Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/cff76ec0-7d4a-49c3-b4ae-3e6a91b723cb/7ff7f547e81de823c83372c0bb8ed80556664ece.roa
File:                     7ff7f547e81de823c83372c0bb8ed80556664ece.roa (raw, json)
Hash identifier:          6OX1rm5c6HuFRu9t7LX6carguMc8/XGjGm+/Xy+fEsg=
Subject key identifier:   6C:52:84:9C:63:76:C8:E7:CA:6F:9D:B2:52:56:F3:7A:4E:C2:1A:48
Certificate issuer:       /CN=d8cb185dc2b67fea4e8fcc9303de76b2e6b3e765
Certificate serial:       1F67FF
Authority key identifier: 40:37:2B:8A:A4:64:31:7E:A5:61:E6:C4:63:CB:F7:04:CD:94:A0:63
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d8cb185dc2b67fea4e8fcc9303de76b2e6b3e765.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/cff76ec0-7d4a-49c3-b4ae-3e6a91b723cb/7ff7f547e81de823c83372c0bb8ed80556664ece.roa
Signing time:             Fri 24 Mar 2023 08:30:13 +0000
ROA not before:           Thu 23 Mar 2023 08:30:13 +0000
ROA not after:            Sat 22 Mar 2025 08:30:13 +0000
asID:                     28114
IP address blocks:        186.183.88.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/cff76ec0-7d4a-49c3-b4ae-3e6a91b723cb/d8cb185dc2b67fea4e8fcc9303de76b2e6b3e765.crl
                          rsync://repository.lacnic.net/rpki/lacnic/cff76ec0-7d4a-49c3-b4ae-3e6a91b723cb/d8cb185dc2b67fea4e8fcc9303de76b2e6b3e765.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d8cb185dc2b67fea4e8fcc9303de76b2e6b3e765.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 19:38:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2058239 (0x1f67ff)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d8cb185dc2b67fea4e8fcc9303de76b2e6b3e765
        Validity
            Not Before: Mar 23 08:30:13 2023 GMT
            Not After : Mar 22 08:30:13 2025 GMT
        Subject: CN=7ff7f547e81de823c83372c0bb8ed80556664ece
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:f1:eb:25:1c:e0:4c:2b:49:e8:65:e8:41:4d:
                    4e:0f:34:3f:63:c7:88:39:e6:ff:08:42:da:90:c5:
                    ad:28:29:03:2b:d2:6b:54:81:d8:ab:88:b6:05:5a:
                    4a:81:de:a4:cd:24:a2:26:12:c5:fc:13:33:87:a5:
                    ed:50:5a:ed:bc:ef:38:17:3a:63:42:47:cb:97:5e:
                    49:6f:57:c6:98:25:d2:84:46:55:37:18:ef:99:e8:
                    21:6f:cb:b3:62:f6:b1:0a:57:7d:cd:4b:45:ef:18:
                    31:df:17:d3:79:2c:b4:f0:ad:59:13:d9:58:40:fc:
                    50:84:f1:5b:4d:38:08:d9:9d:4a:44:90:3d:e8:fe:
                    34:05:f8:29:4e:c1:cb:91:15:7a:af:3f:b1:ab:47:
                    73:41:eb:69:25:3a:56:64:3b:1f:43:2e:1d:bf:c0:
                    04:e6:1f:88:51:f2:30:15:6a:25:ca:44:b3:e7:cd:
                    85:90:1c:e8:a7:2c:6c:4f:6c:67:f9:d6:bf:ad:ed:
                    90:ca:2b:99:88:f0:0f:70:30:08:df:24:af:56:db:
                    bc:ac:20:b4:58:0c:95:4f:c6:8a:9a:f9:ad:99:9b:
                    aa:4c:b3:cf:9b:1a:7e:b4:48:0a:d6:5c:9e:c0:31:
                    68:a6:04:c5:d8:6f:3e:93:3e:92:85:23:9b:24:11:
                    09:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:52:84:9C:63:76:C8:E7:CA:6F:9D:B2:52:56:F3:7A:4E:C2:1A:48
            X509v3 Authority Key Identifier:
                keyid:40:37:2B:8A:A4:64:31:7E:A5:61:E6:C4:63:CB:F7:04:CD:94:A0:63

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d8cb185dc2b67fea4e8fcc9303de76b2e6b3e765.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/cff76ec0-7d4a-49c3-b4ae-3e6a91b723cb/7ff7f547e81de823c83372c0bb8ed80556664ece.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/cff76ec0-7d4a-49c3-b4ae-3e6a91b723cb/d8cb185dc2b67fea4e8fcc9303de76b2e6b3e765.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  186.183.88.0/24

    Signature Algorithm: sha256WithRSAEncryption
         73:0e:c7:4d:a3:cb:76:3a:6a:3a:40:a0:3d:c4:81:bc:d3:e0:
         9a:b0:8f:04:27:5c:d2:c0:29:d9:9f:ea:b1:03:a8:5c:e0:fd:
         2f:5b:a1:7e:b2:55:9e:cd:a9:c1:a3:9a:b9:3f:82:d0:2e:81:
         60:b7:ed:18:23:3a:43:fe:15:e6:cf:73:3e:79:91:99:fe:e2:
         ed:9b:41:e0:31:5b:fd:3c:b6:67:51:ae:17:c3:cf:44:d7:b9:
         40:91:5f:e6:c2:78:1b:62:a5:18:f6:b8:c7:d3:39:af:3f:87:
         65:17:26:ab:df:8f:e1:cf:a7:3e:90:f7:86:3d:83:e9:4f:a9:
         21:c3:df:73:25:a4:3c:59:e6:e3:17:39:76:a6:4b:c4:a1:6e:
         bf:40:40:17:3a:4e:2d:1c:96:df:1f:c0:e2:84:93:b4:57:07:
         e8:07:da:92:28:6d:02:fe:e6:70:71:05:dd:66:70:78:05:46:
         a6:c6:16:ff:6d:7e:77:75:b3:8d:a3:af:4c:70:48:2d:72:f8:
         89:04:cc:43:a0:44:c4:bf:57:36:c0:68:86:79:73:7e:f6:5f:
         a4:66:62:5c:c8:a7:cc:5e:90:91:0e:c1:f4:da:e6:db:32:bb:
         39:c7:1a:c5:c8:64:1a:be:a8:b7:e5:bc:e7:44:a1:39:21:4a:
         80:c5:65:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 21:31:05 2024 by rpki-client on console-ams.rpki-client.org