Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/53597B0E71B9106A97FE0731821F974E2A39E5F15F4244AEA1D09AB156C65042/0/34352e362e3231352e302f32342d3234203d3e20323730313031.roa
File:                     34352e362e3231352e302f32342d3234203d3e20323730313031.roa (raw, json)
Hash identifier:          sut6CJS5xmTdpiMydXoo6K1Ba05dZ86EqhvlXa0t3Y0=
Subject key identifier:   3F:FE:F4:9A:F8:BC:39:23:8D:86:4A:71:0C:0E:84:37:08:EB:03:9F
Certificate issuer:       /CN=BD94D9821F379D20EA36D36736038ACA527A9932
Certificate serial:       22DC17937C982C4B3DB9A041640201A7CE47426F
Authority key identifier: BD:94:D9:82:1F:37:9D:20:EA:36:D3:67:36:03:8A:CA:52:7A:99:32
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD94D9821F379D20EA36D36736038ACA527A9932.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/53597B0E71B9106A97FE0731821F974E2A39E5F15F4244AEA1D09AB156C65042/0/34352e362e3231352e302f32342d3234203d3e20323730313031.roa
Signing time:             Tue 05 Mar 2024 17:43:49 +0000
ROA not before:           Tue 05 Mar 2024 17:38:49 +0000
ROA not after:            Tue 04 Mar 2025 17:43:49 +0000
asID:                     270101
IP address blocks:        45.6.215.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/53597B0E71B9106A97FE0731821F974E2A39E5F15F4244AEA1D09AB156C65042/0/BD94D9821F379D20EA36D36736038ACA527A9932.crl
                          rsync://repository.lacnic.net/rpki/lacnic/53597B0E71B9106A97FE0731821F974E2A39E5F15F4244AEA1D09AB156C65042/0/BD94D9821F379D20EA36D36736038ACA527A9932.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD94D9821F379D20EA36D36736038ACA527A9932.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sat 23 Nov 2024 22:22:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            22:dc:17:93:7c:98:2c:4b:3d:b9:a0:41:64:02:01:a7:ce:47:42:6f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=BD94D9821F379D20EA36D36736038ACA527A9932
        Validity
            Not Before: Mar  5 17:38:49 2024 GMT
            Not After : Mar  4 17:43:49 2025 GMT
        Subject: CN=3FFEF49AF8BC39238D864A710C0E843708EB039F
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:8b:96:a1:2e:87:69:25:51:29:93:8f:e1:6c:
                    a7:e5:8b:bf:04:28:86:be:e7:9f:ae:b9:60:af:1e:
                    95:86:6e:ef:b1:93:eb:c9:ed:97:1d:72:0e:8a:17:
                    1e:5f:e9:eb:9e:9e:a4:28:ed:f5:b9:bc:82:c1:7c:
                    94:7c:8c:aa:b4:b3:36:e4:e6:3d:b1:66:3c:82:b3:
                    1a:02:bb:f6:19:e2:d2:30:1f:40:21:75:5b:7d:fb:
                    86:78:37:8c:f4:2a:21:63:ea:e8:36:43:c8:e1:5e:
                    a2:52:42:3a:92:2c:9a:8b:3a:e8:13:ba:db:87:d1:
                    23:0c:df:a2:ea:1c:54:de:17:f8:a8:31:51:d1:af:
                    e4:a3:3d:66:9d:89:92:64:00:83:71:85:a2:8f:e8:
                    08:6f:63:3b:67:1b:4a:cb:98:90:2f:ab:4c:93:9e:
                    bc:1e:f2:dc:5b:1d:1f:76:59:42:68:bc:68:51:bd:
                    4e:63:85:59:af:40:a9:d2:f1:98:43:55:9b:ac:ac:
                    2d:38:09:9a:88:14:61:85:56:c3:99:79:45:25:bb:
                    03:37:6b:51:c7:20:df:e2:90:db:b2:f6:a4:ed:d2:
                    c7:7a:15:8a:10:a4:e0:db:7a:f6:7a:a0:cd:a3:95:
                    cd:57:e9:60:3d:ac:fd:7b:33:5b:21:d6:37:c1:54:
                    6a:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3F:FE:F4:9A:F8:BC:39:23:8D:86:4A:71:0C:0E:84:37:08:EB:03:9F
            X509v3 Authority Key Identifier:
                keyid:BD:94:D9:82:1F:37:9D:20:EA:36:D3:67:36:03:8A:CA:52:7A:99:32

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/53597B0E71B9106A97FE0731821F974E2A39E5F15F4244AEA1D09AB156C65042/0/BD94D9821F379D20EA36D36736038ACA527A9932.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD94D9821F379D20EA36D36736038ACA527A9932.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/53597B0E71B9106A97FE0731821F974E2A39E5F15F4244AEA1D09AB156C65042/0/34352e362e3231352e302f32342d3234203d3e20323730313031.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.6.215.0/24

    Signature Algorithm: sha256WithRSAEncryption
         4e:90:60:4a:cf:cb:93:a0:5e:ec:4f:3f:25:4c:15:22:e8:34:
         77:c0:09:38:1a:3b:37:37:f8:ad:db:c8:89:a7:65:4e:46:9a:
         07:65:cc:ca:15:ae:2c:d1:2b:74:e3:92:6f:6d:32:ac:68:b1:
         f7:b9:d6:b8:e3:9f:8c:9b:8f:53:f5:e5:14:76:68:1d:7d:58:
         3b:98:d3:59:8e:5b:f8:13:90:22:8c:dc:e2:3a:54:9a:de:71:
         bd:b6:c6:60:f8:1e:24:7b:8b:c0:76:1a:38:f7:30:fe:cb:a4:
         37:f4:43:04:5c:d6:b8:13:d9:05:cf:a1:9b:af:8d:c0:3c:f9:
         6d:4e:bb:30:4b:a2:8e:95:e8:1c:ed:b0:c2:d8:2e:c6:55:94:
         23:f2:6b:33:72:50:20:d9:a4:9d:f1:ac:bf:2a:f0:f3:45:02:
         c2:3f:fd:9a:8b:67:8a:b2:22:e8:79:e5:37:a0:25:86:d9:92:
         a0:d0:99:e6:7e:67:42:61:d7:ce:d8:12:f5:71:a7:c6:6d:60:
         da:63:2b:d9:2c:59:ee:a5:ee:df:c6:b9:66:ea:5d:50:37:96:
         77:17:4b:5f:8e:73:14:1c:17:5c:aa:6c:40:ff:ba:56:44:92:
         8a:ea:98:be:05:92:8d:c6:da:fa:de:aa:98:09:08:fd:21:cf:
         33:fd:6c:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 21:31:17 2024 by rpki-client on console-ams.rpki-client.org