Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS265689.roa
File:                     AS265689.roa (raw, json)
Hash identifier:          h6oYarNeUAWGqT7oTauTXQxcpraZRBhMus7P2cDyEJo=
Subject key identifier:   D2:0F:2D:F4:EC:7F:C4:9F:53:3C:AD:78:5A:93:93:EB:FE:E6:3A:5A
Certificate issuer:       /CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1
Certificate serial:       5D83A84F6F247A59C1341044340D44B6EB08AC1D
Authority key identifier: 41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS265689.roa
Signing time:             Tue 05 Mar 2024 18:07:59 +0000
ROA not before:           Tue 05 Mar 2024 18:02:59 +0000
ROA not after:            Tue 04 Mar 2025 18:07:59 +0000
asID:                     265689
IP address blocks:        179.40.33.0/24 maxlen: 24
                          186.56.7.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.crl
                          rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 24 Jun 2024 23:54:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5d:83:a8:4f:6f:24:7a:59:c1:34:10:44:34:0d:44:b6:eb:08:ac:1d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1
        Validity
            Not Before: Mar  5 18:02:59 2024 GMT
            Not After : Mar  4 18:07:59 2025 GMT
        Subject: CN=D20F2DF4EC7FC49F533CAD785A9393EBFEE63A5A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:e9:58:3b:1c:6d:cd:38:83:57:2e:9c:ff:98:
                    d4:1c:37:be:fc:58:08:a7:b4:3b:41:5e:f4:06:1c:
                    28:c4:6c:2f:dc:6b:35:a3:05:26:80:ac:e3:0c:c9:
                    1b:bb:7a:7c:5e:59:bb:82:cf:93:d0:e5:4d:07:24:
                    76:9b:b1:e3:db:5d:ef:9a:40:2c:5a:1a:84:ab:6f:
                    49:89:d2:72:5d:fb:35:35:49:fd:4c:8e:76:ad:5e:
                    37:ee:01:5a:0f:d0:c3:04:02:de:17:c1:20:41:e5:
                    76:09:3a:8e:10:ab:e3:53:d5:22:21:a1:dc:dd:bc:
                    69:42:4c:41:05:9b:e7:37:b2:e6:1c:b0:d1:72:3c:
                    9d:d2:84:3e:d1:f6:cf:13:11:71:28:9e:84:6b:74:
                    19:0e:38:e0:69:82:f3:24:d4:f2:2d:29:4a:6b:10:
                    f9:db:33:15:85:59:cd:0d:a7:e2:d2:b2:3d:ef:fc:
                    4b:28:4d:b8:b8:78:e2:ab:44:92:16:39:ed:a7:50:
                    30:cf:1f:8c:d5:9b:f0:1e:a1:a0:9b:ea:6d:8f:98:
                    43:d8:96:c9:52:f9:88:c8:15:ca:92:8b:61:cb:c3:
                    80:cd:19:d8:ba:1a:ec:eb:ea:b4:74:c8:81:99:04:
                    15:ac:be:4f:bf:b0:38:c0:f4:8b:94:f1:63:26:c2:
                    37:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D2:0F:2D:F4:EC:7F:C4:9F:53:3C:AD:78:5A:93:93:EB:FE:E6:3A:5A
            X509v3 Authority Key Identifier:
                keyid:41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS265689.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  179.40.33.0/24
                  186.56.7.0/24

    Signature Algorithm: sha256WithRSAEncryption
         74:c7:c1:a1:97:ce:6f:ac:9f:68:10:ba:72:2a:4d:fd:53:cb:
         23:bb:bb:0d:55:fc:b4:9f:bc:47:17:08:ec:e3:63:97:75:cc:
         b7:0d:fd:85:47:8e:22:d0:a1:53:81:d3:4c:13:34:bf:d2:4e:
         2c:91:d6:b2:03:5a:c2:ba:54:db:19:b4:4d:b1:bf:3e:a7:b2:
         e3:a1:04:93:61:12:76:92:ee:42:40:37:0c:94:ce:07:8f:ce:
         4d:f4:af:c5:11:9d:6e:74:5e:5f:1e:8b:8f:ea:c2:1f:52:c2:
         90:77:cd:19:0b:03:61:71:54:0e:e4:8e:a1:0c:09:de:9a:d4:
         d9:3c:76:69:63:f8:9a:f1:ba:10:0d:da:64:1a:60:ca:ad:17:
         b9:a5:10:4e:13:5c:bf:76:d9:f3:c4:ce:0b:fe:d0:aa:b0:f2:
         02:85:6d:13:58:ec:23:4c:22:a0:2a:1f:44:1a:00:70:d0:ed:
         85:3c:31:5e:d5:69:5f:61:71:4f:00:25:b2:1b:a3:9a:53:c4:
         91:b6:75:76:a8:c9:af:ed:84:bb:92:51:07:fe:49:6c:c4:e8:
         8a:14:23:7a:20:bb:cc:4f:0d:eb:c4:08:24:9f:b7:58:30:2a:
         21:cc:d6:30:d4:23:cd:8e:b9:be:b4:bb:dd:03:73:ac:05:bd:
         57:de:0d:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 21 19:32:12 2024 by rpki-client on console-ams.rpki-client.org