Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/be672872-770a-4d65-bcbb-055878abd1de/088e6848051a1debd1db36a71a4679bc0832b2ed.roa
File:                     088e6848051a1debd1db36a71a4679bc0832b2ed.roa (raw, json)
Hash identifier:          y+6W5pKVluExb2F90LMtqnI58jEHC9FTzkUrZ4X4e9k=
Subject key identifier:   6B:6F:33:36:52:A5:87:53:AF:74:42:17:6C:96:01:A0:CE:CB:DC:F0
Certificate issuer:       /CN=fdfd425584dd260c812e3b649911e7753efa8f09
Certificate serial:       18589E
Authority key identifier: BC:F5:81:9E:28:15:EE:F8:BE:E8:42:19:6B:B5:90:7D:B3:EB:60:1D
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/fdfd425584dd260c812e3b649911e7753efa8f09.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/be672872-770a-4d65-bcbb-055878abd1de/088e6848051a1debd1db36a71a4679bc0832b2ed.roa
Signing time:             Wed 15 Jun 2022 19:02:38 +0000
ROA not before:           Wed 15 Jun 2022 03:00:00 +0000
ROA not after:            Sat 15 Jun 2024 03:00:00 +0000
asID:                     264819
IP address blocks:        170.80.141.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/be672872-770a-4d65-bcbb-055878abd1de/fdfd425584dd260c812e3b649911e7753efa8f09.crl
                          rsync://repository.lacnic.net/rpki/lacnic/be672872-770a-4d65-bcbb-055878abd1de/fdfd425584dd260c812e3b649911e7753efa8f09.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/fdfd425584dd260c812e3b649911e7753efa8f09.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 19:38:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1595550 (0x18589e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fdfd425584dd260c812e3b649911e7753efa8f09
        Validity
            Not Before: Jun 15 03:00:00 2022 GMT
            Not After : Jun 15 03:00:00 2024 GMT
        Subject: CN=088e6848051a1debd1db36a71a4679bc0832b2ed
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:f5:56:3c:f0:d7:d4:ba:d8:4e:f9:52:09:19:
                    22:50:29:2b:a0:13:bb:41:1b:d5:73:00:92:da:08:
                    83:ec:58:08:83:27:92:05:29:58:59:43:aa:24:b1:
                    a5:8c:2c:19:d6:a3:d4:a8:3a:cb:31:bc:2f:67:bb:
                    ac:98:c6:f3:cf:06:bc:60:40:5c:24:e9:28:40:ac:
                    b7:82:bd:a5:a1:f7:99:ac:94:7e:14:a7:a3:d2:06:
                    c1:be:28:8f:4a:69:c0:f5:ab:0a:a2:ef:3a:8a:f2:
                    5d:6a:8f:f8:63:3d:cf:a2:61:9b:8b:ae:da:b7:26:
                    56:67:fa:1c:0b:4f:3d:c6:38:b6:df:10:9b:be:37:
                    9a:08:f7:e0:a9:13:cc:d7:e9:1c:3e:ea:56:8a:03:
                    28:31:13:d1:af:45:92:0b:87:41:9c:3b:e6:75:dd:
                    79:7d:27:55:dd:a8:e2:fd:fa:0c:0a:9a:e4:cb:aa:
                    35:e2:62:88:6f:b8:10:ab:59:8b:52:5a:6a:f7:7f:
                    ba:80:54:be:c5:51:d3:41:e3:58:9e:96:f9:19:44:
                    64:25:a1:2c:d6:55:7f:15:e2:e4:0f:4d:e3:a6:c2:
                    07:f8:b9:d1:cc:cd:04:17:35:d0:4c:00:19:c6:94:
                    26:b0:21:fb:37:18:72:c6:10:af:1c:41:ca:77:03:
                    60:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6B:6F:33:36:52:A5:87:53:AF:74:42:17:6C:96:01:A0:CE:CB:DC:F0
            X509v3 Authority Key Identifier:
                keyid:BC:F5:81:9E:28:15:EE:F8:BE:E8:42:19:6B:B5:90:7D:B3:EB:60:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/fdfd425584dd260c812e3b649911e7753efa8f09.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/be672872-770a-4d65-bcbb-055878abd1de/088e6848051a1debd1db36a71a4679bc0832b2ed.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/be672872-770a-4d65-bcbb-055878abd1de/fdfd425584dd260c812e3b649911e7753efa8f09.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  170.80.141.0/24

    Signature Algorithm: sha256WithRSAEncryption
         29:c0:3f:ae:e7:66:36:4e:5f:bd:37:38:5f:25:82:15:6b:d3:
         e5:6c:de:99:7c:e1:ab:16:97:4c:ff:f9:e1:b9:9e:17:c2:45:
         2a:d4:1f:43:94:23:51:38:eb:42:ac:8f:83:2a:c8:15:9d:f9:
         a0:2b:d6:20:d3:49:48:a7:3e:23:d1:36:17:60:8a:95:06:a9:
         c8:db:b2:18:dd:a6:73:a5:f0:2a:23:af:bf:34:3b:72:b5:62:
         85:c4:61:1e:62:dd:7e:d4:17:08:5d:7c:b7:a8:80:37:0f:2b:
         4f:05:8c:3b:ed:1b:a0:f4:8c:98:be:2a:f0:22:a8:0f:e9:cb:
         37:23:1c:69:bb:0e:8a:fc:bc:4d:da:a7:ca:92:22:f7:8e:16:
         11:03:57:07:9b:2d:f0:29:b6:e8:dc:58:36:ec:ac:34:68:b4:
         e7:3e:82:1e:33:ec:ee:af:18:ed:4e:d3:65:4d:a6:f7:de:9f:
         ea:df:3f:18:df:c4:a8:eb:67:9f:a2:2d:9e:38:1c:4e:0c:d5:
         97:38:71:f0:f2:01:72:24:83:8b:c5:64:49:f1:22:99:6c:09:
         2b:0a:95:24:e5:43:2c:7c:48:d6:dc:b8:b9:68:f0:3a:81:c8:
         69:80:e0:d0:11:59:54:fa:e2:ab:a2:46:79:96:6a:83:30:31:
         18:05:09:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 04:20:47 2024 by rpki-client on console-fra.rpki-client.org