Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/abf195ce-c43e-43e6-82ba-d77689680787/a784fc0780bd5669870aedb10a2ff5c98b025075.roa
File:                     a784fc0780bd5669870aedb10a2ff5c98b025075.roa (raw, json)
Hash identifier:          e8m07OirZ20xjGDLngojyHNwPnuSJpcJOTCxEft5/SU=
Subject key identifier:   F7:A1:53:AC:54:58:42:9F:2C:EC:20:0A:54:7D:E4:65:AD:C4:69:BE
Certificate issuer:       /CN=d5747c1980bcbeed56cb517c667a966b8945ceee
Certificate serial:       1AC43F
Authority key identifier: 14:74:15:68:E4:29:6E:2A:6B:BC:B9:4E:B9:1C:D3:85:E4:1C:7A:F4
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d5747c1980bcbeed56cb517c667a966b8945ceee.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/abf195ce-c43e-43e6-82ba-d77689680787/a784fc0780bd5669870aedb10a2ff5c98b025075.roa
Signing time:             Wed 07 Sep 2022 22:49:46 +0000
ROA not before:           Wed 24 Mar 2021 14:37:20 +0000
ROA not after:            Tue 24 Mar 2026 14:37:20 +0000
asID:                     262145
IP address blocks:        190.211.119.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/abf195ce-c43e-43e6-82ba-d77689680787/d5747c1980bcbeed56cb517c667a966b8945ceee.crl
                          rsync://repository.lacnic.net/rpki/lacnic/abf195ce-c43e-43e6-82ba-d77689680787/d5747c1980bcbeed56cb517c667a966b8945ceee.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d5747c1980bcbeed56cb517c667a966b8945ceee.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 01 Apr 2024 05:58:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1754175 (0x1ac43f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d5747c1980bcbeed56cb517c667a966b8945ceee
        Validity
            Not Before: Mar 24 14:37:20 2021 GMT
            Not After : Mar 24 14:37:20 2026 GMT
        Subject: CN=a784fc0780bd5669870aedb10a2ff5c98b025075
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:69:44:86:10:04:f6:20:bb:81:41:82:12:50:
                    1e:6c:a5:d2:cc:0f:c5:33:17:d8:69:fd:53:66:58:
                    ca:8d:96:4b:36:d8:87:9a:67:f1:ac:b7:82:ec:5c:
                    eb:36:10:05:f6:f7:91:62:7c:0c:13:4f:38:a9:3d:
                    e4:f2:81:9e:17:aa:52:33:d5:eb:ee:84:14:8f:52:
                    a0:01:97:e1:0e:08:6f:46:b3:09:bd:7a:a6:b3:f2:
                    7d:31:af:09:99:e9:71:73:5f:7b:bb:9a:e3:11:c7:
                    a4:f7:d5:fb:57:b4:68:22:a2:17:30:65:20:40:b6:
                    e6:b3:84:47:a1:c8:7b:4e:4f:3d:70:36:6f:57:8a:
                    5f:3c:bd:12:84:61:99:b7:bb:9d:3a:41:1b:18:bd:
                    b2:6c:bc:58:45:08:b4:3c:17:4b:75:32:4a:07:b4:
                    e3:96:73:dc:19:ff:56:e7:18:c5:ef:a2:28:3c:a8:
                    78:42:6b:50:10:e5:10:c8:06:ca:ee:b4:68:42:90:
                    02:4c:f8:15:af:fe:64:9d:0d:f3:e4:b0:38:7e:7d:
                    3c:48:36:1d:42:1f:ac:c4:dc:cb:1d:78:5b:30:ec:
                    93:83:ea:b8:a9:22:6f:b7:2f:3b:95:21:75:e0:e7:
                    8e:6f:6e:f2:2d:c6:3e:f6:be:1e:9c:c8:01:1a:34:
                    7d:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:A1:53:AC:54:58:42:9F:2C:EC:20:0A:54:7D:E4:65:AD:C4:69:BE
            X509v3 Authority Key Identifier:
                keyid:14:74:15:68:E4:29:6E:2A:6B:BC:B9:4E:B9:1C:D3:85:E4:1C:7A:F4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d5747c1980bcbeed56cb517c667a966b8945ceee.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/abf195ce-c43e-43e6-82ba-d77689680787/a784fc0780bd5669870aedb10a2ff5c98b025075.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/abf195ce-c43e-43e6-82ba-d77689680787/d5747c1980bcbeed56cb517c667a966b8945ceee.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.211.119.0/24

    Signature Algorithm: sha256WithRSAEncryption
         30:92:bf:95:93:86:94:a2:7d:76:19:63:5c:c8:5b:7a:c8:09:
         71:dc:fe:7c:48:6b:6f:48:66:2c:1a:fb:e7:77:69:e6:6a:dc:
         84:4f:a0:22:eb:8b:06:a1:c4:d5:b1:e4:ee:6e:80:ce:f8:c5:
         36:8f:65:79:24:e7:60:bf:55:98:2b:66:66:1f:12:07:d1:7d:
         16:37:21:8c:d4:c4:9b:28:b1:44:92:3a:4b:36:ea:8c:a1:86:
         09:4e:c7:2e:c8:35:de:02:b1:5d:6e:58:34:c1:dd:32:cb:db:
         32:46:55:a5:51:4f:f6:15:75:e5:0f:6b:f5:6f:88:77:a0:9d:
         bc:a6:4e:2b:b7:4e:a1:a5:fb:05:73:ba:87:26:d4:c5:46:70:
         da:e2:2c:e6:53:19:9a:05:60:4b:43:b0:05:f0:e9:68:ec:28:
         aa:d5:79:6d:98:a3:a5:e0:8f:0e:9a:00:d0:2c:66:6a:dc:ee:
         f8:7f:c2:6a:07:16:53:1d:ff:44:0d:d9:1b:8d:9b:da:cd:a3:
         2c:ee:c2:52:19:4b:e4:1c:ed:57:94:09:64:92:92:41:13:5c:
         73:f5:f9:77:05:26:31:8d:d7:81:60:39:c8:d4:ae:ed:d5:c6:
         96:f0:cc:18:1a:28:d2:3b:fd:ec:34:ec:44:fd:63:19:5c:9e:
         4c:a2:64:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 12:22:15 2024 by rpki-client on console-fra.rpki-client.org