Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2fc42fdf-2d8b-46a5-8f9b-68d6e3403e4e/6d6fc69b62d79534262c6d2716771f5a2ce6ae52.roa
File:                     6d6fc69b62d79534262c6d2716771f5a2ce6ae52.roa (raw, json)
Hash identifier:          mckhTT+UKFzPdZsEh4S/17h+kwmjAfG3P9qxe2txIXE=
Subject key identifier:   E4:48:3C:22:C9:2D:ED:C5:32:40:24:9D:B8:E0:65:4B:D9:A4:1C:66
Certificate issuer:       /CN=259c4fb25c604824d214cf7cbe588eab433a5691
Certificate serial:       25C506
Authority key identifier: 3F:31:C8:54:2E:52:5E:69:30:FE:E3:42:F0:40:D8:8D:07:34:6E:D0
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/259c4fb25c604824d214cf7cbe588eab433a5691.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/2fc42fdf-2d8b-46a5-8f9b-68d6e3403e4e/6d6fc69b62d79534262c6d2716771f5a2ce6ae52.roa
Signing time:             Tue 28 Nov 2023 21:28:39 +0000
ROA not before:           Tue 28 Nov 2023 21:28:39 +0000
ROA not after:            Fri 28 Nov 2025 21:28:39 +0000
asID:                     272914
IP address blocks:        45.225.90.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/2fc42fdf-2d8b-46a5-8f9b-68d6e3403e4e/259c4fb25c604824d214cf7cbe588eab433a5691.crl
                          rsync://repository.lacnic.net/rpki/lacnic/2fc42fdf-2d8b-46a5-8f9b-68d6e3403e4e/259c4fb25c604824d214cf7cbe588eab433a5691.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/259c4fb25c604824d214cf7cbe588eab433a5691.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Thu 29 Feb 2024 13:56:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2475270 (0x25c506)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=259c4fb25c604824d214cf7cbe588eab433a5691
        Validity
            Not Before: Nov 28 21:28:39 2023 GMT
            Not After : Nov 28 21:28:39 2025 GMT
        Subject: CN=6d6fc69b62d79534262c6d2716771f5a2ce6ae52
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:13:a2:8d:ca:63:c4:b1:b5:b5:b8:30:12:e7:
                    a6:6c:db:be:27:bb:a7:9f:10:b5:47:b1:a9:ac:31:
                    72:19:54:9d:38:d1:f5:8d:04:33:48:3e:8e:c0:d8:
                    c2:8d:3f:0b:13:49:a7:04:0f:3c:5b:e6:e1:4c:a2:
                    ca:28:9d:06:e0:1b:55:11:c4:7b:63:17:8c:40:c0:
                    d8:06:5e:e2:0e:99:dd:5f:7b:f9:dc:81:b4:47:a6:
                    f4:10:7c:0e:f5:9b:6b:4b:cf:9f:be:a1:bf:f9:43:
                    df:af:c7:de:ff:b4:02:b1:9b:f7:b3:10:c7:a6:dd:
                    3e:48:75:e9:56:26:e1:ff:c6:e7:a3:44:b0:ec:f5:
                    15:64:df:4a:cf:51:2d:bc:41:16:ff:46:89:d6:f2:
                    e3:cb:a9:8e:ce:fa:bf:a4:1e:9d:93:4c:bb:27:f3:
                    35:cc:3b:be:33:e8:6e:7a:b2:61:5c:b4:c7:7b:71:
                    bf:00:0a:1c:0b:45:6a:54:c9:82:12:cc:0f:20:69:
                    87:af:2f:b9:bd:bb:fb:3f:d0:5c:c3:22:c0:04:ea:
                    af:b1:ad:75:81:9a:f6:09:a6:cb:c2:04:54:00:69:
                    fe:09:45:3d:37:17:e8:9b:b2:6a:7d:80:06:e4:ce:
                    f2:03:b4:ac:3c:c9:e6:33:f3:ea:c7:53:a0:c5:8b:
                    13:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E4:48:3C:22:C9:2D:ED:C5:32:40:24:9D:B8:E0:65:4B:D9:A4:1C:66
            X509v3 Authority Key Identifier:
                keyid:3F:31:C8:54:2E:52:5E:69:30:FE:E3:42:F0:40:D8:8D:07:34:6E:D0

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/259c4fb25c604824d214cf7cbe588eab433a5691.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2fc42fdf-2d8b-46a5-8f9b-68d6e3403e4e/6d6fc69b62d79534262c6d2716771f5a2ce6ae52.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/2fc42fdf-2d8b-46a5-8f9b-68d6e3403e4e/259c4fb25c604824d214cf7cbe588eab433a5691.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.225.90.0/24

    Signature Algorithm: sha256WithRSAEncryption
         02:80:89:a1:65:1c:e1:30:d4:37:ee:51:5c:4e:91:ef:cd:82:
         97:95:b7:3a:b2:81:12:71:86:04:19:f7:ad:25:65:8e:71:bc:
         27:79:7b:5f:33:48:6c:43:e2:cb:28:92:f3:26:6b:48:93:7c:
         41:af:2a:a2:cc:53:d6:fa:b8:8e:9d:f2:17:46:88:33:45:10:
         ea:48:7c:c0:d5:79:8a:00:c8:5d:19:07:fa:42:28:ff:7d:80:
         87:c0:4c:05:8a:66:b2:e1:d9:ee:ff:e0:94:bf:65:b6:8d:cb:
         f4:0e:6b:b5:03:bf:ae:93:1e:bb:76:f2:35:3e:7e:86:7d:76:
         4f:64:6d:0a:95:12:e0:29:8d:27:1d:42:cf:e7:25:f8:a0:ff:
         0a:34:5e:c3:4c:1c:39:3a:2b:c6:69:d2:d2:e4:da:d1:8d:d8:
         9e:15:61:0f:fa:6e:ec:10:b2:dc:29:ab:b9:11:f8:cc:32:a2:
         d7:36:1c:16:59:8c:05:9a:54:32:37:8b:52:22:17:45:7c:3e:
         3e:1a:91:f6:1e:21:99:fa:ef:11:be:92:3f:82:fb:e1:48:77:
         b1:08:33:dd:5d:d3:35:bc:ee:87:28:af:d5:8d:93:97:32:bc:
         5e:d9:75:f0:8f:c7:d9:8c:fe:f6:75:d8:a4:45:53:dd:12:f1:
         8e:99:91:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 26 12:09:15 2024 by rpki-client on console-ams.rpki-client.org