Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/ddca433f3e0447a41e51cddd637232017a16f8cc.roa
File:                     ddca433f3e0447a41e51cddd637232017a16f8cc.roa (raw, json)
Hash identifier:          VSvwuSpl+L5SqUGnK14f991HbzqI/2rDznpmmD0uskM=
Subject key identifier:   D5:4D:D5:EA:B3:C9:D2:0B:21:00:DB:9F:AB:4A:E6:B4:CA:4E:78:81
Certificate issuer:       /CN=a883c910f879603b967c0636c6f3e9125b3651b5
Certificate serial:       0D6E04
Authority key identifier: 47:A6:7F:38:4E:50:5D:26:62:07:3D:AB:35:56:E6:EE:46:F6:2E:71
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a883c910f879603b967c0636c6f3e9125b3651b5.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/ddca433f3e0447a41e51cddd637232017a16f8cc.roa
Signing time:             Wed 24 Mar 2021 14:38:08 +0000
ROA not before:           Wed 24 Mar 2021 14:38:07 +0000
ROA not after:            Tue 24 Mar 2026 14:38:07 +0000
asID:                     52301
IP address blocks:        200.26.196.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/a883c910f879603b967c0636c6f3e9125b3651b5.crl
                          rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/a883c910f879603b967c0636c6f3e9125b3651b5.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a883c910f879603b967c0636c6f3e9125b3651b5.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 15 Apr 2024 06:03:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 880132 (0xd6e04)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a883c910f879603b967c0636c6f3e9125b3651b5
        Validity
            Not Before: Mar 24 14:38:07 2021 GMT
            Not After : Mar 24 14:38:07 2026 GMT
        Subject: CN=ddca433f3e0447a41e51cddd637232017a16f8cc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:39:71:bb:3d:7d:00:90:c7:70:a6:a2:47:b5:
                    57:59:f3:fc:6a:ef:33:4a:f5:23:db:76:2e:65:2e:
                    1e:06:9d:24:4e:f6:d2:12:38:9e:7e:69:7d:55:fa:
                    7b:b1:a2:6c:12:41:9b:90:fe:60:6a:02:bd:38:19:
                    9f:cb:67:c3:72:1c:64:94:93:b7:ad:14:19:c5:f9:
                    3b:92:23:ed:64:7d:d8:cc:f5:07:67:48:49:b0:e2:
                    ab:a6:b3:37:26:66:65:0f:31:26:b8:69:41:27:13:
                    f8:32:5b:fe:54:b9:63:8b:0f:ad:ee:75:c2:fa:e0:
                    3f:1a:9e:31:90:58:6a:ee:7d:e9:54:1e:42:5e:22:
                    0d:27:87:b1:a5:08:ad:de:65:ae:ee:a3:aa:62:6d:
                    02:4a:62:d6:a6:64:47:f2:cb:b5:29:32:7c:47:70:
                    89:59:5e:29:70:1c:db:f0:b6:74:78:19:2d:bc:4c:
                    62:22:20:cb:25:48:ab:06:c1:02:44:68:f7:5e:82:
                    40:13:42:f9:8c:dc:98:c6:b0:3a:79:cc:66:b0:6d:
                    82:89:3c:56:c7:19:85:b4:a9:6f:93:60:41:66:10:
                    0d:6b:7f:d0:b9:c3:d7:a5:b6:a1:c3:7c:d6:90:8b:
                    2b:fb:e1:76:c9:ab:4c:81:87:71:9d:be:e2:8d:a6:
                    2c:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D5:4D:D5:EA:B3:C9:D2:0B:21:00:DB:9F:AB:4A:E6:B4:CA:4E:78:81
            X509v3 Authority Key Identifier:
                keyid:47:A6:7F:38:4E:50:5D:26:62:07:3D:AB:35:56:E6:EE:46:F6:2E:71

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a883c910f879603b967c0636c6f3e9125b3651b5.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/ddca433f3e0447a41e51cddd637232017a16f8cc.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/2abd6b34-8953-4c72-a0a2-7ecb9de8aaba/a883c910f879603b967c0636c6f3e9125b3651b5.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.26.196.0/24

    Signature Algorithm: sha256WithRSAEncryption
         63:d2:e3:4b:df:fc:b4:19:47:a0:69:1b:c7:16:98:27:99:42:
         55:b7:7b:e2:cd:e3:88:f4:4d:28:25:00:54:3f:f5:d2:40:46:
         91:5c:7a:95:7a:3d:37:8e:71:35:b0:62:64:00:3a:50:61:e0:
         5d:1c:81:ee:c5:13:46:aa:2e:59:fb:2b:8e:9e:6d:1c:7b:1a:
         16:e7:9d:18:57:fc:2a:0a:e2:eb:ba:42:19:27:d3:5b:4e:28:
         f1:fc:54:fd:3a:36:37:9a:ac:4a:24:6e:a6:2b:8d:dd:ff:db:
         73:f5:13:d8:d3:18:0f:d3:5c:bc:bd:9d:b5:3b:0c:bb:e5:4a:
         56:a3:0b:a0:9f:c1:60:15:03:f9:0c:1a:a8:b7:c0:9b:8f:0e:
         d9:fe:b4:10:3c:de:ef:a6:2f:90:4e:73:14:9c:57:57:36:7c:
         fa:e3:41:af:1c:44:26:d5:b7:52:51:5b:fd:ab:df:79:ba:0d:
         0c:85:37:b0:58:7d:de:e4:ae:ef:ff:d6:41:8c:bf:41:ec:ce:
         b0:06:19:19:2f:40:8d:11:54:f7:a2:6c:3c:df:da:e0:aa:23:
         c8:29:d9:56:91:e3:dd:e8:01:64:9a:31:b7:43:9c:6e:64:01:
         77:84:2b:97:60:a0:e8:89:03:38:bd:ec:78:a4:c7:83:9d:da:
         32:76:b9:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 12 13:15:04 2024 by rpki-client on console-fra.rpki-client.org