Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7f112c7d-862c-4867-ba49-772b4d6018ab/f2cfa916a9b0366c06bc286521b12705f762a208.roa
File:                     f2cfa916a9b0366c06bc286521b12705f762a208.roa (raw, json)
Hash identifier:          5ZUgKaPQfYT2LRk4vfieXgUoTGDMqyvtnAC2cxjPlXk=
Subject key identifier:   B3:76:04:26:DD:D8:E1:02:F9:65:C9:F4:E7:09:70:94:7B:2C:E6:57
Certificate issuer:       /CN=ae12d182092cdf9310f84c5937df4c7b73df4145
Certificate serial:       0CF1ED
Authority key identifier: B4:63:15:8F:59:B6:3A:2D:3E:11:99:EF:4C:95:1B:1C:0C:99:36:BA
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ae12d182092cdf9310f84c5937df4c7b73df4145.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/7f112c7d-862c-4867-ba49-772b4d6018ab/f2cfa916a9b0366c06bc286521b12705f762a208.roa
Signing time:             Wed 24 Mar 2021 14:48:10 +0000
ROA not before:           Wed 24 Mar 2021 14:48:10 +0000
ROA not after:            Tue 24 Mar 2026 14:48:10 +0000
asID:                     8048
IP address blocks:        181.34.0.0/15 maxlen: 15

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/7f112c7d-862c-4867-ba49-772b4d6018ab/ae12d182092cdf9310f84c5937df4c7b73df4145.crl
                          rsync://repository.lacnic.net/rpki/lacnic/7f112c7d-862c-4867-ba49-772b4d6018ab/ae12d182092cdf9310f84c5937df4c7b73df4145.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ae12d182092cdf9310f84c5937df4c7b73df4145.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 19:38:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 848365 (0xcf1ed)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ae12d182092cdf9310f84c5937df4c7b73df4145
        Validity
            Not Before: Mar 24 14:48:10 2021 GMT
            Not After : Mar 24 14:48:10 2026 GMT
        Subject: CN=f2cfa916a9b0366c06bc286521b12705f762a208
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:fd:9d:bc:43:86:66:a5:5a:3a:dc:fb:48:11:
                    6e:42:4e:cd:15:b6:23:e2:a7:66:84:22:46:58:7d:
                    0f:b5:df:99:58:f0:c9:45:fc:76:44:89:bd:72:d0:
                    31:49:9c:56:8c:a2:73:14:39:46:03:83:b6:18:46:
                    9c:b5:06:fa:65:63:fd:b3:7e:93:33:4f:cb:63:1b:
                    7f:e7:ee:71:5c:fb:73:e7:5c:bb:7e:be:ac:ec:d5:
                    ce:9b:06:cd:b6:af:25:90:e0:71:2d:18:1d:14:19:
                    4a:7f:3c:ad:27:f3:ab:a3:7d:a9:a0:64:e7:72:e7:
                    66:8e:dc:6d:69:7c:3c:37:53:53:d9:f1:17:0f:99:
                    04:81:94:50:32:6d:50:f1:b3:07:46:44:73:bc:b0:
                    b4:4d:04:f7:58:bb:0e:81:f4:c4:2a:c2:2b:46:48:
                    78:b8:23:2c:5b:01:11:17:b8:0f:57:4f:a6:80:81:
                    48:a1:17:67:31:e3:15:01:22:ff:9b:52:b7:d6:9d:
                    3e:76:3b:e1:e3:fc:e6:ca:b2:78:62:79:c1:e6:84:
                    00:a8:c3:67:f7:78:1c:fb:9b:9d:cf:37:b8:7e:cf:
                    39:c0:f6:b3:48:07:94:f7:89:d2:ce:30:75:30:3a:
                    cf:cc:52:6c:43:78:be:07:e6:87:b5:3e:35:78:79:
                    e7:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B3:76:04:26:DD:D8:E1:02:F9:65:C9:F4:E7:09:70:94:7B:2C:E6:57
            X509v3 Authority Key Identifier:
                keyid:B4:63:15:8F:59:B6:3A:2D:3E:11:99:EF:4C:95:1B:1C:0C:99:36:BA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ae12d182092cdf9310f84c5937df4c7b73df4145.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7f112c7d-862c-4867-ba49-772b4d6018ab/f2cfa916a9b0366c06bc286521b12705f762a208.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/7f112c7d-862c-4867-ba49-772b4d6018ab/ae12d182092cdf9310f84c5937df4c7b73df4145.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  181.34.0.0/15

    Signature Algorithm: sha256WithRSAEncryption
         51:d5:06:ad:91:ec:ee:84:86:4f:60:cc:9c:5a:4f:de:4c:ae:
         b2:23:d6:64:04:37:53:df:14:c2:0d:83:f9:11:df:e5:c9:70:
         1f:9f:3f:cb:17:31:8a:b4:95:23:6c:81:9d:35:18:28:53:4d:
         25:87:35:1d:f4:02:b5:84:26:7c:6a:c5:f0:fb:b4:b3:c6:e6:
         ef:d3:d0:fe:fb:90:50:d4:e0:7b:c0:bf:6e:31:0f:04:37:ed:
         c5:d5:8b:38:1e:7f:5f:c9:1b:4a:d3:43:eb:7c:d3:86:42:6c:
         d5:34:ba:8f:d2:dc:aa:03:cb:6a:28:15:36:ee:61:04:4a:58:
         d5:fc:e8:8b:1a:14:27:7a:61:1b:a8:d5:54:8a:9f:97:8d:d3:
         c9:a7:5b:49:51:a3:a4:fd:43:2e:97:41:33:d8:61:2d:c9:82:
         35:b0:8d:e0:fe:3c:ea:96:44:58:21:c8:f5:77:a5:28:7d:d3:
         d6:2c:e1:4f:a5:4c:a2:5c:61:5a:f0:90:b2:b4:54:5f:c3:7f:
         48:b6:81:e4:e9:dd:90:6c:4d:4c:a5:34:66:97:94:42:33:86:
         b6:08:b5:a4:4a:f5:eb:2c:50:fc:62:cd:bb:5b:f1:77:7f:2a:
         9f:2c:d1:be:65:03:31:e1:f7:30:2c:62:66:ca:fb:14:f0:1f:
         44:6b:56:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 02:33:38 2024 by rpki-client on console-fra.rpki-client.org