Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/b7e2cbcb-4e1e-4451-ba9f-b839acb5a75f/e4e8dc1f4caa5ad117ce8cb6e0940bc63354cd92.roa
File:                     e4e8dc1f4caa5ad117ce8cb6e0940bc63354cd92.roa (raw, json)
Hash identifier:          ZXJLSFT9VVzKNhstuTGZ1zgViwywX6/75H+feKOrpc0=
Subject key identifier:   1B:F9:07:1D:83:A1:C7:3F:F3:83:77:BC:4C:C5:5B:A3:38:D5:E9:DB
Certificate issuer:       /CN=c376ce9732a7f8438a8728863d42624058e18390
Certificate serial:       0DB2F4
Authority key identifier: D1:A6:22:E9:31:1A:89:37:4E:F7:42:9E:B6:EB:2C:D4:16:A2:54:92
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c376ce9732a7f8438a8728863d42624058e18390.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/b7e2cbcb-4e1e-4451-ba9f-b839acb5a75f/e4e8dc1f4caa5ad117ce8cb6e0940bc63354cd92.roa
Signing time:             Wed 24 Mar 2021 14:35:26 +0000
ROA not before:           Wed 24 Mar 2021 14:35:25 +0000
ROA not after:            Tue 24 Mar 2026 14:35:25 +0000
asID:                     18747
IP address blocks:        216.241.0.0/19 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/b7e2cbcb-4e1e-4451-ba9f-b839acb5a75f/c376ce9732a7f8438a8728863d42624058e18390.crl
                          rsync://repository.lacnic.net/rpki/lacnic/b7e2cbcb-4e1e-4451-ba9f-b839acb5a75f/c376ce9732a7f8438a8728863d42624058e18390.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c376ce9732a7f8438a8728863d42624058e18390.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 01 Apr 2024 05:58:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 897780 (0xdb2f4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c376ce9732a7f8438a8728863d42624058e18390
        Validity
            Not Before: Mar 24 14:35:25 2021 GMT
            Not After : Mar 24 14:35:25 2026 GMT
        Subject: CN=e4e8dc1f4caa5ad117ce8cb6e0940bc63354cd92
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:52:a6:cd:44:53:27:70:0b:a2:dc:12:9e:28:
                    b4:04:11:a9:dd:a3:ce:16:d4:c1:93:ec:81:23:83:
                    38:43:7e:2d:bf:e5:d4:8f:05:3c:ac:c6:aa:2e:a8:
                    52:23:34:f0:c4:56:32:55:32:c8:7b:47:a3:60:2d:
                    43:9e:c9:1c:78:e3:3c:8e:2a:c0:0e:c8:9c:37:29:
                    fa:93:7e:83:0a:31:af:7a:71:4c:cc:75:bd:61:4c:
                    7f:b6:31:91:be:c5:e0:5f:7a:0d:90:23:84:1e:9d:
                    4b:04:ad:3a:81:47:48:1d:42:ae:02:35:d2:71:9a:
                    42:24:7c:f2:50:93:6a:d4:9d:15:b6:f5:e6:86:4b:
                    dd:69:05:5d:47:2c:66:73:0c:82:76:b7:11:c6:31:
                    c6:d5:38:44:ac:9f:7e:a8:e9:13:19:76:b8:9a:2b:
                    5e:c9:1f:cb:f0:2a:d2:06:3a:b4:de:28:7f:fc:31:
                    79:f7:8b:19:5d:17:08:47:f2:8d:db:f3:b2:94:d7:
                    56:9f:b7:46:36:61:60:3d:a9:e1:f0:ac:dd:54:77:
                    98:87:2e:17:79:ae:5b:bb:3b:8d:c3:fa:25:56:85:
                    92:36:5c:bf:61:e5:4a:b6:de:a9:27:2f:ad:8d:5a:
                    ad:d8:b1:77:b6:05:68:06:5f:2c:bb:27:48:33:0d:
                    e5:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1B:F9:07:1D:83:A1:C7:3F:F3:83:77:BC:4C:C5:5B:A3:38:D5:E9:DB
            X509v3 Authority Key Identifier:
                keyid:D1:A6:22:E9:31:1A:89:37:4E:F7:42:9E:B6:EB:2C:D4:16:A2:54:92

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c376ce9732a7f8438a8728863d42624058e18390.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/b7e2cbcb-4e1e-4451-ba9f-b839acb5a75f/e4e8dc1f4caa5ad117ce8cb6e0940bc63354cd92.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/b7e2cbcb-4e1e-4451-ba9f-b839acb5a75f/c376ce9732a7f8438a8728863d42624058e18390.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  216.241.0.0/19

    Signature Algorithm: sha256WithRSAEncryption
         48:70:1e:78:89:88:00:68:7f:46:e9:7d:29:5e:5f:2d:72:2e:
         12:cf:3b:73:48:3c:4b:db:b5:de:0a:2d:90:3c:b3:45:6d:69:
         86:74:0a:88:42:47:f5:2a:0d:b0:13:ce:6b:a2:84:86:0b:50:
         a2:24:88:54:a8:11:ca:ad:8a:1f:20:04:d4:d3:52:c6:7f:85:
         62:dc:e1:65:ba:ce:ff:44:2d:8d:42:8b:83:63:9f:c0:f1:b9:
         49:f7:f0:09:29:d7:ac:38:35:be:b8:fb:71:da:9e:16:4a:b0:
         ce:85:4d:e8:d9:3a:be:a1:c8:1b:60:f7:37:e5:54:3f:74:1a:
         83:1f:44:db:a0:60:ce:83:d6:ed:ba:ec:c5:41:20:76:0c:91:
         c7:2b:41:4b:40:e3:d6:11:f6:bc:59:76:26:40:53:c7:f9:47:
         0a:7b:b0:f7:97:32:17:6a:46:44:56:41:0e:c6:c3:1a:71:54:
         9e:68:5b:30:93:a1:f7:ce:ed:3d:5c:24:21:14:cc:d2:f3:cd:
         af:d3:d6:b5:52:03:e4:00:e9:2b:90:2e:11:77:9b:a0:78:1b:
         e3:ae:74:b3:cd:7f:bf:c7:52:67:ad:6e:b9:ed:61:6b:ec:73:
         83:a3:05:a5:4c:f3:2e:7f:89:20:b2:73:f8:67:39:c5:8e:e5:
         ae:50:b8:43
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIDDbL0MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGMz
NzZjZTk3MzJhN2Y4NDM4YTg3Mjg4NjNkNDI2MjQwNThlMTgzOTAwHhcNMjEwMzI0
MTQzNTI1WhcNMjYwMzI0MTQzNTI1WjAzMTEwLwYDVQQDEyhlNGU4ZGMxZjRjYWE1
YWQxMTdjZThjYjZlMDk0MGJjNjMzNTRjZDkyMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAw1KmzURTJ3ALotwSnii0BBGp3aPOFtTBk+yBI4M4Q34tv+XU
jwU8rMaqLqhSIzTwxFYyVTLIe0ejYC1DnskceOM8jirADsicNyn6k36DCjGvenFM
zHW9YUx/tjGRvsXgX3oNkCOEHp1LBK06gUdIHUKuAjXScZpCJHzyUJNq1J0VtvXm
hkvdaQVdRyxmcwyCdrcRxjHG1ThErJ9+qOkTGXa4miteyR/L8CrSBjq03ih//DF5
94sZXRcIR/KN2/OylNdWn7dGNmFgPanh8KzdVHeYhy4Xea5buzuNw/olVoWSNly/
YeVKtt6pJy+tjVqt2LF3tgVoBl8suydIMw3lYwIDAQABo4ICWzCCAlcwHQYDVR0O
BBYEFBv5Bx2Docc/84N3vEzFW6M41enbMB8GA1UdIwQYMBaAFNGmIukxGok3TvdC
nrbrLNQWolSSMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvYzM3NmNl
OTczMmE3Zjg0MzhhODcyODg2M2Q0MjYyNDA1OGUxODM5MC5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvYjdlMmNiY2ItNGUxZS00NDUxLWJhOWYtYjgzOWFj
YjVhNzVmL2U0ZThkYzFmNGNhYTVhZDExN2NlOGNiNmUwOTQwYmM2MzM1NGNkOTIu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9iN2UyY2JjYi00ZTFlLTQ0NTEtYmE5Zi1iODM5
YWNiNWE3NWYvYzM3NmNlOTczMmE3Zjg0MzhhODcyODg2M2Q0MjYyNDA1OGUxODM5
MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEBdjxADANBgkqhkiG9w0BAQsFAAOCAQEASHAeeImIAGh/Rul9
KV5fLXIuEs87c0g8S9u13gotkDyzRW1phnQKiEJH9SoNsBPOa6KEhgtQoiSIVKgR
yq2KHyAE1NNSxn+FYtzhZbrO/0QtjUKLg2OfwPG5SffwCSnXrDg1vrj7cdqeFkqw
zoVN6Nk6vqHIG2D3N+VUP3Qagx9E26BgzoPW7brsxUEgdgyRxytBS0Dj1hH2vFl2
JkBTx/lHCnuw95cyF2pGRFZBDsbDGnFUnmhbMJOh987tPVwkIRTM0vPNr9PWtVID
5ADpK5AuEXeboHgb4650s81/v8dSZ61uue1ha+xzg6MFpUzzLn+JILJz+Gc5xY7l
rlC4Qw==
-----END CERTIFICATE-----
Generated at Fri Mar 29 07:06:39 2024 by rpki-client on console-ams.rpki-client.org