Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8934e6e5-53aa-414e-8f0e-754c785691f0/5c4820b595b3c72ac174250f22ed6fe1b8c3cba0.roa
File:                     5c4820b595b3c72ac174250f22ed6fe1b8c3cba0.roa (raw, json)
Hash identifier:          AbrVPPjS1164pof9kzCv8iqZSNvMoAETFeFN6xdOekE=
Subject key identifier:   94:D6:B8:EB:93:1B:BE:CE:17:B5:B5:3C:53:07:84:D3:68:BD:1C:8A
Certificate issuer:       /CN=7f45367d50a2e9c323a7bba4f6b1e32438653800
Certificate serial:       0178DF
Authority key identifier: 8C:9E:0A:AA:23:D3:52:D6:CA:1F:FE:62:3C:80:65:CD:99:81:92:7C
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/7f45367d50a2e9c323a7bba4f6b1e32438653800.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/8934e6e5-53aa-414e-8f0e-754c785691f0/5c4820b595b3c72ac174250f22ed6fe1b8c3cba0.roa
Signing time:             Wed 24 Mar 2021 14:36:11 +0000
ROA not before:           Wed 24 Mar 2021 14:36:11 +0000
ROA not after:            Tue 24 Mar 2026 14:36:11 +0000
asID:                     271789
IP address blocks:        179.42.78.0/23 maxlen: 23

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/8934e6e5-53aa-414e-8f0e-754c785691f0/7f45367d50a2e9c323a7bba4f6b1e32438653800.crl
                          rsync://repository.lacnic.net/rpki/lacnic/8934e6e5-53aa-414e-8f0e-754c785691f0/7f45367d50a2e9c323a7bba4f6b1e32438653800.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/7f45367d50a2e9c323a7bba4f6b1e32438653800.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 26 Feb 2024 15:14:40 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 96479 (0x178df)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7f45367d50a2e9c323a7bba4f6b1e32438653800
        Validity
            Not Before: Mar 24 14:36:11 2021 GMT
            Not After : Mar 24 14:36:11 2026 GMT
        Subject: CN=5c4820b595b3c72ac174250f22ed6fe1b8c3cba0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:90:82:e5:77:27:f6:78:ea:81:9f:ac:cd:fd:33:
                    ce:4f:e8:c9:1c:50:05:9f:ae:9b:df:10:47:1b:ca:
                    5a:98:9c:50:c3:14:3f:39:6a:cf:57:9c:f2:e0:68:
                    4f:f5:e5:3e:2f:16:81:44:df:51:cb:fc:e1:ac:03:
                    b0:27:d9:59:c9:0a:9f:4e:e9:64:e9:6f:4e:35:c1:
                    11:66:f5:9a:eb:45:f6:52:e8:69:56:5a:c5:8a:f7:
                    f4:ed:5c:4c:fe:92:2f:52:fd:eb:e8:d4:02:a1:72:
                    a7:8f:66:c6:36:59:1d:cd:b0:c9:f5:28:a0:e0:14:
                    a8:bc:e6:09:20:8c:0a:f2:b3:b8:fc:59:21:0e:cf:
                    da:b4:a1:c1:28:a7:d5:b2:ca:1d:91:a8:48:0f:71:
                    8d:d5:78:4e:d0:6d:8a:fa:2b:fd:fb:77:e2:60:46:
                    01:3b:10:8d:28:27:ef:a0:6e:bd:73:0a:ed:4b:18:
                    fd:ad:19:55:06:b0:3f:ea:e5:4c:9c:26:ca:a7:ea:
                    9f:30:20:63:ab:47:14:28:03:73:2f:6e:a9:ff:03:
                    76:46:ad:e1:d8:ca:bf:82:6c:e4:27:a8:7a:d8:6d:
                    47:d5:ae:40:db:e6:9a:cc:b4:42:af:54:16:18:18:
                    83:fa:66:04:35:e9:04:c8:2c:26:b8:c1:a0:18:61:
                    74:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                94:D6:B8:EB:93:1B:BE:CE:17:B5:B5:3C:53:07:84:D3:68:BD:1C:8A
            X509v3 Authority Key Identifier:
                keyid:8C:9E:0A:AA:23:D3:52:D6:CA:1F:FE:62:3C:80:65:CD:99:81:92:7C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/7f45367d50a2e9c323a7bba4f6b1e32438653800.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8934e6e5-53aa-414e-8f0e-754c785691f0/5c4820b595b3c72ac174250f22ed6fe1b8c3cba0.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/8934e6e5-53aa-414e-8f0e-754c785691f0/7f45367d50a2e9c323a7bba4f6b1e32438653800.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  179.42.78.0/23

    Signature Algorithm: sha256WithRSAEncryption
         01:02:02:1f:23:a6:de:16:2f:af:00:b4:7b:33:57:5e:f5:d7:
         35:d4:23:02:42:f5:66:b4:24:23:c5:f2:31:96:90:8f:14:c1:
         31:62:ec:7f:65:c4:48:66:29:ae:47:e4:b9:e0:76:5f:06:f4:
         e6:85:ad:11:32:89:b5:fa:98:1f:0b:71:90:1e:43:19:58:42:
         0e:a8:e6:c3:a6:fa:cb:81:1e:ff:5e:8c:62:7d:7a:f5:db:00:
         95:ec:27:b6:41:0f:e7:28:ab:25:54:02:af:cb:58:07:d4:aa:
         88:5d:f2:85:51:e5:c4:ff:b2:01:13:ab:3b:2e:03:59:58:5c:
         46:f5:9e:d3:f7:13:5c:2f:da:b3:36:ed:e9:32:ca:b1:31:eb:
         53:45:62:70:9c:a1:4b:b9:52:a3:31:5c:e4:5f:e8:45:53:bd:
         c3:d8:1b:31:a0:9f:57:f7:b7:b5:f7:37:7e:57:71:4d:37:89:
         cb:bb:a0:1d:31:6c:e0:50:b0:01:93:5a:c7:24:c8:a7:6b:cb:
         6c:72:a2:ff:c5:0f:51:8d:27:51:59:d1:05:30:ea:42:f7:9b:
         20:48:4c:0a:01:9f:f7:ec:6b:e5:dd:2d:60:47:d0:4d:09:01:
         a0:c8:4a:1d:ca:ab:8c:40:5d:58:eb:ca:26:8a:6e:09:e0:69:
         98:fa:88:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 23 17:05:05 2024 by rpki-client on console-fra.rpki-client.org