Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4C76ACD238AB7208FCB8977276DA1BC02E543D274FB85D44A2348AC03AC2A770/0/3139302e35322e3232342e302f32302d3234203d3e203238303533.roa
File:                     3139302e35322e3232342e302f32302d3234203d3e203238303533.roa (raw, json)
Hash identifier:          s0DjQpHJmtAwH0a3nrx+Envct5ZhafQTuZK8dmJxT4w=
Subject key identifier:   C7:6D:45:78:15:74:03:6E:70:AA:40:D6:A0:F5:07:7F:E7:0C:52:16
Certificate issuer:       /CN=0775F451BF69A7F4553954A7FE9AC42D41BFF9F2
Certificate serial:       4AC719A98CF6175907A7A72B5E3B58326113212F
Authority key identifier: 07:75:F4:51:BF:69:A7:F4:55:39:54:A7:FE:9A:C4:2D:41:BF:F9:F2
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0775F451BF69A7F4553954A7FE9AC42D41BFF9F2.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/4C76ACD238AB7208FCB8977276DA1BC02E543D274FB85D44A2348AC03AC2A770/0/3139302e35322e3232342e302f32302d3234203d3e203238303533.roa
Signing time:             Tue 05 Mar 2024 18:00:10 +0000
ROA not before:           Tue 05 Mar 2024 17:55:10 +0000
ROA not after:            Tue 04 Mar 2025 18:00:10 +0000
asID:                     28053
IP address blocks:        190.52.224.0/20 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/4C76ACD238AB7208FCB8977276DA1BC02E543D274FB85D44A2348AC03AC2A770/0/0775F451BF69A7F4553954A7FE9AC42D41BFF9F2.crl
                          rsync://repository.lacnic.net/rpki/lacnic/4C76ACD238AB7208FCB8977276DA1BC02E543D274FB85D44A2348AC03AC2A770/0/0775F451BF69A7F4553954A7FE9AC42D41BFF9F2.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0775F451BF69A7F4553954A7FE9AC42D41BFF9F2.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Wed 19 Jun 2024 16:28:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4a:c7:19:a9:8c:f6:17:59:07:a7:a7:2b:5e:3b:58:32:61:13:21:2f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0775F451BF69A7F4553954A7FE9AC42D41BFF9F2
        Validity
            Not Before: Mar  5 17:55:10 2024 GMT
            Not After : Mar  4 18:00:10 2025 GMT
        Subject: CN=C76D45781574036E70AA40D6A0F5077FE70C5216
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:90:ff:19:36:37:f6:21:83:83:a0:d7:a6:37:f3:
                    a0:a5:d7:70:e2:35:6f:b9:16:7b:9a:81:da:9d:84:
                    78:71:38:2f:9b:2c:f3:f2:de:0f:e1:e9:5e:da:e2:
                    10:41:ad:d2:e2:36:68:4f:8f:85:ae:2d:91:d2:fa:
                    e3:69:ae:30:b6:69:d5:d5:ec:d5:e3:4a:69:65:58:
                    d9:8c:d5:b9:c4:2e:b7:bd:a7:43:5f:1b:a7:b5:a9:
                    78:5b:71:c0:a8:9b:7a:3f:e2:2e:70:b1:9c:85:ca:
                    07:e6:c0:19:e4:fe:20:19:ab:1e:28:6a:cd:8c:e0:
                    32:53:6f:05:b9:5c:ae:0c:13:f2:6e:37:54:a2:89:
                    68:8c:6e:23:f9:48:d0:17:cf:73:0d:3c:02:75:f5:
                    5f:9f:b5:39:c4:ca:98:6f:3f:4e:75:81:89:3b:ba:
                    a2:62:51:5e:33:8d:d8:16:b1:0e:b0:2b:44:63:4a:
                    47:40:50:18:4b:4a:a5:fa:54:7b:91:9a:90:64:54:
                    ec:21:a1:9f:5d:4d:1c:d5:5f:4d:20:62:0c:a7:65:
                    6c:88:11:d9:86:e8:60:0d:6d:5c:c4:8b:62:38:2e:
                    58:85:ca:ae:eb:7e:29:53:17:b6:71:64:f5:47:5b:
                    e3:42:c9:d2:8a:db:24:a3:a1:45:7b:29:43:05:52:
                    06:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C7:6D:45:78:15:74:03:6E:70:AA:40:D6:A0:F5:07:7F:E7:0C:52:16
            X509v3 Authority Key Identifier:
                keyid:07:75:F4:51:BF:69:A7:F4:55:39:54:A7:FE:9A:C4:2D:41:BF:F9:F2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/4C76ACD238AB7208FCB8977276DA1BC02E543D274FB85D44A2348AC03AC2A770/0/0775F451BF69A7F4553954A7FE9AC42D41BFF9F2.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0775F451BF69A7F4553954A7FE9AC42D41BFF9F2.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4C76ACD238AB7208FCB8977276DA1BC02E543D274FB85D44A2348AC03AC2A770/0/3139302e35322e3232342e302f32302d3234203d3e203238303533.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.52.224.0/20

    Signature Algorithm: sha256WithRSAEncryption
         18:6b:20:af:fc:99:57:73:e8:d4:cf:6d:e0:51:36:5e:bc:bf:
         2f:ed:c2:c0:57:df:8a:08:4c:e2:66:94:84:af:e0:16:ca:ad:
         20:9b:a0:d1:5c:06:6b:36:02:93:ca:ba:c5:6e:98:0a:90:67:
         ae:d7:77:4b:7b:0a:50:ae:38:13:79:c3:e9:b1:00:e2:9e:d7:
         65:d8:be:04:18:49:a2:90:de:e5:31:d7:4e:72:e4:23:23:95:
         65:13:5d:b9:91:cd:d6:42:2c:c0:d2:dd:c6:0b:d8:04:14:e7:
         35:2c:e7:e5:4f:50:e6:2c:26:9f:e0:cc:80:b2:32:07:1c:d6:
         cb:90:ac:2f:2d:2c:43:ee:b5:b9:84:c8:f2:07:e8:18:43:c1:
         b0:40:44:32:7d:e6:5e:b4:a1:84:85:f1:77:7f:5d:10:d5:3c:
         bc:76:ba:1a:38:c2:58:36:ba:5a:ff:49:ac:38:e3:7e:71:db:
         43:af:ff:4c:02:d0:bc:d9:eb:24:ec:d7:40:82:bb:d5:61:39:
         52:8b:71:e8:5b:c6:9c:a2:23:4e:52:c4:09:56:67:f8:0d:66:
         49:7f:78:3d:f2:f9:92:df:71:ae:99:7c:09:26:bf:32:44:69:
         ca:bc:89:d4:24:6f:54:77:6a:02:43:ae:63:00:d5:62:9f:ba:
         9d:1e:23:52
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUSscZqYz2F1kHp6crXjtYMmETIS8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDc3NUY0NTFCRjY5QTdGNDU1Mzk1NEE3RkU5QUM0MkQ0
MUJGRjlGMjAeFw0yNDAzMDUxNzU1MTBaFw0yNTAzMDQxODAwMTBaMDMxMTAvBgNV
BAMTKEM3NkQ0NTc4MTU3NDAzNkU3MEFBNDBENkEwRjUwNzdGRTcwQzUyMTYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQ/xk2N/Yhg4Og16Y386Cl13Di
NW+5FnuagdqdhHhxOC+bLPPy3g/h6V7a4hBBrdLiNmhPj4WuLZHS+uNprjC2adXV
7NXjSmllWNmM1bnELre9p0NfG6e1qXhbccCom3o/4i5wsZyFygfmwBnk/iAZqx4o
as2M4DJTbwW5XK4ME/JuN1SiiWiMbiP5SNAXz3MNPAJ19V+ftTnEyphvP051gYk7
uqJiUV4zjdgWsQ6wK0RjSkdAUBhLSqX6VHuRmpBkVOwhoZ9dTRzVX00gYgynZWyI
EdmG6GANbVzEi2I4LliFyq7rfilTF7ZxZPVHW+NCydKK2ySjoUV7KUMFUgaXAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUx21FeBV0A25wqkDWoPUHf+cMUhYwHwYDVR0j
BBgwFoAUB3X0Ub9pp/RVOVSn/prELUG/+fIwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy80Qzc2QUNEMjM4QUI3MjA4RkNCODk3NzI3NkRBMUJDMDJF
NTQzRDI3NEZCODVENDRBMjM0OEFDMDNBQzJBNzcwLzAvMDc3NUY0NTFCRjY5QTdG
NDU1Mzk1NEE3RkU5QUM0MkQ0MUJGRjlGMi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8wNzc1RjQ1MUJGNjlBN0Y0NTUz
OTU0QTdGRTlBQzQyRDQxQkZGOUYyLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNEM3NkFDRDIzOEFCNzIwOEZDQjg5NzcyNzZEQTFCQzAyRTU0M0QyNzRG
Qjg1RDQ0QTIzNDhBQzAzQUMyQTc3MC8wLzMxMzkzMDJlMzUzMjJlMzIzMjM0MmUz
MDJmMzIzMDJkMzIzNDIwM2QzZTIwMzIzODMwMzUzMy5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBL404DAN
BgkqhkiG9w0BAQsFAAOCAQEAGGsgr/yZV3Po1M9t4FE2Xry/L+3CwFffighM4maU
hK/gFsqtIJug0VwGazYCk8q6xW6YCpBnrtd3S3sKUK44E3nD6bEA4p7XZdi+BBhJ
opDe5THXTnLkIyOVZRNduZHN1kIswNLdxgvYBBTnNSzn5U9Q5iwmn+DMgLIyBxzW
y5CsLy0sQ+61uYTI8gfoGEPBsEBEMn3mXrShhIXxd39dENU8vHa6GjjCWDa6Wv9J
rDjjfnHbQ6//TALQvNnrJOzXQIK71WE5Uotx6FvGnKIjTlLECVZn+A1mSX94PfL5
kt9xrpl8CSa/MkRpyryJ1CRvVHdqAkOuYwDVYp+6nR4jUg==
-----END CERTIFICATE-----
Generated at Sat Jun 15 16:52:47 2024 by rpki-client on console-ams.rpki-client.org