Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/67ed9008-ae34-44be-882f-59381201b1e1/d9188ade803b513473de03eaf9327c79756a18e5.roa
File:                     d9188ade803b513473de03eaf9327c79756a18e5.roa (raw, json)
Hash identifier:          Gef7L7xoZywyPJRDRuNRHuYoZ8fP3DsmlgDc4FbVXlw=
Subject key identifier:   FE:25:8A:5F:C5:93:82:F0:E8:83:93:AB:F5:EE:7A:97:1A:FE:11:1A
Certificate issuer:       /CN=a7237d32fd35bbf0fdba7734a8368fd9626eca5a
Certificate serial:       27E50C
Authority key identifier: BE:02:D2:36:F8:B0:06:BA:87:81:2A:20:2E:F5:B7:66:DC:8E:30:3F
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a7237d32fd35bbf0fdba7734a8368fd9626eca5a.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/67ed9008-ae34-44be-882f-59381201b1e1/d9188ade803b513473de03eaf9327c79756a18e5.roa
Signing time:             Mon 12 Feb 2024 15:10:04 +0000
ROA not before:           Mon 12 Feb 2024 15:09:57 +0000
ROA not after:            Mon 12 Feb 2029 15:09:57 +0000
asID:                     52434
IP address blocks:        190.242.55.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/67ed9008-ae34-44be-882f-59381201b1e1/a7237d32fd35bbf0fdba7734a8368fd9626eca5a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/67ed9008-ae34-44be-882f-59381201b1e1/a7237d32fd35bbf0fdba7734a8368fd9626eca5a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a7237d32fd35bbf0fdba7734a8368fd9626eca5a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 15 Apr 2024 06:03:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2614540 (0x27e50c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a7237d32fd35bbf0fdba7734a8368fd9626eca5a
        Validity
            Not Before: Feb 12 15:09:57 2024 GMT
            Not After : Feb 12 15:09:57 2029 GMT
        Subject: CN=d9188ade803b513473de03eaf9327c79756a18e5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:91:f3:96:c4:8c:0e:b5:a3:90:70:e3:e1:cb:e3:
                    28:2c:d7:41:8c:ca:cd:70:98:e9:c1:bd:8a:c8:63:
                    8d:39:37:0f:ee:00:0d:b2:b0:b5:74:7a:23:ad:3e:
                    c5:a6:0d:cd:64:f0:fc:d2:88:8f:43:59:52:db:35:
                    96:1e:40:86:2e:ab:56:07:47:85:00:dd:67:0d:bb:
                    f1:7a:55:69:5c:f0:ff:bc:6c:f4:bd:d4:f2:66:df:
                    0c:8f:ff:59:04:84:68:c9:16:54:14:58:ca:47:06:
                    c6:c7:6a:69:61:20:78:e5:93:3c:97:25:fd:54:66:
                    5e:2b:3c:5f:84:ff:7e:92:65:ad:81:ca:d1:3e:0a:
                    83:28:49:11:17:95:1a:de:bb:f0:8c:e8:d4:a2:7b:
                    20:3a:87:ac:e9:32:91:90:da:6c:91:c4:6b:62:3a:
                    c1:d2:59:5e:4c:a7:95:d1:b6:43:60:6f:71:fc:8f:
                    67:6f:76:7f:77:be:f8:01:1e:f8:c7:87:66:3d:c2:
                    3b:10:14:01:75:62:6d:ba:32:7f:5a:db:7c:63:2b:
                    49:f7:9e:8e:64:f4:59:16:cd:92:f5:d7:75:0e:92:
                    27:ec:ae:ef:7e:84:50:f7:b6:58:06:13:10:da:f8:
                    16:0b:ad:2e:b5:6c:f8:e3:2b:81:16:2c:1f:6d:25:
                    3d:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FE:25:8A:5F:C5:93:82:F0:E8:83:93:AB:F5:EE:7A:97:1A:FE:11:1A
            X509v3 Authority Key Identifier:
                keyid:BE:02:D2:36:F8:B0:06:BA:87:81:2A:20:2E:F5:B7:66:DC:8E:30:3F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a7237d32fd35bbf0fdba7734a8368fd9626eca5a.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/67ed9008-ae34-44be-882f-59381201b1e1/d9188ade803b513473de03eaf9327c79756a18e5.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/67ed9008-ae34-44be-882f-59381201b1e1/a7237d32fd35bbf0fdba7734a8368fd9626eca5a.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.242.55.0/24

    Signature Algorithm: sha256WithRSAEncryption
         8c:fc:55:b3:a3:5e:a7:97:f6:d3:a1:3f:57:e5:c2:9e:d6:10:
         50:3a:88:4b:0c:7a:c7:00:c6:90:b1:8b:52:22:7f:c8:2f:32:
         75:76:a6:59:85:05:08:bd:9d:fa:35:c8:4a:76:d3:68:f1:9c:
         44:82:21:d3:e9:60:29:d0:d4:fd:ca:4a:c1:c5:76:63:02:0d:
         02:85:88:94:5f:65:dd:08:f5:45:db:39:06:5b:a9:94:5d:3f:
         7b:df:57:5b:34:0a:1a:82:f0:a4:71:2c:60:92:c1:2e:de:b3:
         ba:54:3f:a0:fa:ff:1c:c7:a2:b8:cf:e7:57:50:eb:7d:f1:50:
         2a:bb:5a:f8:a8:3f:e3:33:f1:14:ba:cc:d0:93:b0:22:59:dd:
         4a:b0:9b:4a:d8:ca:d3:26:7e:2b:89:b5:ae:70:7a:35:1c:15:
         af:e8:1d:bb:cc:2a:c8:cf:65:5e:61:d6:ed:d7:7e:27:4f:30:
         ab:82:fb:00:79:c8:64:2e:49:2d:fd:cc:f7:63:cb:f8:d2:29:
         e0:a3:2f:be:b9:96:dc:37:0f:68:53:dd:cf:ad:9f:13:b6:e8:
         be:d2:12:2b:25:04:5f:4c:ca:ae:35:ba:fd:98:3b:9a:d3:5b:
         95:7b:a3:aa:ca:c7:3d:72:9b:28:a0:d1:05:e8:29:ef:73:71:
         c3:d5:0f:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 12 10:33:48 2024 by rpki-client on console-fra.rpki-client.org