Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/a2dc02d4-424c-47d0-a5f5-0e72d3f00f0c/705852517b640e218c0ea55675db6d94b055440f.roa
File:                     705852517b640e218c0ea55675db6d94b055440f.roa (raw, json)
Hash identifier:          geB18TxH0orZ0u4Z4aft34+sLGPxUOiNGnwNEQry6fg=
Subject key identifier:   C4:BC:38:F4:F1:95:BB:31:CC:60:28:F3:C9:84:F3:17:1F:01:62:60
Certificate issuer:       /CN=6ea89a9dcc4868890b0f382eb51070e3b10ddaaf
Certificate serial:       084C
Authority key identifier: 29:25:C1:9E:CC:2E:79:42:B8:8F:09:64:E4:F0:D9:20:99:A4:93:12
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/6ea89a9dcc4868890b0f382eb51070e3b10ddaaf.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/a2dc02d4-424c-47d0-a5f5-0e72d3f00f0c/705852517b640e218c0ea55675db6d94b055440f.roa
Signing time:             Tue 18 Oct 2022 19:59:51 +0000
ROA not before:           Mon 17 Oct 2022 19:59:22 +0000
ROA not after:            Fri 18 Oct 2024 19:59:22 +0000
asID:                     265530
IP address blocks:        45.168.239.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/a2dc02d4-424c-47d0-a5f5-0e72d3f00f0c/6ea89a9dcc4868890b0f382eb51070e3b10ddaaf.crl
                          rsync://repository.lacnic.net/rpki/lacnic/a2dc02d4-424c-47d0-a5f5-0e72d3f00f0c/6ea89a9dcc4868890b0f382eb51070e3b10ddaaf.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/6ea89a9dcc4868890b0f382eb51070e3b10ddaaf.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 19:38:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2124 (0x84c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6ea89a9dcc4868890b0f382eb51070e3b10ddaaf
        Validity
            Not Before: Oct 17 19:59:22 2022 GMT
            Not After : Oct 18 19:59:22 2024 GMT
        Subject: CN=705852517b640e218c0ea55675db6d94b055440f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8e:ec:41:d0:60:3a:de:0a:29:a7:5e:5b:a3:ca:
                    86:54:e7:49:8c:82:78:c3:41:85:a8:c0:be:7a:8e:
                    d8:30:17:ce:ff:cb:04:42:6c:07:3d:d0:46:36:f2:
                    19:5e:85:09:e1:d2:d3:f4:4b:cd:f2:dc:37:e5:20:
                    d0:01:72:a2:cd:a8:4f:9a:8d:a1:6d:ac:dd:d3:ca:
                    af:bd:09:ca:88:a2:f2:2b:ac:f6:07:9c:dd:47:c5:
                    86:9b:35:0c:1f:10:6e:1e:5f:68:97:c2:c7:ac:2e:
                    68:78:3d:2a:9e:df:df:37:d9:3d:cb:11:cf:5f:60:
                    4f:08:67:20:23:83:f2:91:2d:f9:3d:72:d2:d0:42:
                    aa:b2:02:07:dc:27:d6:cd:1f:44:06:7a:f1:52:7d:
                    7c:7f:ee:cc:a8:02:d0:4d:3d:e4:d8:9b:78:94:b2:
                    7e:89:79:2e:f3:12:b8:cb:99:72:7a:d3:07:86:d1:
                    1a:7a:cc:c2:7f:04:5c:dd:da:05:60:3b:f9:6a:1f:
                    97:86:a4:98:5d:74:46:61:56:e3:d6:56:fb:b8:ad:
                    e3:16:cc:a1:44:98:13:7a:e0:e5:8d:21:cd:bc:e3:
                    c1:d1:9b:8e:e1:0c:2f:84:0c:21:0f:cc:1f:7f:26:
                    68:3a:6b:1c:58:4d:0b:b9:df:b5:95:80:f3:2e:75:
                    2b:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C4:BC:38:F4:F1:95:BB:31:CC:60:28:F3:C9:84:F3:17:1F:01:62:60
            X509v3 Authority Key Identifier:
                keyid:29:25:C1:9E:CC:2E:79:42:B8:8F:09:64:E4:F0:D9:20:99:A4:93:12

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/6ea89a9dcc4868890b0f382eb51070e3b10ddaaf.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/a2dc02d4-424c-47d0-a5f5-0e72d3f00f0c/705852517b640e218c0ea55675db6d94b055440f.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/a2dc02d4-424c-47d0-a5f5-0e72d3f00f0c/6ea89a9dcc4868890b0f382eb51070e3b10ddaaf.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.168.239.0/24

    Signature Algorithm: sha256WithRSAEncryption
         7e:67:27:0f:5d:e8:91:bc:d5:91:a6:28:1d:54:3c:9a:92:e5:
         b7:15:1c:96:d4:27:b2:b8:80:8f:03:71:af:0c:70:18:19:d4:
         dd:69:69:13:de:6e:c0:be:e7:12:b2:31:37:54:30:d3:b2:cf:
         83:f5:ca:e5:49:40:21:6f:57:b6:a5:e0:18:f8:fd:2a:e8:39:
         48:85:2e:4f:29:e5:65:37:50:b4:77:66:4e:d9:43:6d:e2:ce:
         35:de:f0:78:e5:7e:1d:e9:3e:79:a1:65:d3:e7:2c:4d:57:0a:
         f1:e6:3a:be:64:cb:44:8c:3b:25:ea:d8:5b:f0:b8:cf:3f:92:
         14:8c:98:f5:85:ea:d1:61:df:b5:ab:1a:d8:7a:c9:ce:46:be:
         d6:9e:a0:aa:08:4e:77:6d:c8:31:44:97:88:66:85:91:c1:99:
         26:ab:d4:11:22:6c:d8:1a:4b:79:ea:4d:d9:d8:4e:5b:7a:69:
         75:13:16:41:4f:69:e0:db:b5:a9:2b:95:1d:12:b3:6c:05:09:
         03:b9:71:d1:6d:d4:12:75:23:a1:5b:de:9c:dd:e2:ac:d5:7d:
         4c:03:e7:28:ea:d4:b6:9a:2c:47:84:8e:55:6b:cb:a1:8f:c3:
         67:4c:65:18:a1:e8:4d:69:5e:55:ca:69:00:5f:c6:cf:ab:e6:
         9d:44:c5:a6
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgICCEwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNmVh
ODlhOWRjYzQ4Njg4OTBiMGYzODJlYjUxMDcwZTNiMTBkZGFhZjAeFw0yMjEwMTcx
OTU5MjJaFw0yNDEwMTgxOTU5MjJaMDMxMTAvBgNVBAMTKDcwNTg1MjUxN2I2NDBl
MjE4YzBlYTU1Njc1ZGI2ZDk0YjA1NTQ0MGYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCO7EHQYDreCimnXlujyoZU50mMgnjDQYWowL56jtgwF87/ywRC
bAc90EY28hlehQnh0tP0S83y3DflINABcqLNqE+ajaFtrN3Tyq+9CcqIovIrrPYH
nN1HxYabNQwfEG4eX2iXwsesLmh4PSqe39832T3LEc9fYE8IZyAjg/KRLfk9ctLQ
QqqyAgfcJ9bNH0QGevFSfXx/7syoAtBNPeTYm3iUsn6JeS7zErjLmXJ60weG0Rp6
zMJ/BFzd2gVgO/lqH5eGpJhddEZhVuPWVvu4reMWzKFEmBN64OWNIc2848HRm47h
DC+EDCEPzB9/Jmg6axxYTQu537WVgPMudSvjAgMBAAGjggJbMIICVzAdBgNVHQ4E
FgQUxLw49PGVuzHMYCjzyYTzFx8BYmAwHwYDVR0jBBgwFoAUKSXBnswueUK4jwlk
5PDZIJmkkxIwDgYDVR0PAQH/BAQDAgeAMIGaBggrBgEFBQcBAQSBjTCBijCBhwYI
KwYBBQUHMAKGe3JzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kvbGFj
bmljLzQ4ZjA4M2JiLWY2MDMtNDg5My05OTkwLTAyODRjMDRjZWI4NS82ZWE4OWE5
ZGNjNDg2ODg5MGIwZjM4MmViNTEwNzBlM2IxMGRkYWFmLmNlcjCBmgYIKwYBBQUH
AQsEgY0wgYowgYcGCCsGAQUFBzALhntyc3luYzovL3JlcG9zaXRvcnkubGFjbmlj
Lm5ldC9ycGtpL2xhY25pYy9hMmRjMDJkNC00MjRjLTQ3ZDAtYTVmNS0wZTcyZDNm
MDBmMGMvNzA1ODUyNTE3YjY0MGUyMThjMGVhNTU2NzVkYjZkOTRiMDU1NDQwZi5y
b2EwgY8GA1UdHwSBhzCBhDCBgaB/oH2Ge3JzeW5jOi8vcmVwb3NpdG9yeS5sYWNu
aWMubmV0L3Jwa2kvbGFjbmljL2EyZGMwMmQ0LTQyNGMtNDdkMC1hNWY1LTBlNzJk
M2YwMGYwYy82ZWE4OWE5ZGNjNDg2ODg5MGIwZjM4MmViNTEwNzBlM2IxMGRkYWFm
LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw
DjAMBAIAATAGAwQALajvMA0GCSqGSIb3DQEBCwUAA4IBAQB+ZycPXeiRvNWRpigd
VDyakuW3FRyW1CeyuICPA3GvDHAYGdTdaWkT3m7AvucSsjE3VDDTss+D9crlSUAh
b1e2peAY+P0q6DlIhS5PKeVlN1C0d2ZO2UNt4s413vB45X4d6T55oWXT5yxNVwrx
5jq+ZMtEjDsl6thb8LjPP5IUjJj1herRYd+1qxrYesnORr7WnqCqCE53bcgxRJeI
ZoWRwZkmq9QRImzYGkt56k3Z2E5beml1ExZBT2ng27WpK5UdErNsBQkDuXHRbdQS
dSOhW96c3eKs1X1MA+co6tS2mixHhI5Va8uhj8NnTGUYoehNaV5VymkAX8bPq+ad
RMWm
-----END CERTIFICATE-----
Generated at Thu Mar 28 23:12:12 2024 by rpki-client on console-fra.rpki-client.org