Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9B3DF9A96CB9DB5BCB6C5E0B5391C3D168AFF15B056E256B8869931E39BCEE23/0/34352e3137332e3138322e302f32332d3234203d3e20323637383237.roa
File:                     34352e3137332e3138322e302f32332d3234203d3e20323637383237.roa (raw, json)
Hash identifier:          zSQwfZiHJjoOmMLIcvOP6pVhp4/fOsddcUupsAefuv4=
Subject key identifier:   6B:5D:92:9D:4F:8D:01:91:FF:54:9E:73:59:F8:9E:9C:2C:57:A6:0E
Certificate issuer:       /CN=D8F89B0675EFF23A256029EC78234AE7B97F6B52
Certificate serial:       15C61B97FB6168C55FC0D8F7F9B275D528588FB3
Authority key identifier: D8:F8:9B:06:75:EF:F2:3A:25:60:29:EC:78:23:4A:E7:B9:7F:6B:52
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8F89B0675EFF23A256029EC78234AE7B97F6B52.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/9B3DF9A96CB9DB5BCB6C5E0B5391C3D168AFF15B056E256B8869931E39BCEE23/0/34352e3137332e3138322e302f32332d3234203d3e20323637383237.roa
Signing time:             Mon 11 Mar 2024 13:55:00 +0000
ROA not before:           Mon 11 Mar 2024 13:50:00 +0000
ROA not after:            Mon 10 Mar 2025 13:55:00 +0000
asID:                     267827
IP address blocks:        45.173.182.0/23 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/9B3DF9A96CB9DB5BCB6C5E0B5391C3D168AFF15B056E256B8869931E39BCEE23/0/D8F89B0675EFF23A256029EC78234AE7B97F6B52.crl
                          rsync://repository.lacnic.net/rpki/lacnic/9B3DF9A96CB9DB5BCB6C5E0B5391C3D168AFF15B056E256B8869931E39BCEE23/0/D8F89B0675EFF23A256029EC78234AE7B97F6B52.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8F89B0675EFF23A256029EC78234AE7B97F6B52.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Wed 19 Jun 2024 16:28:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            15:c6:1b:97:fb:61:68:c5:5f:c0:d8:f7:f9:b2:75:d5:28:58:8f:b3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=D8F89B0675EFF23A256029EC78234AE7B97F6B52
        Validity
            Not Before: Mar 11 13:50:00 2024 GMT
            Not After : Mar 10 13:55:00 2025 GMT
        Subject: CN=6B5D929D4F8D0191FF549E7359F89E9C2C57A60E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:e8:d3:70:39:01:6d:31:f1:ff:52:e4:f8:df:
                    7a:3a:4d:72:13:49:a8:9c:55:6a:9d:f8:ac:28:5e:
                    5c:01:96:7c:42:5f:41:98:98:88:78:7e:20:4b:49:
                    ea:92:33:64:0a:0c:be:a7:8d:53:d4:f6:cf:95:c8:
                    6a:c0:64:1c:05:7f:fe:69:9d:a2:d1:cf:04:1b:7a:
                    ad:f4:50:37:f6:54:8f:2b:dc:77:ee:e1:87:76:52:
                    53:a5:c3:37:47:44:a4:39:6e:69:20:cf:fa:88:42:
                    6b:b8:9e:e0:54:3b:90:70:d7:1b:ce:c2:01:82:27:
                    8d:95:c0:18:89:14:7f:a2:e1:66:dd:80:4a:88:0a:
                    92:3c:85:c3:22:09:78:13:98:7d:39:07:9a:6a:00:
                    51:88:b4:25:4f:23:e6:ff:b6:ee:38:4c:89:46:09:
                    77:2c:eb:56:d3:a1:34:84:e2:25:5f:36:b1:89:21:
                    b8:7f:4f:2d:c8:e4:f7:42:63:c0:db:a4:74:c0:20:
                    f2:9a:3d:56:8a:49:d3:0e:34:84:a0:f0:af:df:83:
                    e2:75:a8:11:00:db:fd:37:9d:ee:4d:7d:f2:9a:60:
                    73:74:63:45:69:1a:27:51:f6:ec:48:77:f2:1b:5a:
                    4c:7d:46:b3:6a:97:d8:6e:91:5a:2f:73:2c:cb:de:
                    dd:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6B:5D:92:9D:4F:8D:01:91:FF:54:9E:73:59:F8:9E:9C:2C:57:A6:0E
            X509v3 Authority Key Identifier:
                keyid:D8:F8:9B:06:75:EF:F2:3A:25:60:29:EC:78:23:4A:E7:B9:7F:6B:52

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/9B3DF9A96CB9DB5BCB6C5E0B5391C3D168AFF15B056E256B8869931E39BCEE23/0/D8F89B0675EFF23A256029EC78234AE7B97F6B52.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8F89B0675EFF23A256029EC78234AE7B97F6B52.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9B3DF9A96CB9DB5BCB6C5E0B5391C3D168AFF15B056E256B8869931E39BCEE23/0/34352e3137332e3138322e302f32332d3234203d3e20323637383237.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.173.182.0/23

    Signature Algorithm: sha256WithRSAEncryption
         60:f8:5b:21:65:13:d7:eb:24:be:ab:60:d3:62:4a:42:9e:42:
         71:3c:68:32:2e:cf:bb:34:56:db:2b:cd:21:e5:8b:71:63:11:
         09:63:20:d2:28:74:37:15:42:22:07:c8:92:42:c3:e1:38:ef:
         81:9b:aa:bf:a2:6b:b2:ce:46:39:ba:a5:31:6d:1a:1f:4a:d0:
         08:70:36:4a:9d:18:8e:8c:5c:cc:82:6d:dd:fa:b1:33:e9:a1:
         c9:50:0c:f0:1c:d4:57:b8:fd:17:60:14:c2:0a:c1:e9:c6:d5:
         26:1e:5c:4d:db:d3:ad:56:f8:31:4b:0f:7c:83:18:bf:d6:bb:
         14:6b:57:c9:bb:1d:15:86:4e:12:b9:19:04:87:0f:f3:58:38:
         b2:bc:21:50:48:7c:af:da:98:85:e8:4e:0a:79:ba:3b:2d:58:
         78:70:15:9b:07:c7:59:9f:64:83:7a:89:62:e3:7b:62:a0:09:
         12:17:1d:48:97:5c:88:42:e0:4c:19:ba:77:31:e4:06:00:96:
         ec:bc:06:3f:62:a2:3e:a8:59:d6:14:e1:6b:d6:35:32:d6:e5:
         3c:0a:91:bd:2e:74:ae:98:fd:4a:42:47:97:58:07:3c:bb:25:
         87:bc:8f:3f:f1:06:90:fc:de:9a:ee:f7:5f:97:83:78:52:09:
         7e:b4:eb:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 07:39:51 2024 by rpki-client on console-ams.rpki-client.org