Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5ac173dd-4722-4f7f-a9eb-eeb4bb98afe1/8ba94cb1ebe52bfb2b511d4eafec7983c5e05430.roa
File:                     8ba94cb1ebe52bfb2b511d4eafec7983c5e05430.roa (raw, json)
Hash identifier:          rWN3Slrr3bss3l7Uy6fC352qTaiylP4U0U/5EiUkCLI=
Subject key identifier:   E2:5B:2F:A7:98:41:8E:65:12:9F:A3:1C:70:90:DA:76:B4:A1:5B:3A
Certificate issuer:       /CN=8aec635f7c32dec3e47f35d9bf70a3f73064cc1d
Certificate serial:       13C578
Authority key identifier: 5B:98:D0:F7:54:24:AD:81:25:81:F6:98:38:FD:CB:43:3F:B2:9D:89
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8aec635f7c32dec3e47f35d9bf70a3f73064cc1d.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/5ac173dd-4722-4f7f-a9eb-eeb4bb98afe1/8ba94cb1ebe52bfb2b511d4eafec7983c5e05430.roa
Signing time:             Fri 07 Jul 2023 15:08:05 +0000
ROA not before:           Thu 06 Jul 2023 15:08:05 +0000
ROA not after:            Mon 07 Jul 2025 15:08:05 +0000
asID:                     271816
IP address blocks:        45.7.143.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/5ac173dd-4722-4f7f-a9eb-eeb4bb98afe1/8aec635f7c32dec3e47f35d9bf70a3f73064cc1d.crl
                          rsync://repository.lacnic.net/rpki/lacnic/5ac173dd-4722-4f7f-a9eb-eeb4bb98afe1/8aec635f7c32dec3e47f35d9bf70a3f73064cc1d.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8aec635f7c32dec3e47f35d9bf70a3f73064cc1d.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Tue 27 Feb 2024 02:19:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1295736 (0x13c578)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8aec635f7c32dec3e47f35d9bf70a3f73064cc1d
        Validity
            Not Before: Jul  6 15:08:05 2023 GMT
            Not After : Jul  7 15:08:05 2025 GMT
        Subject: CN=8ba94cb1ebe52bfb2b511d4eafec7983c5e05430
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8b:21:2f:18:2e:0b:8c:03:d1:37:1c:b7:4b:4b:
                    e7:8b:8d:39:82:ed:1d:2b:a6:1f:e6:81:20:9e:db:
                    dc:44:14:fc:6b:30:7e:12:f2:f4:70:27:92:30:db:
                    2f:aa:d5:b0:41:b7:58:1e:00:14:0e:a8:d1:64:3f:
                    50:fb:9e:f2:7c:e1:c4:e1:6f:dd:77:12:ee:85:a8:
                    00:52:3f:7a:8b:0d:ac:8a:b9:4d:51:0f:0e:a4:05:
                    96:2a:95:28:06:8e:21:73:a7:74:d7:78:0d:b7:59:
                    27:05:63:56:df:cb:2a:54:cb:2a:29:5a:6e:12:20:
                    ae:7e:a0:fd:8e:c2:55:d9:c3:fd:c6:2c:5a:2f:d0:
                    17:d6:f0:32:ba:6d:2b:73:41:0c:60:a2:cc:31:93:
                    f1:25:54:57:25:f7:78:00:80:98:ff:ea:b3:fb:dc:
                    52:e9:68:72:40:5c:0e:d1:67:c7:fe:31:31:dc:b3:
                    39:7b:6e:8b:d2:ac:4b:a2:37:8e:8e:40:eb:5b:ca:
                    86:83:93:33:55:fe:37:c8:16:a1:7c:3d:52:65:28:
                    bb:fc:91:2e:09:e7:0f:f7:77:61:df:74:0a:c3:3a:
                    6a:9e:d3:90:04:04:32:a9:29:63:f2:be:3d:f9:c0:
                    45:7b:69:d5:5d:50:a6:b0:d4:ea:8e:ec:e5:72:a1:
                    ae:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E2:5B:2F:A7:98:41:8E:65:12:9F:A3:1C:70:90:DA:76:B4:A1:5B:3A
            X509v3 Authority Key Identifier:
                keyid:5B:98:D0:F7:54:24:AD:81:25:81:F6:98:38:FD:CB:43:3F:B2:9D:89

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8aec635f7c32dec3e47f35d9bf70a3f73064cc1d.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5ac173dd-4722-4f7f-a9eb-eeb4bb98afe1/8ba94cb1ebe52bfb2b511d4eafec7983c5e05430.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/5ac173dd-4722-4f7f-a9eb-eeb4bb98afe1/8aec635f7c32dec3e47f35d9bf70a3f73064cc1d.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.7.143.0/24

    Signature Algorithm: sha256WithRSAEncryption
         47:29:b0:a8:7c:e4:f2:eb:81:ec:f2:e2:ea:e4:3f:92:34:a5:
         78:cc:fd:02:19:b7:d2:43:04:75:6d:b2:5f:54:c5:1f:47:48:
         c9:fb:ec:ff:2c:4b:a0:31:38:2a:3a:2b:53:c0:c7:ff:99:2f:
         8b:4e:b5:dd:6e:6c:b1:d2:1b:91:b1:ab:b9:20:47:cf:41:e5:
         3c:bd:dd:79:c9:c3:05:a5:bd:aa:66:2b:d3:17:2a:07:04:93:
         cd:0f:c0:b6:1a:ff:cc:c1:c5:38:23:20:94:12:ac:35:29:a1:
         b8:ac:28:c0:15:be:0a:cd:f0:63:0a:16:07:06:14:8f:5f:56:
         f7:75:93:6c:c5:8b:7d:d5:70:03:e9:50:e3:a3:2e:71:be:c5:
         bd:2e:e2:fa:c2:14:0c:1a:e4:45:ea:4f:83:c8:96:c6:d1:11:
         21:76:35:d4:14:77:33:1a:9f:23:6b:4f:75:87:47:fb:f4:05:
         05:01:49:9c:d6:ec:e8:17:08:0b:27:e1:22:61:78:52:7d:73:
         75:aa:2b:42:e0:71:fc:58:6b:f5:c5:47:d9:c0:de:fe:9a:a0:
         cb:b1:60:3c:18:20:53:e2:90:54:34:32:b5:df:d8:35:97:36:
         f6:aa:72:43:8e:38:05:87:e7:17:74:4b:7d:7d:14:d4:f9:13:
         13:86:7b:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Feb 24 10:17:36 2024 by rpki-client on console-ams.rpki-client.org