Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/fc21716e2a095bc1ff1f74b38e26570c7bba6ad0.roa
File:                     fc21716e2a095bc1ff1f74b38e26570c7bba6ad0.roa (raw, json)
Hash identifier:          WBaA+mLuJ0P/XKUAd8Qq953g70XTYqqtTOGTBkcqmDk=
Subject key identifier:   AF:F2:AB:08:7E:7B:09:2A:F7:D8:7E:77:81:DD:CB:46:25:EE:D5:B6
Certificate issuer:       /CN=297e119ebe51a00d6560ab73fd79c51ada403f19
Certificate serial:       1974
Authority key identifier: 07:09:37:88:ED:4A:80:C2:0C:DE:CE:10:A7:FF:BB:31:21:A2:72:9E
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/fc21716e2a095bc1ff1f74b38e26570c7bba6ad0.roa
Signing time:             Fri 19 Aug 2022 16:19:42 +0000
ROA not before:           Fri 19 Aug 2022 16:19:05 +0000
ROA not after:            Mon 19 Aug 2024 16:19:05 +0000
asID:                     27823
IP address blocks:        179.43.112.0/20 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.crl
                          rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 03:49:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6516 (0x1974)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=297e119ebe51a00d6560ab73fd79c51ada403f19
        Validity
            Not Before: Aug 19 16:19:05 2022 GMT
            Not After : Aug 19 16:19:05 2024 GMT
        Subject: CN=fc21716e2a095bc1ff1f74b38e26570c7bba6ad0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f1:ea:e5:6c:6a:ba:74:03:73:4b:5e:98:9f:5f:
                    32:0c:da:78:0e:92:6b:f5:f7:3d:f8:bc:b4:b2:02:
                    80:1c:de:69:59:88:d2:89:d6:24:9e:cf:5e:b5:2d:
                    22:f4:98:61:01:d4:82:0d:8f:20:7c:3a:7a:7a:08:
                    23:94:ec:c9:21:aa:90:12:5a:aa:42:ab:45:da:54:
                    9c:52:75:ef:2f:31:24:46:ec:c0:42:4e:68:85:4c:
                    f6:cc:d2:a9:56:44:d9:5d:0e:11:af:28:7a:b7:68:
                    e8:2b:a1:4c:1e:06:74:a7:c5:22:22:eb:d0:74:2d:
                    c6:00:c4:f8:14:e9:d0:4f:fa:53:7f:e7:fb:e8:61:
                    6b:7f:de:10:d6:55:91:b3:f9:ab:99:20:97:6d:3b:
                    0a:57:5c:bc:30:b5:b6:c7:e6:62:38:10:9a:99:32:
                    bf:8f:84:e6:fc:23:14:8a:98:5f:c8:35:5a:13:98:
                    24:ca:94:af:0e:2b:71:f1:c5:0c:e3:72:bf:65:02:
                    ae:f7:16:a3:54:dc:a3:fc:7c:7f:bb:f5:c8:37:50:
                    b7:5d:c1:ac:81:cc:8a:85:ec:38:f7:2a:24:3e:bd:
                    da:4d:31:6c:48:42:1e:7f:6e:e0:6e:d8:23:c4:c6:
                    54:b2:a3:3b:cd:86:a8:2b:61:33:4c:ba:89:39:aa:
                    46:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AF:F2:AB:08:7E:7B:09:2A:F7:D8:7E:77:81:DD:CB:46:25:EE:D5:B6
            X509v3 Authority Key Identifier:
                keyid:07:09:37:88:ED:4A:80:C2:0C:DE:CE:10:A7:FF:BB:31:21:A2:72:9E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/fc21716e2a095bc1ff1f74b38e26570c7bba6ad0.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  179.43.112.0/20

    Signature Algorithm: sha256WithRSAEncryption
         71:77:1f:fc:f7:93:e5:bd:79:17:f7:c6:66:fe:a9:c3:3b:1d:
         cd:3e:33:61:22:37:4b:f4:99:52:fc:aa:cd:1c:ff:ea:b1:bb:
         3d:38:a0:7a:02:b1:bb:25:da:23:cb:fc:5f:89:fc:e8:69:42:
         cc:e0:9f:12:7f:86:5f:7f:25:23:3c:c2:c5:e6:1e:42:3e:90:
         1f:40:75:cd:68:f6:94:fa:3d:f8:e4:b5:13:e6:4c:64:36:0a:
         c3:a9:96:fc:a7:72:88:88:2c:bb:b4:54:5d:77:f6:77:12:85:
         13:13:ab:16:c6:04:5d:d5:af:36:f4:4b:d1:13:aa:22:c4:c1:
         04:37:41:77:3d:01:0c:ef:0d:44:34:f2:6a:8b:ac:a1:e0:9b:
         94:f6:a8:ab:a6:a8:65:99:2c:1c:f1:0c:49:97:46:0c:88:a4:
         e5:78:e5:2a:94:c6:53:39:da:fd:f5:c4:81:fc:20:f8:c7:d8:
         ab:03:a0:1b:4c:26:cc:6c:64:97:6b:cc:b7:fd:3b:61:b9:91:
         2f:35:74:c4:97:8b:89:de:aa:b8:be:a4:ed:cd:de:a9:1b:19:
         43:b3:b3:7f:a8:cf:6d:c6:29:d4:00:df:80:10:06:7d:d8:76:
         93:dd:c9:b8:af:83:e8:07:05:37:fd:b9:ce:b3:ae:e1:c3:fb:
         4b:fd:34:a6
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgICGXQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk3
ZTExOWViZTUxYTAwZDY1NjBhYjczZmQ3OWM1MWFkYTQwM2YxOTAeFw0yMjA4MTkx
NjE5MDVaFw0yNDA4MTkxNjE5MDVaMDMxMTAvBgNVBAMTKGZjMjE3MTZlMmEwOTVi
YzFmZjFmNzRiMzhlMjY1NzBjN2JiYTZhZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDx6uVsarp0A3NLXpifXzIM2ngOkmv19z34vLSyAoAc3mlZiNKJ
1iSez161LSL0mGEB1IINjyB8Onp6CCOU7MkhqpASWqpCq0XaVJxSde8vMSRG7MBC
TmiFTPbM0qlWRNldDhGvKHq3aOgroUweBnSnxSIi69B0LcYAxPgU6dBP+lN/5/vo
YWt/3hDWVZGz+auZIJdtOwpXXLwwtbbH5mI4EJqZMr+PhOb8IxSKmF/INVoTmCTK
lK8OK3HxxQzjcr9lAq73FqNU3KP8fH+79cg3ULddwayBzIqF7Dj3KiQ+vdpNMWxI
Qh5/buBu2CPExlSyozvNhqgrYTNMuok5qkapAgMBAAGjggJbMIICVzAdBgNVHQ4E
FgQUr/KrCH57CSr32H53gd3LRiXu1bYwHwYDVR0jBBgwFoAUBwk3iO1KgMIM3s4Q
p/+7MSGicp4wDgYDVR0PAQH/BAQDAgeAMIGaBggrBgEFBQcBAQSBjTCBijCBhwYI
KwYBBQUHMAKGe3JzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kvbGFj
bmljLzQ4ZjA4M2JiLWY2MDMtNDg5My05OTkwLTAyODRjMDRjZWI4NS8yOTdlMTE5
ZWJlNTFhMDBkNjU2MGFiNzNmZDc5YzUxYWRhNDAzZjE5LmNlcjCBmgYIKwYBBQUH
AQsEgY0wgYowgYcGCCsGAQUFBzALhntyc3luYzovL3JlcG9zaXRvcnkubGFjbmlj
Lm5ldC9ycGtpL2xhY25pYy80ZDhkZjBmMC00MWM0LTQwMWQtYWMxNS1kZTBkYjQw
YWM5Y2IvZmMyMTcxNmUyYTA5NWJjMWZmMWY3NGIzOGUyNjU3MGM3YmJhNmFkMC5y
b2EwgY8GA1UdHwSBhzCBhDCBgaB/oH2Ge3JzeW5jOi8vcmVwb3NpdG9yeS5sYWNu
aWMubmV0L3Jwa2kvbGFjbmljLzRkOGRmMGYwLTQxYzQtNDAxZC1hYzE1LWRlMGRi
NDBhYzljYi8yOTdlMTE5ZWJlNTFhMDBkNjU2MGFiNzNmZDc5YzUxYWRhNDAzZjE5
LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw
DjAMBAIAATAGAwQEsytwMA0GCSqGSIb3DQEBCwUAA4IBAQBxdx/895PlvXkX98Zm
/qnDOx3NPjNhIjdL9JlS/KrNHP/qsbs9OKB6ArG7Jdojy/xfifzoaULM4J8Sf4Zf
fyUjPMLF5h5CPpAfQHXNaPaU+j345LUT5kxkNgrDqZb8p3KIiCy7tFRdd/Z3EoUT
E6sWxgRd1a829EvRE6oixMEEN0F3PQEM7w1ENPJqi6yh4JuU9qirpqhlmSwc8QxJ
l0YMiKTleOUqlMZTOdr99cSB/CD4x9irA6AbTCbMbGSXa8y3/TthuZEvNXTEl4uJ
3qq4vqTtzd6pGxlDs7N/qM9txinUAN+AEAZ92HaT3cm4r4PoBwU3/bnOs67hw/tL
/TSm
-----END CERTIFICATE-----
Generated at Thu Mar 28 11:17:43 2024 by rpki-client on console-fra.rpki-client.org