Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/58d495ae-b24e-4947-9cca-4be9d404927c/f15c4a8aa1ad7fc715719fc7bc442be26c33751c.roa
File:                     f15c4a8aa1ad7fc715719fc7bc442be26c33751c.roa (raw, json)
Hash identifier:          1GTiPRdlDShTDOqGK3KOAucYZ/lgldOwa7D5lNi1QjQ=
Subject key identifier:   A3:15:1B:DF:0F:D4:B7:F5:F0:D7:BA:EE:55:B3:B5:CC:35:ED:B5:1E
Certificate issuer:       /CN=526f148db3642a4a306035e6b42c3ba3b0c78140
Certificate serial:       180D0A
Authority key identifier: 07:55:9D:5B:7D:1D:AD:78:13:EA:A3:22:22:41:BF:9E:14:15:49:C7
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/526f148db3642a4a306035e6b42c3ba3b0c78140.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/58d495ae-b24e-4947-9cca-4be9d404927c/f15c4a8aa1ad7fc715719fc7bc442be26c33751c.roa
Signing time:             Wed 19 Jul 2023 19:50:07 +0000
ROA not before:           Tue 18 Jul 2023 19:50:07 +0000
ROA not after:            Sat 19 Jul 2025 19:50:07 +0000
asID:                     271810
IP address blocks:        168.181.88.0/22 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/58d495ae-b24e-4947-9cca-4be9d404927c/526f148db3642a4a306035e6b42c3ba3b0c78140.crl
                          rsync://repository.lacnic.net/rpki/lacnic/58d495ae-b24e-4947-9cca-4be9d404927c/526f148db3642a4a306035e6b42c3ba3b0c78140.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/526f148db3642a4a306035e6b42c3ba3b0c78140.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 04 Mar 2024 17:26:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1576202 (0x180d0a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=526f148db3642a4a306035e6b42c3ba3b0c78140
        Validity
            Not Before: Jul 18 19:50:07 2023 GMT
            Not After : Jul 19 19:50:07 2025 GMT
        Subject: CN=f15c4a8aa1ad7fc715719fc7bc442be26c33751c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:07:b5:85:77:ba:40:39:e5:82:bd:b1:22:50:
                    e7:50:90:35:8f:01:ef:47:f0:4a:f9:74:aa:8b:82:
                    2f:83:12:85:56:2c:2e:cc:b5:4b:4c:57:fe:bc:28:
                    e0:67:99:39:a3:c6:8e:c6:78:75:2c:98:0d:73:9d:
                    34:df:b7:69:7f:a9:be:24:46:a4:c6:16:aa:ae:68:
                    b5:82:b6:e9:cd:bb:38:28:2e:d6:96:e4:37:54:15:
                    48:ef:53:e7:a3:84:56:44:d3:ed:71:8a:56:da:86:
                    68:70:32:41:a2:37:1c:1f:1a:06:b2:9a:aa:ed:84:
                    36:17:c2:8c:f5:4d:5e:18:0b:e8:5a:63:bd:89:63:
                    2c:f8:04:7f:12:18:1a:5f:8b:31:70:81:d3:df:c0:
                    53:8f:2e:a4:c6:3d:98:51:d0:0c:da:55:1b:03:b9:
                    0d:60:e1:d6:bd:7c:3f:6f:dc:38:b1:77:fe:08:cb:
                    83:93:73:bf:80:2d:58:36:49:06:e9:a2:1f:67:ef:
                    10:f3:03:bd:d0:1a:08:98:96:ab:ac:eb:c9:30:14:
                    89:6d:42:89:8e:71:2c:1d:f7:02:39:17:5b:fd:0d:
                    d4:12:81:84:09:8f:9b:bc:23:76:d3:2a:8a:6e:1a:
                    8a:1b:2e:2a:57:0b:f2:cf:f8:98:2f:0b:5d:6e:76:
                    b6:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A3:15:1B:DF:0F:D4:B7:F5:F0:D7:BA:EE:55:B3:B5:CC:35:ED:B5:1E
            X509v3 Authority Key Identifier:
                keyid:07:55:9D:5B:7D:1D:AD:78:13:EA:A3:22:22:41:BF:9E:14:15:49:C7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/526f148db3642a4a306035e6b42c3ba3b0c78140.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/58d495ae-b24e-4947-9cca-4be9d404927c/f15c4a8aa1ad7fc715719fc7bc442be26c33751c.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/58d495ae-b24e-4947-9cca-4be9d404927c/526f148db3642a4a306035e6b42c3ba3b0c78140.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  168.181.88.0/22

    Signature Algorithm: sha256WithRSAEncryption
         b8:09:67:fe:b8:04:20:f1:6d:c3:ad:d1:6b:fd:08:7e:25:90:
         fa:c5:5a:75:3d:a4:0c:97:05:1f:c3:5e:4f:a9:11:32:25:bc:
         6f:e1:cd:3f:3e:e7:6d:e9:fa:23:b3:fd:9f:41:4d:a9:fa:83:
         0d:57:ee:60:06:5d:ac:96:62:24:54:07:cd:a2:fe:c0:a2:44:
         64:2d:28:7b:e4:74:7f:8d:50:85:3b:05:44:10:96:15:49:44:
         8a:e2:ed:58:e4:15:17:ad:e4:a2:84:84:39:98:c6:a7:5c:46:
         bc:f3:79:fa:a4:f8:ce:d1:a1:32:b9:08:8f:1d:91:4a:09:a3:
         e3:10:72:ec:68:69:6d:f2:76:e0:c0:c9:fe:6c:97:b0:a8:75:
         c4:43:db:be:1c:6e:60:a6:e3:8a:de:b6:fb:f7:a4:a4:03:0a:
         85:b1:d5:25:41:57:77:53:7a:b3:7e:ed:ed:d0:81:97:8f:a1:
         68:57:d4:b0:6b:ea:65:84:eb:0c:e9:56:f4:ad:cd:52:62:2f:
         35:53:68:ac:00:75:43:32:d6:32:54:fe:26:58:3a:77:59:55:
         11:b8:8b:76:70:5c:bd:43:35:f5:f3:cc:8d:97:cb:78:7f:d1:
         7a:ee:be:60:96:91:bc:37:07:ac:91:17:d9:02:2e:fb:de:5d:
         1e:39:e9:94
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIDGA0KMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDUy
NmYxNDhkYjM2NDJhNGEzMDYwMzVlNmI0MmMzYmEzYjBjNzgxNDAwHhcNMjMwNzE4
MTk1MDA3WhcNMjUwNzE5MTk1MDA3WjAzMTEwLwYDVQQDEyhmMTVjNGE4YWExYWQ3
ZmM3MTU3MTlmYzdiYzQ0MmJlMjZjMzM3NTFjMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAxwe1hXe6QDnlgr2xIlDnUJA1jwHvR/BK+XSqi4IvgxKFViwu
zLVLTFf+vCjgZ5k5o8aOxnh1LJgNc50037dpf6m+JEakxhaqrmi1grbpzbs4KC7W
luQ3VBVI71Pno4RWRNPtcYpW2oZocDJBojccHxoGspqq7YQ2F8KM9U1eGAvoWmO9
iWMs+AR/EhgaX4sxcIHT38BTjy6kxj2YUdAM2lUbA7kNYOHWvXw/b9w4sXf+CMuD
k3O/gC1YNkkG6aIfZ+8Q8wO90BoImJarrOvJMBSJbUKJjnEsHfcCORdb/Q3UEoGE
CY+bvCN20yqKbhqKGy4qVwvyz/iYLwtdbna28wIDAQABo4ICWzCCAlcwHQYDVR0O
BBYEFKMVG98P1Lf18Ne67lWztcw17bUeMB8GA1UdIwQYMBaAFAdVnVt9Ha14E+qj
IiJBv54UFUnHMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvNTI2ZjE0
OGRiMzY0MmE0YTMwNjAzNWU2YjQyYzNiYTNiMGM3ODE0MC5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvNThkNDk1YWUtYjI0ZS00OTQ3LTljY2EtNGJlOWQ0
MDQ5MjdjL2YxNWM0YThhYTFhZDdmYzcxNTcxOWZjN2JjNDQyYmUyNmMzMzc1MWMu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy81OGQ0OTVhZS1iMjRlLTQ5NDctOWNjYS00YmU5
ZDQwNDkyN2MvNTI2ZjE0OGRiMzY0MmE0YTMwNjAzNWU2YjQyYzNiYTNiMGM3ODE0
MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAqi1WDANBgkqhkiG9w0BAQsFAAOCAQEAuAln/rgEIPFtw63R
a/0IfiWQ+sVadT2kDJcFH8NeT6kRMiW8b+HNPz7nben6I7P9n0FNqfqDDVfuYAZd
rJZiJFQHzaL+wKJEZC0oe+R0f41QhTsFRBCWFUlEiuLtWOQVF63kooSEOZjGp1xG
vPN5+qT4ztGhMrkIjx2RSgmj4xBy7GhpbfJ24MDJ/myXsKh1xEPbvhxuYKbjit62
+/ekpAMKhbHVJUFXd1N6s37t7dCBl4+haFfUsGvqZYTrDOlW9K3NUmIvNVNorAB1
QzLWMlT+Jlg6d1lVEbiLdnBcvUM19fPMjZfLeH/Reu6+YJaRvDcHrJEX2QIu+95d
HjnplA==
-----END CERTIFICATE-----
Generated at Fri Mar 1 21:09:58 2024 by rpki-client on console-fra.rpki-client.org