Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/79d01bca274e68da6c39e73740b2d9d96f4bba69.roa
File:                     79d01bca274e68da6c39e73740b2d9d96f4bba69.roa (raw, json)
Hash identifier:          R9bApn3anuBvz0oN1FF33/L4J2T5Dh+HgpXLeYXNODk=
Subject key identifier:   D3:C6:55:2B:51:F6:D4:F2:BC:CF:4A:E7:41:E2:91:AD:44:2A:EC:32
Certificate issuer:       /CN=a883c910f879603b967c0636c6f3e9125b3651b5
Certificate serial:       0D6926
Authority key identifier: 47:A6:7F:38:4E:50:5D:26:62:07:3D:AB:35:56:E6:EE:46:F6:2E:71
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a883c910f879603b967c0636c6f3e9125b3651b5.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/79d01bca274e68da6c39e73740b2d9d96f4bba69.roa
Signing time:             Wed 24 Mar 2021 14:38:08 +0000
ROA not before:           Wed 24 Mar 2021 14:38:07 +0000
ROA not after:            Tue 24 Mar 2026 14:38:07 +0000
asID:                     52233
IP address blocks:        190.4.144.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/a883c910f879603b967c0636c6f3e9125b3651b5.crl
                          rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/a883c910f879603b967c0636c6f3e9125b3651b5.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a883c910f879603b967c0636c6f3e9125b3651b5.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 15 Apr 2024 13:34:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 878886 (0xd6926)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a883c910f879603b967c0636c6f3e9125b3651b5
        Validity
            Not Before: Mar 24 14:38:07 2021 GMT
            Not After : Mar 24 14:38:07 2026 GMT
        Subject: CN=79d01bca274e68da6c39e73740b2d9d96f4bba69
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:87:6d:bc:a9:ce:90:c9:d2:9f:05:27:90:b9:d6:
                    32:4f:97:17:8d:71:7e:2a:77:d6:b9:ac:64:08:9d:
                    b9:01:eb:4d:84:bc:1f:9a:76:2b:bd:4c:f7:c1:cb:
                    b8:48:04:18:7a:05:48:2f:67:1d:8f:b6:9d:8c:a5:
                    2b:98:08:2d:40:ce:a9:d5:51:d3:3e:c9:55:11:65:
                    67:d8:d5:2a:26:be:75:67:4d:b9:20:fa:1a:cc:e5:
                    b1:79:51:33:92:c1:14:d0:8d:e9:0d:d8:8a:66:7a:
                    bb:0d:52:75:98:c3:c4:17:b5:c5:0e:27:fd:0d:a0:
                    7c:a8:3f:8d:e6:5f:1e:36:62:a3:ce:e5:9c:4e:13:
                    7e:11:ac:bd:80:7d:96:92:e9:be:cd:87:aa:fa:85:
                    93:8c:0e:8f:a2:58:a9:07:a7:d9:2a:3d:11:7e:00:
                    32:86:9d:88:0b:58:33:56:c5:ac:5f:25:e1:89:c1:
                    2e:dd:c2:a8:f0:58:bf:e4:70:f5:dd:30:e5:46:7b:
                    72:cb:87:b5:67:df:0d:1e:a5:2e:c4:36:c7:25:11:
                    74:13:bd:8a:16:b5:53:29:a3:af:24:32:60:40:dc:
                    6e:78:75:53:2b:91:69:60:bd:44:4c:f8:f3:fc:0d:
                    86:9f:6d:4e:f5:e7:10:23:d4:90:79:79:71:38:aa:
                    fa:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D3:C6:55:2B:51:F6:D4:F2:BC:CF:4A:E7:41:E2:91:AD:44:2A:EC:32
            X509v3 Authority Key Identifier:
                keyid:47:A6:7F:38:4E:50:5D:26:62:07:3D:AB:35:56:E6:EE:46:F6:2E:71

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a883c910f879603b967c0636c6f3e9125b3651b5.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/79d01bca274e68da6c39e73740b2d9d96f4bba69.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/a883c910f879603b967c0636c6f3e9125b3651b5.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.4.144.0/24

    Signature Algorithm: sha256WithRSAEncryption
         06:39:f9:58:87:80:04:f6:6f:3a:60:3d:f3:a9:f5:03:dc:db:
         0f:d8:6f:87:c6:83:64:bb:bc:a3:fc:3c:dc:ba:c2:c0:cc:79:
         dc:a3:8c:a4:69:89:16:5c:e9:4f:52:4d:a2:86:c4:60:7c:4b:
         ee:3f:18:b6:c5:8c:11:6a:89:87:7b:58:0a:33:10:4b:d5:2c:
         26:66:d0:2f:26:4a:b4:87:99:f0:78:8f:a3:b4:63:17:66:8f:
         dd:56:9e:3f:a7:74:42:5f:3b:2c:de:50:70:b8:89:0a:41:5d:
         95:c9:e6:75:5b:1f:51:9e:ce:7c:2e:34:e1:e5:76:35:ba:1a:
         63:82:39:cb:ab:3c:16:03:99:6e:c8:00:a0:0e:e1:81:a1:38:
         24:9f:07:55:55:5c:aa:b3:f4:21:2b:5a:ca:71:b6:34:07:7b:
         bc:80:70:9a:da:86:9d:c2:de:8e:db:52:d5:46:8a:d3:62:e3:
         4b:c4:9e:3c:f7:fa:32:f1:ac:15:5b:ef:bb:08:66:88:cc:d2:
         03:b9:69:50:ba:f4:b6:b3:4c:9a:1c:81:52:04:ca:c3:71:20:
         48:a6:ea:f4:fa:75:da:6b:17:8a:de:b2:de:86:60:62:90:4c:
         13:25:83:78:17:1a:58:b5:d6:91:b2:1c:a1:fa:66:b7:23:b3:
         6a:2d:cc:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 12 15:32:11 2024 by rpki-client on console-ams.rpki-client.org