Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/45573a30-eead-49e5-854a-7526d14847e6/ca530c39a63fe1473119241bb822ff6151aa8d06.roa
File:                     ca530c39a63fe1473119241bb822ff6151aa8d06.roa (raw, json)
Hash identifier:          1WjcZpymbb3+I9pCNSZnB43FAY8rrFLBEPOv3AtY98Q=
Subject key identifier:   09:C8:C8:20:77:E6:C3:01:FA:F1:5A:4A:FF:50:F9:5E:6C:02:7B:0C
Certificate issuer:       /CN=c09f4dc9446535d2264e5afbc2b3e9ad85f2746c
Certificate serial:       0C5AFD
Authority key identifier: BC:44:A1:FB:D2:A4:4C:22:AF:69:04:36:55:3D:F4:13:44:4F:DA:F1
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c09f4dc9446535d2264e5afbc2b3e9ad85f2746c.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/45573a30-eead-49e5-854a-7526d14847e6/ca530c39a63fe1473119241bb822ff6151aa8d06.roa
Signing time:             Wed 24 Mar 2021 14:28:37 +0000
ROA not before:           Wed 24 Mar 2021 14:28:37 +0000
ROA not after:            Tue 24 Mar 2026 14:28:37 +0000
asID:                     267687
IP address blocks:        45.163.80.0/23 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/45573a30-eead-49e5-854a-7526d14847e6/c09f4dc9446535d2264e5afbc2b3e9ad85f2746c.crl
                          rsync://repository.lacnic.net/rpki/lacnic/45573a30-eead-49e5-854a-7526d14847e6/c09f4dc9446535d2264e5afbc2b3e9ad85f2746c.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c09f4dc9446535d2264e5afbc2b3e9ad85f2746c.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 03:49:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 809725 (0xc5afd)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c09f4dc9446535d2264e5afbc2b3e9ad85f2746c
        Validity
            Not Before: Mar 24 14:28:37 2021 GMT
            Not After : Mar 24 14:28:37 2026 GMT
        Subject: CN=ca530c39a63fe1473119241bb822ff6151aa8d06
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:6a:e7:a3:fa:ca:8a:0f:58:29:b2:38:19:b7:
                    de:e4:4b:c7:1d:29:63:39:3c:86:ee:18:67:b1:87:
                    f9:34:58:9d:8f:8c:de:e2:6f:13:ae:5c:36:f1:98:
                    14:37:e8:43:44:fd:48:98:87:3e:3d:20:5f:99:63:
                    91:4f:4b:f8:61:a3:c9:50:0e:f3:f6:7d:fd:33:37:
                    6f:ed:39:ff:bf:f8:b2:04:c8:8b:ab:75:73:dc:f4:
                    b6:d5:76:65:30:d6:89:46:d5:37:fe:be:e7:6c:6a:
                    d4:33:49:7d:1d:4c:97:33:61:7e:a6:9a:6b:8f:a2:
                    f5:e9:33:1f:ae:25:83:3a:df:47:f7:0f:48:fa:73:
                    e7:db:af:bc:99:25:75:dd:0a:c5:04:2c:4a:99:06:
                    4b:35:54:f6:84:5a:35:50:89:c6:2e:15:3a:c8:c2:
                    e8:bb:0c:71:b7:83:21:41:17:cd:ff:08:d3:1a:d0:
                    53:6a:e6:0d:85:bc:69:f8:cc:39:3c:d9:aa:25:49:
                    f4:89:37:65:e1:9d:9c:20:1e:dd:c2:ee:f0:fb:c2:
                    43:d2:23:1a:b9:fa:36:49:a0:e2:83:0b:ee:3d:c3:
                    e5:11:4a:98:ea:92:f0:a9:af:2f:5d:e5:59:18:47:
                    64:20:64:80:46:1d:94:e4:22:3b:7e:3a:9b:9e:d4:
                    df:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                09:C8:C8:20:77:E6:C3:01:FA:F1:5A:4A:FF:50:F9:5E:6C:02:7B:0C
            X509v3 Authority Key Identifier:
                keyid:BC:44:A1:FB:D2:A4:4C:22:AF:69:04:36:55:3D:F4:13:44:4F:DA:F1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c09f4dc9446535d2264e5afbc2b3e9ad85f2746c.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/45573a30-eead-49e5-854a-7526d14847e6/ca530c39a63fe1473119241bb822ff6151aa8d06.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/45573a30-eead-49e5-854a-7526d14847e6/c09f4dc9446535d2264e5afbc2b3e9ad85f2746c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.163.80.0/23

    Signature Algorithm: sha256WithRSAEncryption
         4e:07:de:85:3b:b9:c3:5f:ae:78:99:b9:7f:41:cb:c7:e7:44:
         90:8d:5f:b9:a3:97:fe:1b:26:91:84:fc:3a:a8:83:12:6e:c6:
         6b:e5:f6:63:cb:6b:6f:01:b6:32:6f:dd:23:b0:89:88:8d:be:
         65:26:b9:cb:8c:6f:08:b7:4a:96:a0:26:44:c5:23:e2:d7:b6:
         d8:9c:00:7e:89:48:4d:41:63:ad:47:2a:af:8a:f8:2c:bd:69:
         61:f7:d5:6f:7a:3e:7a:f3:1c:1e:ec:0a:da:64:2f:a1:4a:b7:
         9a:95:d1:51:10:0e:5f:38:23:26:c5:fc:99:04:3a:e8:ae:f6:
         8a:ed:45:1c:0e:30:6d:4e:89:c2:9a:a9:e2:bb:6f:59:ad:4f:
         c8:d4:29:f7:73:ea:d1:70:d6:2a:38:b7:d9:bc:9c:34:3f:59:
         99:90:05:b1:79:e4:3a:04:e2:09:b2:c1:4b:63:41:71:be:96:
         fb:da:42:90:d5:65:01:52:30:a0:86:07:87:2a:e2:ee:60:a3:
         71:7b:90:de:d4:02:ca:ac:e3:15:f5:10:e7:5b:06:05:90:c3:
         5f:f4:2e:2b:17:40:55:0e:6b:ab:93:1a:b6:85:35:42:11:82:
         48:56:8a:9e:52:02:92:56:85:30:c4:54:39:19:cb:fe:36:51:
         e5:19:a9:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 11:17:42 2024 by rpki-client on console-fra.rpki-client.org