Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/dbdd47cc3b8fbb8eb2bd5f8b20f3d318c2f4e748.roa
File:                     dbdd47cc3b8fbb8eb2bd5f8b20f3d318c2f4e748.roa (raw, json)
Hash identifier:          hcb+kQ3znOI4LQXK5JTU01gPCRqdukPZY+6QyZ6kB1g=
Subject key identifier:   8F:61:63:4B:99:42:57:08:02:F1:A2:86:2E:8C:20:2F:68:68:2B:D5
Certificate issuer:       /CN=a883c910f879603b967c0636c6f3e9125b3651b5
Certificate serial:       1971EF
Authority key identifier: 47:A6:7F:38:4E:50:5D:26:62:07:3D:AB:35:56:E6:EE:46:F6:2E:71
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a883c910f879603b967c0636c6f3e9125b3651b5.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/dbdd47cc3b8fbb8eb2bd5f8b20f3d318c2f4e748.roa
Signing time:             Sun 17 Jul 2022 19:58:17 +0000
ROA not before:           Wed 24 Mar 2021 03:00:00 +0000
ROA not after:            Tue 24 Mar 2026 03:00:00 +0000
asID:                     52233
IP address blocks:        190.4.181.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/a883c910f879603b967c0636c6f3e9125b3651b5.crl
                          rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/a883c910f879603b967c0636c6f3e9125b3651b5.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a883c910f879603b967c0636c6f3e9125b3651b5.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 14 Apr 2024 19:18:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1667567 (0x1971ef)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a883c910f879603b967c0636c6f3e9125b3651b5
        Validity
            Not Before: Mar 24 03:00:00 2021 GMT
            Not After : Mar 24 03:00:00 2026 GMT
        Subject: CN=dbdd47cc3b8fbb8eb2bd5f8b20f3d318c2f4e748
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:80:b6:2e:b9:8c:10:ff:7c:44:b0:f5:83:ae:
                    67:d2:92:5f:a5:20:50:ad:11:ed:60:14:3c:3f:74:
                    32:1f:21:cf:e5:4b:dc:9e:1b:0e:ce:b6:57:7b:32:
                    66:51:ac:f9:01:bf:0a:6c:4b:1b:b5:ab:0e:ed:7a:
                    7e:c4:5d:12:67:da:be:cb:57:6c:45:2d:71:b3:73:
                    2d:25:f3:64:66:c4:02:0b:ef:aa:58:16:85:c3:cc:
                    01:66:05:c6:ba:7b:17:e5:24:29:d4:f1:a7:17:cc:
                    2f:bc:d0:a6:34:c4:2b:6e:09:64:1c:4b:ec:fe:00:
                    c0:0a:a2:83:a5:38:b1:28:17:d0:73:a0:e7:29:9f:
                    41:ab:8c:85:55:df:0f:7d:72:f8:ee:8b:ab:21:79:
                    26:5d:a7:c6:07:00:69:b4:a8:ba:4c:40:76:72:b1:
                    31:27:b2:f9:be:d2:02:63:75:d7:2e:fc:92:e6:ca:
                    6b:49:63:1b:35:bb:10:32:70:82:13:a0:2d:94:21:
                    e1:c7:ed:42:e7:b4:5c:95:7c:b8:cf:80:24:eb:9d:
                    aa:ec:78:99:5a:5d:06:83:31:ab:af:a5:cc:15:93:
                    a5:d9:63:83:01:22:37:40:02:49:45:bd:95:41:8d:
                    a7:30:88:f0:b8:d9:a5:29:63:8b:4c:d9:7c:8a:2f:
                    61:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8F:61:63:4B:99:42:57:08:02:F1:A2:86:2E:8C:20:2F:68:68:2B:D5
            X509v3 Authority Key Identifier:
                keyid:47:A6:7F:38:4E:50:5D:26:62:07:3D:AB:35:56:E6:EE:46:F6:2E:71

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a883c910f879603b967c0636c6f3e9125b3651b5.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/dbdd47cc3b8fbb8eb2bd5f8b20f3d318c2f4e748.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/a883c910f879603b967c0636c6f3e9125b3651b5.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.4.181.0/24

    Signature Algorithm: sha256WithRSAEncryption
         68:67:08:41:fa:0b:58:1d:07:7c:b8:f0:ba:4a:e1:b1:60:e6:
         ea:4a:bd:11:f9:ad:b1:1a:5e:6c:02:f6:8a:e4:c2:ac:22:f5:
         ed:07:b5:30:6c:e3:d2:4f:37:8c:63:86:c4:39:93:23:a1:99:
         69:50:3f:eb:2c:53:53:ad:82:8d:83:10:db:c1:71:5e:bc:4b:
         73:b4:66:da:ce:5c:e6:8e:69:39:e2:61:66:fe:db:2f:11:5b:
         a6:80:a3:6a:cb:02:e7:99:e0:e0:96:a8:bb:4b:b5:eb:be:aa:
         c1:94:00:c3:10:b4:cc:a5:e5:bf:05:80:1b:37:4b:c0:cf:b0:
         a8:33:2e:a3:2a:4a:65:06:47:e2:37:b1:95:38:e3:5d:b8:fe:
         24:ef:2a:9e:6e:0f:3a:2f:53:f2:eb:ca:ea:85:63:5d:47:f8:
         5a:22:b6:22:81:eb:73:8d:f4:11:7f:8c:86:c0:20:d7:06:a5:
         20:d9:a8:f1:55:c8:2b:2b:96:fe:24:75:dc:3a:02:58:b8:b9:
         9e:25:4e:a2:78:3c:f9:5f:b5:56:b7:14:66:43:ec:6e:77:46:
         81:c3:c5:54:62:0a:e9:0d:00:44:97:7a:f5:e0:73:8f:2a:53:
         84:ae:93:b5:20:cf:de:c1:1f:70:35:2c:78:bd:a8:5e:e8:af:
         47:c9:60:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 12 03:03:44 2024 by rpki-client on console-ams.rpki-client.org