Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8e171d4c-2a98-4987-8903-3096188807f0/b6d05231dd4bfde15a92d72f4c305b6b8b632b73.roa
File:                     b6d05231dd4bfde15a92d72f4c305b6b8b632b73.roa (raw, json)
Hash identifier:          6XH1UksTzngaChAt0fRaJpr8k0xaXcULfeMqZiem4Vo=
Subject key identifier:   39:25:CD:DF:A0:2A:AB:30:DA:16:3F:30:E9:EA:44:69:0C:68:EE:22
Certificate issuer:       /CN=7e5ad0382aaf9a61199883acec8acb56379f4413
Certificate serial:       13CA18
Authority key identifier: 13:FE:41:5F:DC:22:23:12:6B:49:06:04:C8:0F:7E:1E:EE:7F:3D:06
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/7e5ad0382aaf9a61199883acec8acb56379f4413.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/8e171d4c-2a98-4987-8903-3096188807f0/b6d05231dd4bfde15a92d72f4c305b6b8b632b73.roa
Signing time:             Sun 12 Dec 2021 04:39:12 +0000
ROA not before:           Sat 11 Dec 2021 03:00:00 +0000
ROA not after:            Mon 11 Dec 2023 03:00:00 +0000
asID:                     266776
IP address blocks:        170.78.115.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/8e171d4c-2a98-4987-8903-3096188807f0/7e5ad0382aaf9a61199883acec8acb56379f4413.crl
                          rsync://repository.lacnic.net/rpki/lacnic/8e171d4c-2a98-4987-8903-3096188807f0/7e5ad0382aaf9a61199883acec8acb56379f4413.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/7e5ad0382aaf9a61199883acec8acb56379f4413.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sat 18 Mar 2023 05:48:25 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1296920 (0x13ca18)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7e5ad0382aaf9a61199883acec8acb56379f4413
        Validity
            Not Before: Dec 11 03:00:00 2021 GMT
            Not After : Dec 11 03:00:00 2023 GMT
        Subject: CN=b6d05231dd4bfde15a92d72f4c305b6b8b632b73
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:0b:5e:82:e6:0b:52:9c:af:42:ef:42:90:d7:
                    fd:51:b8:54:02:c3:61:f2:44:f1:f0:8b:37:f8:91:
                    81:5a:6b:15:b8:d9:f2:a7:6e:1a:08:da:8a:23:52:
                    13:ec:5d:8b:1f:8e:22:47:20:10:b3:5c:0a:46:f6:
                    30:0e:b6:e3:4c:49:37:eb:f6:55:8e:d6:5f:40:f1:
                    48:4a:ce:57:0e:19:d5:19:b3:72:33:ce:25:82:63:
                    a6:72:f2:67:4c:47:cd:bb:d6:0c:48:11:de:be:99:
                    df:d8:f8:c3:38:e3:a1:b2:d6:87:33:e6:cf:fe:b9:
                    19:c3:fd:f5:57:47:d8:fc:4d:05:e7:4a:84:ee:4a:
                    f1:19:37:fc:fa:43:c5:1a:84:a8:81:bd:78:93:5d:
                    d2:d5:f5:d3:11:0e:dd:60:fa:8c:24:e4:02:31:a6:
                    ef:56:9e:f6:6c:3b:42:d0:de:00:c6:ac:7a:a4:c0:
                    68:1f:49:42:37:7f:7a:af:ce:c3:aa:29:c0:95:26:
                    3d:5b:a9:93:b4:ab:78:28:91:dc:86:56:7b:03:c9:
                    c9:75:29:58:51:07:f4:89:cc:51:0c:21:36:9f:5e:
                    85:88:f8:77:4f:0c:5a:c9:57:ba:e1:b5:5b:2b:92:
                    ed:a3:49:11:1d:46:41:1d:81:ff:ae:7e:91:12:08:
                    a1:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                39:25:CD:DF:A0:2A:AB:30:DA:16:3F:30:E9:EA:44:69:0C:68:EE:22
            X509v3 Authority Key Identifier: 
                keyid:13:FE:41:5F:DC:22:23:12:6B:49:06:04:C8:0F:7E:1E:EE:7F:3D:06

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/7e5ad0382aaf9a61199883acec8acb56379f4413.cer

            Subject Information Access: 
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8e171d4c-2a98-4987-8903-3096188807f0/b6d05231dd4bfde15a92d72f4c305b6b8b632b73.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/8e171d4c-2a98-4987-8903-3096188807f0/7e5ad0382aaf9a61199883acec8acb56379f4413.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  170.78.115.0/24

    Signature Algorithm: sha256WithRSAEncryption
         44:c2:f1:84:72:25:e1:24:5c:36:44:0f:73:72:69:f5:d1:58:
         0c:d0:64:fb:8b:4f:e7:ae:0e:a6:3a:48:6a:5d:68:dc:ff:b5:
         4e:db:0b:a5:50:73:69:c7:ea:24:04:13:4d:53:3d:f4:88:52:
         b4:57:d8:f6:7e:73:2b:f6:ce:ba:ca:a9:59:90:30:03:65:05:
         e4:ef:bc:2c:c9:a2:e4:18:a7:62:2c:a8:06:36:7a:46:5f:35:
         b2:2b:00:7e:e1:00:2b:b8:df:f8:6e:6f:77:00:94:06:74:0a:
         e8:a6:89:c8:c6:3d:e6:87:b0:6e:e6:41:3d:cc:74:e8:52:26:
         26:2d:38:fb:a4:7d:52:fa:1d:55:86:47:90:28:49:8e:0b:3e:
         9d:22:f4:ce:1b:a4:2d:c6:8f:82:da:20:b5:e7:c7:01:a5:76:
         16:0c:b2:c5:e4:af:d1:12:17:82:31:ba:a7:95:4b:dd:c8:c4:
         c0:20:8f:de:e4:6b:7f:80:22:d1:44:6b:e2:62:ae:23:ff:00:
         fe:ac:49:00:a8:2c:aa:07:72:9e:c0:e1:a5:88:40:78:c5:f3:
         8a:bf:26:3a:f0:12:06:3e:8f:19:2e:90:b4:45:c9:23:01:1d:
         fb:fb:71:ff:16:29:7c:31:3f:d1:5e:8a:c3:9f:04:5e:00:7e:
         a0:2d:2f:31
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIDE8oYMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDdl
NWFkMDM4MmFhZjlhNjExOTk4ODNhY2VjOGFjYjU2Mzc5ZjQ0MTMwHhcNMjExMjEx
MDMwMDAwWhcNMjMxMjExMDMwMDAwWjAzMTEwLwYDVQQDEyhiNmQwNTIzMWRkNGJm
ZGUxNWE5MmQ3MmY0YzMwNWI2YjhiNjMyYjczMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAvwteguYLUpyvQu9CkNf9UbhUAsNh8kTx8Is3+JGBWmsVuNny
p24aCNqKI1IT7F2LH44iRyAQs1wKRvYwDrbjTEk36/ZVjtZfQPFISs5XDhnVGbNy
M84lgmOmcvJnTEfNu9YMSBHevpnf2PjDOOOhstaHM+bP/rkZw/31V0fY/E0F50qE
7krxGTf8+kPFGoSogb14k13S1fXTEQ7dYPqMJOQCMabvVp72bDtC0N4Axqx6pMBo
H0lCN396r87DqinAlSY9W6mTtKt4KJHchlZ7A8nJdSlYUQf0icxRDCE2n16FiPh3
TwxayVe64bVbK5Lto0kRHUZBHYH/rn6REgihlQIDAQABo4ICWzCCAlcwHQYDVR0O
BBYEFDklzd+gKqsw2hY/MOnqRGkMaO4iMB8GA1UdIwQYMBaAFBP+QV/cIiMSa0kG
BMgPfh7ufz0GMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvN2U1YWQw
MzgyYWFmOWE2MTE5OTg4M2FjZWM4YWNiNTYzNzlmNDQxMy5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvOGUxNzFkNGMtMmE5OC00OTg3LTg5MDMtMzA5NjE4
ODgwN2YwL2I2ZDA1MjMxZGQ0YmZkZTE1YTkyZDcyZjRjMzA1YjZiOGI2MzJiNzMu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy84ZTE3MWQ0Yy0yYTk4LTQ5ODctODkwMy0zMDk2
MTg4ODA3ZjAvN2U1YWQwMzgyYWFmOWE2MTE5OTg4M2FjZWM4YWNiNTYzNzlmNDQx
My5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAKpOczANBgkqhkiG9w0BAQsFAAOCAQEARMLxhHIl4SRcNkQP
c3Jp9dFYDNBk+4tP564OpjpIal1o3P+1TtsLpVBzacfqJAQTTVM99IhStFfY9n5z
K/bOusqpWZAwA2UF5O+8LMmi5BinYiyoBjZ6Rl81sisAfuEAK7jf+G5vdwCUBnQK
6KaJyMY95oewbuZBPcx06FImJi04+6R9UvodVYZHkChJjgs+nSL0zhukLcaPgtog
tefHAaV2FgyyxeSv0RIXgjG6p5VL3cjEwCCP3uRrf4Ai0URr4mKuI/8A/qxJAKgs
qgdynsDhpYhAeMXzir8mOvASBj6PGS6QtEXJIwEd+/tx/xYpfDE/0V6Kw58EXgB+
oC0vMQ==
-----END CERTIFICATE-----
Generated at Wed Mar 15 11:46:42 2023 by rpki-client on console-fra.rpki-client.org