Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/977d3d35-bbec-4cad-a0c5-0607a29e1f0f/659629130981a78c413b9312b290b9b8ef469eae.roa
File:                     659629130981a78c413b9312b290b9b8ef469eae.roa (raw, json)
Hash identifier:          Nfr6R60LtH1fmjqcLqJBbbY7T4HY2mLhOy9SWL32F6I=
Subject key identifier:   5F:24:66:59:2B:23:EF:70:27:47:8F:B4:17:DD:0F:C2:AF:C2:DC:2E
Certificate issuer:       /CN=5d32623b33e04fadc1af80fccf6d12aabbcfbfa5
Certificate serial:       1BB4A0
Authority key identifier: 7E:3D:3D:84:5A:21:26:7B:9C:7E:F6:54:A8:53:05:ED:86:7E:E9:1B
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5d32623b33e04fadc1af80fccf6d12aabbcfbfa5.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/977d3d35-bbec-4cad-a0c5-0607a29e1f0f/659629130981a78c413b9312b290b9b8ef469eae.roa
Signing time:             Mon 19 Dec 2022 13:01:05 +0000
ROA not before:           Sun 18 Dec 2022 12:52:04 +0000
ROA not after:            Thu 19 Dec 2024 12:52:04 +0000
asID:                     272848
IP address blocks:        201.218.133.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/977d3d35-bbec-4cad-a0c5-0607a29e1f0f/5d32623b33e04fadc1af80fccf6d12aabbcfbfa5.crl
                          rsync://repository.lacnic.net/rpki/lacnic/977d3d35-bbec-4cad-a0c5-0607a29e1f0f/5d32623b33e04fadc1af80fccf6d12aabbcfbfa5.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5d32623b33e04fadc1af80fccf6d12aabbcfbfa5.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 03:49:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1815712 (0x1bb4a0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5d32623b33e04fadc1af80fccf6d12aabbcfbfa5
        Validity
            Not Before: Dec 18 12:52:04 2022 GMT
            Not After : Dec 19 12:52:04 2024 GMT
        Subject: CN=659629130981a78c413b9312b290b9b8ef469eae
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:84:1d:44:02:d5:89:fa:e8:68:ae:46:5c:fd:98:
                    1f:65:ce:81:4e:ac:1b:e5:2f:44:99:e6:d3:a3:66:
                    e5:10:0d:b9:64:1b:f6:3f:cb:8e:cc:2b:2d:d3:22:
                    39:c9:0b:17:7e:23:da:e3:7c:ef:ae:94:8b:60:a1:
                    3c:35:03:0f:29:ce:97:f7:f3:e0:47:97:eb:16:f1:
                    0d:42:e4:d4:b2:c3:e5:de:ec:46:72:d2:d7:42:0c:
                    24:96:c6:52:df:3f:c1:f3:03:5c:dc:d4:9b:e6:56:
                    2b:ec:b4:a0:8b:80:68:1d:60:5a:f6:4c:0f:3d:fa:
                    ce:d7:94:97:93:ab:2f:40:08:83:9c:a4:f8:17:78:
                    e1:69:35:87:89:57:df:52:49:6e:18:dd:9e:28:72:
                    3e:68:74:77:f5:9d:9c:bd:2a:9d:9a:f5:06:eb:85:
                    8a:3c:2d:dc:85:4d:37:44:a3:5d:36:29:36:5f:5c:
                    79:b6:52:e3:1b:51:2b:30:fd:04:56:91:86:16:8e:
                    bc:be:ab:28:43:d4:b9:2a:04:a0:99:59:a3:4a:1d:
                    1d:5c:01:02:87:9b:1e:99:68:9d:36:8d:e3:8c:be:
                    99:1a:cd:63:13:af:4b:c6:db:3a:c5:f8:84:ae:22:
                    cd:b2:66:fc:9b:e6:d9:77:81:43:7f:95:5d:91:18:
                    42:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5F:24:66:59:2B:23:EF:70:27:47:8F:B4:17:DD:0F:C2:AF:C2:DC:2E
            X509v3 Authority Key Identifier:
                keyid:7E:3D:3D:84:5A:21:26:7B:9C:7E:F6:54:A8:53:05:ED:86:7E:E9:1B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5d32623b33e04fadc1af80fccf6d12aabbcfbfa5.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/977d3d35-bbec-4cad-a0c5-0607a29e1f0f/659629130981a78c413b9312b290b9b8ef469eae.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/977d3d35-bbec-4cad-a0c5-0607a29e1f0f/5d32623b33e04fadc1af80fccf6d12aabbcfbfa5.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  201.218.133.0/24

    Signature Algorithm: sha256WithRSAEncryption
         82:b8:31:cf:80:04:8d:42:1f:6b:27:5f:4f:1d:89:b7:e1:99:
         1a:d2:74:40:d0:55:cb:bd:7d:5b:a9:03:2f:e2:d6:74:1f:ee:
         d6:d2:24:21:d9:02:ba:10:3c:1e:ea:15:b3:e8:d3:a5:8d:15:
         c4:79:04:01:bc:1e:a3:d1:06:e8:92:f2:8b:75:30:b0:2c:e0:
         a9:91:02:bd:fe:97:6a:48:06:8c:1d:ef:6e:27:5d:32:48:d1:
         f2:1c:21:2c:0c:3a:c1:69:ce:f6:0e:0f:dd:1c:77:cd:03:38:
         ce:ae:33:f8:9f:c9:51:6a:fd:40:d8:4e:ce:49:b0:4c:01:8d:
         87:68:9c:64:97:d3:7b:23:26:c8:5d:44:b3:3e:77:8e:f6:59:
         69:e9:cc:c1:6f:54:e9:7c:7c:b3:ae:f7:49:7a:c6:1e:1b:a6:
         09:67:27:30:a3:15:e5:45:a2:02:49:0a:41:29:dc:cd:15:c0:
         8b:f7:56:ec:40:6b:a0:d8:79:64:35:34:7b:83:bc:1f:6e:25:
         f6:c4:42:0b:0c:63:50:47:49:56:9c:b0:f4:af:49:03:35:80:
         d5:08:b2:89:46:c2:40:0b:d8:18:c3:79:69:99:21:83:bd:1d:
         58:5f:56:81:b5:ba:5a:31:51:05:70:c5:91:86:a0:1e:10:89:
         80:ad:4c:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 06:01:07 2024 by rpki-client on console-fra.rpki-client.org