Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/59CC5B82FBD0E8E09EC4427C0A888F610B3CB381F7A102B01C25D49E663E56EA/0/3136312e302e3137332e302f32342d3234203d3e20323632323337.roa
File:                     3136312e302e3137332e302f32342d3234203d3e20323632323337.roa (raw, json)
Hash identifier:          lZTv4dRCxc9upa3WY5yablGBKJw1qpGoGGMjKvRlIQE=
Subject key identifier:   87:EF:3B:4C:81:DF:8C:CD:A9:E9:52:67:9A:34:2E:F6:5F:A3:E0:67
Certificate issuer:       /CN=47A0716C687813D0F1094BC55674B26A68AF90DF
Certificate serial:       4BBC3008C022BCB63F7B2E97831836E3B7929AC4
Authority key identifier: 47:A0:71:6C:68:78:13:D0:F1:09:4B:C5:56:74:B2:6A:68:AF:90:DF
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/47A0716C687813D0F1094BC55674B26A68AF90DF.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/59CC5B82FBD0E8E09EC4427C0A888F610B3CB381F7A102B01C25D49E663E56EA/0/3136312e302e3137332e302f32342d3234203d3e20323632323337.roa
Signing time:             Tue 05 Mar 2024 17:47:54 +0000
ROA not before:           Tue 05 Mar 2024 17:42:54 +0000
ROA not after:            Tue 04 Mar 2025 17:47:54 +0000
asID:                     262237
IP address blocks:        161.0.173.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/59CC5B82FBD0E8E09EC4427C0A888F610B3CB381F7A102B01C25D49E663E56EA/0/47A0716C687813D0F1094BC55674B26A68AF90DF.crl
                          rsync://repository.lacnic.net/rpki/lacnic/59CC5B82FBD0E8E09EC4427C0A888F610B3CB381F7A102B01C25D49E663E56EA/0/47A0716C687813D0F1094BC55674B26A68AF90DF.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/47A0716C687813D0F1094BC55674B26A68AF90DF.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sat 23 Nov 2024 22:22:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4b:bc:30:08:c0:22:bc:b6:3f:7b:2e:97:83:18:36:e3:b7:92:9a:c4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=47A0716C687813D0F1094BC55674B26A68AF90DF
        Validity
            Not Before: Mar  5 17:42:54 2024 GMT
            Not After : Mar  4 17:47:54 2025 GMT
        Subject: CN=87EF3B4C81DF8CCDA9E952679A342EF65FA3E067
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:ef:db:24:50:b4:49:5c:78:08:bf:4a:1a:c7:
                    35:b4:f5:bd:f7:d6:3e:5a:88:35:c2:2b:49:63:03:
                    0e:9c:8e:23:08:ba:3c:e1:ba:cd:ed:6c:38:e8:d7:
                    de:d1:ff:7b:d4:e7:6d:05:c4:cf:1f:4f:49:ee:3a:
                    59:e3:4d:87:ad:e6:d1:3d:28:13:4f:e8:b6:f5:2e:
                    9b:5a:9f:43:38:41:94:4b:eb:ca:ea:3f:1f:ce:bf:
                    c5:e5:2e:8f:36:23:15:00:90:47:28:2d:fb:71:2a:
                    84:1a:52:62:37:69:20:a4:9a:1b:7f:69:3c:6d:1c:
                    58:af:27:d5:f4:7e:4d:16:44:54:1e:c4:8e:33:f0:
                    7c:7d:51:e4:12:13:47:1b:21:d2:04:05:57:3c:5c:
                    7b:f9:9e:e2:83:89:5e:30:61:f1:84:ce:ca:c2:91:
                    f4:6d:e5:f7:f6:61:e0:cd:f2:dd:ed:54:66:96:00:
                    5e:27:d7:5f:c6:34:69:1c:91:aa:03:3e:79:d7:c9:
                    bc:71:a7:bb:50:2b:8f:cd:4d:ee:fc:ee:f3:dc:db:
                    4e:3f:37:02:ba:8a:6e:14:42:46:3a:6a:96:44:85:
                    0f:4d:f1:d1:a5:c1:53:a4:64:09:83:39:b3:29:81:
                    45:43:05:7f:3e:8c:01:d8:9c:b4:39:ec:df:b6:67:
                    cf:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                87:EF:3B:4C:81:DF:8C:CD:A9:E9:52:67:9A:34:2E:F6:5F:A3:E0:67
            X509v3 Authority Key Identifier:
                keyid:47:A0:71:6C:68:78:13:D0:F1:09:4B:C5:56:74:B2:6A:68:AF:90:DF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/59CC5B82FBD0E8E09EC4427C0A888F610B3CB381F7A102B01C25D49E663E56EA/0/47A0716C687813D0F1094BC55674B26A68AF90DF.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/47A0716C687813D0F1094BC55674B26A68AF90DF.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/59CC5B82FBD0E8E09EC4427C0A888F610B3CB381F7A102B01C25D49E663E56EA/0/3136312e302e3137332e302f32342d3234203d3e20323632323337.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  161.0.173.0/24

    Signature Algorithm: sha256WithRSAEncryption
         52:8f:b2:60:c2:4c:31:0a:c8:1c:bd:f1:71:4c:99:d7:98:42:
         b8:74:6e:60:8f:c0:a1:75:86:91:c3:25:61:5c:77:eb:92:03:
         91:8c:2a:a7:8b:18:1e:1b:46:c7:48:12:ba:61:25:5e:1c:f6:
         9d:2e:87:3f:38:62:2c:e6:be:c0:35:72:51:bd:89:a8:13:53:
         bf:5f:e3:2c:63:56:0a:4f:ca:e8:24:1d:82:20:dd:a6:4d:2e:
         8f:46:76:c0:a8:26:d5:1b:f4:1f:7c:cf:44:5e:76:88:31:b8:
         b3:b7:b4:d9:30:a8:fe:40:1c:09:12:59:da:92:09:f5:a1:6d:
         aa:66:99:9c:4a:d8:32:60:a6:5b:45:9e:e0:77:ee:ad:ac:3d:
         1e:2f:31:5b:2d:ca:f1:49:85:21:3d:a9:92:7f:be:cb:f3:6e:
         4c:83:e0:34:5d:e6:21:f7:70:47:0a:b6:ca:cf:7e:dc:1e:b9:
         8d:e4:10:0b:02:eb:92:12:e2:d3:4e:81:4c:36:0f:63:47:33:
         bb:83:f4:8c:0a:30:be:2a:cf:cf:0a:ff:f4:fa:8d:a3:90:05:
         b3:ea:7c:9d:50:53:90:53:32:35:00:44:ea:c8:7c:d1:cf:f8:
         80:4e:d7:51:f0:92:9a:02:99:1c:48:aa:42:e6:94:69:c7:4b:
         b3:1b:94:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 21:31:17 2024 by rpki-client on console-ams.rpki-client.org