Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/8fffe9df665838216467efaee92cdc9c83a8b095.roa
File:                     8fffe9df665838216467efaee92cdc9c83a8b095.roa (raw, json)
Hash identifier:          y/5ERCXXiqs2CvPow81FAKrVUU2trA52WtqbDAqsCyg=
Subject key identifier:   43:6A:F8:A0:1F:C0:36:B1:8F:40:39:E5:AE:86:6D:C0:68:41:46:F8
Certificate issuer:       /CN=297e119ebe51a00d6560ab73fd79c51ada403f19
Certificate serial:       013435
Authority key identifier: 07:09:37:88:ED:4A:80:C2:0C:DE:CE:10:A7:FF:BB:31:21:A2:72:9E
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/8fffe9df665838216467efaee92cdc9c83a8b095.roa
Signing time:             Wed 14 Sep 2022 14:20:27 +0000
ROA not before:           Fri 19 Aug 2022 16:19:05 +0000
ROA not after:            Mon 19 Aug 2024 16:19:05 +0000
asID:                     27823
IP address blocks:        179.43.117.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.crl
                          rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 03:49:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 78901 (0x13435)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=297e119ebe51a00d6560ab73fd79c51ada403f19
        Validity
            Not Before: Aug 19 16:19:05 2022 GMT
            Not After : Aug 19 16:19:05 2024 GMT
        Subject: CN=8fffe9df665838216467efaee92cdc9c83a8b095
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:ad:6c:68:e7:4d:e4:a1:68:ed:9a:d4:15:52:
                    4d:96:b5:f8:58:fd:38:c3:22:17:17:4c:f8:8f:a1:
                    b3:34:3c:bc:06:77:d7:e2:db:82:1d:dc:70:d0:5b:
                    a3:0d:9c:80:bb:33:de:25:c5:c8:30:f7:60:c1:fe:
                    2c:3a:26:ed:e5:74:65:1e:3b:37:fd:21:ed:d2:9c:
                    a3:ef:f8:96:3f:b3:e0:8c:3f:b1:6d:de:4d:b7:2e:
                    39:76:cd:15:85:28:4e:c5:ca:68:9d:4b:8b:d3:77:
                    cf:c8:f8:1c:76:3e:3d:78:02:d3:37:21:76:02:5c:
                    3e:4f:85:c8:87:3f:60:19:30:d9:c6:78:28:9a:29:
                    c4:99:98:34:2f:3b:c7:09:db:a1:11:fd:8b:a7:2b:
                    f9:e3:90:7d:b1:2a:e2:c7:be:e3:05:e6:f0:4d:da:
                    f7:b1:b4:fb:28:12:af:cb:e0:a9:0f:ed:d1:c1:fc:
                    76:af:68:bb:6d:3a:a8:7f:97:84:d6:61:96:4d:28:
                    f7:63:bd:f8:ba:71:38:b8:33:40:f2:03:49:1f:9e:
                    7d:03:13:c9:29:62:bc:ec:13:2b:c5:2e:11:8e:b9:
                    97:6c:a5:2c:9f:e8:0f:6e:a2:72:9d:9c:da:2d:35:
                    45:a9:30:b2:4e:0e:26:19:f2:65:26:c4:b9:56:a4:
                    95:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                43:6A:F8:A0:1F:C0:36:B1:8F:40:39:E5:AE:86:6D:C0:68:41:46:F8
            X509v3 Authority Key Identifier:
                keyid:07:09:37:88:ED:4A:80:C2:0C:DE:CE:10:A7:FF:BB:31:21:A2:72:9E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/8fffe9df665838216467efaee92cdc9c83a8b095.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  179.43.117.0/24

    Signature Algorithm: sha256WithRSAEncryption
         3d:26:2d:e1:25:aa:6e:c3:f2:dc:f0:d6:53:1e:98:3d:1a:de:
         14:85:01:07:da:5d:79:a9:a4:dc:df:fd:7b:2f:f4:bb:9c:81:
         01:bb:fb:96:58:23:be:31:47:b0:16:24:38:3c:c7:45:1b:18:
         4b:f6:08:37:c6:9d:4f:b2:b6:5f:fa:73:a5:b9:15:21:f5:a8:
         9c:7d:3e:09:84:49:e8:12:e6:df:08:a7:09:ce:40:b7:2e:f2:
         bf:c1:c7:a4:87:22:09:a7:89:6d:e7:cb:fd:c3:d5:c5:36:3d:
         17:70:eb:79:10:a2:fb:95:5d:63:36:d1:b8:9b:a4:c2:11:ea:
         ab:4d:b8:fa:6e:43:f3:e5:6e:5e:ae:ea:31:3c:e7:b8:90:8e:
         38:16:53:a3:d3:fb:73:65:41:48:db:1a:dc:ee:5c:c3:5d:22:
         1b:1f:81:1c:9c:65:6d:30:6d:54:27:76:b2:e3:53:4e:1c:a7:
         1d:9c:f1:14:67:bb:79:55:ca:9b:f3:d2:a4:44:71:c9:e0:ec:
         68:bb:6f:6c:8e:58:a8:82:af:48:e5:3f:82:46:0e:04:c4:65:
         23:fb:0b:f5:a1:9b:6f:2e:5f:fe:8b:ca:8f:d6:95:71:75:1a:
         6f:99:e2:18:41:cd:7b:00:93:5a:2b:e7:a3:35:b7:b0:89:92:
         b5:09:bc:37
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIDATQ1MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDI5
N2UxMTllYmU1MWEwMGQ2NTYwYWI3M2ZkNzljNTFhZGE0MDNmMTkwHhcNMjIwODE5
MTYxOTA1WhcNMjQwODE5MTYxOTA1WjAzMTEwLwYDVQQDEyg4ZmZmZTlkZjY2NTgz
ODIxNjQ2N2VmYWVlOTJjZGM5YzgzYThiMDk1MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAnq1saOdN5KFo7ZrUFVJNlrX4WP04wyIXF0z4j6GzNDy8BnfX
4tuCHdxw0FujDZyAuzPeJcXIMPdgwf4sOibt5XRlHjs3/SHt0pyj7/iWP7PgjD+x
bd5Nty45ds0VhShOxcponUuL03fPyPgcdj49eALTNyF2Alw+T4XIhz9gGTDZxngo
minEmZg0LzvHCduhEf2Lpyv545B9sSrix77jBebwTdr3sbT7KBKvy+CpD+3Rwfx2
r2i7bTqof5eE1mGWTSj3Y734unE4uDNA8gNJH559AxPJKWK87BMrxS4RjrmXbKUs
n+gPbqJynZzaLTVFqTCyTg4mGfJlJsS5VqSV7wIDAQABo4ICWzCCAlcwHQYDVR0O
BBYEFENq+KAfwDaxj0A55a6GbcBoQUb4MB8GA1UdIwQYMBaAFAcJN4jtSoDCDN7O
EKf/uzEhonKeMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvMjk3ZTEx
OWViZTUxYTAwZDY1NjBhYjczZmQ3OWM1MWFkYTQwM2YxOS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvNGQ4ZGYwZjAtNDFjNC00MDFkLWFjMTUtZGUwZGI0
MGFjOWNiLzhmZmZlOWRmNjY1ODM4MjE2NDY3ZWZhZWU5MmNkYzljODNhOGIwOTUu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy80ZDhkZjBmMC00MWM0LTQwMWQtYWMxNS1kZTBk
YjQwYWM5Y2IvMjk3ZTExOWViZTUxYTAwZDY1NjBhYjczZmQ3OWM1MWFkYTQwM2Yx
OS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEALMrdTANBgkqhkiG9w0BAQsFAAOCAQEAPSYt4SWqbsPy3PDW
Ux6YPRreFIUBB9pdeamk3N/9ey/0u5yBAbv7llgjvjFHsBYkODzHRRsYS/YIN8ad
T7K2X/pzpbkVIfWonH0+CYRJ6BLm3winCc5Aty7yv8HHpIciCaeJbefL/cPVxTY9
F3DreRCi+5VdYzbRuJukwhHqq024+m5D8+VuXq7qMTznuJCOOBZTo9P7c2VBSNsa
3O5cw10iGx+BHJxlbTBtVCd2suNTThynHZzxFGe7eVXKm/PSpERxyeDsaLtvbI5Y
qIKvSOU/gkYOBMRlI/sL9aGbby5f/ovKj9aVcXUab5niGEHNewCTWivnozW3sImS
tQm8Nw==
-----END CERTIFICATE-----
Generated at Thu Mar 28 10:47:04 2024 by rpki-client on console-ams.rpki-client.org