Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/b0da462c107e832e8827a4ac5f7418067597b51a.roa
File:                     b0da462c107e832e8827a4ac5f7418067597b51a.roa (raw, json)
Hash identifier:          O9cyvXWNSy140t+KbeLrnqbRrr86DsT5NqvyEcVNtt8=
Subject key identifier:   3B:49:FD:0F:41:E7:D3:24:B7:81:82:A1:01:6D:72:AD:27:55:39:BD
Certificate issuer:       /CN=297e119ebe51a00d6560ab73fd79c51ada403f19
Certificate serial:       014152
Authority key identifier: 07:09:37:88:ED:4A:80:C2:0C:DE:CE:10:A7:FF:BB:31:21:A2:72:9E
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/b0da462c107e832e8827a4ac5f7418067597b51a.roa
Signing time:             Wed 14 Sep 2022 14:25:47 +0000
ROA not before:           Fri 19 Aug 2022 16:19:05 +0000
ROA not after:            Mon 19 Aug 2024 16:19:05 +0000
asID:                     27823
IP address blocks:        179.43.121.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.crl
                          rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 01 Apr 2024 05:58:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 82258 (0x14152)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=297e119ebe51a00d6560ab73fd79c51ada403f19
        Validity
            Not Before: Aug 19 16:19:05 2022 GMT
            Not After : Aug 19 16:19:05 2024 GMT
        Subject: CN=b0da462c107e832e8827a4ac5f7418067597b51a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:74:75:0f:3c:e5:45:20:53:55:24:43:84:04:
                    5f:24:b9:49:4f:b6:a2:d1:c4:fb:ef:5e:b0:1f:fc:
                    65:63:22:bf:df:c8:4e:e8:e0:df:3d:22:3d:a8:e2:
                    72:9d:59:7a:d2:6a:af:25:1b:5c:0c:07:94:42:fd:
                    2e:3d:02:4c:12:8a:dc:01:8e:1b:d1:3d:25:ec:20:
                    2c:bc:51:78:55:7f:34:34:d3:94:7e:a6:b0:26:67:
                    d1:8f:75:40:31:91:0c:e6:bc:62:64:f0:c3:43:03:
                    2d:7a:95:b9:72:99:84:f5:27:12:0e:86:1a:8b:ca:
                    6c:d0:63:c7:29:9c:67:25:48:6e:64:68:8e:9d:01:
                    d0:e4:dd:44:b9:22:c9:b1:94:21:30:91:34:ed:1c:
                    b7:6f:95:d5:65:54:1f:08:dc:2e:12:54:46:56:36:
                    90:56:64:46:69:10:93:7e:9b:43:24:22:21:06:c7:
                    95:14:19:f8:d0:b5:fd:12:c5:bd:bf:df:14:6b:f0:
                    bc:89:4d:bc:6e:93:e6:7b:5d:6c:16:08:0f:48:61:
                    b1:4b:65:05:b9:2a:68:0b:39:39:3e:6d:db:d1:8e:
                    90:7d:5e:59:79:6f:ea:78:7a:98:08:c9:63:91:be:
                    37:ca:09:7b:b2:32:1f:6e:b4:f6:cb:36:23:31:5c:
                    81:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3B:49:FD:0F:41:E7:D3:24:B7:81:82:A1:01:6D:72:AD:27:55:39:BD
            X509v3 Authority Key Identifier:
                keyid:07:09:37:88:ED:4A:80:C2:0C:DE:CE:10:A7:FF:BB:31:21:A2:72:9E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/b0da462c107e832e8827a4ac5f7418067597b51a.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  179.43.121.0/24

    Signature Algorithm: sha256WithRSAEncryption
         46:20:69:29:fb:82:99:74:e3:80:f6:69:bd:7a:64:dd:1d:f8:
         d3:26:ab:0d:c1:9a:6a:d2:27:45:3b:6d:4e:fa:5d:f0:3c:1f:
         f0:89:6f:67:78:36:65:32:8a:c8:7d:00:bd:30:c9:86:11:87:
         44:f6:0c:d0:97:13:1f:66:36:60:3c:bb:49:9f:a9:d5:c0:d7:
         77:de:52:83:8d:2d:1f:6a:41:3b:29:81:97:7b:63:57:ff:d6:
         c8:53:3b:d1:df:4a:44:cb:ee:02:dc:4f:8b:c0:85:a7:ac:f8:
         2b:7d:ec:08:44:ff:92:ab:02:af:13:48:70:b9:d9:70:a2:44:
         d0:36:07:b5:79:5b:09:58:2a:e4:81:f3:d9:a7:82:aa:47:53:
         44:4c:06:15:05:97:4a:d8:f0:89:c1:05:74:fb:0b:85:ca:93:
         9f:07:c7:49:c0:22:e3:f1:50:00:9e:f9:a7:8e:23:c4:88:43:
         86:0b:4c:12:b9:78:e5:58:e1:b9:78:74:e4:bf:f4:65:9c:32:
         06:41:4f:3f:ac:95:7f:3c:3b:76:2b:e9:92:4a:91:95:95:7e:
         ef:76:77:09:a1:ff:2b:22:24:bf:60:4e:fb:cf:60:ef:38:fa:
         99:f0:5e:19:17:a0:4c:b9:0f:8f:cb:1a:41:a2:35:0b:49:a3:
         81:82:35:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 06:00:43 2024 by rpki-client on console-fra.rpki-client.org