Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/651c63b7-e13e-43bf-b010-265cb1f0b182/71fea3f3a96f3f451fc5bf26540b342b18f9a527.roa
File:                     71fea3f3a96f3f451fc5bf26540b342b18f9a527.roa (raw, json)
Hash identifier:          OZ3hKwQAiPj1RdfmklL2gRh5HmOyXIZM/0+7on4Iz/k=
Subject key identifier:   62:3D:8C:CD:6F:06:A9:DA:EA:5D:98:DE:68:E6:AF:7C:D0:36:47:40
Certificate issuer:       /CN=2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82
Certificate serial:       0D43C8
Authority key identifier: 92:B6:4A:50:EF:06:00:D0:23:FF:00:07:AC:5F:C0:FD:73:E1:A9:D3
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/651c63b7-e13e-43bf-b010-265cb1f0b182/71fea3f3a96f3f451fc5bf26540b342b18f9a527.roa
Signing time:             Wed 11 May 2022 01:54:51 +0000
ROA not before:           Wed 24 Mar 2021 03:00:00 +0000
ROA not after:            Tue 24 Mar 2026 03:00:00 +0000
asID:                     19169
IP address blocks:        179.63.20.0/22 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/651c63b7-e13e-43bf-b010-265cb1f0b182/2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82.crl
                          rsync://repository.lacnic.net/rpki/lacnic/651c63b7-e13e-43bf-b010-265cb1f0b182/2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Wed 06 Mar 2024 06:24:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 869320 (0xd43c8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82
        Validity
            Not Before: Mar 24 03:00:00 2021 GMT
            Not After : Mar 24 03:00:00 2026 GMT
        Subject: CN=71fea3f3a96f3f451fc5bf26540b342b18f9a527
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:ba:8f:59:f1:3f:f4:8c:8a:22:ff:f4:ff:10:
                    ca:e2:ff:4a:8d:61:84:0f:a2:2c:d3:cb:00:c0:13:
                    a1:8f:9d:1f:ac:96:8e:55:2a:c9:d7:18:66:7d:a6:
                    7f:6c:50:75:63:a6:50:01:80:90:a8:96:c2:e7:67:
                    a4:f5:f7:5a:04:b3:b4:2a:cf:32:a9:25:1b:33:95:
                    93:17:df:3c:27:b3:21:5c:05:6b:f2:3a:25:2e:23:
                    ee:69:4b:3b:56:fb:c9:4e:1d:61:33:60:28:b6:60:
                    cb:85:b3:1a:60:a7:d4:5c:8e:2f:ca:7e:1d:d4:44:
                    19:6e:59:7c:09:fb:f9:85:84:7b:0f:1b:11:fb:f4:
                    d9:ba:7b:f0:85:d9:87:0f:8e:fa:73:55:85:b2:e7:
                    f8:bd:e9:ef:85:80:11:d9:40:2d:af:e5:b5:71:3c:
                    62:a6:7b:7e:51:da:c9:a8:1b:cd:fd:ce:64:e1:ff:
                    ca:95:9e:56:73:53:f0:ba:83:07:cf:37:3f:db:f5:
                    4a:42:7f:06:fe:a1:86:51:97:29:37:09:47:aa:d7:
                    3c:67:63:be:18:19:29:18:30:1b:27:75:1a:9f:62:
                    d9:62:75:d1:23:64:97:5a:7c:ce:dd:37:19:e8:8c:
                    27:b9:30:b3:31:bf:48:8f:8c:cc:2c:9f:e5:e2:a1:
                    ac:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                62:3D:8C:CD:6F:06:A9:DA:EA:5D:98:DE:68:E6:AF:7C:D0:36:47:40
            X509v3 Authority Key Identifier:
                keyid:92:B6:4A:50:EF:06:00:D0:23:FF:00:07:AC:5F:C0:FD:73:E1:A9:D3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/651c63b7-e13e-43bf-b010-265cb1f0b182/71fea3f3a96f3f451fc5bf26540b342b18f9a527.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/651c63b7-e13e-43bf-b010-265cb1f0b182/2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  179.63.20.0/22

    Signature Algorithm: sha256WithRSAEncryption
         1e:2a:8c:3e:6f:ce:55:1b:77:d0:d1:51:1c:00:3b:b8:55:37:
         5a:8c:d9:a7:dd:a4:82:b8:74:86:f3:c7:9b:05:1f:57:f5:fc:
         89:54:e6:b8:e4:06:fa:56:39:53:6e:32:5e:8d:33:86:d9:33:
         dd:9c:58:c1:04:e0:6a:6d:ec:c9:75:52:c1:93:32:98:15:00:
         21:59:a6:a3:7b:ab:f3:07:5b:a6:c5:ea:1d:2f:d7:08:fc:57:
         f0:f0:68:e2:cb:95:d8:cf:b6:b3:12:a5:d3:e8:52:db:13:9e:
         d6:28:9c:38:e1:cf:ee:10:06:0e:54:cb:78:3e:95:1b:b6:cf:
         05:9c:ba:97:ba:13:c5:f9:64:a2:61:86:14:2f:74:6e:bc:99:
         0e:0e:5f:cc:49:41:f5:fd:97:cc:09:2f:b0:62:fe:31:3a:44:
         2e:0e:6e:75:d1:9f:d5:a0:80:15:7d:25:6e:cb:f1:44:b5:48:
         0f:b2:9f:de:0e:d6:60:c4:12:08:b5:fd:1b:d5:86:8d:a3:32:
         2e:ca:68:5d:88:90:03:d3:b1:0f:4c:99:26:28:f0:42:95:86:
         db:6c:d2:9f:a0:15:cb:ae:3e:69:5e:2a:b2:e5:d8:90:c5:f5:
         65:b4:e2:98:cb:a5:7e:c8:c8:ce:2a:d8:1a:63:eb:11:3c:80:
         68:b6:79:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 3 13:25:55 2024 by rpki-client on console-ams.rpki-client.org