Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/380b8bdf0707f3ea52ff3bbfd0d145e3b8ccec23.roa
File:                     380b8bdf0707f3ea52ff3bbfd0d145e3b8ccec23.roa (raw, json)
Hash identifier:          Bc1Htw5ANEFiYqyomK8ID38dRjE3l57/8vHz/yvVjTY=
Subject key identifier:   D0:01:8C:E8:8E:D1:64:19:75:81:6A:04:40:D6:84:B4:A8:51:F6:3F
Certificate issuer:       /CN=bfbb4d3a6dd5e649a6554c4817ce0ed277429136
Certificate serial:       1227FB
Authority key identifier: 76:7F:42:4D:48:34:06:C4:20:E5:DF:19:BE:BE:99:3F:72:5A:F7:B6
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/bfbb4d3a6dd5e649a6554c4817ce0ed277429136.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/380b8bdf0707f3ea52ff3bbfd0d145e3b8ccec23.roa
Signing time:             Wed 29 Nov 2023 15:34:27 +0000
ROA not before:           Wed 29 Nov 2023 15:34:26 +0000
ROA not after:            Sat 29 Nov 2025 15:34:26 +0000
asID:                     262175
IP address blocks:        201.251.182.0/23 maxlen: 24
                          201.251.184.0/23 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/bfbb4d3a6dd5e649a6554c4817ce0ed277429136.crl
                          rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/bfbb4d3a6dd5e649a6554c4817ce0ed277429136.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/bfbb4d3a6dd5e649a6554c4817ce0ed277429136.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Thu 18 Apr 2024 06:11:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1189883 (0x1227fb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bfbb4d3a6dd5e649a6554c4817ce0ed277429136
        Validity
            Not Before: Nov 29 15:34:26 2023 GMT
            Not After : Nov 29 15:34:26 2025 GMT
        Subject: CN=380b8bdf0707f3ea52ff3bbfd0d145e3b8ccec23
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:83:1c:10:35:06:c5:f0:2e:81:69:fa:9e:2c:7e:
                    cd:b0:43:2f:21:ff:c6:ab:84:17:52:07:d3:00:93:
                    39:f0:5d:05:0a:9b:51:f8:db:db:ae:e4:b9:07:88:
                    89:59:0a:ee:c9:4c:2a:ac:24:73:e6:b8:02:bd:2c:
                    d6:22:9c:6e:42:eb:a4:8e:36:a3:96:f7:7c:53:19:
                    56:d9:f8:fb:b1:82:90:b0:4b:b3:02:f0:b7:a8:89:
                    f9:81:76:4d:df:6a:a9:35:32:f8:fc:6a:1a:9e:82:
                    38:b4:0c:3f:58:1e:b5:2d:c6:db:7f:13:ff:a0:00:
                    4d:71:36:8d:18:c2:4b:09:66:cb:3a:ea:36:3c:d1:
                    8f:ea:b3:b5:66:ad:1f:e4:e3:6e:e7:2a:e9:18:c0:
                    50:1a:e8:10:71:a9:df:52:94:b9:12:f5:5c:39:3c:
                    72:f0:70:6f:6c:3f:22:8b:d1:3e:95:95:dc:95:8a:
                    d3:57:a6:81:f3:ee:e8:f0:f9:36:c6:33:97:2f:18:
                    03:47:e8:8f:eb:25:e8:f7:57:93:43:dd:ad:6b:c6:
                    62:cc:eb:cd:41:58:2d:ff:9d:92:0a:5b:70:24:50:
                    a1:9b:46:f5:87:16:96:c9:77:a9:3d:2a:b4:17:c1:
                    43:7a:cd:ac:51:3f:db:6c:b1:47:e0:2d:13:07:b1:
                    1c:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D0:01:8C:E8:8E:D1:64:19:75:81:6A:04:40:D6:84:B4:A8:51:F6:3F
            X509v3 Authority Key Identifier:
                keyid:76:7F:42:4D:48:34:06:C4:20:E5:DF:19:BE:BE:99:3F:72:5A:F7:B6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/bfbb4d3a6dd5e649a6554c4817ce0ed277429136.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/380b8bdf0707f3ea52ff3bbfd0d145e3b8ccec23.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/bfbb4d3a6dd5e649a6554c4817ce0ed277429136.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  201.251.182.0-201.251.185.255

    Signature Algorithm: sha256WithRSAEncryption
         61:bd:6b:7e:6e:10:8e:ce:2c:3d:48:9b:95:d5:90:35:4e:39:
         ff:2c:14:07:a6:ae:4f:aa:07:26:26:47:5e:72:3b:cf:f3:98:
         fa:40:b5:28:c7:9c:ef:e5:13:3b:a6:59:c1:10:37:1f:80:74:
         d2:0e:ea:4f:7f:9f:73:c5:11:65:7e:ae:63:d3:11:56:b7:e5:
         63:f2:98:18:11:bc:e8:14:b9:eb:9e:19:6f:ec:17:0a:c6:32:
         da:6d:e4:2f:28:f9:88:f2:50:4c:d5:7c:f7:9c:9d:d2:5c:36:
         15:ec:38:d6:5e:59:57:d0:85:e0:e9:19:18:d1:b8:0b:c1:d4:
         6d:66:96:13:29:f7:03:b7:54:03:68:d4:9b:d9:c0:a1:8d:87:
         7a:f5:78:d8:64:6e:f3:04:85:cc:fd:1d:09:a3:13:53:95:f0:
         90:ed:ca:50:80:b5:9b:41:84:5e:7b:9e:96:fb:eb:bd:51:25:
         0b:c3:ca:b7:e3:45:9a:79:f9:db:d6:79:11:6b:6d:b7:4f:67:
         57:f7:83:f1:0b:36:49:d2:af:db:24:b7:8b:bd:5c:2f:76:44:
         85:3e:e6:08:43:54:b7:32:e1:db:7a:f8:fb:e0:e0:b9:98:4d:
         fa:40:9c:ed:c0:db:e3:44:68:8d:85:ad:33:08:ed:89:78:df:
         36:65:82:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 10:07:20 2024 by rpki-client on console-fra.rpki-client.org