Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/a796e152-570e-4337-b98c-3b5f820ddf95/289b877dd7dcdb7124312a2b3fd06a621e583ab2.roa
File:                     289b877dd7dcdb7124312a2b3fd06a621e583ab2.roa (raw, json)
Hash identifier:          N5zM/ByZ5SXYwHEhcNKrD1ajVtZ8wM0AwB23mKCvRxo=
Subject key identifier:   19:A5:B6:88:A8:4E:06:9B:AB:50:9E:4F:BC:CC:A3:9F:87:94:99:8A
Certificate issuer:       /CN=28411e73cb2042bb1a9c78b47807e0acd5a97e06
Certificate serial:       1734D0
Authority key identifier: 9C:B8:1C:93:F1:3D:AF:49:79:00:65:67:FE:3A:0C:6C:58:EC:EE:B3
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/28411e73cb2042bb1a9c78b47807e0acd5a97e06.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/a796e152-570e-4337-b98c-3b5f820ddf95/289b877dd7dcdb7124312a2b3fd06a621e583ab2.roa
Signing time:             Tue 30 May 2023 22:18:19 +0000
ROA not before:           Mon 29 May 2023 22:18:19 +0000
ROA not after:            Fri 30 May 2025 22:18:19 +0000
asID:                     271796
IP address blocks:        179.51.204.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/a796e152-570e-4337-b98c-3b5f820ddf95/28411e73cb2042bb1a9c78b47807e0acd5a97e06.crl
                          rsync://repository.lacnic.net/rpki/lacnic/a796e152-570e-4337-b98c-3b5f820ddf95/28411e73cb2042bb1a9c78b47807e0acd5a97e06.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/28411e73cb2042bb1a9c78b47807e0acd5a97e06.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Tue 05 Mar 2024 04:16:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1520848 (0x1734d0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=28411e73cb2042bb1a9c78b47807e0acd5a97e06
        Validity
            Not Before: May 29 22:18:19 2023 GMT
            Not After : May 30 22:18:19 2025 GMT
        Subject: CN=289b877dd7dcdb7124312a2b3fd06a621e583ab2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:d2:dd:1f:80:16:d0:74:51:82:0c:42:b5:92:
                    0e:7b:60:68:9b:09:24:af:ca:42:23:79:96:9a:71:
                    2f:71:3d:32:a2:ed:1d:72:31:ef:41:b4:6f:ab:7a:
                    47:0f:93:66:d1:ac:95:30:aa:c2:3f:47:42:e2:27:
                    4a:52:c6:95:b3:27:9e:ab:29:8a:fc:42:ee:28:3e:
                    3d:01:1c:87:df:e6:e5:68:40:cc:9f:79:f4:d5:bc:
                    5f:97:e9:ca:79:1f:4f:63:34:18:2c:a0:13:91:a9:
                    cf:b1:53:60:19:4d:c8:52:60:73:a3:b7:ec:dc:0c:
                    9d:28:3a:dc:d6:da:32:ea:75:3e:8c:cb:de:63:49:
                    a2:4e:a1:e5:b2:e4:87:16:5c:79:fd:3e:9d:2f:7e:
                    3a:3e:9f:a1:99:3b:ec:de:fa:65:36:7c:6b:f5:2f:
                    84:d9:b4:fc:a4:8c:80:3d:5b:2c:f8:7f:1a:33:c0:
                    ad:ef:ea:e6:69:21:f0:ad:c4:41:2a:98:81:de:eb:
                    0b:d3:0b:43:ef:cc:5f:31:de:f9:4f:44:4e:dc:c9:
                    73:82:e9:2e:59:8e:27:71:ef:d3:22:92:80:85:40:
                    e3:6f:ed:74:19:b4:2f:06:93:ce:db:ec:c6:a6:05:
                    28:67:77:8d:04:9d:b1:1a:d4:c2:04:99:2e:8e:9a:
                    cf:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                19:A5:B6:88:A8:4E:06:9B:AB:50:9E:4F:BC:CC:A3:9F:87:94:99:8A
            X509v3 Authority Key Identifier:
                keyid:9C:B8:1C:93:F1:3D:AF:49:79:00:65:67:FE:3A:0C:6C:58:EC:EE:B3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/28411e73cb2042bb1a9c78b47807e0acd5a97e06.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/a796e152-570e-4337-b98c-3b5f820ddf95/289b877dd7dcdb7124312a2b3fd06a621e583ab2.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/a796e152-570e-4337-b98c-3b5f820ddf95/28411e73cb2042bb1a9c78b47807e0acd5a97e06.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  179.51.204.0/24

    Signature Algorithm: sha256WithRSAEncryption
         92:c5:d3:d7:34:d3:75:32:0f:a8:67:b5:e5:07:8a:65:3b:c1:
         bf:41:52:e3:c5:f2:c0:f0:52:7c:5a:47:a7:ed:99:e8:20:2f:
         f4:f0:db:01:b7:12:04:be:3e:7c:da:59:6c:e3:00:89:b2:59:
         55:71:d6:2a:02:60:55:8f:f5:f0:78:8f:5f:73:86:34:7c:4b:
         b5:2e:c8:5d:55:09:ab:40:09:70:bd:19:46:50:c6:d0:76:e2:
         6c:3f:86:63:e8:f2:8b:ab:f5:bd:d0:56:8b:b7:a6:fc:a3:96:
         de:e0:16:01:db:48:f9:bd:98:67:65:3b:83:3c:0b:17:d2:25:
         83:3c:41:79:63:a6:92:8c:45:d5:0b:89:92:db:40:a0:ab:00:
         a6:ff:70:5d:5d:a6:c9:e8:ba:b6:93:27:e6:97:ef:77:63:c8:
         0b:1f:ab:21:4a:06:36:3b:d7:02:b8:c9:43:f3:9f:07:29:9f:
         88:a8:5c:64:41:3f:a9:2c:33:9f:da:99:1d:2f:0c:3b:9e:31:
         9d:d7:98:76:a1:67:cd:ad:d5:26:27:58:6d:4d:b8:25:57:52:
         6c:fd:ef:e3:f2:fa:2e:f3:6e:93:84:aa:b4:14:18:b6:3d:a8:
         b9:8e:85:33:6c:81:ce:01:84:de:51:6c:c4:6f:a1:3c:8e:25:
         e0:a7:d7:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 2 06:45:34 2024 by rpki-client on console-ams.rpki-client.org