Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/64978138-3b90-4dd8-b7a1-226b2c2d0ae5/1ebcb062150faddb0434939d94df07129f381ce4.roa
File:                     1ebcb062150faddb0434939d94df07129f381ce4.roa (raw, json)
Hash identifier:          YeoMqkYfey1AEvPjSkefKgVD5w8hvLeOjtVvafk2KOA=
Subject key identifier:   9E:24:75:84:00:E4:C5:06:21:18:5D:4D:5E:B7:61:91:5B:C8:D6:6D
Certificate issuer:       /CN=b0dc41738b385a57fce144119e9f086e5efc1042
Certificate serial:       0D0624
Authority key identifier: D1:AC:D3:9A:54:A4:49:6D:F6:99:E2:43:FC:F0:2E:72:D9:70:B6:A9
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b0dc41738b385a57fce144119e9f086e5efc1042.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/64978138-3b90-4dd8-b7a1-226b2c2d0ae5/1ebcb062150faddb0434939d94df07129f381ce4.roa
Signing time:             Wed 24 Mar 2021 14:33:57 +0000
ROA not before:           Wed 24 Mar 2021 14:33:56 +0000
ROA not after:            Tue 24 Mar 2026 14:33:56 +0000
asID:                     21765
IP address blocks:        192.141.64.0/22 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/64978138-3b90-4dd8-b7a1-226b2c2d0ae5/b0dc41738b385a57fce144119e9f086e5efc1042.crl
                          rsync://repository.lacnic.net/rpki/lacnic/64978138-3b90-4dd8-b7a1-226b2c2d0ae5/b0dc41738b385a57fce144119e9f086e5efc1042.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b0dc41738b385a57fce144119e9f086e5efc1042.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 19:38:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 853540 (0xd0624)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b0dc41738b385a57fce144119e9f086e5efc1042
        Validity
            Not Before: Mar 24 14:33:56 2021 GMT
            Not After : Mar 24 14:33:56 2026 GMT
        Subject: CN=1ebcb062150faddb0434939d94df07129f381ce4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:88:1f:43:64:e4:36:19:22:e5:9f:4f:29:65:b1:
                    e2:5b:fb:04:c1:65:02:fb:e7:4f:37:e3:9a:8c:1d:
                    a2:a5:d6:40:ae:18:aa:1c:a3:40:60:23:ee:34:cc:
                    59:6b:e6:a9:cb:80:86:6d:48:90:43:21:f5:77:1e:
                    d8:e0:c4:14:07:8f:da:50:14:83:a5:2e:56:5d:b5:
                    c2:73:12:cb:a5:4d:ec:ff:f7:18:47:8a:7a:be:d0:
                    c2:58:3a:2f:eb:ef:88:8a:4b:3e:47:9e:de:c3:d8:
                    a7:6c:6b:b5:51:be:f9:b6:8a:60:1f:9d:3f:91:e5:
                    01:e4:1a:e8:ad:b0:39:fe:b1:5f:7a:8b:ad:d9:17:
                    58:24:85:5a:66:43:27:bc:03:6e:33:26:9f:ad:6d:
                    4c:d5:5f:70:7a:3c:41:af:70:5f:08:80:62:ae:37:
                    d7:49:8f:b5:76:ff:7c:6c:5a:35:80:53:83:cc:45:
                    84:bd:05:0d:90:44:07:b3:17:71:90:9b:64:7e:67:
                    f3:30:4a:0b:71:89:26:66:2a:9c:a2:04:a6:66:27:
                    8a:88:27:83:ab:d6:4e:5f:2f:7f:5b:19:ba:af:5c:
                    b8:1a:2b:41:9e:22:1f:54:ff:3e:51:7e:88:42:22:
                    40:05:46:a0:57:78:be:a3:8f:3b:86:7d:f4:4e:94:
                    4c:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9E:24:75:84:00:E4:C5:06:21:18:5D:4D:5E:B7:61:91:5B:C8:D6:6D
            X509v3 Authority Key Identifier:
                keyid:D1:AC:D3:9A:54:A4:49:6D:F6:99:E2:43:FC:F0:2E:72:D9:70:B6:A9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b0dc41738b385a57fce144119e9f086e5efc1042.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/64978138-3b90-4dd8-b7a1-226b2c2d0ae5/1ebcb062150faddb0434939d94df07129f381ce4.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/64978138-3b90-4dd8-b7a1-226b2c2d0ae5/b0dc41738b385a57fce144119e9f086e5efc1042.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  192.141.64.0/22

    Signature Algorithm: sha256WithRSAEncryption
         35:3c:98:2b:3c:cc:27:e7:92:66:50:6b:4d:46:0c:94:2d:0f:
         c9:41:5c:dd:97:2d:10:46:c8:48:c4:bd:9a:93:04:7f:82:35:
         02:45:22:e5:6b:01:98:60:ac:42:1a:36:f3:ba:21:4a:bd:c4:
         a8:59:39:3a:2d:c5:d7:92:0d:fe:d4:97:77:9e:87:ba:bf:d9:
         da:6a:d1:06:9e:40:e9:32:d7:de:e0:45:9d:53:fc:a3:3f:5c:
         14:4a:1c:d9:2a:10:e7:e5:bf:c5:4c:e7:d3:c3:47:e8:67:45:
         4a:37:0f:58:b6:57:6b:56:84:b8:49:f2:6e:ba:88:d9:d0:14:
         ae:74:9f:07:50:ef:df:07:5a:3a:34:b7:c0:1a:49:d2:ba:92:
         31:01:a3:46:ed:d9:a1:cd:6e:95:fb:15:c4:9b:6e:84:a9:b1:
         a5:2e:9c:91:aa:8f:12:92:65:39:a5:00:57:92:80:dd:c8:ca:
         3c:e1:b6:ff:0d:7f:f4:26:83:18:1d:c9:95:3b:3a:d6:c6:17:
         80:4d:e6:bf:ab:38:e6:a8:44:89:2a:4c:57:73:3c:55:0a:63:
         0b:9e:5d:e4:f9:0d:7a:ae:b0:78:11:6e:ea:6e:83:cd:f9:a4:
         63:99:87:70:a7:71:79:60:e4:8a:4a:24:91:a0:93:e4:67:80:
         19:33:ed:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 23:49:01 2024 by rpki-client on console-ams.rpki-client.org