Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/35d5ca64-26f1-40c7-b5f6-8bbb6de63aec/3be46ab09253921da45b004577bbf4d925b6f416.roa
File:                     3be46ab09253921da45b004577bbf4d925b6f416.roa (raw, json)
Hash identifier:          vBaioAjt1uBGGSlCQS8ex5+MhqyL7bSEnCLJkfYpPCk=
Subject key identifier:   C7:6C:C8:15:C1:34:DB:76:44:E2:F9:CF:C8:F0:A8:8A:31:25:1E:62
Certificate issuer:       /CN=02560e9f9d9ae9402341a28273afd5c0caf17950
Certificate serial:       048910
Authority key identifier: 18:DC:46:1A:AA:6C:8A:CD:96:8B:4D:86:A2:8B:6B:F1:A5:BD:9E:07
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/02560e9f9d9ae9402341a28273afd5c0caf17950.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/35d5ca64-26f1-40c7-b5f6-8bbb6de63aec/3be46ab09253921da45b004577bbf4d925b6f416.roa
Signing time:             Wed 24 Mar 2021 14:29:22 +0000
ROA not before:           Wed 24 Mar 2021 14:29:22 +0000
ROA not after:            Tue 24 Mar 2026 14:29:22 +0000
asID:                     267833
IP address blocks:        45.175.103.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/35d5ca64-26f1-40c7-b5f6-8bbb6de63aec/02560e9f9d9ae9402341a28273afd5c0caf17950.crl
                          rsync://repository.lacnic.net/rpki/lacnic/35d5ca64-26f1-40c7-b5f6-8bbb6de63aec/02560e9f9d9ae9402341a28273afd5c0caf17950.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/02560e9f9d9ae9402341a28273afd5c0caf17950.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 19:38:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 297232 (0x48910)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=02560e9f9d9ae9402341a28273afd5c0caf17950
        Validity
            Not Before: Mar 24 14:29:22 2021 GMT
            Not After : Mar 24 14:29:22 2026 GMT
        Subject: CN=3be46ab09253921da45b004577bbf4d925b6f416
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:18:47:96:65:ec:ad:0d:26:75:14:48:82:1d:
                    f9:77:ca:cf:88:79:fd:c7:a4:81:0c:cb:57:ff:57:
                    9b:60:44:4d:15:fe:37:d2:fb:8e:6e:53:9b:f1:66:
                    13:cc:89:0c:d5:1e:ac:36:5c:eb:9a:e1:0a:41:fa:
                    d9:0f:ac:24:91:1a:ad:1d:ac:92:47:99:3f:d1:ca:
                    67:0a:c4:dd:bc:f4:79:09:78:06:ea:d0:a4:f1:da:
                    6c:aa:a0:77:33:70:08:41:f7:bf:b5:bf:53:96:26:
                    11:ac:87:08:07:5f:fc:34:c8:e5:1b:01:12:95:7f:
                    88:64:90:2c:fd:b3:52:a8:61:d9:db:51:17:9b:87:
                    ad:7c:33:95:60:c3:ef:ee:9a:4f:d5:c4:58:71:25:
                    fd:c0:a5:f2:d3:5b:97:87:db:85:a6:59:97:04:25:
                    09:22:fe:e3:0a:a4:98:5a:86:68:a0:42:45:b9:26:
                    92:f5:45:e4:40:74:d8:49:48:1e:91:06:03:60:50:
                    0f:db:b0:7c:8c:62:f3:4c:fd:4d:4d:ca:14:42:92:
                    8d:45:a4:9c:b4:d3:44:ce:24:5f:23:71:8b:cd:53:
                    14:81:25:79:b2:a9:80:fe:63:af:96:8f:d3:e1:76:
                    46:8e:10:41:a5:0e:de:ed:24:83:bd:80:ff:de:e8:
                    c1:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C7:6C:C8:15:C1:34:DB:76:44:E2:F9:CF:C8:F0:A8:8A:31:25:1E:62
            X509v3 Authority Key Identifier:
                keyid:18:DC:46:1A:AA:6C:8A:CD:96:8B:4D:86:A2:8B:6B:F1:A5:BD:9E:07

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/02560e9f9d9ae9402341a28273afd5c0caf17950.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/35d5ca64-26f1-40c7-b5f6-8bbb6de63aec/3be46ab09253921da45b004577bbf4d925b6f416.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/35d5ca64-26f1-40c7-b5f6-8bbb6de63aec/02560e9f9d9ae9402341a28273afd5c0caf17950.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.175.103.0/24

    Signature Algorithm: sha256WithRSAEncryption
         a2:f8:7d:fa:04:ab:f3:92:61:d0:94:16:fa:bd:09:89:ca:16:
         ef:2d:02:0c:c6:03:ea:d1:e9:2d:95:01:4a:8f:74:aa:64:65:
         6e:df:27:da:8e:17:b2:c4:fd:2f:78:37:fb:4d:a3:ee:f1:8d:
         e4:04:8f:46:86:dd:d6:7a:f7:7a:b5:2d:20:ae:71:bf:94:a6:
         48:cc:14:8e:0c:60:70:bb:8d:45:3d:c3:10:1e:01:70:f0:ae:
         51:0b:2b:8c:28:19:47:e4:13:1d:65:2c:55:03:b0:09:8e:46:
         5f:7a:d3:c2:e7:24:5e:98:4b:9a:5b:e4:fe:4c:b5:c6:f8:1d:
         4d:fc:f4:cd:17:89:66:b3:53:ec:58:92:2d:f1:59:d2:34:75:
         a0:b8:db:a6:07:53:4c:9a:eb:fe:2f:57:7f:9b:3e:c1:ab:71:
         7b:b8:5a:4e:80:e1:7e:4d:68:4e:7c:c0:c8:11:c1:09:69:d5:
         3e:68:80:75:93:83:39:7d:ea:19:9b:e2:cd:d8:b8:06:c1:ed:
         ef:02:39:a1:f7:86:80:2c:08:17:66:2a:f3:02:9c:1d:e4:4a:
         94:65:37:83:22:2b:27:95:3c:80:3b:3b:00:48:af:a7:b9:3f:
         ff:2b:26:34:96:04:50:69:00:b3:d1:b5:08:10:63:1a:0a:a7:
         7a:17:82:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 22:18:38 2024 by rpki-client on console-fra.rpki-client.org