Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS264656.roa
File:                     AS264656.roa (raw, json)
Hash identifier:          VqdonHhFvoZEv6c18tY52qiyvASW/H1iVDXLwMVQvsM=
Subject key identifier:   B2:2F:5A:80:11:6C:BB:D9:0C:10:6D:43:77:3A:95:FB:72:C7:ED:52
Certificate issuer:       /CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1
Certificate serial:       7E84CCF77A5AD7DD3E5F2650440D1B6ABDF5EBBB
Authority key identifier: 41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS264656.roa
Signing time:             Tue 05 Mar 2024 18:07:54 +0000
ROA not before:           Tue 05 Mar 2024 18:02:54 +0000
ROA not after:            Tue 04 Mar 2025 18:07:54 +0000
asID:                     264656
IP address blocks:        186.38.44.0/24 maxlen: 24
                          201.251.250.0/23 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.crl
                          rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 17 Jun 2024 04:34:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7e:84:cc:f7:7a:5a:d7:dd:3e:5f:26:50:44:0d:1b:6a:bd:f5:eb:bb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1
        Validity
            Not Before: Mar  5 18:02:54 2024 GMT
            Not After : Mar  4 18:07:54 2025 GMT
        Subject: CN=B22F5A80116CBBD90C106D43773A95FB72C7ED52
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:1b:05:93:f2:e1:bf:5e:1b:3c:27:17:b7:49:
                    1c:ac:4b:e1:4d:a4:fd:26:c9:21:7e:bb:e2:48:58:
                    26:95:a1:28:03:4c:e0:cb:00:64:30:e2:dc:32:02:
                    c8:a4:29:eb:1b:39:28:8d:34:90:0a:e1:39:2e:55:
                    e1:1e:95:09:cc:ee:65:9a:2d:0b:34:2c:e1:c3:a5:
                    27:c3:db:f8:b4:91:e4:9d:c4:f1:4e:56:b5:12:cb:
                    4f:17:a6:ec:dd:d5:c3:74:69:fd:95:87:ef:0d:46:
                    cd:4e:bb:0c:ee:09:04:02:9a:2c:86:da:ba:8d:b9:
                    75:76:d4:41:76:33:ca:c4:a5:07:97:20:ca:3d:59:
                    9b:6a:60:15:54:a4:d6:3e:62:13:56:5b:f3:06:a5:
                    13:a1:81:db:0f:7c:12:37:84:87:6e:b2:48:33:42:
                    d7:ba:ba:51:39:41:38:da:50:96:75:ef:6b:9e:69:
                    93:5b:24:b8:c0:64:c7:d8:e1:90:0e:39:bf:5a:7a:
                    46:39:38:ed:bc:d9:25:51:37:a2:ac:f6:6e:19:d6:
                    7a:ba:1d:8e:97:b6:c3:87:77:c9:09:aa:d7:fe:00:
                    5e:36:9b:73:6a:bc:d2:f2:33:98:86:75:3d:25:66:
                    a3:56:08:e3:14:b9:8a:c4:60:c6:9b:ae:b9:7f:54:
                    aa:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B2:2F:5A:80:11:6C:BB:D9:0C:10:6D:43:77:3A:95:FB:72:C7:ED:52
            X509v3 Authority Key Identifier:
                keyid:41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS264656.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  186.38.44.0/24
                  201.251.250.0/23

    Signature Algorithm: sha256WithRSAEncryption
         12:2c:98:f3:b1:e3:54:88:7d:b7:da:fc:2d:70:4d:65:0a:08:
         4a:d3:1e:69:a1:86:af:de:24:b5:fe:5c:b6:f5:86:e0:25:fc:
         35:ef:ff:cb:6f:ea:29:d2:a4:31:cd:bc:e6:ab:35:9e:10:5b:
         22:42:46:9d:68:61:f0:e8:dc:8d:ca:bd:17:a0:03:2f:b4:4b:
         42:a3:1c:4d:b3:cf:01:20:ec:2c:4d:f2:b4:83:6c:2c:ce:57:
         b6:b2:1b:45:d0:81:b5:2f:a6:fb:3e:5c:e0:13:98:6c:aa:62:
         a2:30:ed:fc:af:90:83:31:07:66:30:ad:00:cd:15:df:7f:0f:
         26:e0:aa:c5:11:a0:f7:15:99:5e:43:a3:d5:5e:d2:32:f3:d5:
         5a:7e:e8:5a:6a:a1:f9:a7:91:6d:08:c8:ad:dd:21:81:14:7e:
         fb:14:d7:66:39:16:54:e7:e5:79:96:ef:f1:35:d8:e0:53:54:
         d2:5e:9a:00:0f:70:f6:b4:10:04:9b:61:02:45:cb:36:f7:f0:
         b3:fe:f3:da:8e:05:2c:4c:00:b8:a8:72:61:da:1f:1b:a9:36:
         e9:be:7b:02:18:38:29:85:e5:cf:f7:78:8a:85:20:82:55:7a:
         73:2a:e2:67:31:d3:16:8c:88:4d:ed:cd:b0:bd:e3:7c:41:17:
         12:0d:5a:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 14 02:47:09 2024 by rpki-client on console-ams.rpki-client.org