Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/d0c10739454c5d0a36513d0d2ad2436dbb635261.roa
File:                     d0c10739454c5d0a36513d0d2ad2436dbb635261.roa (raw, json)
Hash identifier:          viFqwNEhZA6JO4Ijab9RbwCaCiOpd9NbOK7gnTLBoMw=
Subject key identifier:   BB:AD:5C:C0:62:E3:01:0B:1E:1A:26:F8:57:B7:5E:D4:A1:D1:58:9E
Certificate issuer:       /CN=a883c910f879603b967c0636c6f3e9125b3651b5
Certificate serial:       1966B7
Authority key identifier: 47:A6:7F:38:4E:50:5D:26:62:07:3D:AB:35:56:E6:EE:46:F6:2E:71
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a883c910f879603b967c0636c6f3e9125b3651b5.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/d0c10739454c5d0a36513d0d2ad2436dbb635261.roa
Signing time:             Sun 17 Jul 2022 19:55:17 +0000
ROA not before:           Fri 09 Apr 2021 03:00:00 +0000
ROA not after:            Tue 24 Mar 2026 03:00:00 +0000
asID:                     52233
IP address blocks:        190.88.52.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/a883c910f879603b967c0636c6f3e9125b3651b5.crl
                          rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/a883c910f879603b967c0636c6f3e9125b3651b5.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a883c910f879603b967c0636c6f3e9125b3651b5.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 14 Apr 2024 19:18:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1664695 (0x1966b7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a883c910f879603b967c0636c6f3e9125b3651b5
        Validity
            Not Before: Apr  9 03:00:00 2021 GMT
            Not After : Mar 24 03:00:00 2026 GMT
        Subject: CN=d0c10739454c5d0a36513d0d2ad2436dbb635261
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:96:5e:99:22:53:64:ac:fe:30:da:81:39:69:8a:
                    07:86:c7:a4:8c:48:b6:2b:b7:7f:1f:5d:d2:f4:4e:
                    49:59:1f:b3:f9:e3:35:77:6f:11:d6:75:d1:b8:be:
                    d4:10:1c:03:40:e3:3c:ed:20:4d:95:a2:5c:25:c7:
                    03:c6:6c:21:d0:2c:27:42:fb:88:9f:08:77:5e:74:
                    ec:fe:26:ed:f3:7e:21:c4:39:a6:25:1a:ed:f2:74:
                    b7:08:49:40:c9:eb:c9:d7:3d:14:b3:ef:c3:c6:db:
                    21:0e:11:60:85:bf:39:16:91:d4:ca:a5:04:4b:7d:
                    ba:48:47:55:b9:9f:bb:ec:65:9d:ae:d6:8c:ca:c3:
                    8a:01:64:70:4f:6d:a7:ef:f4:08:88:c8:5f:e9:c0:
                    eb:de:f3:b7:4c:b7:7f:5c:52:f8:df:0c:61:ca:37:
                    62:18:ab:97:7f:5d:c9:8d:c5:5a:a5:81:8d:72:91:
                    c3:92:43:bf:fc:f5:53:2b:25:df:a8:00:7b:3c:56:
                    68:64:23:a0:05:79:08:22:6e:da:99:97:67:14:34:
                    06:43:c1:31:16:f5:a9:6d:d6:d2:c2:a1:fd:bc:df:
                    e7:cb:4e:79:00:52:4f:8f:dd:d7:d8:4c:e9:8f:34:
                    0f:0d:25:81:fe:fe:c8:09:50:1f:6e:2f:3f:d6:83:
                    b9:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BB:AD:5C:C0:62:E3:01:0B:1E:1A:26:F8:57:B7:5E:D4:A1:D1:58:9E
            X509v3 Authority Key Identifier:
                keyid:47:A6:7F:38:4E:50:5D:26:62:07:3D:AB:35:56:E6:EE:46:F6:2E:71

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a883c910f879603b967c0636c6f3e9125b3651b5.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/d0c10739454c5d0a36513d0d2ad2436dbb635261.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/a883c910f879603b967c0636c6f3e9125b3651b5.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.88.52.0/24

    Signature Algorithm: sha256WithRSAEncryption
         5d:b8:42:d8:76:15:97:40:3d:d1:04:ed:a9:35:fc:65:8f:82:
         ca:ef:ac:c3:e2:3a:56:28:b6:86:f7:49:72:99:fe:11:d8:a5:
         34:3a:e5:f1:5a:d7:2f:56:6d:1c:37:bc:9f:c9:f0:55:63:56:
         70:26:8b:77:ba:f2:f8:5f:16:d8:8d:ba:01:d4:4f:c7:6f:f5:
         1b:80:95:a7:13:ee:69:0e:14:04:90:3c:69:09:ba:cf:de:12:
         b7:2d:16:dc:d0:aa:84:ea:da:3b:f5:a6:0b:2e:1a:89:aa:83:
         c2:fa:de:63:a3:64:56:d6:45:f3:16:e8:ae:ef:dd:2f:3b:c9:
         50:4a:e5:ca:8a:09:39:26:b1:8c:8a:a0:c9:81:83:8c:18:2f:
         3e:b1:67:f8:37:c2:86:91:3a:8a:89:75:f7:4d:e8:fb:c1:ad:
         a3:0b:0f:7d:2f:a0:05:f8:3e:36:f4:5a:b6:50:50:6b:a5:7b:
         9c:1e:50:dc:68:f3:a6:68:78:0b:3a:c8:7c:d4:5a:88:98:29:
         d7:c1:a6:37:45:c1:74:20:d5:9c:df:c5:d4:9f:03:8e:cb:12:
         cf:e0:c9:6b:22:0a:fd:86:34:8c:04:96:79:be:4d:8a:52:18:
         49:a9:fd:de:4b:7d:cc:cb:36:39:b9:86:54:5c:11:42:3e:03:
         8c:82:9f:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 12 03:03:44 2024 by rpki-client on console-ams.rpki-client.org