Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/dc666866f0e3692825960195b841eddbf15d31c6.roa
File:                     dc666866f0e3692825960195b841eddbf15d31c6.roa (raw, json)
Hash identifier:          7huytQoevA5w7r/BRbWfww9qQYHR0fCTp7OcWJX1pNM=
Subject key identifier:   03:1C:2A:D4:DC:1B:D5:A1:7E:CB:A4:E2:32:F2:B5:49:B6:99:0E:F4
Certificate issuer:       /CN=bfbb4d3a6dd5e649a6554c4817ce0ed277429136
Certificate serial:       11EC0E
Authority key identifier: 76:7F:42:4D:48:34:06:C4:20:E5:DF:19:BE:BE:99:3F:72:5A:F7:B6
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/bfbb4d3a6dd5e649a6554c4817ce0ed277429136.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/dc666866f0e3692825960195b841eddbf15d31c6.roa
Signing time:             Wed 29 Nov 2023 14:20:50 +0000
ROA not before:           Wed 29 Nov 2023 14:20:50 +0000
ROA not after:            Sat 29 Nov 2025 14:20:50 +0000
asID:                     22927
IP address blocks:        179.40.0.0/15 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/bfbb4d3a6dd5e649a6554c4817ce0ed277429136.crl
                          rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/bfbb4d3a6dd5e649a6554c4817ce0ed277429136.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/bfbb4d3a6dd5e649a6554c4817ce0ed277429136.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Thu 18 Apr 2024 06:11:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1174542 (0x11ec0e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=bfbb4d3a6dd5e649a6554c4817ce0ed277429136
        Validity
            Not Before: Nov 29 14:20:50 2023 GMT
            Not After : Nov 29 14:20:50 2025 GMT
        Subject: CN=dc666866f0e3692825960195b841eddbf15d31c6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:07:e0:3c:e3:8b:a9:7e:23:e7:17:e1:b4:86:
                    82:55:94:32:47:3b:c2:d8:52:eb:f2:c9:0b:ce:be:
                    d7:6a:aa:04:4e:82:ca:98:63:b5:09:87:5c:fa:c4:
                    9a:43:c9:74:63:7e:5b:f6:9c:53:ab:ad:0b:c6:1a:
                    24:90:af:e3:7a:eb:e5:c9:5d:4a:24:4f:96:5c:67:
                    54:a6:2f:1c:19:7a:dd:6d:d7:84:5c:19:20:97:24:
                    00:4b:82:ac:97:39:9f:67:04:4b:57:36:b2:75:75:
                    4b:35:97:26:98:f4:12:af:88:16:de:74:c8:c1:ab:
                    98:9f:8b:a1:81:04:4f:39:82:42:4d:ce:1c:61:bd:
                    64:87:a4:cb:b0:53:a1:ca:2e:ae:0c:6b:8e:27:ef:
                    51:fb:b3:a4:25:57:de:15:b7:dc:47:29:d7:e9:34:
                    ac:bf:cf:50:75:60:8f:c3:48:bc:8d:89:86:03:c6:
                    67:fd:f5:e7:82:f9:3c:89:51:f4:74:65:b1:87:50:
                    e3:f5:62:0f:1c:96:17:b6:9b:ad:92:27:83:37:53:
                    c9:74:3c:13:06:12:85:e8:80:10:93:8f:9b:fb:63:
                    08:88:69:b8:1a:6d:f2:0d:8a:49:12:cb:20:f6:09:
                    17:1a:64:03:6f:a4:d0:46:69:35:ef:27:95:a8:a4:
                    69:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                03:1C:2A:D4:DC:1B:D5:A1:7E:CB:A4:E2:32:F2:B5:49:B6:99:0E:F4
            X509v3 Authority Key Identifier:
                keyid:76:7F:42:4D:48:34:06:C4:20:E5:DF:19:BE:BE:99:3F:72:5A:F7:B6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/bfbb4d3a6dd5e649a6554c4817ce0ed277429136.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/dc666866f0e3692825960195b841eddbf15d31c6.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/bfbb4d3a6dd5e649a6554c4817ce0ed277429136.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  179.40.0.0/15

    Signature Algorithm: sha256WithRSAEncryption
         1b:77:29:7e:8d:2b:87:17:27:e9:23:4a:c2:9d:13:56:16:d4:
         73:16:32:cf:2d:08:a1:f0:be:05:68:7f:b4:21:a3:52:87:fe:
         c6:48:42:80:72:cb:81:a3:05:78:6c:b1:1b:63:78:72:f6:39:
         fb:b5:03:be:8a:1d:0e:d8:13:8a:91:0d:d9:f3:b5:50:c6:f9:
         e6:26:45:b0:c6:5b:e6:db:9f:90:69:a8:0f:ec:ca:61:ab:04:
         5e:ce:0d:6d:18:16:0e:26:c9:10:25:86:57:9b:b3:c5:65:97:
         14:bd:18:54:48:ea:ee:d7:ba:86:6f:fc:a8:99:64:b8:84:93:
         29:91:0c:53:fa:14:e6:45:4a:23:66:fa:10:4d:3c:47:aa:e8:
         7d:af:ab:31:e4:cc:3e:ab:fe:c5:5b:e5:8b:4b:e6:ab:a8:43:
         e8:2e:e8:58:11:aa:7a:46:7e:42:e0:f3:63:91:64:55:2f:03:
         f0:7d:61:eb:71:ce:3c:62:d3:35:20:ec:f8:1d:72:c3:aa:f3:
         8c:b3:0d:6b:21:e0:42:1b:c5:55:06:19:26:b7:2c:27:56:4a:
         26:7a:2b:2c:91:19:fb:f6:79:93:78:ad:f2:c6:52:4c:7b:3b:
         8d:fd:37:e7:6c:ce:f5:2d:10:12:84:06:e4:83:f4:48:02:c4:
         0e:24:26:73
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgIDEewOMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGJm
YmI0ZDNhNmRkNWU2NDlhNjU1NGM0ODE3Y2UwZWQyNzc0MjkxMzYwHhcNMjMxMTI5
MTQyMDUwWhcNMjUxMTI5MTQyMDUwWjAzMTEwLwYDVQQDEyhkYzY2Njg2NmYwZTM2
OTI4MjU5NjAxOTViODQxZWRkYmYxNWQzMWM2MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA4QfgPOOLqX4j5xfhtIaCVZQyRzvC2FLr8skLzr7XaqoEToLK
mGO1CYdc+sSaQ8l0Y35b9pxTq60LxhokkK/jeuvlyV1KJE+WXGdUpi8cGXrdbdeE
XBkglyQAS4KslzmfZwRLVzaydXVLNZcmmPQSr4gW3nTIwauYn4uhgQRPOYJCTc4c
Yb1kh6TLsFOhyi6uDGuOJ+9R+7OkJVfeFbfcRynX6TSsv89QdWCPw0i8jYmGA8Zn
/fXngvk8iVH0dGWxh1Dj9WIPHJYXtputkieDN1PJdDwTBhKF6IAQk4+b+2MIiGm4
Gm3yDYpJEssg9gkXGmQDb6TQRmk17yeVqKRphQIDAQABo4ICWjCCAlYwHQYDVR0O
BBYEFAMcKtTcG9Whfsuk4jLytUm2mQ70MB8GA1UdIwQYMBaAFHZ/Qk1INAbEIOXf
Gb6+mT9yWve2MA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvYmZiYjRk
M2E2ZGQ1ZTY0OWE2NTU0YzQ4MTdjZTBlZDI3NzQyOTEzNi5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvNTM3NWJjZmMtOGI4Ni00NTJlLTg1MGQtODNjZmUz
YjUwZjA2L2RjNjY2ODY2ZjBlMzY5MjgyNTk2MDE5NWI4NDFlZGRiZjE1ZDMxYzYu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy81Mzc1YmNmYy04Yjg2LTQ1MmUtODUwZC04M2Nm
ZTNiNTBmMDYvYmZiYjRkM2E2ZGQ1ZTY0OWE2NTU0YzQ4MTdjZTBlZDI3NzQyOTEz
Ni5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQP
MA0wCwQCAAEwBQMDAbMoMA0GCSqGSIb3DQEBCwUAA4IBAQAbdyl+jSuHFyfpI0rC
nRNWFtRzFjLPLQih8L4FaH+0IaNSh/7GSEKAcsuBowV4bLEbY3hy9jn7tQO+ih0O
2BOKkQ3Z87VQxvnmJkWwxlvm25+QaagP7MphqwRezg1tGBYOJskQJYZXm7PFZZcU
vRhUSOru17qGb/yomWS4hJMpkQxT+hTmRUojZvoQTTxHquh9r6sx5Mw+q/7FW+WL
S+arqEPoLuhYEap6Rn5C4PNjkWRVLwPwfWHrcc48YtM1IOz4HXLDqvOMsw1rIeBC
G8VVBhkmtywnVkomeisskRn79nmTeK3yxlJMezuN/TfnbM71LRAShAbkg/RIAsQO
JCZz
-----END CERTIFICATE-----
Generated at Mon Apr 15 10:07:20 2024 by rpki-client on console-fra.rpki-client.org