Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/4ef4b2c4aae52339ada260a4eb62b0783b722759.roa
File:                     4ef4b2c4aae52339ada260a4eb62b0783b722759.roa (raw, json)
Hash identifier:          ETxZ1tAIHs78WBPz4MsqNUgIQqO69QIU153xWW2kyIw=
Subject key identifier:   76:5F:2A:48:E9:D5:44:A0:EB:CF:1C:21:8C:45:64:A3:BC:3F:13:D9
Certificate issuer:       /CN=297e119ebe51a00d6560ab73fd79c51ada403f19
Certificate serial:       01BBF8
Authority key identifier: 07:09:37:88:ED:4A:80:C2:0C:DE:CE:10:A7:FF:BB:31:21:A2:72:9E
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/4ef4b2c4aae52339ada260a4eb62b0783b722759.roa
Signing time:             Wed 14 Sep 2022 16:22:44 +0000
ROA not before:           Fri 19 Aug 2022 16:20:25 +0000
ROA not after:            Mon 19 Aug 2024 16:20:25 +0000
asID:                     27823
IP address blocks:        200.58.105.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.crl
                          rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 03:49:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 113656 (0x1bbf8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=297e119ebe51a00d6560ab73fd79c51ada403f19
        Validity
            Not Before: Aug 19 16:20:25 2022 GMT
            Not After : Aug 19 16:20:25 2024 GMT
        Subject: CN=4ef4b2c4aae52339ada260a4eb62b0783b722759
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8c:bb:e8:3e:eb:79:99:c3:68:b1:a4:2e:f1:bb:
                    ee:00:2a:fb:47:88:04:2b:dd:dd:5e:42:16:75:33:
                    81:a4:c6:9a:76:27:b4:e6:90:24:01:9e:ad:b4:45:
                    2d:a0:43:70:fd:a1:a8:3a:d0:d3:37:c3:e0:a2:f9:
                    cd:af:e2:26:67:e0:c6:72:49:6f:92:2d:50:30:8d:
                    be:c6:33:b4:d4:ef:a6:4a:73:4b:95:e0:d0:d8:08:
                    7a:e2:78:83:4d:53:44:97:59:8c:58:2e:1d:65:ba:
                    5f:b3:1c:ba:86:10:c0:19:02:0a:4c:aa:d9:c6:8e:
                    8b:c5:b1:86:ae:8a:3d:f1:d7:0c:2e:9d:7e:93:7e:
                    a0:2e:d0:f8:0e:c4:d1:61:d3:04:f4:57:b0:fa:18:
                    02:21:4a:60:04:86:21:98:21:e2:b4:d4:fc:76:7e:
                    df:ac:0e:1f:b6:21:77:a4:66:be:56:c5:f0:23:a5:
                    34:9d:43:63:4e:5e:55:e6:39:bb:26:b2:88:01:6f:
                    2d:56:c7:2d:8a:cb:0a:f9:e0:11:20:c3:33:50:5d:
                    d4:67:16:56:23:4e:fa:59:87:82:64:71:b8:31:32:
                    69:91:c4:72:68:31:b6:e5:ca:68:be:af:b6:2a:75:
                    03:85:82:be:f3:44:42:f8:90:ce:35:2d:93:8a:13:
                    56:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                76:5F:2A:48:E9:D5:44:A0:EB:CF:1C:21:8C:45:64:A3:BC:3F:13:D9
            X509v3 Authority Key Identifier:
                keyid:07:09:37:88:ED:4A:80:C2:0C:DE:CE:10:A7:FF:BB:31:21:A2:72:9E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/4ef4b2c4aae52339ada260a4eb62b0783b722759.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.58.105.0/24

    Signature Algorithm: sha256WithRSAEncryption
         60:a7:78:03:5b:8d:58:b2:db:9c:c8:73:5f:45:2d:a1:25:ac:
         2b:d4:1e:59:2d:1a:19:8a:95:6a:d9:37:bf:20:f6:38:9b:73:
         d8:5b:16:9c:af:5a:eb:07:86:6c:e5:91:25:7d:39:6b:26:77:
         c3:49:80:ba:83:d0:31:b8:04:03:ff:b5:27:4c:35:90:ff:c8:
         3d:46:31:22:8a:c2:43:e6:1b:dd:9d:fb:e6:d6:4e:7a:ea:03:
         ff:7c:3c:76:a0:c8:a9:54:c7:8b:a8:96:66:ce:3f:c2:fb:07:
         30:56:6e:17:01:9e:a1:52:a7:2a:cc:a3:7d:9f:93:79:86:4b:
         ac:57:12:87:e3:dc:6e:23:31:b6:df:98:3f:87:de:0a:4f:de:
         35:e7:48:6b:c9:02:eb:8a:f4:37:d4:4a:7b:cd:93:9e:15:0c:
         66:15:72:78:91:4c:86:8d:05:c1:82:e9:2b:51:d0:57:f4:bc:
         a6:c9:5c:b2:7b:4a:d1:06:cf:27:5e:2a:d3:43:93:b6:59:ad:
         05:49:42:dd:12:ca:81:cf:60:a9:5e:db:4b:aa:4c:f8:9e:da:
         0c:b9:8c:d3:fb:86:41:e7:d9:b5:a8:ed:86:56:df:99:8c:31:
         8a:c1:90:9c:1d:20:e5:9b:e3:a9:33:7e:4d:e7:7e:2c:77:3e:
         b0:cb:d1:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 11:17:43 2024 by rpki-client on console-fra.rpki-client.org