Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6a5826d1-aaa5-46af-971e-90000e35d6d5/13e75d5ab624cb90e4b54d824c3190781e94986f.roa
File:                     13e75d5ab624cb90e4b54d824c3190781e94986f.roa (raw, json)
Hash identifier:          dhGrgX55cNZ8qNQM5Id8c+tjTTSdZNcC6Kx7PCJHqHE=
Subject key identifier:   17:7F:2E:9B:A2:D6:28:18:26:EC:F2:9E:C6:E3:F0:5A:36:E8:67:5F
Certificate issuer:       /CN=1be266579f38b80627841be816f524a29d303a79
Certificate serial:       0DA618
Authority key identifier: 93:E9:EE:89:AF:0B:08:9C:FF:91:3D:CE:29:A5:DC:D7:B9:D3:D7:4B
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1be266579f38b80627841be816f524a29d303a79.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/6a5826d1-aaa5-46af-971e-90000e35d6d5/13e75d5ab624cb90e4b54d824c3190781e94986f.roa
Signing time:             Wed 24 Mar 2021 14:32:50 +0000
ROA not before:           Wed 24 Mar 2021 14:32:50 +0000
ROA not after:            Tue 24 Mar 2026 14:32:50 +0000
asID:                     52349
IP address blocks:        186.148.248.0/21 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/6a5826d1-aaa5-46af-971e-90000e35d6d5/1be266579f38b80627841be816f524a29d303a79.crl
                          rsync://repository.lacnic.net/rpki/lacnic/6a5826d1-aaa5-46af-971e-90000e35d6d5/1be266579f38b80627841be816f524a29d303a79.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1be266579f38b80627841be816f524a29d303a79.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 01 Apr 2024 05:58:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 894488 (0xda618)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1be266579f38b80627841be816f524a29d303a79
        Validity
            Not Before: Mar 24 14:32:50 2021 GMT
            Not After : Mar 24 14:32:50 2026 GMT
        Subject: CN=13e75d5ab624cb90e4b54d824c3190781e94986f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:86:b6:c0:b3:bc:8b:c8:fc:54:38:51:3c:a3:97:
                    87:49:14:30:c6:27:b5:78:cb:f1:fd:a7:36:69:76:
                    2f:36:59:68:d7:8c:e9:b5:82:75:4b:b7:b1:a6:19:
                    0d:ac:5b:78:e5:38:83:83:82:91:e5:e8:25:a5:80:
                    cd:54:19:ad:2f:e1:66:14:63:f9:b4:0f:a5:31:33:
                    c3:5c:01:74:ed:43:10:2c:89:e9:75:34:fd:6f:e8:
                    41:18:44:39:ef:1a:85:0b:06:de:3b:33:7a:90:e4:
                    f4:17:aa:ac:73:e6:92:4b:e1:e6:13:39:45:ae:40:
                    70:5a:f6:d3:14:04:7a:13:71:c8:8d:1c:d7:1b:d2:
                    72:23:ac:00:39:92:e9:a2:03:f7:ec:3f:30:99:76:
                    62:52:fc:ab:1f:80:c5:27:a9:af:17:7c:ab:6d:2c:
                    33:c4:2c:9f:eb:1b:05:3b:06:80:ca:ff:c3:39:8b:
                    15:4e:c2:9f:84:4b:14:59:bf:25:a3:52:5f:31:28:
                    8e:b5:fd:a7:63:e3:33:83:61:f6:ec:64:92:78:24:
                    cd:0c:8b:52:11:28:02:bb:92:e6:8b:58:46:d4:e9:
                    5b:31:75:78:19:2a:7e:2d:35:4f:ee:a5:a7:3b:fc:
                    c1:04:ec:57:88:82:1c:1e:71:b8:74:e4:d4:fb:48:
                    d8:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                17:7F:2E:9B:A2:D6:28:18:26:EC:F2:9E:C6:E3:F0:5A:36:E8:67:5F
            X509v3 Authority Key Identifier:
                keyid:93:E9:EE:89:AF:0B:08:9C:FF:91:3D:CE:29:A5:DC:D7:B9:D3:D7:4B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1be266579f38b80627841be816f524a29d303a79.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6a5826d1-aaa5-46af-971e-90000e35d6d5/13e75d5ab624cb90e4b54d824c3190781e94986f.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/6a5826d1-aaa5-46af-971e-90000e35d6d5/1be266579f38b80627841be816f524a29d303a79.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  186.148.248.0/21

    Signature Algorithm: sha256WithRSAEncryption
         6d:41:d0:ee:60:dd:18:5f:ef:75:11:81:93:81:5c:67:e9:ac:
         fe:e6:27:a9:9a:74:1a:45:c3:a1:7a:ca:a4:f5:77:ef:66:2b:
         99:b5:62:99:4d:16:17:73:4e:3a:46:42:ee:5a:81:28:24:90:
         d0:c4:6e:28:d9:ac:2b:6f:82:4d:7a:65:34:c0:1f:36:b1:30:
         8a:3d:81:b5:99:16:00:81:9b:e4:1e:4e:6b:25:88:39:1c:ae:
         8f:db:8a:3f:23:42:51:1b:45:7a:83:cd:88:8f:18:32:30:64:
         66:87:4b:be:b3:1a:03:b0:33:24:4c:52:c7:cf:fc:f9:c9:89:
         7a:0f:a3:6c:c8:7f:58:e8:c0:d9:73:da:3c:20:12:64:45:9f:
         42:bd:e6:3e:60:25:75:83:cc:49:e1:55:f5:67:3d:e4:48:71:
         cb:39:f6:e9:19:f6:70:db:6c:cf:c6:e2:43:b8:b1:cc:aa:3e:
         1c:4d:07:34:32:d5:2c:c6:31:ab:3d:aa:7a:73:af:74:bc:80:
         45:6d:b6:61:95:f3:fd:11:b6:ad:95:69:e3:bb:16:6d:1c:16:
         6f:3a:b2:8c:3b:df:46:d3:4a:a1:08:70:7e:e0:8c:b2:ae:61:
         de:e7:cd:07:51:fa:23:b6:04:dd:b0:d0:7e:7c:ef:fb:23:99:
         1d:b8:a3:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 07:06:36 2024 by rpki-client on console-ams.rpki-client.org