Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/e3cc602c-3003-4d9c-b2a9-57d6dbe15a76/78625aad1f582f14869588a9925068085b2b0acf.roa
File:                     78625aad1f582f14869588a9925068085b2b0acf.roa (raw, json)
Hash identifier:          MwGx5VUIQr3ei+DzWHEcEEIt3ikOo9T7TgjkipfWLCs=
Subject key identifier:   97:53:A3:1C:66:CA:EF:20:B9:8F:4E:07:6C:F1:47:68:7A:FF:3F:36
Certificate issuer:       /CN=5d8acf86c4ef1439f1fcdd22154481d770578f01
Certificate serial:       0D59F0
Authority key identifier: 5B:14:12:EF:1D:15:77:FE:F4:9D:AB:8F:5A:81:C9:B2:01:96:A9:BC
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5d8acf86c4ef1439f1fcdd22154481d770578f01.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/e3cc602c-3003-4d9c-b2a9-57d6dbe15a76/78625aad1f582f14869588a9925068085b2b0acf.roa
Signing time:             Wed 24 Mar 2021 14:38:05 +0000
ROA not before:           Wed 24 Mar 2021 14:38:05 +0000
ROA not after:            Tue 24 Mar 2026 14:38:05 +0000
asID:                     27725
IP address blocks:        200.14.53.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/e3cc602c-3003-4d9c-b2a9-57d6dbe15a76/5d8acf86c4ef1439f1fcdd22154481d770578f01.crl
                          rsync://repository.lacnic.net/rpki/lacnic/e3cc602c-3003-4d9c-b2a9-57d6dbe15a76/5d8acf86c4ef1439f1fcdd22154481d770578f01.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5d8acf86c4ef1439f1fcdd22154481d770578f01.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 19:38:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 874992 (0xd59f0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5d8acf86c4ef1439f1fcdd22154481d770578f01
        Validity
            Not Before: Mar 24 14:38:05 2021 GMT
            Not After : Mar 24 14:38:05 2026 GMT
        Subject: CN=78625aad1f582f14869588a9925068085b2b0acf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:83:ec:52:74:d1:a5:f8:e8:26:fb:fb:4d:da:
                    7f:ec:5d:de:7d:65:50:2f:3b:17:03:9c:b0:f2:fd:
                    67:33:47:d2:14:52:3d:9b:d0:9b:34:64:d7:8d:b2:
                    ad:47:04:1c:af:f9:6e:4a:6a:0b:87:47:97:a5:e4:
                    c0:c6:ed:b0:36:d3:42:ee:06:6d:13:78:79:ea:69:
                    5f:5f:6b:38:9c:08:a1:af:c2:37:7e:e7:66:80:a5:
                    2f:6b:8b:23:61:39:f3:e1:b1:39:96:00:01:97:fa:
                    f3:93:27:b0:8c:55:22:10:83:91:cc:9f:c6:eb:76:
                    2d:22:44:c8:4a:05:0c:56:41:18:48:02:8d:bf:4c:
                    64:c6:7f:51:4c:38:4e:cd:72:f1:e8:22:39:91:5f:
                    f2:6e:13:f8:99:44:cc:dd:3b:8a:b0:55:b2:10:13:
                    17:84:94:ab:4b:b2:d6:c2:41:05:74:7b:2f:be:06:
                    8e:90:c2:73:b5:a8:1c:89:12:ab:c6:2d:66:07:51:
                    d3:37:73:cb:7b:ef:4d:72:ef:01:22:71:bd:0a:81:
                    0f:65:9f:22:81:05:83:18:59:e2:1f:10:89:82:7e:
                    3b:72:6d:07:a7:58:88:b8:49:71:1f:9d:4a:69:08:
                    ac:0c:b1:0e:96:14:24:99:d0:4e:fd:21:84:d6:ea:
                    53:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                97:53:A3:1C:66:CA:EF:20:B9:8F:4E:07:6C:F1:47:68:7A:FF:3F:36
            X509v3 Authority Key Identifier:
                keyid:5B:14:12:EF:1D:15:77:FE:F4:9D:AB:8F:5A:81:C9:B2:01:96:A9:BC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5d8acf86c4ef1439f1fcdd22154481d770578f01.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/e3cc602c-3003-4d9c-b2a9-57d6dbe15a76/78625aad1f582f14869588a9925068085b2b0acf.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/e3cc602c-3003-4d9c-b2a9-57d6dbe15a76/5d8acf86c4ef1439f1fcdd22154481d770578f01.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.14.53.0/24

    Signature Algorithm: sha256WithRSAEncryption
         be:5c:a7:58:17:91:58:b2:1a:e8:5c:3b:45:7b:15:66:c5:99:
         cb:0d:72:05:a1:6c:e9:0e:3a:f5:1f:bd:38:ce:12:7f:e2:12:
         60:77:91:d4:6e:5f:b2:70:dc:bb:84:02:2d:84:f6:1a:0f:58:
         4a:62:64:0b:ea:e3:2c:fb:07:21:c1:a0:9c:3c:59:a7:16:23:
         71:64:c5:93:b1:f7:4c:15:ca:42:76:37:4d:25:e6:10:a4:b2:
         e6:5a:95:2d:2f:08:57:c5:b4:39:48:1f:d3:af:54:92:9f:ee:
         d2:4b:9f:37:ad:0a:97:37:3e:68:4d:37:d2:1b:9a:8d:bc:65:
         e1:b2:38:d3:5b:22:9c:33:0c:6a:a4:5f:c8:92:da:73:ca:89:
         bd:d3:72:26:4f:79:8c:03:17:e0:e9:7c:ba:b1:aa:53:9a:cb:
         a4:01:87:17:c1:10:95:9f:25:43:4a:07:be:7e:8a:5b:d5:e8:
         04:12:ce:bd:18:f0:48:dd:1a:59:11:da:7f:c0:94:2b:68:61:
         7c:cb:36:cf:28:2b:0e:f7:b2:9b:8d:7e:1b:98:63:bd:78:67:
         90:01:56:61:35:65:d4:7e:3d:a3:29:85:25:99:13:6e:2e:0f:
         b3:aa:84:16:2d:bc:9c:86:3e:b5:66:10:60:59:1c:12:c4:6f:
         86:a1:65:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 23:12:14 2024 by rpki-client on console-fra.rpki-client.org