Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/704d8557-45f3-48d0-b3fd-0706c1139c38/0004a20e6569efd927af60819162202060ac2cbe.roa
File:                     0004a20e6569efd927af60819162202060ac2cbe.roa (raw, json)
Hash identifier:          chgoIUNb5Bjo42Oe+MLcbvSwAlkKITz3NyIQYqN6Pyc=
Subject key identifier:   D4:82:7E:80:CB:E8:DE:49:F0:36:92:85:7C:B7:27:0E:CE:7F:B4:8D
Certificate issuer:       /CN=983c7a1c6d682e269399f93e326b0b466b04fa64
Certificate serial:       05FC13
Authority key identifier: B1:D0:8F:AA:FC:42:75:A6:9C:03:A2:A9:14:E7:9A:2D:3C:25:6D:3B
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/983c7a1c6d682e269399f93e326b0b466b04fa64.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/704d8557-45f3-48d0-b3fd-0706c1139c38/0004a20e6569efd927af60819162202060ac2cbe.roa
Signing time:             Wed 24 Mar 2021 14:32:34 +0000
ROA not before:           Wed 24 Mar 2021 14:32:34 +0000
ROA not after:            Tue 24 Mar 2026 14:32:34 +0000
asID:                     263726
IP address blocks:        132.255.7.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/704d8557-45f3-48d0-b3fd-0706c1139c38/983c7a1c6d682e269399f93e326b0b466b04fa64.crl
                          rsync://repository.lacnic.net/rpki/lacnic/704d8557-45f3-48d0-b3fd-0706c1139c38/983c7a1c6d682e269399f93e326b0b466b04fa64.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/983c7a1c6d682e269399f93e326b0b466b04fa64.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 19:38:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 392211 (0x5fc13)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=983c7a1c6d682e269399f93e326b0b466b04fa64
        Validity
            Not Before: Mar 24 14:32:34 2021 GMT
            Not After : Mar 24 14:32:34 2026 GMT
        Subject: CN=0004a20e6569efd927af60819162202060ac2cbe
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:84:d1:f8:72:0f:36:4c:0e:ac:56:0a:7f:9d:26:
                    4b:a8:ae:d8:dd:ee:6c:51:be:18:45:8c:96:9f:b5:
                    04:5a:d0:07:50:b2:f3:d6:8f:2f:4b:4b:c8:07:d2:
                    e0:26:87:1b:2a:c4:9a:4d:86:ae:d3:ce:19:fc:c7:
                    3c:14:41:3b:7d:5d:16:28:1e:35:d3:2e:e8:65:19:
                    da:8a:08:35:48:35:31:46:b9:90:2f:94:8f:73:a2:
                    e3:48:e7:f3:1a:de:82:ea:bf:27:c0:8f:5a:bd:2f:
                    20:79:07:20:4b:94:c6:f7:5f:c0:a0:1b:88:c2:1b:
                    66:f4:ec:63:b9:a6:fa:e7:2a:c3:7d:24:c2:66:26:
                    25:9e:b3:c9:20:e0:d8:3f:13:59:0a:d2:09:e0:6c:
                    b3:fb:ae:81:31:b7:01:f8:28:c2:42:f6:7f:3c:a6:
                    03:96:48:ce:12:0b:b6:3d:04:05:9a:d9:46:8c:47:
                    7f:9a:a9:de:41:a2:a1:25:ea:ee:ca:97:bb:5c:82:
                    8c:b4:09:f3:45:81:89:2b:ff:3a:6b:fb:3c:be:32:
                    49:ba:97:a1:7b:87:51:50:d5:d8:29:91:90:63:ba:
                    eb:eb:6e:f9:e2:06:32:4f:a1:3e:c4:5c:de:ff:52:
                    6f:7a:3f:d4:6f:1a:21:15:ae:37:be:22:6f:e4:19:
                    e1:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D4:82:7E:80:CB:E8:DE:49:F0:36:92:85:7C:B7:27:0E:CE:7F:B4:8D
            X509v3 Authority Key Identifier:
                keyid:B1:D0:8F:AA:FC:42:75:A6:9C:03:A2:A9:14:E7:9A:2D:3C:25:6D:3B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/983c7a1c6d682e269399f93e326b0b466b04fa64.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/704d8557-45f3-48d0-b3fd-0706c1139c38/0004a20e6569efd927af60819162202060ac2cbe.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/704d8557-45f3-48d0-b3fd-0706c1139c38/983c7a1c6d682e269399f93e326b0b466b04fa64.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  132.255.7.0/24

    Signature Algorithm: sha256WithRSAEncryption
         77:32:20:50:14:fc:d8:5e:22:2d:45:f6:3c:82:b6:75:2d:ba:
         79:2a:51:c1:5e:ff:67:b2:11:b8:1c:49:d5:ab:6a:e3:37:ad:
         78:32:89:24:58:f4:42:92:65:dd:9f:3a:29:85:af:57:61:ef:
         be:9a:7c:87:87:8d:60:01:46:d9:fb:6b:51:9f:b7:db:22:b9:
         ed:11:8c:6b:91:66:f2:15:28:4e:7a:4b:3c:ca:51:a0:83:4e:
         48:94:f2:bd:83:68:f6:80:f4:2a:88:3a:c8:b2:af:e4:42:39:
         54:1e:91:4c:cf:e6:53:27:20:0d:b8:3b:ea:57:f3:42:e1:af:
         af:b3:e5:10:f9:2d:61:c6:fb:1b:0f:03:bb:25:1c:19:9a:6f:
         1b:6b:e6:96:2a:21:bf:f3:b3:46:11:41:fc:89:d5:10:01:92:
         6c:6e:c4:fe:0a:75:93:cb:b2:91:1f:b1:bb:9e:ac:7d:54:a5:
         21:34:6d:ab:1b:5b:a8:eb:0d:6e:1f:42:f9:70:97:ac:3a:c3:
         a4:f4:48:d5:f5:d0:f7:bc:95:d7:53:06:9c:99:4b:25:32:49:
         c7:a8:c3:40:5f:c4:0c:7f:c6:f5:29:96:8e:b1:94:97:e0:43:
         65:0d:e6:fe:ad:be:29:7a:fe:8f:16:35:14:8f:b8:ae:c4:b2:
         4f:63:9e:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 04:03:27 2024 by rpki-client on console-ams.rpki-client.org