Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/c0edfb24-be89-4e67-ae08-dd7edc5666ea/7e77aec2106a6251f03fe1ea9d705ed5da84d57a.roa
File:                     7e77aec2106a6251f03fe1ea9d705ed5da84d57a.roa (raw, json)
Hash identifier:          0jnLff+jmUe1gbv5NdgcqtISCQDCSeBrrovdHm1+5fQ=
Subject key identifier:   25:F3:6E:CB:94:4D:BF:86:73:8F:E1:B1:85:53:20:D0:E4:11:A2:54
Certificate issuer:       /CN=3070426b746ffaf94407f39e1e550bba97179b09
Certificate serial:       1A2C44
Authority key identifier: 4B:07:95:9B:1B:BB:5F:F3:F5:C4:7D:C6:6C:33:B9:37:3B:FC:EF:27
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3070426b746ffaf94407f39e1e550bba97179b09.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/c0edfb24-be89-4e67-ae08-dd7edc5666ea/7e77aec2106a6251f03fe1ea9d705ed5da84d57a.roa
Signing time:             Fri 18 Aug 2023 16:12:35 +0000
ROA not before:           Thu 17 Aug 2023 16:12:35 +0000
ROA not after:            Mon 18 Aug 2025 16:12:35 +0000
asID:                     265540
IP address blocks:        190.123.40.0/22 maxlen: 24
                          200.63.40.0/21 maxlen: 24
                          192.141.244.0/22 maxlen: 24
                          2806:2f4::/32 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/c0edfb24-be89-4e67-ae08-dd7edc5666ea/3070426b746ffaf94407f39e1e550bba97179b09.crl
                          rsync://repository.lacnic.net/rpki/lacnic/c0edfb24-be89-4e67-ae08-dd7edc5666ea/3070426b746ffaf94407f39e1e550bba97179b09.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3070426b746ffaf94407f39e1e550bba97179b09.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Thu 29 Feb 2024 02:37:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1715268 (0x1a2c44)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3070426b746ffaf94407f39e1e550bba97179b09
        Validity
            Not Before: Aug 17 16:12:35 2023 GMT
            Not After : Aug 18 16:12:35 2025 GMT
        Subject: CN=7e77aec2106a6251f03fe1ea9d705ed5da84d57a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:61:0f:e7:aa:7c:0a:0b:4a:60:3a:f5:a2:b4:
                    e8:fd:f3:45:f1:00:5e:eb:e3:73:39:5e:2a:4a:b7:
                    6e:47:94:66:30:28:a8:d7:cd:ab:4f:e9:eb:17:50:
                    d7:f7:98:16:44:d1:0d:fa:49:72:a5:ac:b7:56:bd:
                    63:b1:c0:87:8b:22:84:bf:76:81:b0:1c:99:6e:cf:
                    35:e1:12:be:9f:71:4a:19:32:b9:b7:7a:ce:94:88:
                    27:fa:b6:77:02:ed:69:b4:f8:e7:9f:61:74:a6:3d:
                    14:b8:ec:b6:da:ea:81:f2:b5:98:ef:45:57:da:70:
                    a3:01:64:1e:61:dc:73:94:73:d5:f4:ba:04:a5:2a:
                    52:b5:9b:95:e0:24:22:07:bf:7b:55:e5:ff:2f:b9:
                    b2:72:50:ff:ed:49:58:6e:d3:28:95:04:19:cf:6f:
                    02:74:e1:ca:15:06:71:58:0c:d1:b5:f5:86:25:40:
                    b8:0e:f8:d9:94:3f:fe:03:58:ce:e9:d8:9c:51:4a:
                    50:e0:0d:12:6e:4f:3f:a4:f8:c6:3a:28:a7:00:a3:
                    55:db:9b:be:1b:d1:4e:a0:d6:69:bc:39:97:16:98:
                    2b:42:4d:a5:ae:14:cf:0f:01:ec:88:46:96:d2:9c:
                    8e:b5:66:c0:67:ef:c6:b4:b8:d6:d7:89:51:7f:69:
                    b0:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                25:F3:6E:CB:94:4D:BF:86:73:8F:E1:B1:85:53:20:D0:E4:11:A2:54
            X509v3 Authority Key Identifier:
                keyid:4B:07:95:9B:1B:BB:5F:F3:F5:C4:7D:C6:6C:33:B9:37:3B:FC:EF:27

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3070426b746ffaf94407f39e1e550bba97179b09.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/c0edfb24-be89-4e67-ae08-dd7edc5666ea/7e77aec2106a6251f03fe1ea9d705ed5da84d57a.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/c0edfb24-be89-4e67-ae08-dd7edc5666ea/3070426b746ffaf94407f39e1e550bba97179b09.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.123.40.0/22
                  192.141.244.0/22
                  200.63.40.0/21
                IPv6:
                  2806:2f4::/32

    Signature Algorithm: sha256WithRSAEncryption
         95:2e:2a:0d:9f:46:e7:7b:ab:c2:04:f4:ba:a3:74:80:94:85:
         74:26:50:5d:a8:da:a9:a6:95:65:52:0e:24:fa:8d:f4:cb:bf:
         b6:a3:ef:98:df:79:0d:96:cd:1a:93:47:5d:dd:5b:5c:64:64:
         25:65:23:a4:9a:c2:19:e9:8f:2d:4e:a7:94:b7:cb:33:a5:ad:
         cd:c7:12:f8:45:d9:b6:34:60:eb:9d:53:7f:1e:0a:d1:87:0b:
         8d:59:b7:89:0a:af:59:16:d6:65:5e:0e:6d:1c:a9:f8:c4:04:
         51:d2:95:e0:bf:0e:72:78:ec:ce:57:7f:d2:50:a2:f2:8a:d3:
         3d:08:2a:ef:c8:53:71:e3:6d:db:1d:b3:19:99:76:ea:dc:67:
         83:84:1a:e8:d8:aa:85:fe:d2:ed:12:bf:96:a9:53:be:fa:97:
         de:b8:17:eb:e5:fe:ec:b4:cc:cd:4c:5f:85:85:e0:86:8a:50:
         61:61:d2:e1:56:64:fd:61:6f:b5:5e:01:3a:c4:e3:2e:a0:5e:
         3a:09:f4:e5:e8:bd:a6:c4:1a:5a:99:80:f2:03:aa:73:00:4a:
         0c:25:07:b3:7f:91:bf:40:4d:70:c5:8c:c6:c7:d8:7e:91:b9:
         51:bf:35:de:58:89:48:a3:e2:75:d9:13:16:b3:bf:a8:ae:7b:
         94:e3:45:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 26 09:34:51 2024 by rpki-client on console-fra.rpki-client.org