Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/AS52271.roa
File:                     AS52271.roa (raw, json)
Hash identifier:          Z58Jpm6IPLFAzIVYq45KaHNoXP0fwRum/vhawGKigeU=
Subject key identifier:   E8:86:97:88:96:A8:1E:8F:1D:34:BB:14:40:AF:A8:8A:0C:F4:AE:B8
Certificate issuer:       /CN=274D68F06BB1F2ED094F03B52FED7565F7825D99
Certificate serial:       71A361DAB50FB96F25CA285EA3620B4CDBA1AF7F
Authority key identifier: 27:4D:68:F0:6B:B1:F2:ED:09:4F:03:B5:2F:ED:75:65:F7:82:5D:99
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/AS52271.roa
Signing time:             Tue 05 Mar 2024 18:12:27 +0000
ROA not before:           Tue 05 Mar 2024 18:07:27 +0000
ROA not after:            Tue 04 Mar 2025 18:12:27 +0000
asID:                     52271
IP address blocks:        190.136.15.0/24 maxlen: 24
                          190.136.16.0/24 maxlen: 24
                          190.137.142.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.crl
                          rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 17 Jun 2024 04:34:56 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            71:a3:61:da:b5:0f:b9:6f:25:ca:28:5e:a3:62:0b:4c:db:a1:af:7f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=274D68F06BB1F2ED094F03B52FED7565F7825D99
        Validity
            Not Before: Mar  5 18:07:27 2024 GMT
            Not After : Mar  4 18:12:27 2025 GMT
        Subject: CN=E886978896A81E8F1D34BB1440AFA88A0CF4AEB8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:f3:02:ca:33:6a:7f:ab:dc:ad:b4:42:cc:9e:
                    53:44:37:2c:a9:9f:0c:9b:f2:24:c3:8b:4f:e8:2c:
                    8e:55:d0:3e:45:24:83:c3:9e:63:31:46:16:d6:16:
                    ca:6d:25:9b:f5:3d:4d:24:26:f3:1a:31:bb:6a:45:
                    ef:18:fd:53:22:90:a3:61:43:41:53:d5:c1:b6:86:
                    0f:47:2a:ea:af:98:47:a9:23:a9:0b:aa:05:b6:f2:
                    05:bb:88:e1:5f:cd:23:1e:dd:c1:18:64:91:b3:16:
                    24:18:d6:86:0c:3a:97:32:ff:cf:35:ba:da:51:07:
                    2f:f4:a0:a2:87:8d:80:84:0c:71:c1:06:2d:fd:2a:
                    83:a0:83:fe:75:b4:0e:ff:cb:cd:75:08:fd:c0:cc:
                    75:22:4a:d9:cc:d9:9d:6c:95:26:69:fe:67:48:f7:
                    5d:12:3d:74:ba:62:2d:31:ba:47:5b:7d:3d:dd:cb:
                    18:da:fa:0b:eb:a7:b8:02:93:6d:1d:b6:36:cf:94:
                    5e:8b:b1:b8:3c:c4:c9:40:cd:2b:1f:17:09:c3:48:
                    00:08:66:ef:a0:e9:0d:39:ac:51:74:53:e8:09:7e:
                    9c:38:e1:7b:02:81:4a:f3:30:e8:85:26:c5:2a:b6:
                    6d:5b:ce:bc:ec:83:5b:44:c2:27:b2:28:6d:64:1d:
                    0c:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E8:86:97:88:96:A8:1E:8F:1D:34:BB:14:40:AF:A8:8A:0C:F4:AE:B8
            X509v3 Authority Key Identifier:
                keyid:27:4D:68:F0:6B:B1:F2:ED:09:4F:03:B5:2F:ED:75:65:F7:82:5D:99

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/274D68F06BB1F2ED094F03B52FED7565F7825D99.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9EE9B1E0831677ED93803AF0B8ED6B95FE367BA0CC83CED4B0AEF617E1F03150/0/AS52271.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.136.15.0-190.136.16.255
                  190.137.142.0/24

    Signature Algorithm: sha256WithRSAEncryption
         1a:56:cc:20:70:df:85:06:12:f3:e2:d7:47:d7:7b:64:d6:0e:
         60:7d:c3:6e:fa:e8:55:9b:72:25:9c:1d:9a:ca:f4:f3:05:f0:
         91:d4:77:ca:9d:ab:a5:2f:2f:3a:8d:2f:b7:27:2b:63:32:ae:
         47:06:9a:95:46:71:6b:69:3c:e1:38:f7:e1:a8:3e:89:93:30:
         2b:b5:a3:2c:6f:cf:21:3d:b4:fe:80:20:c3:3e:eb:ec:ac:ad:
         3c:aa:47:04:45:f8:7e:0a:e3:0e:a6:f1:96:60:83:0e:f0:28:
         72:a0:c1:f1:5c:49:9d:b2:3c:7e:3e:93:b0:f5:ca:a0:d0:4d:
         af:56:17:6b:fd:e3:b2:2c:4b:73:07:5d:96:0d:fb:44:fb:7b:
         77:27:71:2e:2c:53:a9:18:1d:aa:b8:40:aa:79:92:b7:b2:51:
         26:89:e1:57:0d:af:08:a8:9b:04:cd:f2:40:d6:f8:7b:38:16:
         cd:f0:da:f9:4d:1d:ba:68:3e:38:7b:3e:83:88:fe:99:04:b9:
         b6:42:50:df:b5:2e:84:c3:3b:32:68:66:8a:2e:7e:05:3d:97:
         8f:7d:ae:28:ce:34:dd:4d:4f:e7:d2:c8:19:0b:61:56:bc:bd:
         11:22:a6:cf:cb:4f:90:10:21:74:44:fe:70:74:43:13:6e:f8:
         47:eb:3b:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 13 12:53:44 2024 by rpki-client on console-fra.rpki-client.org