Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4dd887bd-0ea8-459b-b945-daea7ada6183/af887a49fb11da9e9ab23facbe36ce0d475c8d83.roa
File:                     af887a49fb11da9e9ab23facbe36ce0d475c8d83.roa (raw, json)
Hash identifier:          RcJeH16eJ4g+1RRTSQpY+2vNBTlUiUazP/Ghi7jHGv4=
Subject key identifier:   BB:27:94:21:72:65:45:63:64:57:B9:C4:91:5B:8C:F9:1C:C7:E7:78
Certificate issuer:       /CN=f48a793247cd1f645923603f197e3d287d051040
Certificate serial:       0C3E10
Authority key identifier: 79:3A:BC:6F:D4:8E:32:89:36:F7:E8:BA:DB:7E:2A:91:8E:39:B9:8A
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f48a793247cd1f645923603f197e3d287d051040.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/4dd887bd-0ea8-459b-b945-daea7ada6183/af887a49fb11da9e9ab23facbe36ce0d475c8d83.roa
Signing time:             Wed 24 Mar 2021 14:46:10 +0000
ROA not before:           Wed 24 Mar 2021 14:46:10 +0000
ROA not after:            Tue 24 Mar 2026 14:46:10 +0000
asID:                     267800
IP address blocks:        45.172.10.0/24 maxlen: 26

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/4dd887bd-0ea8-459b-b945-daea7ada6183/f48a793247cd1f645923603f197e3d287d051040.crl
                          rsync://repository.lacnic.net/rpki/lacnic/4dd887bd-0ea8-459b-b945-daea7ada6183/f48a793247cd1f645923603f197e3d287d051040.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f48a793247cd1f645923603f197e3d287d051040.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 03:49:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 802320 (0xc3e10)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f48a793247cd1f645923603f197e3d287d051040
        Validity
            Not Before: Mar 24 14:46:10 2021 GMT
            Not After : Mar 24 14:46:10 2026 GMT
        Subject: CN=af887a49fb11da9e9ab23facbe36ce0d475c8d83
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:87:37:64:a0:5f:72:35:29:ed:19:9c:94:1d:bf:
                    82:85:5c:38:a3:01:af:78:84:28:f3:14:b2:d9:6a:
                    7a:62:a7:d5:e7:c1:57:e1:8e:d7:ef:ce:38:6b:b8:
                    1f:97:bb:63:69:6f:69:3f:1a:6f:96:25:b6:0d:24:
                    c3:ae:99:51:ff:79:c7:98:40:5f:db:eb:b3:9b:51:
                    90:b2:5b:5c:2b:ba:10:61:7f:3a:03:84:14:4b:43:
                    85:18:59:51:91:37:26:6b:36:8b:9b:3c:b5:d6:04:
                    f6:ed:b7:d4:3f:4b:df:1f:80:cf:0e:3d:a8:8b:9c:
                    23:55:1e:e3:ef:74:f4:7a:34:43:b3:bd:bb:4a:e7:
                    b2:2f:5a:85:a8:93:11:03:d1:f6:c0:76:3f:ec:14:
                    31:d9:d3:66:6e:cb:16:96:64:d1:e3:f3:4d:33:1d:
                    70:da:55:7f:53:e7:25:ee:32:6a:59:a5:e6:75:20:
                    15:84:6c:05:54:af:f3:db:91:19:16:74:e6:81:e2:
                    bd:e2:53:53:e2:45:2b:c4:de:37:0c:5e:fe:93:9a:
                    d6:0a:af:5e:9f:a6:29:ea:f8:cc:16:51:4a:f8:95:
                    32:9a:71:ce:85:11:3d:03:01:22:ed:4e:96:9f:ad:
                    27:5b:bb:ef:27:3e:a8:1b:ef:43:9d:f0:0f:07:f3:
                    6c:a3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BB:27:94:21:72:65:45:63:64:57:B9:C4:91:5B:8C:F9:1C:C7:E7:78
            X509v3 Authority Key Identifier:
                keyid:79:3A:BC:6F:D4:8E:32:89:36:F7:E8:BA:DB:7E:2A:91:8E:39:B9:8A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f48a793247cd1f645923603f197e3d287d051040.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4dd887bd-0ea8-459b-b945-daea7ada6183/af887a49fb11da9e9ab23facbe36ce0d475c8d83.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/4dd887bd-0ea8-459b-b945-daea7ada6183/f48a793247cd1f645923603f197e3d287d051040.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.172.10.0/24

    Signature Algorithm: sha256WithRSAEncryption
         0f:08:59:1e:48:59:80:e0:37:89:1c:65:53:4a:ea:00:36:81:
         c1:d9:1a:d7:24:dd:4a:90:e9:fc:8c:07:6c:8e:d9:dc:d8:64:
         2e:86:83:93:ab:b1:ab:42:87:d6:f3:2a:bf:a4:ee:12:ad:33:
         3c:25:14:f9:23:a0:62:d3:a6:f8:14:94:d3:fb:0d:65:f2:e3:
         d2:06:e2:46:54:e8:fc:ed:bf:68:99:9b:19:e5:9a:18:e9:e0:
         1f:ad:6f:f8:db:b9:52:20:b1:c8:df:02:c6:c1:e3:bf:29:48:
         8c:b1:96:5b:5f:48:91:6b:55:d2:2d:a5:de:f9:66:1a:88:0b:
         c0:e4:6b:e2:87:28:ea:20:f0:cc:f8:80:c1:6e:77:ac:ef:8c:
         54:60:20:3b:48:87:71:88:80:2a:73:38:66:96:54:44:52:77:
         58:8b:5a:8b:09:c1:05:74:6b:53:3b:76:ca:5c:a9:14:d2:c4:
         a2:00:73:af:25:65:67:d8:a6:32:f0:f3:bd:8d:fa:d4:e7:2c:
         bb:15:61:4f:d9:91:4c:3a:f5:d7:9a:84:44:eb:f3:ed:81:33:
         36:66:37:87:2d:85:12:38:f4:5e:26:dc:25:82:14:a4:e3:2b:
         ae:6f:ad:64:41:67:7a:45:4d:38:68:37:6f:b1:ab:17:37:76:
         1f:50:bc:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 08:35:56 2024 by rpki-client on console-fra.rpki-client.org