Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8986d229-fbfc-47e9-833c-d0ec2647d14b/7281edd1fe221098139feafa9f164df818e24916.roa
File:                     7281edd1fe221098139feafa9f164df818e24916.roa (raw, json)
Hash identifier:          HNZH6bypRhfMwd72bNL1Ok+e5RuKlkwVNZZ+B+1vKJo=
Subject key identifier:   7C:72:05:6D:6F:DE:31:44:85:2A:BC:C1:6B:F6:43:B9:C8:A0:23:77
Certificate issuer:       /CN=8b3409d23417b7ed5b171c186d6bc0e2b8b69dae
Certificate serial:       19C28C
Authority key identifier: D2:4A:DE:42:D5:78:F2:8F:9B:25:EA:F2:5A:80:27:9F:BF:D8:0C:58
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8b3409d23417b7ed5b171c186d6bc0e2b8b69dae.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/8986d229-fbfc-47e9-833c-d0ec2647d14b/7281edd1fe221098139feafa9f164df818e24916.roa
Signing time:             Wed 31 Aug 2022 20:22:40 +0000
ROA not before:           Wed 31 Aug 2022 20:21:08 +0000
ROA not after:            Sat 31 Aug 2024 20:21:08 +0000
asID:                     266892
IP address blocks:        45.161.180.0/22 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/8986d229-fbfc-47e9-833c-d0ec2647d14b/8b3409d23417b7ed5b171c186d6bc0e2b8b69dae.crl
                          rsync://repository.lacnic.net/rpki/lacnic/8986d229-fbfc-47e9-833c-d0ec2647d14b/8b3409d23417b7ed5b171c186d6bc0e2b8b69dae.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8b3409d23417b7ed5b171c186d6bc0e2b8b69dae.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 19:38:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1688204 (0x19c28c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8b3409d23417b7ed5b171c186d6bc0e2b8b69dae
        Validity
            Not Before: Aug 31 20:21:08 2022 GMT
            Not After : Aug 31 20:21:08 2024 GMT
        Subject: CN=7281edd1fe221098139feafa9f164df818e24916
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:3e:0e:d0:f0:22:60:75:b5:75:86:02:ab:f0:
                    8b:56:01:54:7b:4a:0b:e9:97:fb:93:d0:ce:b6:14:
                    b9:40:ff:c9:20:a6:c6:fc:c0:a2:07:c0:d0:98:36:
                    7b:cb:f2:8c:d2:84:95:39:ca:f3:99:88:eb:5b:0f:
                    44:3b:04:07:0e:e5:63:52:c5:69:74:b2:a8:66:7c:
                    fe:c2:cc:b0:99:dd:87:b1:01:50:1a:be:84:b3:72:
                    36:49:a3:98:70:d7:ed:89:cc:84:21:e4:b7:bc:d5:
                    4d:18:75:85:41:aa:4c:3a:32:c9:eb:6b:b7:45:a2:
                    d1:80:fd:ad:78:22:c2:66:76:65:40:f6:0a:09:23:
                    9f:99:23:f5:c2:41:9e:df:3c:25:88:78:db:d5:09:
                    e9:17:b6:39:39:3d:44:2d:52:6f:69:a7:59:33:3d:
                    de:79:75:e4:1b:5c:7f:e9:35:f2:2d:11:3c:44:7b:
                    a4:ca:db:54:c6:47:b8:69:5e:51:f3:24:a0:62:8d:
                    08:fd:2b:21:4c:d8:18:9a:f3:b6:d2:90:6e:73:eb:
                    b8:47:14:27:df:fa:4f:4a:ee:f4:83:87:49:42:98:
                    e6:1b:8b:e1:0d:52:d9:9c:c3:b5:aa:29:b6:4c:d0:
                    7e:eb:28:8b:e3:9e:47:25:3f:23:b4:6f:32:51:e5:
                    d0:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7C:72:05:6D:6F:DE:31:44:85:2A:BC:C1:6B:F6:43:B9:C8:A0:23:77
            X509v3 Authority Key Identifier:
                keyid:D2:4A:DE:42:D5:78:F2:8F:9B:25:EA:F2:5A:80:27:9F:BF:D8:0C:58

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8b3409d23417b7ed5b171c186d6bc0e2b8b69dae.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8986d229-fbfc-47e9-833c-d0ec2647d14b/7281edd1fe221098139feafa9f164df818e24916.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/8986d229-fbfc-47e9-833c-d0ec2647d14b/8b3409d23417b7ed5b171c186d6bc0e2b8b69dae.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.161.180.0/22

    Signature Algorithm: sha256WithRSAEncryption
         93:07:aa:de:13:3c:01:4d:7a:9a:e1:ba:cd:f2:58:87:a3:37:
         d4:09:55:c0:36:e5:ca:4e:c3:75:39:75:50:09:35:c4:24:33:
         8d:45:44:27:df:6a:77:30:24:ff:02:db:b6:77:51:b1:2e:8e:
         db:9e:a4:d6:4c:c0:e1:11:af:ba:e8:67:26:09:44:f5:e5:6b:
         6c:20:0c:1f:b1:57:95:c5:3f:ac:80:59:04:19:8f:62:fd:d3:
         30:a0:aa:72:5b:33:55:ed:52:b9:36:97:57:9b:c5:27:e5:bf:
         25:bb:d9:3d:4b:07:99:85:54:33:e9:9f:35:fc:fa:a3:f9:aa:
         a3:37:33:3e:30:bb:4b:3d:ae:1c:48:64:d3:8c:bc:a4:cd:96:
         10:ce:82:b8:32:c8:0f:a3:2f:b9:1d:93:85:5e:c8:4b:c6:48:
         2c:4e:c1:7c:10:1f:75:b9:f7:ee:2a:f8:22:9a:53:0b:4b:f9:
         78:1c:56:45:05:39:92:05:7a:82:3b:df:d1:91:a8:b2:f0:07:
         6b:38:17:92:22:02:ca:0e:18:43:69:13:ce:d4:0a:26:d1:c3:
         cd:7e:d6:aa:fd:c4:90:4a:b9:9e:a2:3b:26:19:c6:56:a8:6d:
         94:72:2d:ac:92:00:2d:a3:c4:17:f9:56:8a:3c:8f:cb:27:9b:
         93:18:4c:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 04:20:45 2024 by rpki-client on console-fra.rpki-client.org