Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/58e6e61cc5de2b823f3445a36e03d1f6fee6269d.roa
File:                     58e6e61cc5de2b823f3445a36e03d1f6fee6269d.roa (raw, json)
Hash identifier:          XU0ufw2UZZhdUZpssa6Ivoq46LiHN2dsmLmWNygBe+I=
Subject key identifier:   18:A7:02:EC:31:68:83:E5:BC:F5:6F:D9:9E:3D:2F:BE:64:8D:57:E0
Certificate issuer:       /CN=a883c910f879603b967c0636c6f3e9125b3651b5
Certificate serial:       198150
Authority key identifier: 47:A6:7F:38:4E:50:5D:26:62:07:3D:AB:35:56:E6:EE:46:F6:2E:71
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a883c910f879603b967c0636c6f3e9125b3651b5.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/58e6e61cc5de2b823f3445a36e03d1f6fee6269d.roa
Signing time:             Mon 18 Jul 2022 20:49:32 +0000
ROA not before:           Mon 18 Jul 2022 20:49:32 +0000
ROA not after:            Sun 18 Jul 2027 20:49:32 +0000
asID:                     52233
IP address blocks:        190.88.40.0/21 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/a883c910f879603b967c0636c6f3e9125b3651b5.crl
                          rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/a883c910f879603b967c0636c6f3e9125b3651b5.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a883c910f879603b967c0636c6f3e9125b3651b5.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 15 Apr 2024 13:34:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1671504 (0x198150)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a883c910f879603b967c0636c6f3e9125b3651b5
        Validity
            Not Before: Jul 18 20:49:32 2022 GMT
            Not After : Jul 18 20:49:32 2027 GMT
        Subject: CN=58e6e61cc5de2b823f3445a36e03d1f6fee6269d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:84:da:d5:9a:20:2d:46:94:af:b8:6d:35:86:a3:
                    fc:2c:8e:29:22:34:2c:e8:c2:88:05:44:c7:eb:3e:
                    36:4b:5b:61:78:89:20:f9:e5:ef:69:08:44:70:72:
                    af:5c:d6:27:fd:0b:84:8c:d2:90:cb:d6:86:6b:b1:
                    6f:cc:d6:7e:79:09:71:b1:83:7e:d2:4d:57:2b:b7:
                    aa:73:b0:cc:df:f9:be:bf:87:4e:c7:12:09:30:07:
                    24:aa:18:94:1f:c6:40:81:ec:8d:bc:aa:22:92:20:
                    d8:80:bb:5f:e2:ab:eb:31:63:73:61:b0:10:19:83:
                    4e:ef:57:c5:e2:f7:2f:4a:87:e2:eb:23:fb:c3:9e:
                    3b:20:c5:b2:b2:ba:61:0b:54:cb:dd:33:34:39:2f:
                    98:34:2b:9c:4c:d2:e9:fd:2a:08:9e:a2:76:4f:03:
                    0a:c1:c6:32:ac:d1:6d:b4:ff:a5:76:de:f3:b4:e7:
                    44:21:4d:ba:29:08:8b:4a:2f:b3:b6:5c:5d:13:6a:
                    ec:0e:aa:37:61:0a:7a:bf:90:50:f6:4b:86:12:63:
                    fd:6d:6e:a6:00:6e:c1:53:97:bf:4a:6d:4e:16:d5:
                    65:9c:12:40:2e:bc:cc:b7:0e:df:c2:54:16:5a:88:
                    e0:87:3e:7b:78:21:06:c2:c1:8e:d0:bc:6c:f0:4e:
                    1b:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                18:A7:02:EC:31:68:83:E5:BC:F5:6F:D9:9E:3D:2F:BE:64:8D:57:E0
            X509v3 Authority Key Identifier:
                keyid:47:A6:7F:38:4E:50:5D:26:62:07:3D:AB:35:56:E6:EE:46:F6:2E:71

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a883c910f879603b967c0636c6f3e9125b3651b5.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/58e6e61cc5de2b823f3445a36e03d1f6fee6269d.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/a883c910f879603b967c0636c6f3e9125b3651b5.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.88.40.0/21

    Signature Algorithm: sha256WithRSAEncryption
         9b:ad:3d:78:8d:30:33:09:51:d9:fa:24:f1:26:3f:36:36:9a:
         93:3b:b8:64:a8:f2:e7:52:d3:22:5f:04:97:36:3e:42:0b:f6:
         31:3e:51:e6:4e:26:29:10:d0:f2:e6:2d:57:4f:c5:e0:a2:9f:
         2d:d3:53:1a:f1:8f:0d:bf:4d:fa:05:00:84:f9:12:b7:2d:4f:
         35:a5:15:83:72:77:31:ec:70:6a:fa:33:07:ca:b3:f3:31:40:
         6b:d7:21:48:77:da:34:d3:3b:cc:c6:8c:89:ab:c0:61:69:b8:
         86:ec:ac:ae:49:0b:8b:77:c9:82:06:40:f0:89:f6:7d:f5:0c:
         05:be:c7:a1:6f:15:c8:d1:e0:70:50:ae:73:39:36:51:d6:99:
         c6:54:f8:1a:27:38:61:47:c6:21:c9:9f:5c:c1:7d:de:7d:83:
         1a:ff:69:15:a1:59:c6:f1:58:88:c5:3a:bb:23:5c:58:41:c3:
         33:73:07:b0:d3:e3:74:27:63:fd:b1:51:54:95:1e:de:b5:f5:
         82:a8:ea:85:f7:27:b1:50:2b:da:c5:98:a9:43:bb:1b:c2:2d:
         42:b4:e9:80:4a:5f:64:af:d5:b7:51:15:90:85:fb:9e:93:93:
         60:99:ed:51:fb:76:f3:c3:0a:80:55:62:36:22:59:67:f0:3b:
         a4:1a:09:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 12 15:32:11 2024 by rpki-client on console-ams.rpki-client.org