:6F:FB:78:0E:0E:5D:98:D7:05:1B:0F
Certificate issuer:       /CN=4714a8fc89277634ae57cdaf4d814514cd61f656
Certificate serial:       15D837
Authority key identifier: 25:F3:6F:92:FF:31:91:9D:EA:9D:E8:18:EE:46:83:9A:1E:6E:17:EF
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4714a8fc89277634ae57cdaf4d814514cd61f656.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/241b5edd-68e5-4ea0-b535-52ecf99a0891/22f2dd60acb734828954d9fd0c031937deeb5a10.roa
Signing time:             Tue 24 May 2022 17:18:32 +0000
ROA not before:           Tue 24 May 2022 03:00:00 +0000
ROA not after:            Mon 24 May 2027 03:00:00 +0000
asID:                     26619
IP address blocks:        179.50.72.0/21 maxlen: 24
                          179.50.78.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/241b5edd-68e5-4ea0-b535-52ecf99a0891/4714a8fc89277634ae57cdaf4d814514cd61f656.crl
                          rsync://repository.lacnic.net/rpki/lacnic/241b5edd-68e5-4ea0-b535-52ecf99a0891/4714a8fc89277634ae57cdaf4d814514cd61f656.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4714a8fc89277634ae57cdaf4d814514cd61f656.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 19:38:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1431607 (0x15d837)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4714a8fc89277634ae57cdaf4d814514cd61f656
        Validity
            Not Before: May 24 03:00:00 2022 GMT
            Not After : May 24 03:00:00 2027 GMT
        Subject: CN=22f2dd60acb734828954d9fd0c031937deeb5a10
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:0f:a0:ab:a7:5b:02:5d:5a:6e:35:1b:8e:38:
                    93:bd:b3:fe:59:63:5f:17:c4:68:9f:5f:bc:34:77:
                    8c:a2:1e:23:f9:9d:d3:b1:1e:3f:11:3b:34:25:b0:
                    da:cb:93:76:f6:43:ff:1c:80:47:62:c8:5c:c9:1b:
                    b2:af:58:0e:ca:af:b2:2f:f9:c8:db:c2:b0:a9:f4:
                    6a:19:4f:5e:34:c1:47:0f:2d:fb:3e:a7:d8:5d:e3:
                    2d:9e:3e:e1:68:bf:ee:9a:52:ee:4e:e9:5b:fb:b4:
                    e3:d5:22:df:a0:aa:86:58:c5:ea:86:b4:c3:2e:a5:
                    b3:61:01:9f:91:23:e1:13:b5:e5:ca:8d:bf:38:53:
                    22:64:b3:b5:2a:a9:70:50:91:27:0b:9b:91:35:aa:
                    03:e6:b7:9a:a5:01:9e:d2:e3:2c:9e:3e:a8:d6:8b:
                    b1:ec:98:3d:d8:44:99:bf:e0:a0:cf:22:d9:f4:15:
                    76:b6:78:82:f0:5d:0f:15:bb:80:e1:21:54:58:2d:
                    48:76:e2:fb:7a:34:be:21:6b:9e:3c:47:4b:ab:da:
                    45:c1:7b:9e:4e:2f:3f:f7:68:59:9d:a4:ae:d5:6d:
                    6b:85:01:24:15:2d:6f:46:26:79:1c:23:9e:bb:60:
                    0b:59:2f:b3:76:4c:3a:c4:70:f3:d4:01:a2:a0:52:
                    5b:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FD:DE:38:15:4D:02:07:6A:6A:6F:FB:78:0E:0E:5D:98:D7:05:1B:0F
            X509v3 Authority Key Identifier:
                keyid:25:F3:6F:92:FF:31:91:9D:EA:9D:E8:18:EE:46:83:9A:1E:6E:17:EF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4714a8fc89277634ae57cdaf4d814514cd61f656.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/241b5edd-68e5-4ea0-b535-52ecf99a0891/22f2dd60acb734828954d9fd0c031937deeb5a10.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/241b5edd-68e5-4ea0-b535-52ecf99a0891/4714a8fc89277634ae57cdaf4d814514cd61f656.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  179.50.72.0/21

    Signature Algorithm: sha256WithRSAEncryption
         c9:3e:66:d1:73:e8:d5:1f:aa:8e:f1:6a:b2:4f:fa:99:3a:37:
         b1:2f:b2:65:f3:a9:28:c0:1c:69:b5:73:5a:5f:40:a6:98:bf:
         8f:30:89:15:a3:96:03:b5:af:d9:ee:e8:75:62:82:cd:e7:55:
         e6:5a:55:44:df:0e:4d:95:68:23:e2:b3:fe:fd:4f:25:6b:14:
         22:ec:07:77:95:7a:4e:bd:f7:19:d3:3c:b2:49:3e:78:59:8a:
         6f:6c:ad:08:03:8f:80:7d:55:67:45:bc:5f:bf:9a:24:5a:f3:
         8d:d3:cd:a5:dd:32:66:e2:9e:c1:77:6a:a1:dc:0b:5d:38:9e:
         94:5d:49:f8:b3:29:ae:1a:10:02:93:59:8d:88:cf:3a:ac:9d:
         5b:b3:08:df:55:61:20:53:94:46:2f:09:30:bb:3d:37:b2:b0:
         34:a1:54:10:25:cd:ed:a2:d8:e3:9e:99:f7:f0:86:fc:b2:e4:
         d6:93:2a:de:55:bb:40:4c:7f:06:7f:34:e0:78:42:1c:92:50:
         6b:2a:25:28:81:2a:f6:21:2d:74:ac:6b:e1:03:2d:9c:a4:fe:
         16:e1:4f:da:73:ea:c9:ae:48:b2:af:d8:5b:72:56:19:55:71:
         45:4b:17:9d:cf:36:0f:13:6c:1e:9d:c1:84:cf:44:a4:d8:3c:
         3f:a5:04:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 03:23:51 2024 by rpki-client on console-ams.rpki-client.org