Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/c3438320-87a2-423f-af81-445ba6bea387/18a96751499b59a85c70c0d6f524cfc2cef360a9.roa
File:                     18a96751499b59a85c70c0d6f524cfc2cef360a9.roa (raw, json)
Hash identifier:          ut1c0go2yYPiMBZP9Oca3mteaKIa7YLWCs/XEQk0w1M=
Subject key identifier:   C9:97:72:AA:D8:EA:B8:D0:AF:CC:36:AA:67:91:B1:DB:AC:67:A8:0B
Certificate issuer:       /CN=9df60dad5cb02fa13e22a03cf7e0f5cace32ceab
Certificate serial:       0BFD84
Authority key identifier: A9:92:B7:73:46:73:BD:E5:1D:41:E6:96:85:F5:C8:D3:0B:73:32:AC
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/9df60dad5cb02fa13e22a03cf7e0f5cace32ceab.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/c3438320-87a2-423f-af81-445ba6bea387/18a96751499b59a85c70c0d6f524cfc2cef360a9.roa
Signing time:             Wed 24 Mar 2021 14:48:04 +0000
ROA not before:           Wed 24 Mar 2021 14:48:04 +0000
ROA not after:            Tue 24 Mar 2026 14:48:04 +0000
asID:                     267693
IP address blocks:        45.160.224.0/22 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/c3438320-87a2-423f-af81-445ba6bea387/9df60dad5cb02fa13e22a03cf7e0f5cace32ceab.crl
                          rsync://repository.lacnic.net/rpki/lacnic/c3438320-87a2-423f-af81-445ba6bea387/9df60dad5cb02fa13e22a03cf7e0f5cace32ceab.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/9df60dad5cb02fa13e22a03cf7e0f5cace32ceab.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 01 Apr 2024 05:58:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 785796 (0xbfd84)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9df60dad5cb02fa13e22a03cf7e0f5cace32ceab
        Validity
            Not Before: Mar 24 14:48:04 2021 GMT
            Not After : Mar 24 14:48:04 2026 GMT
        Subject: CN=18a96751499b59a85c70c0d6f524cfc2cef360a9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d6:8a:46:28:f6:88:c2:1b:34:9b:7e:ea:a5:e2:
                    40:f8:ef:58:10:22:be:bb:75:63:36:54:6b:8d:5b:
                    37:cb:06:48:b7:43:a1:b9:5e:3c:b1:42:35:58:11:
                    88:02:15:a7:72:8d:6c:ef:fc:c6:9c:97:d6:12:fe:
                    14:e9:64:af:1d:e8:58:91:bf:78:9d:e4:c3:d7:05:
                    4f:b6:56:c4:b2:3b:ba:b2:73:b7:7b:60:c4:08:c3:
                    8b:40:aa:e7:f3:22:84:01:b2:fb:ab:96:bd:d4:ba:
                    6e:7b:3d:1d:12:b4:2c:87:df:93:b3:16:fc:72:c6:
                    db:d4:3d:5c:57:1e:87:2d:bf:df:48:73:c5:12:47:
                    92:e3:7b:c3:65:6a:dc:b4:f0:82:6f:e0:fa:bb:09:
                    ba:88:86:d8:46:10:9a:75:20:48:ad:33:34:27:aa:
                    d9:93:50:05:b8:a9:63:23:82:d7:1e:06:39:a2:27:
                    93:de:e1:8b:cd:e4:01:1e:ad:4e:e4:09:ee:4d:ee:
                    0b:b7:b2:ee:94:9b:6c:9d:23:d0:f4:c9:6f:93:17:
                    54:42:19:84:2b:3f:63:50:25:7d:e9:d5:47:50:5e:
                    51:57:b2:05:4e:46:95:98:6f:eb:88:a1:eb:de:ec:
                    62:3f:4b:6f:ac:54:5d:fb:b0:0a:60:91:72:a7:e7:
                    5a:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C9:97:72:AA:D8:EA:B8:D0:AF:CC:36:AA:67:91:B1:DB:AC:67:A8:0B
            X509v3 Authority Key Identifier:
                keyid:A9:92:B7:73:46:73:BD:E5:1D:41:E6:96:85:F5:C8:D3:0B:73:32:AC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/9df60dad5cb02fa13e22a03cf7e0f5cace32ceab.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/c3438320-87a2-423f-af81-445ba6bea387/18a96751499b59a85c70c0d6f524cfc2cef360a9.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/c3438320-87a2-423f-af81-445ba6bea387/9df60dad5cb02fa13e22a03cf7e0f5cace32ceab.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.160.224.0/22

    Signature Algorithm: sha256WithRSAEncryption
         44:71:e2:86:7d:95:d5:e9:cd:25:d8:00:05:4f:d3:cf:28:8d:
         90:c9:73:93:f3:fb:c9:c0:ab:c9:65:4f:1b:93:50:06:f8:bf:
         5a:79:73:7e:ff:26:e3:d7:3e:34:6f:f1:68:95:35:55:9a:a7:
         89:2b:09:27:51:69:90:1e:f0:3a:0b:f1:83:dd:11:68:f4:05:
         d2:09:2b:a3:0d:e2:7c:46:61:27:d0:91:0a:ed:98:cf:22:2c:
         93:1d:d8:8f:8e:44:7c:02:e8:15:f5:04:73:82:94:64:33:ed:
         04:68:dd:8f:e6:38:3f:32:ca:b3:8f:b8:df:b7:ab:e7:8e:0a:
         0d:45:03:ca:b0:50:91:41:f6:bc:cc:c8:0b:38:c3:a5:07:31:
         80:66:01:e0:68:14:26:da:45:20:0d:11:c9:07:85:f4:e1:fe:
         46:3d:c8:4f:bb:1c:54:fe:9f:46:a6:e9:eb:15:96:01:e5:0f:
         a6:63:74:52:5f:45:57:d4:dc:a4:00:d0:b9:92:43:ec:79:40:
         ae:46:fa:36:5e:c4:49:88:b5:95:5b:c0:05:27:45:d7:34:e0:
         bb:40:7b:b1:06:12:a1:c7:40:1a:9e:51:ab:e8:a1:2c:cf:cd:
         44:b4:76:1e:6d:eb:80:ad:6b:5e:19:91:d7:1c:74:b2:cd:00:
         fc:47:f2:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 07:06:40 2024 by rpki-client on console-ams.rpki-client.org