Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/c3b8b093-3b8e-4afb-a4b6-66e5bf842d42/da9a5f15e16b925e72d22577e713445de9aa8e7d.roa
File:                     da9a5f15e16b925e72d22577e713445de9aa8e7d.roa (raw, json)
Hash identifier:          Zd+4cy9rojrBmGYv1AHR3DS2AgJVE2eaBbPWAx/u4/k=
Subject key identifier:   8D:9E:59:76:58:FB:E0:51:A6:D3:57:36:CC:96:26:2F:23:64:1B:B9
Certificate issuer:       /CN=57fc224d7318115fc535dd2915b9a6596893d66f
Certificate serial:       02E8
Authority key identifier: E6:94:A7:3F:2E:18:25:57:6D:8E:37:E6:33:4E:8B:80:B2:C7:F9:7E
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/57fc224d7318115fc535dd2915b9a6596893d66f.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/c3b8b093-3b8e-4afb-a4b6-66e5bf842d42/da9a5f15e16b925e72d22577e713445de9aa8e7d.roa
Signing time:             Mon 27 Jun 2022 18:40:32 +0000
ROA not before:           Mon 27 Jun 2022 03:00:00 +0000
ROA not after:            Thu 27 Jun 2024 03:00:00 +0000
asID:                     270114
IP address blocks:        187.102.236.0/22 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/c3b8b093-3b8e-4afb-a4b6-66e5bf842d42/57fc224d7318115fc535dd2915b9a6596893d66f.crl
                          rsync://repository.lacnic.net/rpki/lacnic/c3b8b093-3b8e-4afb-a4b6-66e5bf842d42/57fc224d7318115fc535dd2915b9a6596893d66f.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/57fc224d7318115fc535dd2915b9a6596893d66f.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Wed 06 Mar 2024 06:24:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 744 (0x2e8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=57fc224d7318115fc535dd2915b9a6596893d66f
        Validity
            Not Before: Jun 27 03:00:00 2022 GMT
            Not After : Jun 27 03:00:00 2024 GMT
        Subject: CN=da9a5f15e16b925e72d22577e713445de9aa8e7d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:88:a3:a4:12:6e:03:f1:33:fc:2e:38:0e:d0:c9:
                    bb:5b:41:ed:fe:7e:16:a1:c0:27:6c:a9:9a:fd:ed:
                    ec:a1:b9:20:6a:7c:1a:c3:99:63:9d:9d:64:90:45:
                    e0:07:b5:5a:2e:31:36:1e:f8:e8:6e:c0:38:41:82:
                    92:89:54:21:86:f5:e4:6b:b6:59:fd:0c:86:72:a6:
                    a7:92:00:56:f7:0e:d4:dd:42:50:71:b6:e7:99:03:
                    57:88:5d:ca:eb:a4:bf:36:37:8a:47:7f:1e:d1:e8:
                    7c:a1:92:0a:2c:fc:d0:50:17:d3:ea:28:68:22:3f:
                    76:c7:2b:2e:18:7a:e7:f1:b8:37:ce:de:93:21:8a:
                    5a:69:22:20:51:6c:06:a9:7b:7e:e9:2f:9c:92:85:
                    5c:e7:51:d1:b7:8c:15:61:ec:cf:33:16:28:1b:9f:
                    a5:3c:bf:9a:5f:60:ca:e7:b1:09:1a:07:eb:8d:74:
                    0a:4a:20:e9:98:a9:8d:4d:dd:77:db:fa:d4:5c:a6:
                    48:b5:d6:b3:59:86:0c:dd:77:40:bc:aa:6c:1d:bf:
                    d5:49:be:c6:a0:8c:d9:57:d8:d0:4b:fa:fc:83:ca:
                    85:99:91:04:4f:96:ff:45:f4:5f:e7:52:3c:ee:b3:
                    53:92:9f:9e:9f:f6:68:cf:62:69:48:c2:94:73:ca:
                    bb:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8D:9E:59:76:58:FB:E0:51:A6:D3:57:36:CC:96:26:2F:23:64:1B:B9
            X509v3 Authority Key Identifier:
                keyid:E6:94:A7:3F:2E:18:25:57:6D:8E:37:E6:33:4E:8B:80:B2:C7:F9:7E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/57fc224d7318115fc535dd2915b9a6596893d66f.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/c3b8b093-3b8e-4afb-a4b6-66e5bf842d42/da9a5f15e16b925e72d22577e713445de9aa8e7d.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/c3b8b093-3b8e-4afb-a4b6-66e5bf842d42/57fc224d7318115fc535dd2915b9a6596893d66f.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  187.102.236.0/22

    Signature Algorithm: sha256WithRSAEncryption
         51:a2:f8:a4:c2:d8:2b:4c:35:8b:87:94:88:ef:72:ca:f7:b0:
         d2:8c:b7:a5:43:b5:df:0e:0a:63:f8:72:66:0d:5a:d8:3e:9c:
         57:d1:2b:36:c3:30:2e:cc:24:6a:8f:1b:1c:ae:fa:b1:79:d1:
         7e:b1:ca:f2:e1:27:fa:05:52:39:43:a3:2e:b2:62:07:a0:2c:
         93:4b:48:2a:a5:6f:1e:61:5b:61:8d:0c:74:e5:cf:98:58:aa:
         89:f6:b8:98:fd:3f:41:16:a9:54:91:95:fd:2a:ed:ca:d0:e0:
         ff:74:40:e7:f5:e0:2c:fd:d9:d0:79:ec:51:44:0c:37:9c:5b:
         7b:24:b4:9f:1d:16:fe:db:97:40:a0:f6:66:11:3a:83:a7:ba:
         18:75:5c:17:4c:3c:1c:94:81:d6:c6:ec:e6:09:c0:c7:08:c0:
         15:50:46:d7:dd:1a:51:b1:53:35:a0:c7:4d:e3:98:5e:26:c5:
         29:09:a4:91:6e:c2:71:9c:d7:8a:10:59:d7:e1:6b:58:7b:81:
         f7:53:86:29:ba:90:95:10:db:d3:32:80:93:10:25:e1:a1:b1:
         e8:52:6f:d9:99:cf:25:8b:62:14:d5:f1:a4:1e:6e:14:38:1e:
         ef:1f:42:52:d0:b3:ae:36:f3:4b:0b:1b:f6:31:32:09:67:27:
         e8:5a:f9:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 3 10:07:02 2024 by rpki-client on console-fra.rpki-client.org