Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/ae84e993-2232-46f6-a21f-cf5e071f1856/57509252bc662518ae3b39baabcf8f8d3aab66de.roa
File:                     57509252bc662518ae3b39baabcf8f8d3aab66de.roa (raw, json)
Hash identifier:          hMp/9WMQs7KWbxXYyD6/VUh1iHjOmElmaqLL7Zvwhi0=
Subject key identifier:   D1:AC:05:FC:47:77:EF:6A:6C:92:47:2A:4E:6B:62:AF:9A:94:62:2C
Certificate issuer:       /CN=5b91a34d5cd67966bc6563a71283bf8d1dcc99eb
Certificate serial:       04DEC1
Authority key identifier: 58:51:ED:CC:65:EF:5E:C4:A0:D4:12:50:0B:57:EC:09:3F:7D:69:0E
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5b91a34d5cd67966bc6563a71283bf8d1dcc99eb.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/ae84e993-2232-46f6-a21f-cf5e071f1856/57509252bc662518ae3b39baabcf8f8d3aab66de.roa
Signing time:             Wed 24 Mar 2021 14:32:57 +0000
ROA not before:           Wed 24 Mar 2021 14:32:57 +0000
ROA not after:            Tue 24 Mar 2026 14:32:57 +0000
asID:                     270090
IP address blocks:        179.42.80.0/22 maxlen: 23

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/ae84e993-2232-46f6-a21f-cf5e071f1856/5b91a34d5cd67966bc6563a71283bf8d1dcc99eb.crl
                          rsync://repository.lacnic.net/rpki/lacnic/ae84e993-2232-46f6-a21f-cf5e071f1856/5b91a34d5cd67966bc6563a71283bf8d1dcc99eb.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5b91a34d5cd67966bc6563a71283bf8d1dcc99eb.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sat 24 Feb 2024 17:37:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 319169 (0x4dec1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5b91a34d5cd67966bc6563a71283bf8d1dcc99eb
        Validity
            Not Before: Mar 24 14:32:57 2021 GMT
            Not After : Mar 24 14:32:57 2026 GMT
        Subject: CN=57509252bc662518ae3b39baabcf8f8d3aab66de
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:74:12:d8:e0:7d:5e:c5:68:b2:7e:ef:42:94:
                    9d:15:8b:22:eb:7c:a5:fa:70:f6:95:b2:2b:04:e2:
                    e6:a7:08:f2:d5:25:57:17:7e:77:12:2c:b8:4c:29:
                    cb:fc:f6:f9:58:46:8c:3d:08:2f:2c:76:95:d6:9e:
                    0e:e2:99:6d:02:67:b6:c1:d2:5a:d9:4e:3c:aa:f2:
                    93:5d:ec:87:4f:a8:47:9d:b2:10:15:83:29:86:04:
                    fc:7c:f4:da:9c:45:8b:db:f1:b4:c2:23:cf:46:ae:
                    86:55:61:7d:09:cf:34:84:01:8f:3f:96:b3:62:44:
                    93:16:52:51:73:0a:9c:02:30:f7:51:eb:63:ca:c9:
                    6c:4d:07:68:18:92:b1:9f:7a:c0:91:e8:87:d8:32:
                    39:f8:2c:5c:e6:b7:67:53:bb:7e:25:75:2f:e3:82:
                    27:cc:de:fe:28:59:e3:b8:ea:75:26:28:b0:1b:3f:
                    7c:13:66:82:86:ce:dd:95:f0:dd:9e:aa:00:0e:b9:
                    ff:d8:e5:22:58:c5:37:f2:50:89:21:2d:86:dd:48:
                    6b:4e:e1:55:0f:d9:5f:0b:3f:5e:e1:14:de:32:36:
                    c2:7b:1c:c2:aa:78:4e:cd:e5:00:52:64:3b:14:15:
                    88:04:fe:ea:49:83:4a:04:4e:05:5f:2d:71:c6:ec:
                    24:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D1:AC:05:FC:47:77:EF:6A:6C:92:47:2A:4E:6B:62:AF:9A:94:62:2C
            X509v3 Authority Key Identifier:
                keyid:58:51:ED:CC:65:EF:5E:C4:A0:D4:12:50:0B:57:EC:09:3F:7D:69:0E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5b91a34d5cd67966bc6563a71283bf8d1dcc99eb.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/ae84e993-2232-46f6-a21f-cf5e071f1856/57509252bc662518ae3b39baabcf8f8d3aab66de.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/ae84e993-2232-46f6-a21f-cf5e071f1856/5b91a34d5cd67966bc6563a71283bf8d1dcc99eb.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  179.42.80.0/22

    Signature Algorithm: sha256WithRSAEncryption
         09:e9:6d:4a:e6:58:8e:a6:ec:5d:c3:b1:16:be:ab:fd:2a:6b:
         56:93:da:eb:f4:39:5a:9f:36:b2:36:f4:52:ed:36:01:2c:86:
         32:f8:01:2c:5d:7d:5b:0b:59:0f:54:f8:b0:8d:7a:b7:f6:32:
         7b:38:d9:5d:97:35:5e:00:ac:82:7d:c0:e2:3c:68:28:13:06:
         e3:38:3d:bc:77:c2:bf:fa:38:4e:32:98:c3:40:94:17:01:ee:
         4e:c1:cb:34:37:5d:72:e0:9f:3a:de:b6:2a:2a:22:09:7a:04:
         5c:f3:d9:83:d1:bf:78:e2:db:2b:f4:83:4a:d7:9e:7c:df:5b:
         43:c3:0e:b1:eb:0e:ba:bf:00:27:25:15:96:af:d0:59:38:2f:
         bd:e9:88:2f:fd:8d:d0:62:d0:b4:56:d8:c8:4e:29:fb:f2:f3:
         af:77:d4:bf:76:58:cf:36:a9:3f:4e:52:2e:fb:97:92:61:d1:
         e8:88:8b:97:cb:67:40:f3:f5:63:f4:15:af:53:66:c8:1f:c4:
         a8:88:ab:91:61:ae:36:b7:c2:ae:3a:c5:66:d4:fb:42:35:b1:
         a5:42:49:b9:53:4a:3d:04:c0:3d:4f:04:9f:bf:b3:60:d1:3f:
         23:a2:b1:a8:d7:6f:5f:1a:cc:ec:a6:db:35:04:63:1a:9e:37:
         b4:d1:cd:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 21 22:41:54 2024 by rpki-client on console-ams.rpki-client.org