Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/abf195ce-c43e-43e6-82ba-d77689680787/94bf6fc7b1e5553a44231724f8428647062fb228.roa
File:                     94bf6fc7b1e5553a44231724f8428647062fb228.roa (raw, json)
Hash identifier:          cbhaGgv6KlhlUlkP0+oUfGVouuNrf3jw2reDGbl9giA=
Subject key identifier:   8E:0E:C8:95:A1:80:0E:DE:FB:8F:40:80:EC:EB:31:6D:58:E7:2F:30
Certificate issuer:       /CN=d5747c1980bcbeed56cb517c667a966b8945ceee
Certificate serial:       1A8507
Authority key identifier: 14:74:15:68:E4:29:6E:2A:6B:BC:B9:4E:B9:1C:D3:85:E4:1C:7A:F4
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d5747c1980bcbeed56cb517c667a966b8945ceee.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/abf195ce-c43e-43e6-82ba-d77689680787/94bf6fc7b1e5553a44231724f8428647062fb228.roa
Signing time:             Wed 07 Sep 2022 22:23:40 +0000
ROA not before:           Wed 07 Sep 2022 20:49:37 +0000
ROA not after:            Sat 07 Sep 2024 20:49:37 +0000
asID:                     262145
IP address blocks:        190.211.110.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/abf195ce-c43e-43e6-82ba-d77689680787/d5747c1980bcbeed56cb517c667a966b8945ceee.crl
                          rsync://repository.lacnic.net/rpki/lacnic/abf195ce-c43e-43e6-82ba-d77689680787/d5747c1980bcbeed56cb517c667a966b8945ceee.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d5747c1980bcbeed56cb517c667a966b8945ceee.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 12:22:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1737991 (0x1a8507)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d5747c1980bcbeed56cb517c667a966b8945ceee
        Validity
            Not Before: Sep  7 20:49:37 2022 GMT
            Not After : Sep  7 20:49:37 2024 GMT
        Subject: CN=94bf6fc7b1e5553a44231724f8428647062fb228
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:25:f5:45:e7:bf:ee:77:67:b2:e0:8a:da:21:
                    d4:b6:f3:a6:0f:ad:ac:a0:59:a9:0a:b6:e4:9f:ca:
                    18:cc:0c:30:59:e1:aa:13:b4:cd:4b:8d:4a:40:e9:
                    a9:5d:5a:6b:e2:bb:ff:66:22:80:fd:17:b6:c1:39:
                    a6:9c:4d:d7:77:94:4a:eb:26:07:86:a4:8f:6d:11:
                    c5:ae:87:08:df:09:ae:be:71:df:fd:47:df:07:78:
                    7f:c9:4e:3d:2b:98:bd:7a:7f:8a:fb:b1:94:aa:22:
                    79:37:72:05:df:fa:dd:9b:7b:c9:c4:77:12:aa:fd:
                    e2:73:bf:66:35:2a:cb:56:76:e1:e7:a9:3c:24:40:
                    ec:f8:1f:55:c7:ef:79:24:71:1a:99:40:31:6c:59:
                    85:6e:df:57:78:f0:23:18:14:7e:81:0d:ac:c6:bf:
                    8c:50:e7:4b:49:83:e0:ec:8b:de:77:69:aa:a8:20:
                    ae:ef:8d:05:d9:1b:8e:89:4a:ed:a1:14:df:8c:18:
                    d0:a4:5b:a8:cd:b7:af:f2:3d:cf:44:74:96:ab:6c:
                    73:74:f6:ff:91:28:37:8f:01:0d:40:33:6c:34:fc:
                    fb:22:c9:e4:1a:c5:21:5f:98:3a:88:7a:46:28:ce:
                    01:81:3d:3e:38:99:87:b3:0e:26:b5:2c:f9:1a:c6:
                    46:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8E:0E:C8:95:A1:80:0E:DE:FB:8F:40:80:EC:EB:31:6D:58:E7:2F:30
            X509v3 Authority Key Identifier:
                keyid:14:74:15:68:E4:29:6E:2A:6B:BC:B9:4E:B9:1C:D3:85:E4:1C:7A:F4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d5747c1980bcbeed56cb517c667a966b8945ceee.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/abf195ce-c43e-43e6-82ba-d77689680787/94bf6fc7b1e5553a44231724f8428647062fb228.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/abf195ce-c43e-43e6-82ba-d77689680787/d5747c1980bcbeed56cb517c667a966b8945ceee.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.211.110.0/24

    Signature Algorithm: sha256WithRSAEncryption
         13:ed:3f:1e:00:e4:1b:93:0b:98:c7:13:cc:39:60:fd:ec:3d:
         4c:c8:7d:ac:b4:ee:24:95:39:96:6a:ed:23:25:14:db:05:93:
         4d:73:23:1e:3a:18:1b:be:57:f7:40:96:74:5a:ed:0c:2d:49:
         44:90:e5:f7:cf:44:5d:7d:ae:53:67:93:c5:64:13:1d:39:0f:
         98:d0:c8:03:45:58:f4:c4:e4:4e:fd:7f:6a:92:3a:77:5a:82:
         0f:5d:dd:fe:de:6e:c3:30:86:8f:7a:19:13:52:b4:11:13:09:
         6b:e3:3d:dc:01:bb:53:2b:9d:ab:77:71:b0:8f:96:0a:f3:01:
         78:e1:d1:39:da:73:b2:14:d5:85:c5:c1:18:ae:76:24:1f:36:
         ce:d7:ee:9c:ea:7c:11:ab:a6:b1:bc:b0:4a:eb:d0:f0:b1:bf:
         5a:a3:de:c4:24:5e:36:e0:1e:56:a6:17:43:21:a1:ef:84:15:
         4d:5c:6c:ac:d4:12:c7:8c:b1:6d:1a:68:fa:b2:6d:9b:df:9d:
         75:d9:0a:cd:33:49:57:2f:8b:a0:bb:ae:79:c0:61:50:ec:90:
         ce:07:35:56:53:23:08:a9:47:07:8b:db:66:df:3a:ba:37:69:
         c2:d7:b5:4c:2e:48:b4:62:bd:70:0f:50:f1:52:e8:b1:b0:04:
         3c:f1:fe:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 19:40:39 2024 by rpki-client on console-fra.rpki-client.org