Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/241b5edd-68e5-4ea0-b535-52ecf99a0891/7b8e29924f81d935e7cf51e77336920732cfd4db.roa
File:                     7b8e29924f81d935e7cf51e77336920732cfd4db.roa (raw, json)
Hash identifier:          W+JRzkxJP+Kh0eLKJ5zPauJpnH+juCbdi7IPdY0zD3Y=
Subject key identifier:   38:27:44:B9:1A:60:D7:06:A8:A3:77:C0:EE:AB:6D:47:AC:5D:C8:29
Certificate issuer:       /CN=4714a8fc89277634ae57cdaf4d814514cd61f656
Certificate serial:       15C358
Authority key identifier: 25:F3:6F:92:FF:31:91:9D:EA:9D:E8:18:EE:46:83:9A:1E:6E:17:EF
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4714a8fc89277634ae57cdaf4d814514cd61f656.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/241b5edd-68e5-4ea0-b535-52ecf99a0891/7b8e29924f81d935e7cf51e77336920732cfd4db.roa
Signing time:             Tue 24 May 2022 15:51:46 +0000
ROA not before:           Tue 24 May 2022 03:00:00 +0000
ROA not after:            Mon 24 May 2027 03:00:00 +0000
asID:                     26619
IP address blocks:        179.50.104.0/21 maxlen: 21

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/241b5edd-68e5-4ea0-b535-52ecf99a0891/4714a8fc89277634ae57cdaf4d814514cd61f656.crl
                          rsync://repository.lacnic.net/rpki/lacnic/241b5edd-68e5-4ea0-b535-52ecf99a0891/4714a8fc89277634ae57cdaf4d814514cd61f656.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4714a8fc89277634ae57cdaf4d814514cd61f656.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 03:49:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1426264 (0x15c358)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4714a8fc89277634ae57cdaf4d814514cd61f656
        Validity
            Not Before: May 24 03:00:00 2022 GMT
            Not After : May 24 03:00:00 2027 GMT
        Subject: CN=7b8e29924f81d935e7cf51e77336920732cfd4db
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:88:9c:f1:07:b1:a8:58:bf:01:2c:ff:54:c4:
                    20:5f:3a:27:8c:5f:51:8d:6d:c3:b9:8a:a4:18:d6:
                    93:0d:46:ab:6f:98:42:a5:85:80:c2:f0:50:3b:ff:
                    56:43:28:6a:c3:77:42:ca:88:3a:d7:5e:7d:c9:09:
                    c9:05:b6:21:4a:ae:6a:78:04:76:32:3b:1b:fd:37:
                    b6:55:68:af:e4:45:bc:e7:a5:2e:20:ae:7a:46:57:
                    55:87:6f:7c:d2:06:a9:3e:55:f8:5f:7f:bb:32:55:
                    04:d0:ea:81:cc:e4:f8:81:be:9b:76:45:c1:91:65:
                    ab:13:03:43:f5:98:50:f4:a1:22:6f:23:6a:ed:ee:
                    6b:5b:6b:98:91:69:0f:30:d5:d4:97:ef:50:3c:a9:
                    25:8b:6e:78:a8:1e:f8:d2:ff:cc:0b:9a:a2:93:9b:
                    8e:42:f7:a5:5f:39:c6:eb:b3:c5:c7:52:20:ab:01:
                    52:91:52:83:0e:2f:2a:9b:86:53:19:80:60:ad:28:
                    9e:89:7e:f1:49:59:e4:ee:4a:13:ce:c5:ed:93:ba:
                    67:5d:41:cb:d6:e5:a1:c2:98:df:0c:69:12:b6:f5:
                    08:86:a2:0d:0c:f1:01:90:d6:12:65:0d:7e:9a:11:
                    ea:9e:c6:42:8d:fa:20:45:d6:c0:bc:b1:46:4f:26:
                    f6:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                38:27:44:B9:1A:60:D7:06:A8:A3:77:C0:EE:AB:6D:47:AC:5D:C8:29
            X509v3 Authority Key Identifier:
                keyid:25:F3:6F:92:FF:31:91:9D:EA:9D:E8:18:EE:46:83:9A:1E:6E:17:EF

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4714a8fc89277634ae57cdaf4d814514cd61f656.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/241b5edd-68e5-4ea0-b535-52ecf99a0891/7b8e29924f81d935e7cf51e77336920732cfd4db.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/241b5edd-68e5-4ea0-b535-52ecf99a0891/4714a8fc89277634ae57cdaf4d814514cd61f656.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  179.50.104.0/21

    Signature Algorithm: sha256WithRSAEncryption
         4e:40:89:17:62:e3:cc:d8:5c:03:8d:6d:24:1a:06:08:fa:d6:
         f1:5d:f1:01:ea:c4:2e:0f:aa:cd:88:67:ba:86:b2:f5:4c:87:
         68:f7:42:df:47:54:bc:30:00:85:dc:48:8e:e8:04:2f:7a:00:
         ff:5b:19:0b:72:6d:4d:6e:07:d4:16:1a:bc:49:b1:2f:79:8b:
         b0:c5:c4:86:06:36:45:b3:25:28:09:48:86:6a:69:d0:53:a8:
         1f:fc:49:55:4d:10:12:2a:f5:53:af:55:9b:f0:42:5a:12:d0:
         09:d6:df:3f:ec:38:bb:b1:1e:c6:ff:da:3f:b9:48:cc:72:24:
         52:cb:a0:ad:e8:b3:bb:a1:3d:e6:49:30:85:4b:e0:ac:ca:1d:
         54:dc:86:c4:6f:54:26:ae:c8:60:11:61:38:82:47:3c:d0:d0:
         a0:1b:c0:67:cb:5a:52:5c:22:49:86:f5:d5:04:24:a4:49:e5:
         6f:fb:c8:4f:51:a9:36:6e:f1:46:ff:bc:1a:a3:6c:33:a1:5e:
         0f:aa:19:82:cb:64:3c:25:e7:9b:43:4e:21:9e:21:b9:ab:19:
         1f:df:87:b0:4e:a3:37:ab:4e:a5:7f:fa:b1:97:b2:84:95:56:
         fd:fa:07:68:2c:c8:d5:54:0d:b6:75:85:eb:6e:6f:ba:97:8c:
         02:55:df:ba
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIDFcNYMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDQ3
MTRhOGZjODkyNzc2MzRhZTU3Y2RhZjRkODE0NTE0Y2Q2MWY2NTYwHhcNMjIwNTI0
MDMwMDAwWhcNMjcwNTI0MDMwMDAwWjAzMTEwLwYDVQQDEyg3YjhlMjk5MjRmODFk
OTM1ZTdjZjUxZTc3MzM2OTIwNzMyY2ZkNGRiMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEApoic8QexqFi/ASz/VMQgXzonjF9RjW3DuYqkGNaTDUarb5hC
pYWAwvBQO/9WQyhqw3dCyog61159yQnJBbYhSq5qeAR2Mjsb/Te2VWiv5EW856Uu
IK56RldVh2980gapPlX4X3+7MlUE0OqBzOT4gb6bdkXBkWWrEwND9ZhQ9KEibyNq
7e5rW2uYkWkPMNXUl+9QPKkli254qB740v/MC5qik5uOQvelXznG67PFx1IgqwFS
kVKDDi8qm4ZTGYBgrSieiX7xSVnk7koTzsXtk7pnXUHL1uWhwpjfDGkStvUIhqIN
DPEBkNYSZQ1+mhHqnsZCjfogRdbAvLFGTyb2UQIDAQABo4ICWzCCAlcwHQYDVR0O
BBYEFDgnRLkaYNcGqKN3wO6rbUesXcgpMB8GA1UdIwQYMBaAFCXzb5L/MZGd6p3o
GO5Gg5oebhfvMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvNDcxNGE4
ZmM4OTI3NzYzNGFlNTdjZGFmNGQ4MTQ1MTRjZDYxZjY1Ni5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMjQxYjVlZGQtNjhlNS00ZWEwLWI1MzUtNTJlY2Y5
OWEwODkxLzdiOGUyOTkyNGY4MWQ5MzVlN2NmNTFlNzczMzY5MjA3MzJjZmQ0ZGIu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8yNDFiNWVkZC02OGU1LTRlYTAtYjUzNS01MmVj
Zjk5YTA4OTEvNDcxNGE4ZmM4OTI3NzYzNGFlNTdjZGFmNGQ4MTQ1MTRjZDYxZjY1
Ni5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEA7MyaDANBgkqhkiG9w0BAQsFAAOCAQEATkCJF2LjzNhcA41t
JBoGCPrW8V3xAerELg+qzYhnuoay9UyHaPdC30dUvDAAhdxIjugEL3oA/1sZC3Jt
TW4H1BYavEmxL3mLsMXEhgY2RbMlKAlIhmpp0FOoH/xJVU0QEir1U69Vm/BCWhLQ
CdbfP+w4u7Eexv/aP7lIzHIkUsugreizu6E95kkwhUvgrModVNyGxG9UJq7IYBFh
OIJHPNDQoBvAZ8taUlwiSYb11QQkpEnlb/vIT1GpNm7xRv+8GqNsM6FeD6oZgstk
PCXnm0NOIZ4huasZH9+HsE6jN6tOpX/6sZeyhJVW/foHaCzI1VQNtnWF625vupeM
AlXfug==
-----END CERTIFICATE-----
Generated at Thu Mar 28 08:10:56 2024 by rpki-client on console-ams.rpki-client.org