Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/cd53d03835d821f9b359156a105bf1bdad6e8872.roa
File:                     cd53d03835d821f9b359156a105bf1bdad6e8872.roa (raw, json)
Hash identifier:          9E6uq/J+C+i4hkwyTd/mvB7ZwznDmXCE2GXob7HsczI=
Subject key identifier:   24:3C:5D:B3:FC:BB:F4:43:C9:81:9B:B6:24:34:3A:62:E7:9C:E1:FB
Certificate issuer:       /CN=a883c910f879603b967c0636c6f3e9125b3651b5
Certificate serial:       0D5D9D
Authority key identifier: 47:A6:7F:38:4E:50:5D:26:62:07:3D:AB:35:56:E6:EE:46:F6:2E:71
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a883c910f879603b967c0636c6f3e9125b3651b5.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/cd53d03835d821f9b359156a105bf1bdad6e8872.roa
Signing time:             Wed 24 Mar 2021 14:38:08 +0000
ROA not before:           Wed 24 Mar 2021 14:38:07 +0000
ROA not after:            Tue 24 Mar 2026 14:38:07 +0000
asID:                     11081
IP address blocks:        216.152.160.0/20 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/a883c910f879603b967c0636c6f3e9125b3651b5.crl
                          rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/a883c910f879603b967c0636c6f3e9125b3651b5.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a883c910f879603b967c0636c6f3e9125b3651b5.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 14 Apr 2024 19:18:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 875933 (0xd5d9d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a883c910f879603b967c0636c6f3e9125b3651b5
        Validity
            Not Before: Mar 24 14:38:07 2021 GMT
            Not After : Mar 24 14:38:07 2026 GMT
        Subject: CN=cd53d03835d821f9b359156a105bf1bdad6e8872
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:2e:3f:31:7b:6f:25:88:2b:c2:cb:c7:14:90:
                    3f:39:f7:33:ef:91:2b:c2:a5:2c:c7:ed:e0:f2:aa:
                    15:1a:29:19:ef:bb:43:55:7d:fe:c2:a5:67:1f:26:
                    a8:90:5c:7d:c2:a1:12:e9:a7:91:e3:19:8b:d0:76:
                    36:90:18:4c:7d:6a:1d:d0:24:2e:84:e8:48:b0:65:
                    6f:9d:4e:cb:6f:48:20:44:58:84:66:77:60:13:ca:
                    0b:b6:62:60:96:fd:91:f5:11:30:eb:f3:25:b1:48:
                    46:43:50:78:15:a0:44:4c:f9:6c:7b:9e:c0:c8:bc:
                    55:cd:73:e3:58:13:2e:cf:d3:3b:28:16:26:84:ce:
                    45:f0:98:08:38:3b:3b:20:bf:4d:76:39:38:fb:7c:
                    56:47:7e:24:30:5e:6d:9d:e6:47:a3:9b:cc:ce:d9:
                    fc:06:2c:a4:58:df:40:6d:2c:5d:c4:9b:45:16:54:
                    2d:fd:1e:4d:27:04:44:5d:da:f3:32:75:d4:36:2d:
                    81:6e:c2:84:d0:34:fe:a4:8b:87:f0:34:6e:81:70:
                    6e:ce:09:54:52:e2:1a:ac:db:ea:e6:71:53:02:10:
                    40:d3:26:99:00:86:92:9f:d7:e3:49:2f:de:17:d2:
                    f7:87:ac:c8:52:47:10:07:2d:16:ad:3c:c7:57:48:
                    e7:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                24:3C:5D:B3:FC:BB:F4:43:C9:81:9B:B6:24:34:3A:62:E7:9C:E1:FB
            X509v3 Authority Key Identifier:
                keyid:47:A6:7F:38:4E:50:5D:26:62:07:3D:AB:35:56:E6:EE:46:F6:2E:71

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a883c910f879603b967c0636c6f3e9125b3651b5.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/cd53d03835d821f9b359156a105bf1bdad6e8872.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/a883c910f879603b967c0636c6f3e9125b3651b5.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  216.152.160.0/20

    Signature Algorithm: sha256WithRSAEncryption
         4d:06:99:53:fe:75:be:6a:20:d4:67:3d:c5:ce:d3:88:b2:63:
         fa:0d:a1:ed:ab:04:6f:71:54:8d:ae:39:70:38:35:ba:e9:01:
         9d:94:5f:cd:e2:5a:60:1d:fd:0f:4b:2e:5d:92:93:b5:28:a3:
         fd:e2:9e:db:ed:aa:80:fc:cc:d7:59:43:4e:27:a6:81:f1:2c:
         65:bd:cc:01:49:96:4b:a7:bc:a1:f2:6c:4f:3c:65:eb:e6:7b:
         c2:eb:94:65:35:13:10:0c:98:9a:da:4d:24:02:f8:5f:27:9a:
         d1:69:76:a4:2d:d0:5c:b9:4f:cf:11:77:0c:1b:81:37:28:3b:
         e2:1f:e5:ce:aa:3e:8d:08:94:90:5e:f0:12:39:b8:04:a7:fc:
         9e:5f:de:59:fe:1f:cb:9f:40:6f:9f:76:fa:f1:00:56:a8:a5:
         d4:dc:34:b3:8c:ef:f9:e8:e0:4d:7a:fb:81:16:93:98:99:6d:
         15:6a:04:43:b9:d7:02:09:1a:be:ee:fb:a3:12:9f:53:e2:7c:
         3e:4a:c2:45:61:02:17:84:7f:f7:52:07:79:9b:81:88:e2:16:
         46:62:59:af:de:0b:ec:67:c6:ec:2c:2d:bd:f2:f2:cc:ef:bf:
         e7:26:e7:76:c0:46:75:db:45:d9:ce:8e:f0:26:ea:c4:24:7d:
         16:3a:69:96
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIDDV2dMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGE4
ODNjOTEwZjg3OTYwM2I5NjdjMDYzNmM2ZjNlOTEyNWIzNjUxYjUwHhcNMjEwMzI0
MTQzODA3WhcNMjYwMzI0MTQzODA3WjAzMTEwLwYDVQQDEyhjZDUzZDAzODM1ZDgy
MWY5YjM1OTE1NmExMDViZjFiZGFkNmU4ODcyMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEApS4/MXtvJYgrwsvHFJA/Ofcz75ErwqUsx+3g8qoVGikZ77tD
VX3+wqVnHyaokFx9wqES6aeR4xmL0HY2kBhMfWod0CQuhOhIsGVvnU7Lb0ggRFiE
ZndgE8oLtmJglv2R9REw6/MlsUhGQ1B4FaBETPlse57AyLxVzXPjWBMuz9M7KBYm
hM5F8JgIODs7IL9Ndjk4+3xWR34kMF5tneZHo5vMztn8BiykWN9AbSxdxJtFFlQt
/R5NJwREXdrzMnXUNi2BbsKE0DT+pIuH8DRugXBuzglUUuIarNvq5nFTAhBA0yaZ
AIaSn9fjSS/eF9L3h6zIUkcQBy0WrTzHV0jn3wIDAQABo4ICWzCCAlcwHQYDVR0O
BBYEFCQ8XbP8u/RDyYGbtiQ0OmLnnOH7MB8GA1UdIwQYMBaAFEemfzhOUF0mYgc9
qzVW5u5G9i5xMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvYTg4M2M5
MTBmODc5NjAzYjk2N2MwNjM2YzZmM2U5MTI1YjM2NTFiNS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMmFiZDZiMzQtODk1My00YzcyLWEwYTItN2VjYjlk
ZThhYWJhL2NkNTNkMDM4MzVkODIxZjliMzU5MTU2YTEwNWJmMWJkYWQ2ZTg4NzIu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8yYWJkNmIzNC04OTUzLTRjNzItYTBhMi03ZWNi
OWRlOGFhYmEvYTg4M2M5MTBmODc5NjAzYjk2N2MwNjM2YzZmM2U5MTI1YjM2NTFi
NS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEBNiYoDANBgkqhkiG9w0BAQsFAAOCAQEATQaZU/51vmog1Gc9
xc7TiLJj+g2h7asEb3FUja45cDg1uukBnZRfzeJaYB39D0suXZKTtSij/eKe2+2q
gPzM11lDTiemgfEsZb3MAUmWS6e8ofJsTzxl6+Z7wuuUZTUTEAyYmtpNJAL4Xyea
0Wl2pC3QXLlPzxF3DBuBNyg74h/lzqo+jQiUkF7wEjm4BKf8nl/eWf4fy59Ab592
+vEAVqil1Nw0s4zv+ejgTXr7gRaTmJltFWoEQ7nXAgkavu77oxKfU+J8PkrCRWEC
F4R/91IHeZuBiOIWRmJZr94L7GfG7CwtvfLyzO+/5ybndsBGddtF2c6O8CbqxCR9
Fjpplg==
-----END CERTIFICATE-----
Generated at Fri Apr 12 03:03:44 2024 by rpki-client on console-ams.rpki-client.org