Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/a65848fe-1463-4488-be2c-2daf76af068a/5e57660dfbae517b6d4d5e13244c3004291c0a8d.roa
File:                     5e57660dfbae517b6d4d5e13244c3004291c0a8d.roa (raw, json)
Hash identifier:          5aw8irb+rjXLU2wJAG+0DQP/ehDyCa+buKhVAh+JRzE=
Subject key identifier:   4A:87:67:89:00:FD:FC:57:CD:A6:66:00:48:22:D7:FA:CC:6E:F9:68
Certificate issuer:       /CN=b5d933e43bb68e4aa0afa4157c889b4b406113c5
Certificate serial:       0BBBE9
Authority key identifier: B3:37:DF:2A:CC:B3:F7:ED:65:5C:18:67:7B:E3:DB:1E:D5:AC:59:B6
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b5d933e43bb68e4aa0afa4157c889b4b406113c5.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/a65848fe-1463-4488-be2c-2daf76af068a/5e57660dfbae517b6d4d5e13244c3004291c0a8d.roa
Signing time:             Wed 24 Mar 2021 14:42:28 +0000
ROA not before:           Wed 24 Mar 2021 14:42:27 +0000
ROA not after:            Tue 24 Mar 2026 14:42:27 +0000
asID:                     20299
IP address blocks:        190.181.246.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/a65848fe-1463-4488-be2c-2daf76af068a/b5d933e43bb68e4aa0afa4157c889b4b406113c5.crl
                          rsync://repository.lacnic.net/rpki/lacnic/a65848fe-1463-4488-be2c-2daf76af068a/b5d933e43bb68e4aa0afa4157c889b4b406113c5.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b5d933e43bb68e4aa0afa4157c889b4b406113c5.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 01 Apr 2024 05:58:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 769001 (0xbbbe9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b5d933e43bb68e4aa0afa4157c889b4b406113c5
        Validity
            Not Before: Mar 24 14:42:27 2021 GMT
            Not After : Mar 24 14:42:27 2026 GMT
        Subject: CN=5e57660dfbae517b6d4d5e13244c3004291c0a8d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a7:be:89:0d:d0:ed:31:f5:b6:8d:f7:64:df:bf:
                    e0:36:86:36:33:ca:95:35:b4:66:eb:a2:43:a8:74:
                    43:d8:28:8e:31:12:3c:d2:ad:08:00:df:15:14:1a:
                    5b:52:4d:0e:2f:ef:af:d6:74:1d:6f:95:2f:d9:ad:
                    00:0b:d2:d3:45:35:8e:60:c4:25:b2:20:6e:10:4b:
                    af:b6:7c:0b:4a:b2:64:88:43:58:97:0f:9e:fa:28:
                    ef:26:50:5d:49:26:ab:d3:f0:88:05:45:4a:63:9a:
                    bc:27:e9:b8:0f:a0:20:7c:c4:a4:a6:0a:22:e2:9a:
                    d2:fc:88:08:a2:fb:0b:fd:2f:ad:b5:8c:80:46:88:
                    d3:88:14:cf:d5:c3:63:08:ca:d8:48:b4:a9:df:a3:
                    18:c7:c9:91:c0:bf:45:55:cf:97:27:74:24:36:45:
                    57:10:51:cb:18:53:16:37:1b:73:51:1d:8f:a6:18:
                    0d:e6:c2:6a:c0:84:c1:02:0d:2d:39:e3:82:9b:42:
                    7b:58:14:71:db:5b:24:5b:0e:a4:6c:d0:e4:ee:5a:
                    45:e3:ab:15:2e:71:70:24:9c:2e:c1:dc:ba:0f:ee:
                    3a:59:7c:0b:6b:32:30:5d:07:9a:65:b2:6e:57:e5:
                    eb:7d:24:f0:f7:3c:9d:56:a5:c0:d8:57:91:1a:fc:
                    0f:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4A:87:67:89:00:FD:FC:57:CD:A6:66:00:48:22:D7:FA:CC:6E:F9:68
            X509v3 Authority Key Identifier:
                keyid:B3:37:DF:2A:CC:B3:F7:ED:65:5C:18:67:7B:E3:DB:1E:D5:AC:59:B6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b5d933e43bb68e4aa0afa4157c889b4b406113c5.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/a65848fe-1463-4488-be2c-2daf76af068a/5e57660dfbae517b6d4d5e13244c3004291c0a8d.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/a65848fe-1463-4488-be2c-2daf76af068a/b5d933e43bb68e4aa0afa4157c889b4b406113c5.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.181.246.0/24

    Signature Algorithm: sha256WithRSAEncryption
         66:1c:77:f6:d8:c9:b8:1f:bd:20:04:50:56:6c:8b:72:0a:07:
         d3:ae:dd:5f:54:2c:67:49:9d:a3:c9:57:c8:18:c2:93:d4:46:
         89:51:c7:bf:26:d1:1e:94:e4:03:01:54:27:3c:54:b0:0e:e8:
         13:cc:ed:9b:e1:81:38:62:e1:71:97:56:b5:08:5b:86:8e:8c:
         c3:94:40:94:f1:69:06:d8:f7:0b:f7:f6:89:b0:79:d0:aa:4e:
         b2:02:a7:9b:25:91:43:8f:96:06:58:38:c4:d0:cc:17:ad:1f:
         a9:71:45:17:09:de:cf:8b:29:bd:76:50:f4:82:3f:3d:1b:93:
         e0:d7:0b:c3:1d:ab:11:c2:0c:f2:39:17:53:d9:28:3a:ea:25:
         ca:a1:75:ae:b8:aa:5b:a9:62:48:44:d4:3c:b5:a6:d3:08:81:
         31:4d:0a:3d:44:21:11:45:9d:05:25:15:3a:a2:a1:e9:d5:33:
         fe:a8:ec:87:22:56:67:fc:4d:52:46:df:36:5c:ba:4a:92:08:
         ea:bc:e3:64:d8:c7:69:99:14:0f:b7:59:85:9c:07:94:1e:1c:
         4e:a6:54:89:c9:7c:9f:b6:7b:2b:5d:57:0d:c0:81:89:b3:8f:
         32:dc:ca:92:fc:14:93:04:56:9d:81:95:cd:4a:c8:77:73:a4:
         f3:0c:a4:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 05:45:45 2024 by rpki-client on console-ams.rpki-client.org