Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/2dabb0568e15c753351cf12b99cc2eff57290a47.roa
File:                     2dabb0568e15c753351cf12b99cc2eff57290a47.roa (raw, json)
Hash identifier:          fmPseXjCMQrGdBnSk9Kii2TPkLSkb8oa4VAu61zEkyo=
Subject key identifier:   14:6A:79:13:96:20:19:8C:E2:9B:55:4F:B4:01:78:4C:2B:7F:30:58
Certificate issuer:       /CN=bfbb4d3a6dd5e649a6554c4817ce0ed277429136
Certificate serial:       11D7B3
Authority key identifier: 76:7F:42:4D:48:34:06:C4:20:E5:DF:19:BE:BE:99:3F:72:5A:F7:B6
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/bfbb4d3a6dd5e649a6554c4817ce0ed277429136.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/2dabb0568e15c753351cf12b99cc2eff57290a47.roa
Signing time:             Wed 29 Nov 2023 12:49:15 +0000
ROA not before:           Wed 29 Nov 2023 12:49:15 +0000
ROA not after:            Sat 29 Nov 2025 12:49:15 +0000
asID:                     20207
IP address blocks:        179.40.8.0/22 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/bfbb4d3a6dd5e649a6554c4817ce0ed277429136.crl
                          rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/bfbb4d3a6dd5e649a6554c4817ce0ed277429136.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/bfbb4d3a6dd5e649a6554c4817ce0ed277429136.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Thu 18 Apr 2024 06:11:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1169331 (0x11d7b3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bfbb4d3a6dd5e649a6554c4817ce0ed277429136
        Validity
            Not Before: Nov 29 12:49:15 2023 GMT
            Not After : Nov 29 12:49:15 2025 GMT
        Subject: CN=2dabb0568e15c753351cf12b99cc2eff57290a47
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:82:ec:2b:16:44:02:29:8a:ab:2f:b0:39:ce:b8:
                    8a:f1:59:51:68:cf:d5:7a:89:63:34:c7:17:bd:58:
                    11:2d:f0:a3:0a:16:66:54:5c:67:1b:0e:c8:b9:ae:
                    15:e0:d8:b5:bc:b4:a6:58:7f:c7:e4:89:0c:eb:66:
                    32:0f:43:7c:b4:cb:c5:9d:cf:92:6d:08:6a:2b:ce:
                    15:5a:55:96:22:e8:37:09:2e:a1:1b:23:35:91:d4:
                    d3:ef:e9:9c:44:36:e7:c5:5e:2f:06:0f:f0:48:95:
                    f0:d4:fe:4a:d8:8f:39:a2:8c:01:b9:fe:ae:08:8f:
                    55:e0:57:b6:c9:60:b9:bf:b9:9e:e0:91:29:bf:0f:
                    9e:bb:5d:c5:9c:8e:46:04:38:00:76:92:ea:47:59:
                    e7:6d:42:d5:1b:7a:25:37:e7:e5:3c:80:07:35:2f:
                    9d:f9:61:5e:e4:0e:ad:66:b3:a9:72:63:da:b5:49:
                    0f:e2:51:a5:81:83:ff:c3:89:4d:40:ef:ff:6c:37:
                    7c:d2:19:07:97:39:fa:34:87:f8:f1:e9:2c:02:34:
                    77:17:90:ff:9b:c3:24:b6:77:04:71:6a:2a:d5:1d:
                    4d:f0:e9:f6:1e:e3:c8:91:e1:62:d5:ad:91:72:e2:
                    b0:cf:0a:fb:18:ef:af:07:ec:9b:40:cb:df:7f:26:
                    45:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                14:6A:79:13:96:20:19:8C:E2:9B:55:4F:B4:01:78:4C:2B:7F:30:58
            X509v3 Authority Key Identifier:
                keyid:76:7F:42:4D:48:34:06:C4:20:E5:DF:19:BE:BE:99:3F:72:5A:F7:B6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/bfbb4d3a6dd5e649a6554c4817ce0ed277429136.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/2dabb0568e15c753351cf12b99cc2eff57290a47.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/bfbb4d3a6dd5e649a6554c4817ce0ed277429136.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  179.40.8.0/22

    Signature Algorithm: sha256WithRSAEncryption
         41:f5:c2:e9:1a:66:97:c0:7c:16:72:c3:65:a0:42:64:e1:7a:
         75:b8:c4:f3:d0:fd:d1:12:78:4b:8c:0c:da:d4:72:8b:17:09:
         a7:e5:e7:89:f1:74:ca:89:8a:ed:19:c6:f9:9d:74:9d:b0:0b:
         9f:77:fa:30:e2:88:f6:2c:07:14:fe:a7:ad:40:ef:f0:95:3a:
         af:ca:34:59:95:d9:df:86:1b:05:ec:eb:08:bb:5c:8e:10:aa:
         3d:c7:7d:fb:7c:00:08:fc:e0:29:b1:07:ac:ff:a1:f1:0d:5a:
         88:3c:02:c2:43:1a:f9:89:43:99:34:0f:c9:b4:2e:21:78:c7:
         e1:8c:8c:63:d0:86:2a:07:6b:3b:18:24:60:91:84:10:32:71:
         d5:fe:39:32:3d:ac:a8:f1:52:bc:f9:da:bf:2a:e4:8c:de:14:
         35:00:1a:0a:95:da:56:b2:6f:57:ba:3e:0c:3f:67:e2:3f:38:
         cc:dd:57:50:12:97:26:5d:9a:18:49:82:d1:9a:dc:00:64:59:
         ed:9e:bf:4f:37:9c:56:67:3d:a8:d4:f4:70:e5:0a:38:01:c4:
         50:43:fa:84:06:83:bf:28:39:5c:2a:69:ae:ec:06:4f:c5:ae:
         8f:b9:35:4b:64:56:0c:ae:67:8b:8b:e2:3a:2e:75:89:60:6b:
         fb:e2:7d:66
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIDEdezMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGJm
YmI0ZDNhNmRkNWU2NDlhNjU1NGM0ODE3Y2UwZWQyNzc0MjkxMzYwHhcNMjMxMTI5
MTI0OTE1WhcNMjUxMTI5MTI0OTE1WjAzMTEwLwYDVQQDEygyZGFiYjA1NjhlMTVj
NzUzMzUxY2YxMmI5OWNjMmVmZjU3MjkwYTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAguwrFkQCKYqrL7A5zriK8VlRaM/VeoljNMcXvVgRLfCjChZm
VFxnGw7Iua4V4Ni1vLSmWH/H5IkM62YyD0N8tMvFnc+SbQhqK84VWlWWIug3CS6h
GyM1kdTT7+mcRDbnxV4vBg/wSJXw1P5K2I85oowBuf6uCI9V4Fe2yWC5v7me4JEp
vw+eu13FnI5GBDgAdpLqR1nnbULVG3olN+flPIAHNS+d+WFe5A6tZrOpcmPatUkP
4lGlgYP/w4lNQO//bDd80hkHlzn6NIf48eksAjR3F5D/m8MktncEcWoq1R1N8On2
HuPIkeFi1a2RcuKwzwr7GO+vB+ybQMvffyZFQwIDAQABo4ICWzCCAlcwHQYDVR0O
BBYEFBRqeROWIBmM4ptVT7QBeEwrfzBYMB8GA1UdIwQYMBaAFHZ/Qk1INAbEIOXf
Gb6+mT9yWve2MA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvYmZiYjRk
M2E2ZGQ1ZTY0OWE2NTU0YzQ4MTdjZTBlZDI3NzQyOTEzNi5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvNTM3NWJjZmMtOGI4Ni00NTJlLTg1MGQtODNjZmUz
YjUwZjA2LzJkYWJiMDU2OGUxNWM3NTMzNTFjZjEyYjk5Y2MyZWZmNTcyOTBhNDcu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy81Mzc1YmNmYy04Yjg2LTQ1MmUtODUwZC04M2Nm
ZTNiNTBmMDYvYmZiYjRkM2E2ZGQ1ZTY0OWE2NTU0YzQ4MTdjZTBlZDI3NzQyOTEz
Ni5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEArMoCDANBgkqhkiG9w0BAQsFAAOCAQEAQfXC6Rpml8B8FnLD
ZaBCZOF6dbjE89D90RJ4S4wM2tRyixcJp+XnifF0yomK7RnG+Z10nbALn3f6MOKI
9iwHFP6nrUDv8JU6r8o0WZXZ34YbBezrCLtcjhCqPcd9+3wACPzgKbEHrP+h8Q1a
iDwCwkMa+YlDmTQPybQuIXjH4YyMY9CGKgdrOxgkYJGEEDJx1f45Mj2sqPFSvPna
vyrkjN4UNQAaCpXaVrJvV7o+DD9n4j84zN1XUBKXJl2aGEmC0ZrcAGRZ7Z6/Tzec
Vmc9qNT0cOUKOAHEUEP6hAaDvyg5XCppruwGT8Wuj7k1S2RWDK5ni4viOi51iWBr
++J9Zg==
-----END CERTIFICATE-----
Generated at Mon Apr 15 09:53:54 2024 by rpki-client on console-ams.rpki-client.org