Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/651c63b7-e13e-43bf-b010-265cb1f0b182/e465da9edeb396ef67d8eeeb360210043370557a.roa
File:                     e465da9edeb396ef67d8eeeb360210043370557a.roa (raw, json)
Hash identifier:          cOutGxQcvSf7kdHhKeIzL1R+Ms5EqbVKhScLlmQiQJI=
Subject key identifier:   61:FE:47:18:84:9B:54:23:BB:E6:A5:6F:DF:F3:F0:A5:67:54:EA:7B
Certificate issuer:       /CN=2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82
Certificate serial:       0D2F93
Authority key identifier: 92:B6:4A:50:EF:06:00:D0:23:FF:00:07:AC:5F:C0:FD:73:E1:A9:D3
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/651c63b7-e13e-43bf-b010-265cb1f0b182/e465da9edeb396ef67d8eeeb360210043370557a.roa
Signing time:             Wed 11 May 2022 01:53:41 +0000
ROA not before:           Wed 24 Mar 2021 03:00:00 +0000
ROA not after:            Tue 24 Mar 2026 03:00:00 +0000
asID:                     264668
IP address blocks:        179.63.20.0/22 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/651c63b7-e13e-43bf-b010-265cb1f0b182/2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82.crl
                          rsync://repository.lacnic.net/rpki/lacnic/651c63b7-e13e-43bf-b010-265cb1f0b182/2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Wed 06 Mar 2024 06:24:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 864147 (0xd2f93)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82
        Validity
            Not Before: Mar 24 03:00:00 2021 GMT
            Not After : Mar 24 03:00:00 2026 GMT
        Subject: CN=e465da9edeb396ef67d8eeeb360210043370557a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:ed:f6:b3:6d:8b:be:e9:98:d3:a1:3f:93:48:
                    3f:2e:e5:d2:01:78:ac:d2:94:95:c0:ac:85:74:8f:
                    f0:53:f8:20:3e:df:2d:e8:a5:e0:6c:33:52:99:9e:
                    26:55:ee:a5:5d:cb:8e:c7:5e:50:4c:c9:cb:5e:11:
                    88:62:ae:41:78:5a:ce:93:82:c7:8d:49:8b:8a:63:
                    d8:9c:a0:1c:57:d7:02:73:9f:27:0c:0b:05:0e:74:
                    23:d5:87:eb:a1:98:b0:ff:96:95:99:11:24:dc:bf:
                    24:fc:19:a3:d7:51:63:81:7d:58:d5:5e:50:73:73:
                    23:ea:bb:42:23:25:fe:ee:11:7d:ee:f4:55:67:21:
                    0a:d6:d6:91:fe:ce:b9:60:70:bb:f6:9a:11:f9:66:
                    ba:5c:ed:e1:08:92:1a:5e:e8:34:a9:19:fc:a6:13:
                    37:4a:6f:06:db:71:c2:12:ec:00:04:1d:b0:74:84:
                    71:3d:cc:3f:e7:64:53:c1:1e:1d:df:f0:94:c3:f6:
                    e6:bd:55:84:23:7a:b8:97:29:43:e5:f7:e8:af:03:
                    61:94:78:f3:67:51:8b:63:50:b3:41:8e:92:44:81:
                    50:1b:cf:37:78:aa:f2:a6:9a:93:cc:83:5c:7e:b3:
                    7b:f2:e5:a7:bd:f5:23:ee:7e:8d:d9:db:34:1e:bf:
                    11:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:FE:47:18:84:9B:54:23:BB:E6:A5:6F:DF:F3:F0:A5:67:54:EA:7B
            X509v3 Authority Key Identifier:
                keyid:92:B6:4A:50:EF:06:00:D0:23:FF:00:07:AC:5F:C0:FD:73:E1:A9:D3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/651c63b7-e13e-43bf-b010-265cb1f0b182/e465da9edeb396ef67d8eeeb360210043370557a.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/651c63b7-e13e-43bf-b010-265cb1f0b182/2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  179.63.20.0/22

    Signature Algorithm: sha256WithRSAEncryption
         09:66:f4:67:af:bd:9b:ab:b2:6a:d4:da:26:d7:fb:8a:fa:d3:
         c9:49:0d:c2:0e:18:9c:7e:d1:59:ae:2b:15:a5:85:17:be:96:
         30:a5:59:b7:2f:d6:6b:48:ec:62:a6:75:70:4d:64:46:32:2d:
         87:b9:94:14:0b:00:8a:9c:b8:a8:a5:45:e1:29:40:4f:79:ed:
         7a:14:df:64:76:5c:f2:93:e3:f6:92:f0:71:36:a6:46:24:73:
         ed:38:44:d1:74:e9:ef:b7:f2:d8:40:5f:17:dc:9a:39:8b:8f:
         b9:e1:30:1b:3a:19:6c:d0:1c:27:78:cc:65:c3:1b:34:77:3c:
         62:f5:d4:fa:b4:3c:d9:e9:18:95:90:4e:14:81:0e:f6:78:dc:
         07:0b:e3:d9:f0:e2:55:21:8d:2e:55:9c:59:a3:36:b1:54:3a:
         0c:a7:ba:93:b9:c2:26:1c:59:28:bd:59:d0:93:37:a3:2f:76:
         0d:93:ba:6d:dd:e2:2c:04:41:5d:e7:76:94:7e:53:6f:f2:d3:
         01:1e:1c:7a:da:09:c7:47:0c:78:c9:be:86:5a:53:14:3d:46:
         3a:cf:7b:4a:ca:72:a0:74:13:fc:87:be:5f:9f:55:24:21:ee:
         eb:68:53:fc:a1:b6:5a:86:2d:77:f5:2f:2b:62:c8:b8:e6:6c:
         94:a5:a7:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 3 13:25:55 2024 by rpki-client on console-ams.rpki-client.org