Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5ac173dd-4722-4f7f-a9eb-eeb4bb98afe1/7b1a653ca778394ddc6ea392d80a04544ac05f69.roa
File:                     7b1a653ca778394ddc6ea392d80a04544ac05f69.roa (raw, json)
Hash identifier:          wbnaLE0mYATNmuKDzvNMVWBsYRex6XmmzYgf6g3UCoU=
Subject key identifier:   7C:E6:79:81:E8:AD:1E:9B:09:6F:D3:EF:8F:1C:C4:5B:DE:CB:85:7E
Certificate issuer:       /CN=8aec635f7c32dec3e47f35d9bf70a3f73064cc1d
Certificate serial:       13C424
Authority key identifier: 5B:98:D0:F7:54:24:AD:81:25:81:F6:98:38:FD:CB:43:3F:B2:9D:89
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8aec635f7c32dec3e47f35d9bf70a3f73064cc1d.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/5ac173dd-4722-4f7f-a9eb-eeb4bb98afe1/7b1a653ca778394ddc6ea392d80a04544ac05f69.roa
Signing time:             Fri 07 Jul 2023 15:07:46 +0000
ROA not before:           Thu 06 Jul 2023 15:07:45 +0000
ROA not after:            Mon 07 Jul 2025 15:07:45 +0000
asID:                     271816
IP address blocks:        45.7.142.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/5ac173dd-4722-4f7f-a9eb-eeb4bb98afe1/8aec635f7c32dec3e47f35d9bf70a3f73064cc1d.crl
                          rsync://repository.lacnic.net/rpki/lacnic/5ac173dd-4722-4f7f-a9eb-eeb4bb98afe1/8aec635f7c32dec3e47f35d9bf70a3f73064cc1d.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8aec635f7c32dec3e47f35d9bf70a3f73064cc1d.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Tue 27 Feb 2024 02:19:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1295396 (0x13c424)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8aec635f7c32dec3e47f35d9bf70a3f73064cc1d
        Validity
            Not Before: Jul  6 15:07:45 2023 GMT
            Not After : Jul  7 15:07:45 2025 GMT
        Subject: CN=7b1a653ca778394ddc6ea392d80a04544ac05f69
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:b5:fc:38:81:d4:2a:5f:7d:fb:db:d2:b0:e1:
                    c9:db:0a:0c:da:f6:cd:9a:5d:0e:1c:57:66:de:f5:
                    54:f5:e2:b6:af:e5:a8:0e:b0:c5:4f:aa:f0:99:b3:
                    ef:7a:30:15:41:bc:b7:f8:f1:bf:72:e3:a5:ea:67:
                    39:23:53:4c:8b:e9:51:a4:72:e8:17:c9:97:24:99:
                    17:f5:b5:d0:05:f0:af:36:99:7f:a6:d7:b1:b2:ea:
                    07:1e:85:2f:ff:d4:d5:22:2c:43:f6:02:a1:11:69:
                    70:13:28:d1:00:02:86:01:5c:be:a4:a6:f7:73:8c:
                    a0:02:58:3b:14:5e:31:da:0f:01:05:79:5a:02:9e:
                    b5:35:8c:e9:f6:2e:7c:6b:e8:ae:12:ae:0a:b2:28:
                    0d:18:0a:f3:26:e3:9d:57:3f:3c:f3:cb:63:76:a0:
                    a0:45:ae:da:11:bc:dc:3b:36:47:de:02:35:ef:1e:
                    f4:ec:df:36:59:ad:7e:28:d7:3e:63:f7:48:fd:38:
                    0d:6f:ef:e3:66:43:ae:d9:cc:e8:5d:0b:4c:ef:05:
                    89:c5:22:4f:49:41:7b:fa:79:73:ba:a1:ba:06:0e:
                    52:12:64:57:15:b7:22:f7:93:fe:d5:23:63:c0:b4:
                    35:6d:78:a4:46:1e:ab:45:6f:69:63:f1:3f:58:b5:
                    64:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7C:E6:79:81:E8:AD:1E:9B:09:6F:D3:EF:8F:1C:C4:5B:DE:CB:85:7E
            X509v3 Authority Key Identifier:
                keyid:5B:98:D0:F7:54:24:AD:81:25:81:F6:98:38:FD:CB:43:3F:B2:9D:89

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8aec635f7c32dec3e47f35d9bf70a3f73064cc1d.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5ac173dd-4722-4f7f-a9eb-eeb4bb98afe1/7b1a653ca778394ddc6ea392d80a04544ac05f69.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/5ac173dd-4722-4f7f-a9eb-eeb4bb98afe1/8aec635f7c32dec3e47f35d9bf70a3f73064cc1d.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.7.142.0/24

    Signature Algorithm: sha256WithRSAEncryption
         26:77:a3:96:6e:be:3a:5a:e0:37:e6:72:cf:b0:6c:e6:a2:68:
         86:5c:11:6d:a8:3a:af:5b:2e:09:de:f2:7f:e8:4a:6f:c7:a0:
         32:b4:2c:e4:43:47:f5:51:86:22:29:c1:9a:e2:a7:de:2a:95:
         3c:b4:ed:49:8e:d5:9c:7f:ba:f3:01:97:91:b2:ab:4b:75:ed:
         14:48:de:b6:bb:81:fe:e6:5d:2f:23:7a:70:e4:1e:6f:7d:62:
         74:4c:f1:73:d1:4b:2f:f4:3f:a8:db:85:af:73:29:ac:0f:be:
         93:f9:e9:0f:25:89:3f:ad:6e:bf:b9:bd:aa:8b:27:5b:cd:21:
         50:d2:4c:1c:a4:2e:84:07:d6:8f:7f:45:7e:77:b7:0b:77:e1:
         cd:97:2c:04:6d:bf:a5:8c:5f:bd:46:5f:8f:86:1f:9e:8b:d8:
         93:c6:67:dc:6b:a0:22:75:44:0b:3d:8a:48:09:dc:6c:a6:d8:
         54:4d:01:58:22:31:c6:7e:4e:b3:4c:1d:be:a5:3c:26:0d:cb:
         20:7b:9d:32:73:67:f9:e9:b9:63:90:b2:ae:4c:4f:79:2e:c8:
         3b:b8:4a:c8:d3:e0:5b:28:a6:25:89:42:04:a8:16:15:1f:76:
         5b:64:7f:5b:60:93:f7:93:89:16:74:32:9f:af:ee:9d:17:20:
         05:bf:e8:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Feb 24 09:52:45 2024 by rpki-client on console-fra.rpki-client.org