Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/a1331169bff1a2fe888e3e5f200129142b753646.roa
File:                     a1331169bff1a2fe888e3e5f200129142b753646.roa (raw, json)
Hash identifier:          Rp/cRECJNDIYl3oxIkUr49Dcw+vOWtI3c2ES4MWT/r0=
Subject key identifier:   CF:0F:16:3F:47:9C:18:B0:F4:AA:8C:B3:86:91:55:79:B0:E2:70:82
Certificate issuer:       /CN=1059e1e3317704575f2c0b750ee73b166a39cd37
Certificate serial:       0E755D
Authority key identifier: 80:F0:C7:27:4F:82:24:D1:E9:76:F3:80:E6:EF:32:CF:10:F8:9D:D3
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1059e1e3317704575f2c0b750ee73b166a39cd37.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/a1331169bff1a2fe888e3e5f200129142b753646.roa
Signing time:             Wed 24 Mar 2021 14:38:32 +0000
ROA not before:           Wed 24 Mar 2021 14:38:31 +0000
ROA not after:            Tue 24 Mar 2026 14:38:31 +0000
asID:                     27948
IP address blocks:        200.107.2.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/1059e1e3317704575f2c0b750ee73b166a39cd37.crl
                          rsync://repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/1059e1e3317704575f2c0b750ee73b166a39cd37.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1059e1e3317704575f2c0b750ee73b166a39cd37.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 01 Apr 2024 05:58:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 947549 (0xe755d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1059e1e3317704575f2c0b750ee73b166a39cd37
        Validity
            Not Before: Mar 24 14:38:31 2021 GMT
            Not After : Mar 24 14:38:31 2026 GMT
        Subject: CN=a1331169bff1a2fe888e3e5f200129142b753646
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:12:7b:da:c0:db:6a:60:1f:eb:eb:6a:88:26:
                    37:9b:38:04:d4:d8:e2:f3:f0:2d:37:5c:11:f2:7b:
                    24:65:9d:a0:78:06:32:f4:e4:98:8b:c4:6f:58:97:
                    d5:4e:e8:3a:45:81:7c:56:55:3f:11:ce:48:d9:31:
                    83:07:07:14:2c:a7:6b:f8:73:9e:fd:00:d0:01:24:
                    0a:6c:d8:27:6a:87:1e:86:c7:bf:c3:34:d6:3d:b2:
                    7b:2e:ff:ed:4e:eb:a1:24:49:74:97:1d:74:62:55:
                    c9:83:7b:16:c1:0e:3f:7b:c7:55:7d:8e:dc:99:31:
                    dc:8d:57:53:7c:a7:02:86:80:29:8d:0b:66:fa:56:
                    26:82:e7:75:b8:46:7f:c5:96:84:4b:4b:af:e6:15:
                    19:9a:15:39:99:34:ff:2e:02:da:5c:9e:03:24:97:
                    b8:72:6a:ee:8b:99:e9:d3:be:1d:d4:2b:77:2f:3d:
                    e4:76:4b:dd:ce:3b:1e:e6:d4:7c:38:14:46:a2:e3:
                    cf:85:61:b8:f7:ef:49:fb:a2:ae:00:4e:bf:09:97:
                    83:f2:b9:e6:ab:5b:31:8b:83:ac:fc:a0:5d:6c:df:
                    81:0a:ca:06:64:55:62:c2:59:70:20:aa:62:54:08:
                    84:e5:d4:d8:ea:fa:21:6f:e4:76:a9:90:6e:43:e8:
                    95:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CF:0F:16:3F:47:9C:18:B0:F4:AA:8C:B3:86:91:55:79:B0:E2:70:82
            X509v3 Authority Key Identifier:
                keyid:80:F0:C7:27:4F:82:24:D1:E9:76:F3:80:E6:EF:32:CF:10:F8:9D:D3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/1059e1e3317704575f2c0b750ee73b166a39cd37.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/a1331169bff1a2fe888e3e5f200129142b753646.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/aca713f5-6cac-486e-a016-a3e8b31bf029/1059e1e3317704575f2c0b750ee73b166a39cd37.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.107.2.0/24

    Signature Algorithm: sha256WithRSAEncryption
         6c:d7:f9:cf:d9:87:a8:5c:9b:0f:11:a8:22:3c:50:b9:a0:eb:
         87:e7:17:52:1b:52:9b:78:cf:6a:e9:8e:5b:42:62:3b:b1:d5:
         37:0d:35:49:c6:41:da:77:c5:e1:7d:d8:d2:d6:74:46:f4:fd:
         6a:04:35:b6:ca:26:f5:2a:d9:e7:61:9d:fa:e6:e4:8a:55:29:
         56:85:b9:7a:25:28:fb:bb:83:57:13:fd:66:49:f6:f0:ba:f6:
         97:95:b8:f0:6e:04:be:c9:7d:a8:89:18:a2:a6:ed:48:f3:f5:
         4d:13:a0:0f:33:ca:31:cc:cf:70:22:8a:63:5b:2d:3b:ff:71:
         f4:43:06:f0:8b:19:1a:a3:04:82:b9:c2:be:09:af:0e:dd:08:
         d4:86:2e:8e:58:4f:2e:94:f2:05:a2:8b:cf:95:45:d0:e7:36:
         6a:da:e5:8f:64:10:4b:4a:f4:0c:20:b5:ef:53:9c:39:4c:03:
         79:5d:fc:02:c2:99:84:28:0a:ef:07:cc:19:0a:46:71:5c:cc:
         56:f3:9b:e1:14:6a:0a:ea:94:da:32:d9:f8:0e:6e:60:b4:ad:
         0b:1b:4e:56:5b:cf:4e:4a:5a:8e:83:a4:95:0d:29:9c:50:74:
         80:40:9f:fb:01:83:de:27:56:e5:dc:ce:35:da:7d:fc:b0:74:
         77:40:ea:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 11:25:46 2024 by rpki-client on console-fra.rpki-client.org