Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/58b3a9be78077e87c058693091ff403ed593473b.roa
File:                     58b3a9be78077e87c058693091ff403ed593473b.roa (raw, json)
Hash identifier:          nMPzn7RW0FlyFgtYNt0FB/piJEmSkm6Frdlh29uonKM=
Subject key identifier:   3B:FE:B9:9A:AD:90:E9:BE:E6:65:F7:7D:14:C2:7E:BA:23:D2:39:8D
Certificate issuer:       /CN=297e119ebe51a00d6560ab73fd79c51ada403f19
Certificate serial:       013CEE
Authority key identifier: 07:09:37:88:ED:4A:80:C2:0C:DE:CE:10:A7:FF:BB:31:21:A2:72:9E
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/58b3a9be78077e87c058693091ff403ed593473b.roa
Signing time:             Wed 14 Sep 2022 14:21:20 +0000
ROA not before:           Fri 19 Aug 2022 16:19:05 +0000
ROA not after:            Mon 19 Aug 2024 16:19:05 +0000
asID:                     27823
IP address blocks:        179.43.119.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.crl
                          rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 01 Apr 2024 05:58:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 81134 (0x13cee)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=297e119ebe51a00d6560ab73fd79c51ada403f19
        Validity
            Not Before: Aug 19 16:19:05 2022 GMT
            Not After : Aug 19 16:19:05 2024 GMT
        Subject: CN=58b3a9be78077e87c058693091ff403ed593473b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:e0:b6:aa:1b:0e:f7:ea:ab:83:8e:29:2e:a7:
                    ad:37:a0:9d:c2:f7:ca:78:5e:58:47:4b:ef:3d:ac:
                    57:94:49:74:3b:51:8d:0d:67:c7:5a:b6:cf:0b:ab:
                    7a:29:5f:b9:9e:f8:66:54:62:dd:25:82:13:c6:33:
                    5d:69:fd:d1:8f:c0:10:82:de:a9:14:e8:32:95:66:
                    4f:f2:1d:a5:5a:b1:05:e3:6b:46:2f:bd:cb:53:88:
                    1a:fb:bf:e6:f1:9a:80:3b:3f:27:a2:cc:32:24:dd:
                    42:45:a7:b7:68:d6:84:95:1f:c9:10:76:33:a0:d7:
                    d8:4c:83:4f:75:7c:33:59:c3:50:5b:40:81:cf:7e:
                    82:7a:21:1a:1d:2e:58:3a:ba:c9:73:52:b5:40:3b:
                    0e:f8:d6:af:0f:d2:eb:8d:24:23:b8:dd:a7:f7:2f:
                    38:1f:a5:7c:17:25:ed:04:12:3b:a4:44:fa:f1:93:
                    7f:aa:94:9a:bf:97:c5:e5:8f:fc:cb:e6:7e:54:e1:
                    56:28:18:ab:ad:22:8c:fb:31:c6:fb:7f:6a:0c:bc:
                    a0:c7:89:19:0d:ef:43:ed:1d:08:36:3b:00:2b:84:
                    32:88:e6:d4:4d:ba:07:4d:57:4b:a1:91:80:9c:f8:
                    2a:9b:ce:7c:90:3d:41:15:3e:b7:a1:bc:60:e7:8c:
                    3a:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3B:FE:B9:9A:AD:90:E9:BE:E6:65:F7:7D:14:C2:7E:BA:23:D2:39:8D
            X509v3 Authority Key Identifier:
                keyid:07:09:37:88:ED:4A:80:C2:0C:DE:CE:10:A7:FF:BB:31:21:A2:72:9E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/58b3a9be78077e87c058693091ff403ed593473b.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  179.43.119.0/24

    Signature Algorithm: sha256WithRSAEncryption
         40:06:1f:4e:9e:37:03:de:f6:82:dc:56:a1:66:ce:c5:93:02:
         20:4b:96:45:5b:26:ae:14:48:d7:3d:71:a3:ea:93:f7:43:50:
         55:75:1b:83:13:58:f1:3b:bc:99:18:cb:78:22:64:e1:3d:a0:
         a6:3a:41:12:ce:24:8d:9e:8a:50:58:28:a3:d5:b4:d9:0c:d8:
         fd:48:8f:d4:56:95:7b:69:32:80:47:73:3d:33:03:f3:2c:12:
         71:db:28:2d:69:99:f9:cf:ef:fb:8c:6d:2c:82:ef:09:33:e2:
         96:c6:d2:42:d7:5e:79:78:5a:40:ce:0f:9d:eb:d2:f7:a4:4f:
         dc:9a:b4:f2:a0:02:48:bd:62:af:76:01:d9:bb:80:a8:42:0c:
         89:a7:d4:be:5c:14:60:fc:07:c5:10:60:a4:29:4d:54:42:65:
         44:b2:9e:08:10:1e:98:0b:9c:47:0d:bb:0b:a0:e3:ae:1c:19:
         f9:51:27:c6:e6:24:c5:0d:0f:94:d5:33:dd:c7:fb:e2:e0:79:
         f5:99:da:4d:9f:8e:01:c4:68:f8:6e:a9:30:69:59:c2:7d:1b:
         77:be:0f:7c:0e:df:eb:8c:90:c6:bf:14:a0:78:d4:d0:55:00:
         45:7f:9b:b8:4a:ac:b0:e6:5d:94:cc:76:d1:dc:28:52:a6:20:
         e4:c7:87:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 06:00:43 2024 by rpki-client on console-fra.rpki-client.org