Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DBE1DF14102D229D2A32EF830927E03CD6429044F67ED8E239EF6114B9CA2FF6/0/34352e3138392e3233332e302f32342d3234203d3e203130373533.roa
File:                     34352e3138392e3233332e302f32342d3234203d3e203130373533.roa (raw, json)
Hash identifier:          6rtUeCputqgoRXOzxh+L/FSzWuj8Q3Y3CafFAhE2uIg=
Subject key identifier:   44:64:60:72:2F:23:DD:F6:23:90:61:DA:E7:36:E5:D2:D8:6E:16:EB
Certificate issuer:       /CN=D7C2C80CB59C8E33C7BB4ED10BEA57E21CE76CEE
Certificate serial:       795D597B4E38CEDA018E61E83309E403C53BC0DE
Authority key identifier: D7:C2:C8:0C:B5:9C:8E:33:C7:BB:4E:D1:0B:EA:57:E2:1C:E7:6C:EE
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D7C2C80CB59C8E33C7BB4ED10BEA57E21CE76CEE.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/DBE1DF14102D229D2A32EF830927E03CD6429044F67ED8E239EF6114B9CA2FF6/0/34352e3138392e3233332e302f32342d3234203d3e203130373533.roa
Signing time:             Tue 05 Mar 2024 18:07:21 +0000
ROA not before:           Tue 05 Mar 2024 18:02:21 +0000
ROA not after:            Tue 04 Mar 2025 18:07:21 +0000
asID:                     10753
IP address blocks:        45.189.233.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/DBE1DF14102D229D2A32EF830927E03CD6429044F67ED8E239EF6114B9CA2FF6/0/D7C2C80CB59C8E33C7BB4ED10BEA57E21CE76CEE.crl
                          rsync://repository.lacnic.net/rpki/lacnic/DBE1DF14102D229D2A32EF830927E03CD6429044F67ED8E239EF6114B9CA2FF6/0/D7C2C80CB59C8E33C7BB4ED10BEA57E21CE76CEE.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D7C2C80CB59C8E33C7BB4ED10BEA57E21CE76CEE.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sat 23 Nov 2024 22:22:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            79:5d:59:7b:4e:38:ce:da:01:8e:61:e8:33:09:e4:03:c5:3b:c0:de
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=D7C2C80CB59C8E33C7BB4ED10BEA57E21CE76CEE
        Validity
            Not Before: Mar  5 18:02:21 2024 GMT
            Not After : Mar  4 18:07:21 2025 GMT
        Subject: CN=446460722F23DDF6239061DAE736E5D2D86E16EB
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e4:8c:4c:76:2b:a0:6e:af:ba:68:8a:24:74:7a:
                    19:75:fc:31:ef:05:23:b7:99:24:d0:95:b4:b5:b5:
                    d1:54:4f:cd:31:e2:26:1a:33:ea:ea:21:b4:50:f3:
                    62:3d:17:e1:f4:c1:b1:e3:61:35:49:6c:f8:16:b4:
                    ce:cf:ea:d4:7e:28:11:b8:9b:c5:e2:26:3f:49:f5:
                    ae:8f:1f:2a:36:e1:40:68:57:29:6e:4e:21:04:50:
                    2e:9c:47:fe:37:c6:03:5e:2f:3e:90:15:01:43:a8:
                    7a:1f:82:92:a0:98:95:99:73:21:89:c3:6d:20:3a:
                    09:68:10:fa:19:e3:03:b8:b3:31:f4:c9:3f:36:9e:
                    8d:49:64:eb:bb:18:a1:7a:0a:29:21:21:a2:4f:15:
                    fd:7e:46:89:09:06:8d:a7:0a:45:0e:20:af:70:c2:
                    2f:02:72:46:53:d4:81:71:8c:01:a8:f9:b2:98:b2:
                    e3:0a:80:00:c5:91:5f:5c:54:d1:32:67:e3:54:08:
                    27:83:8e:f8:b3:eb:ba:d5:22:98:e0:6b:04:15:61:
                    13:9a:e7:b6:a8:ec:8d:04:3c:9d:d1:ba:49:9e:0d:
                    2d:10:1a:da:6d:21:01:53:16:6f:7f:f6:7d:0f:06:
                    b6:46:6e:7e:a1:15:68:8b:ae:a9:18:81:a1:56:e9:
                    92:eb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                44:64:60:72:2F:23:DD:F6:23:90:61:DA:E7:36:E5:D2:D8:6E:16:EB
            X509v3 Authority Key Identifier:
                keyid:D7:C2:C8:0C:B5:9C:8E:33:C7:BB:4E:D1:0B:EA:57:E2:1C:E7:6C:EE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/DBE1DF14102D229D2A32EF830927E03CD6429044F67ED8E239EF6114B9CA2FF6/0/D7C2C80CB59C8E33C7BB4ED10BEA57E21CE76CEE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D7C2C80CB59C8E33C7BB4ED10BEA57E21CE76CEE.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DBE1DF14102D229D2A32EF830927E03CD6429044F67ED8E239EF6114B9CA2FF6/0/34352e3138392e3233332e302f32342d3234203d3e203130373533.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.189.233.0/24

    Signature Algorithm: sha256WithRSAEncryption
         d2:fa:47:74:d3:27:98:1e:a9:1f:e1:8d:8a:d4:c5:21:95:7c:
         8b:99:87:47:82:dc:23:43:41:45:0b:87:71:db:11:4c:b7:36:
         be:fc:61:4c:0b:88:f5:bc:fb:23:ef:8e:38:f4:93:2a:16:4e:
         c8:4a:59:75:57:03:91:6b:a4:b0:b4:b4:f8:3d:da:36:c2:3e:
         a5:23:a7:5d:c8:fb:79:cb:a0:f4:0f:e3:e1:de:e1:39:37:0d:
         5d:1c:08:ad:2e:14:d8:86:2b:9d:e9:9a:3b:9b:5e:46:78:57:
         0a:2d:19:b2:66:2c:16:70:85:73:0b:13:fa:a5:84:dc:41:12:
         1d:2f:8d:e3:6c:d2:15:a8:f9:7c:50:c9:ea:4c:64:33:d6:37:
         a3:d1:1c:d5:d0:55:83:ef:02:8b:03:a7:75:07:e4:9b:63:09:
         e1:0c:43:b1:3a:78:4e:ce:af:28:a0:5d:4c:24:9c:f2:fd:8c:
         74:43:ff:4e:5d:b2:08:65:d5:4d:1f:32:8b:3d:b9:b7:79:49:
         af:1f:ca:6a:cd:3a:a3:ab:7f:29:de:4f:a2:38:31:79:db:3d:
         f1:a3:ca:57:51:eb:2a:13:9c:fd:df:f0:e3:8a:f2:73:3e:2f:
         c0:80:2b:a2:9b:f5:0f:4c:9a:e3:c9:7e:7e:c6:2b:e2:ec:70:
         fc:9c:45:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 19 20:20:39 2024 by rpki-client on console-ams.rpki-client.org