Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/645cc77f-169a-486a-a78d-52de3cada025/1ecf496bf562f3c0efdda6f7abfc5d8d16ee902c.roa
File:                     1ecf496bf562f3c0efdda6f7abfc5d8d16ee902c.roa (raw, json)
Hash identifier:          3RawYjurnfiYBhbI1Ie9O5in3wJIoVXXyrM8jnxNSTY=
Subject key identifier:   8B:2E:1C:30:B9:66:26:96:CF:EF:01:A4:FC:48:2C:C4:F0:DA:59:C2
Certificate issuer:       /CN=140081bd0d1930baf841c16a512632854d6bc45d
Certificate serial:       01A1
Authority key identifier: A0:77:2B:15:A5:E5:D4:65:15:38:A3:16:3E:55:75:00:A5:CC:1F:1B
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/140081bd0d1930baf841c16a512632854d6bc45d.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/645cc77f-169a-486a-a78d-52de3cada025/1ecf496bf562f3c0efdda6f7abfc5d8d16ee902c.roa
Signing time:             Mon 26 Jul 2021 23:41:54 +0000
ROA not before:           Mon 26 Jul 2021 03:00:00 +0000
ROA not after:            Wed 26 Jul 2023 03:00:00 +0000
asID:                     28055
IP address blocks:        200.107.80.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/645cc77f-169a-486a-a78d-52de3cada025/140081bd0d1930baf841c16a512632854d6bc45d.crl
                          rsync://repository.lacnic.net/rpki/lacnic/645cc77f-169a-486a-a78d-52de3cada025/140081bd0d1930baf841c16a512632854d6bc45d.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/140081bd0d1930baf841c16a512632854d6bc45d.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sat 18 Mar 2023 02:22:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 417 (0x1a1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=140081bd0d1930baf841c16a512632854d6bc45d
        Validity
            Not Before: Jul 26 03:00:00 2021 GMT
            Not After : Jul 26 03:00:00 2023 GMT
        Subject: CN=1ecf496bf562f3c0efdda6f7abfc5d8d16ee902c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:f9:f9:af:af:9e:6f:25:8d:c3:b5:27:46:2e:
                    69:21:df:49:e5:63:df:95:f7:29:72:9e:11:9f:ca:
                    bf:84:e7:b9:08:20:84:4c:44:c9:d9:5d:d3:f8:cb:
                    20:f5:df:51:b5:ce:d5:ad:a6:b0:2e:d4:2b:34:d2:
                    8c:69:63:85:8f:7c:73:9b:05:42:68:6f:ff:3f:55:
                    4d:ab:65:35:73:ca:88:8d:c6:ed:15:49:ae:64:1a:
                    ca:fe:11:45:ee:84:f4:30:7f:33:7d:fa:5d:f6:4b:
                    ac:ef:18:f3:ff:47:ee:93:e6:d1:64:7b:3d:54:b5:
                    15:67:4c:46:18:5e:4e:2d:ae:6b:a1:db:bf:80:06:
                    42:f5:fb:61:bb:a1:47:0e:75:0a:19:b5:92:53:5a:
                    a6:37:c2:8a:66:74:d3:20:38:4c:e1:d5:33:e6:f4:
                    c6:ce:a2:40:3e:81:de:8d:4b:a7:3f:59:ef:5c:7b:
                    ad:ea:e1:d4:31:ba:a4:84:e2:db:ad:e7:3e:16:cd:
                    ae:83:30:da:e1:3e:c5:85:a5:30:9a:d8:86:bc:53:
                    d8:6e:0e:f0:2d:25:60:42:5d:10:31:d7:d5:a4:4d:
                    b6:ba:af:02:de:dd:5f:b6:5d:2f:ad:40:ac:cb:cd:
                    bf:f9:3c:31:00:c3:9f:bb:37:20:95:72:06:f4:4e:
                    cd:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                8B:2E:1C:30:B9:66:26:96:CF:EF:01:A4:FC:48:2C:C4:F0:DA:59:C2
            X509v3 Authority Key Identifier: 
                keyid:A0:77:2B:15:A5:E5:D4:65:15:38:A3:16:3E:55:75:00:A5:CC:1F:1B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/140081bd0d1930baf841c16a512632854d6bc45d.cer

            Subject Information Access: 
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/645cc77f-169a-486a-a78d-52de3cada025/1ecf496bf562f3c0efdda6f7abfc5d8d16ee902c.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/645cc77f-169a-486a-a78d-52de3cada025/140081bd0d1930baf841c16a512632854d6bc45d.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.107.80.0/24

    Signature Algorithm: sha256WithRSAEncryption
         15:bc:d5:ec:a8:a6:e8:2d:86:fe:d9:da:31:f4:85:27:cd:65:
         ae:8a:6f:ab:b8:75:d5:80:b5:a4:50:a6:0d:3a:4c:e1:e8:2a:
         e0:7f:23:65:93:7d:af:fd:a1:5f:33:84:46:12:7a:54:2b:66:
         f9:88:b8:5b:2a:04:14:73:ba:0c:57:b9:e9:e9:6e:d8:e6:16:
         36:40:b0:77:33:0c:46:8e:1f:54:fd:67:81:86:60:70:d8:50:
         3b:51:64:aa:89:e9:dd:20:18:f4:84:c1:9a:29:94:28:ef:e2:
         36:a3:68:2e:d0:b7:c0:b8:59:a3:48:2b:5f:bc:b8:b0:83:a1:
         64:52:46:33:ad:ab:bc:09:ab:c9:de:d1:cb:d3:23:a0:8a:bc:
         90:87:b2:c3:ba:8d:64:62:ee:15:53:da:da:35:73:04:ae:1a:
         40:1c:2f:a7:55:00:b0:68:64:ee:11:74:35:12:78:d4:2c:9a:
         bc:53:bc:a7:7e:75:e3:31:13:7c:ca:2f:33:d5:79:c3:66:bb:
         21:f9:7c:b5:ea:50:4c:8e:a7:66:ed:41:71:6d:a4:00:76:a2:
         dd:3d:fb:da:66:e2:38:a2:f4:08:4b:5e:6f:59:72:23:5d:2a:
         4f:e5:f1:d0:b0:57:47:ed:08:9c:a2:a0:f7:2e:2e:51:e9:06:
         4d:0d:88:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 15 11:34:42 2023 by rpki-client on console-ams.rpki-client.org