Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4C76ACD238AB7208FCB8977276DA1BC02E543D274FB85D44A2348AC03AC2A770/0/3139302e35322e3234302e302f32302d3234203d3e203238303533.roa
File:                     3139302e35322e3234302e302f32302d3234203d3e203238303533.roa (raw, json)
Hash identifier:          FvbZKe1v4ZII398MQSPhvQD1JLI5aMSrD7zUDJx0HMw=
Subject key identifier:   27:A9:8F:9D:E4:5E:DE:8D:88:94:9A:8F:5E:04:B0:B4:3E:E7:38:C5
Certificate issuer:       /CN=0775F451BF69A7F4553954A7FE9AC42D41BFF9F2
Certificate serial:       429BA5895F3725B4D2ABD78FD224AFD9F88101FC
Authority key identifier: 07:75:F4:51:BF:69:A7:F4:55:39:54:A7:FE:9A:C4:2D:41:BF:F9:F2
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0775F451BF69A7F4553954A7FE9AC42D41BFF9F2.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/4C76ACD238AB7208FCB8977276DA1BC02E543D274FB85D44A2348AC03AC2A770/0/3139302e35322e3234302e302f32302d3234203d3e203238303533.roa
Signing time:             Tue 05 Mar 2024 18:00:09 +0000
ROA not before:           Tue 05 Mar 2024 17:55:09 +0000
ROA not after:            Tue 04 Mar 2025 18:00:09 +0000
asID:                     28053
IP address blocks:        190.52.240.0/20 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/4C76ACD238AB7208FCB8977276DA1BC02E543D274FB85D44A2348AC03AC2A770/0/0775F451BF69A7F4553954A7FE9AC42D41BFF9F2.crl
                          rsync://repository.lacnic.net/rpki/lacnic/4C76ACD238AB7208FCB8977276DA1BC02E543D274FB85D44A2348AC03AC2A770/0/0775F451BF69A7F4553954A7FE9AC42D41BFF9F2.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0775F451BF69A7F4553954A7FE9AC42D41BFF9F2.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Wed 19 Jun 2024 16:28:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            42:9b:a5:89:5f:37:25:b4:d2:ab:d7:8f:d2:24:af:d9:f8:81:01:fc
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0775F451BF69A7F4553954A7FE9AC42D41BFF9F2
        Validity
            Not Before: Mar  5 17:55:09 2024 GMT
            Not After : Mar  4 18:00:09 2025 GMT
        Subject: CN=27A98F9DE45EDE8D88949A8F5E04B0B43EE738C5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:84:6d:f0:27:c7:c4:62:dc:72:2b:f8:79:f0:
                    1e:76:12:d7:48:8d:e4:5d:6e:37:05:a9:8d:d9:15:
                    5c:6b:09:71:6e:94:91:d6:be:7b:61:36:9e:2e:57:
                    07:e5:8a:56:12:9d:5a:f6:7b:90:de:4d:72:5a:23:
                    bb:d4:6a:0f:07:ac:fb:a6:86:9d:c3:f6:51:53:a7:
                    6e:ba:c5:88:b5:a7:6f:ee:24:ca:2f:95:f2:87:1e:
                    3d:6e:bb:f0:4e:aa:db:2b:17:98:e3:59:41:83:c2:
                    e1:78:f2:47:08:3f:57:1c:4b:92:4f:86:8c:3e:41:
                    19:ca:e8:c9:ac:98:b0:c2:71:e0:e6:bf:38:c3:7b:
                    39:62:63:73:42:69:ab:1c:7e:df:fe:6f:02:cd:8f:
                    0a:b1:ea:63:f0:be:a2:f3:06:15:e6:2a:c5:8a:c2:
                    bc:f3:c0:f2:02:4f:7c:45:70:a1:f0:7b:ec:31:e8:
                    da:2f:8c:2a:18:c1:c1:51:99:30:c5:6c:77:70:66:
                    2e:d9:08:25:28:77:c8:e5:33:87:92:75:51:80:ed:
                    62:f0:31:90:26:da:da:4a:17:82:0c:65:9d:50:be:
                    b1:e6:73:00:59:fc:bc:b3:7b:66:6d:6c:0c:c9:ea:
                    1f:33:e4:9f:bd:33:84:65:6c:9b:00:40:ef:24:59:
                    5d:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                27:A9:8F:9D:E4:5E:DE:8D:88:94:9A:8F:5E:04:B0:B4:3E:E7:38:C5
            X509v3 Authority Key Identifier:
                keyid:07:75:F4:51:BF:69:A7:F4:55:39:54:A7:FE:9A:C4:2D:41:BF:F9:F2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/4C76ACD238AB7208FCB8977276DA1BC02E543D274FB85D44A2348AC03AC2A770/0/0775F451BF69A7F4553954A7FE9AC42D41BFF9F2.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0775F451BF69A7F4553954A7FE9AC42D41BFF9F2.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4C76ACD238AB7208FCB8977276DA1BC02E543D274FB85D44A2348AC03AC2A770/0/3139302e35322e3234302e302f32302d3234203d3e203238303533.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.52.240.0/20

    Signature Algorithm: sha256WithRSAEncryption
         a1:41:09:b8:49:3e:b9:e8:df:30:3b:b5:58:64:42:bf:61:82:
         6c:da:c0:a5:45:95:17:d5:54:09:a5:74:f5:dd:38:83:70:09:
         72:d5:44:e2:d9:f6:d4:d1:85:a1:bd:47:ad:dd:47:74:8f:12:
         72:b6:34:1b:08:74:93:1c:3e:64:25:90:b7:ae:7d:5e:2f:15:
         d6:40:9d:30:22:fa:fe:43:e1:4a:7b:f7:ca:e7:89:33:3e:07:
         1e:9e:d6:0d:4f:dc:9d:e7:0d:fa:e5:87:92:a2:4c:a1:42:cc:
         ee:ae:88:d4:4a:e1:49:20:5e:f9:88:06:f0:25:6c:df:ce:c6:
         b1:24:88:b5:ba:fb:be:62:99:ac:67:68:b9:17:bf:93:11:28:
         80:df:ef:40:7f:b5:78:b5:bf:7a:08:9b:6c:1e:98:37:02:39:
         a0:fc:1b:52:29:19:fa:cd:7e:fe:a3:94:87:da:29:95:48:84:
         b2:c1:2e:fc:cf:43:4f:ab:37:f9:18:56:c0:a4:30:fe:34:3c:
         4a:b6:60:0c:dd:a3:f8:52:dc:01:99:e5:1f:8a:96:38:69:91:
         2d:68:2c:6d:c1:aa:b4:99:43:bb:d5:04:63:57:c3:ea:f5:96:
         50:f8:f8:8b:b9:71:48:03:7a:b7:fc:e6:8c:86:ff:b4:2a:b2:
         45:7d:87:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 16:14:15 2024 by rpki-client on console-fra.rpki-client.org