Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/cad6bd43-0be9-47a2-949e-17e9dd2ab774/7e35d32798a16b034a2f395402991ff350ab4eba.roa
File:                     7e35d32798a16b034a2f395402991ff350ab4eba.roa (raw, json)
Hash identifier:          ad87dO9JsdNCEzYaPZfxpLZCbv9Qgxh4CK2xaYIKSNo=
Subject key identifier:   96:AA:3F:86:B9:0B:BD:E9:FC:D8:E2:0A:76:E9:6A:8A:80:17:43:1B
Certificate issuer:       /CN=9db2a0ff15be72dc4c6e8a4c748dbfd648ff886c
Certificate serial:       0C99EA
Authority key identifier: 10:20:8A:1B:7D:3F:A9:50:0B:C8:89:3E:E8:8D:7A:9C:C7:3F:62:DA
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/9db2a0ff15be72dc4c6e8a4c748dbfd648ff886c.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/cad6bd43-0be9-47a2-949e-17e9dd2ab774/7e35d32798a16b034a2f395402991ff350ab4eba.roa
Signing time:             Wed 24 Mar 2021 14:45:40 +0000
ROA not before:           Wed 24 Mar 2021 14:45:39 +0000
ROA not after:            Tue 24 Mar 2026 14:45:39 +0000
asID:                     263224
IP address blocks:        177.91.248.0/21 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/cad6bd43-0be9-47a2-949e-17e9dd2ab774/9db2a0ff15be72dc4c6e8a4c748dbfd648ff886c.crl
                          rsync://repository.lacnic.net/rpki/lacnic/cad6bd43-0be9-47a2-949e-17e9dd2ab774/9db2a0ff15be72dc4c6e8a4c748dbfd648ff886c.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/9db2a0ff15be72dc4c6e8a4c748dbfd648ff886c.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Wed 06 Mar 2024 06:24:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 825834 (0xc99ea)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9db2a0ff15be72dc4c6e8a4c748dbfd648ff886c
        Validity
            Not Before: Mar 24 14:45:39 2021 GMT
            Not After : Mar 24 14:45:39 2026 GMT
        Subject: CN=7e35d32798a16b034a2f395402991ff350ab4eba
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:8a:3c:dd:0c:b9:9a:5c:54:7a:2f:14:ef:fe:
                    f4:9e:5f:0a:a9:cf:a3:12:b7:0d:6b:07:54:61:6e:
                    f2:ca:25:81:40:25:47:5e:e2:b4:88:52:79:83:aa:
                    c9:27:28:cb:32:2a:ae:ee:eb:53:0e:8f:04:ed:4c:
                    88:f8:6b:73:76:70:25:0e:8e:dc:a7:63:68:95:49:
                    e7:9a:1f:1d:89:2d:be:a8:6e:1b:ab:6a:e7:a6:23:
                    cf:7e:40:21:66:74:08:f1:7e:23:d7:4f:26:c4:bd:
                    46:c7:9f:74:c9:74:54:52:cf:67:93:84:46:b2:53:
                    1d:d4:ae:73:e5:f9:f3:81:54:33:f8:d9:25:4b:7a:
                    32:fb:44:52:2c:f2:60:23:ab:31:cd:4e:45:d2:9b:
                    bc:27:e9:52:62:88:17:54:bc:4a:2e:17:48:2c:61:
                    d3:7b:3f:71:42:63:bd:24:58:86:42:b8:72:f1:84:
                    52:46:8e:df:8c:fa:0c:7d:66:18:0c:8e:21:fa:35:
                    37:02:3c:51:fd:a3:81:a6:0a:d1:81:49:ea:60:e6:
                    b0:42:31:c0:61:b4:a3:b6:b2:c2:89:7d:95:9a:5d:
                    85:76:db:44:00:c7:20:19:8a:b3:57:f1:e2:8f:fd:
                    65:d3:32:fc:53:0a:c7:d3:98:fa:05:a3:46:e5:ee:
                    7f:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                96:AA:3F:86:B9:0B:BD:E9:FC:D8:E2:0A:76:E9:6A:8A:80:17:43:1B
            X509v3 Authority Key Identifier:
                keyid:10:20:8A:1B:7D:3F:A9:50:0B:C8:89:3E:E8:8D:7A:9C:C7:3F:62:DA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/9db2a0ff15be72dc4c6e8a4c748dbfd648ff886c.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/cad6bd43-0be9-47a2-949e-17e9dd2ab774/7e35d32798a16b034a2f395402991ff350ab4eba.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/cad6bd43-0be9-47a2-949e-17e9dd2ab774/9db2a0ff15be72dc4c6e8a4c748dbfd648ff886c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  177.91.248.0/21

    Signature Algorithm: sha256WithRSAEncryption
         2e:86:90:c3:84:8f:e8:97:1b:88:a4:c1:da:10:ab:3c:3d:6f:
         fd:f3:82:0e:c0:69:e0:1e:f8:c0:3b:07:60:00:e6:88:32:4a:
         00:a3:76:dd:70:45:f2:a7:af:01:bf:00:a7:93:36:c9:0c:07:
         30:b2:e1:a9:76:d9:6b:40:89:ba:53:f5:8b:8a:cb:bb:99:77:
         fa:4c:f8:8e:69:ca:fb:25:e2:b6:d5:9a:d4:df:de:8c:8a:9a:
         fc:49:8d:96:2f:64:81:60:d7:0c:d7:a4:3d:e5:34:66:2d:7d:
         23:f9:0f:85:8d:06:ee:bf:ff:cb:01:d0:ae:94:25:d7:b0:14:
         6f:0b:3f:5e:e7:c5:5c:e5:b1:a9:57:79:2b:5f:50:7f:90:5a:
         c2:48:29:79:d1:f8:50:8c:21:44:55:a0:94:99:71:6b:ae:e0:
         6f:23:04:f5:d5:4e:66:0e:5d:75:89:2c:77:d4:d3:c1:b4:05:
         3a:67:91:b1:19:b0:8d:12:1c:33:5b:e9:67:22:8d:dd:20:8b:
         bd:21:d4:a5:af:20:9b:7a:62:ce:1c:3d:e9:b0:76:a6:0d:cd:
         28:23:95:2b:85:36:12:d2:0f:ae:8e:27:26:28:9d:2c:04:24:
         45:f4:57:28:88:6b:26:8d:d2:73:8a:e7:cb:81:15:bc:15:b2:
         8e:49:3a:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 3 15:32:00 2024 by rpki-client on console-ams.rpki-client.org