Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/ab893e9f-8355-4c9b-ab33-6fe04a4ffc4f/366a451fcf917ec18e843a468ac601584e6b177c.roa
File:                     366a451fcf917ec18e843a468ac601584e6b177c.roa (raw, json)
Hash identifier:          75/mDvGiRngrZVEQT3z0R/X32t7llDGvhOS7PgdLDsA=
Subject key identifier:   7D:01:7E:B1:C6:F9:99:65:84:47:55:50:EF:DF:B3:BC:A6:3B:63:4C
Certificate issuer:       /CN=3a4fe9b9bd095a1eb73b9fd8910d5a0c69d538ae
Certificate serial:       036A
Authority key identifier: 1A:71:DF:9A:5E:72:38:35:DC:82:02:55:D3:26:0A:01:8A:9E:55:7E
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3a4fe9b9bd095a1eb73b9fd8910d5a0c69d538ae.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/ab893e9f-8355-4c9b-ab33-6fe04a4ffc4f/366a451fcf917ec18e843a468ac601584e6b177c.roa
Signing time:             Fri 19 Aug 2022 15:31:40 +0000
ROA not before:           Fri 19 Aug 2022 15:30:12 +0000
ROA not after:            Mon 19 Aug 2024 15:30:12 +0000
asID:                     28396
IP address blocks:        200.9.182.0/24 maxlen: 24
                          200.9.183.0/24 maxlen: 24
                          200.9.184.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/ab893e9f-8355-4c9b-ab33-6fe04a4ffc4f/3a4fe9b9bd095a1eb73b9fd8910d5a0c69d538ae.crl
                          rsync://repository.lacnic.net/rpki/lacnic/ab893e9f-8355-4c9b-ab33-6fe04a4ffc4f/3a4fe9b9bd095a1eb73b9fd8910d5a0c69d538ae.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3a4fe9b9bd095a1eb73b9fd8910d5a0c69d538ae.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 03:49:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 874 (0x36a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3a4fe9b9bd095a1eb73b9fd8910d5a0c69d538ae
        Validity
            Not Before: Aug 19 15:30:12 2022 GMT
            Not After : Aug 19 15:30:12 2024 GMT
        Subject: CN=366a451fcf917ec18e843a468ac601584e6b177c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:5f:3c:a3:95:75:2d:40:cd:2f:d3:ed:8c:f8:
                    78:4c:a6:3a:f4:b1:67:69:17:43:09:e1:96:45:f3:
                    5d:e1:69:af:bc:c6:a1:5a:36:65:e7:f9:4b:e3:25:
                    60:25:ca:76:dd:07:be:66:65:ef:98:b7:d5:71:f4:
                    c7:63:96:41:a9:06:b1:f0:27:28:a1:3f:9a:2d:1c:
                    64:09:72:34:b0:14:23:7f:eb:64:d2:34:36:91:ea:
                    98:1d:b9:e0:f1:47:2d:77:4c:7e:c5:30:bb:18:1c:
                    0c:f7:15:29:3e:f7:b6:1a:f8:39:bd:de:75:a9:2f:
                    55:b7:99:8d:7c:5f:b2:9e:1a:7b:83:8d:32:05:35:
                    d2:6f:44:77:85:c1:ea:42:c9:fa:00:88:b0:b5:a4:
                    a1:5e:7c:dc:a1:a1:6b:0f:a5:4c:b2:41:2d:c7:b0:
                    ef:b4:6e:2c:fb:2e:9f:a4:e9:15:4b:bd:77:13:f3:
                    80:46:52:49:1d:a9:ed:c0:63:31:4d:49:1d:88:df:
                    50:84:e9:02:e7:f3:56:9d:1d:a9:75:ba:82:cd:b7:
                    ee:1c:c3:7c:f8:f0:30:42:ef:3b:59:59:92:72:70:
                    04:41:d3:7c:de:d6:b1:43:a1:92:3d:c4:98:a3:00:
                    82:35:58:0b:93:95:07:13:61:d1:5d:4b:97:c1:92:
                    81:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7D:01:7E:B1:C6:F9:99:65:84:47:55:50:EF:DF:B3:BC:A6:3B:63:4C
            X509v3 Authority Key Identifier:
                keyid:1A:71:DF:9A:5E:72:38:35:DC:82:02:55:D3:26:0A:01:8A:9E:55:7E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3a4fe9b9bd095a1eb73b9fd8910d5a0c69d538ae.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/ab893e9f-8355-4c9b-ab33-6fe04a4ffc4f/366a451fcf917ec18e843a468ac601584e6b177c.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/ab893e9f-8355-4c9b-ab33-6fe04a4ffc4f/3a4fe9b9bd095a1eb73b9fd8910d5a0c69d538ae.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.9.182.0-200.9.184.255

    Signature Algorithm: sha256WithRSAEncryption
         2f:a4:17:1a:ca:e9:06:b2:f5:61:70:db:b3:98:68:5b:e5:b5:
         91:31:45:89:05:ab:80:94:ad:93:aa:ce:13:d8:78:f9:6e:81:
         2b:bb:45:f3:6f:09:89:25:59:70:1d:df:ad:2f:bc:0f:53:74:
         98:61:ea:dc:4d:ce:ec:97:14:5d:84:b9:8a:01:a4:38:89:4f:
         f0:ee:bc:72:03:63:5a:20:f0:26:55:68:a7:1b:f1:63:f6:83:
         f5:51:03:92:46:5c:90:df:fc:5d:63:f5:d4:cc:43:e2:6a:51:
         2c:89:a9:ac:fc:9b:16:1e:53:ad:7f:a1:53:aa:0d:f5:29:22:
         9a:bd:c5:66:18:95:c3:a3:33:ab:32:da:18:92:c1:8a:c5:e0:
         46:99:b9:2c:de:cc:dd:f7:df:1d:fe:92:6b:d0:b1:2e:0a:44:
         8d:07:be:35:ec:e4:7d:5c:d2:04:28:8d:e8:be:74:2e:0f:22:
         a2:b2:52:ab:5d:a9:d9:9e:46:b1:28:5b:5a:77:72:5a:da:b9:
         5f:34:3d:15:91:0d:66:50:51:a4:55:96:3f:37:a6:5c:db:e3:
         8b:d5:6b:da:c6:49:cb:fa:e0:b4:2c:9f:66:0e:69:d9:9f:f2:
         44:54:40:79:19:7e:ad:68:34:64:c8:18:ee:b6:a1:a8:5d:cc:
         ee:fd:13:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 08:36:03 2024 by rpki-client on console-fra.rpki-client.org