Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/e88e5cb6-d396-4124-944b-b4bd37ac5ead/79f2b02135afca1665c0ab1dba3138544ab00815.roa
File:                     79f2b02135afca1665c0ab1dba3138544ab00815.roa (raw, json)
Hash identifier:          NZSbu1jHvyvjHjNkTUyf+RS3M/ha+UkgNxy1FPwviPU=
Subject key identifier:   C8:ED:A8:12:B2:EC:7A:89:72:53:66:B7:EF:AD:04:94:F9:B6:19:D0
Certificate issuer:       /CN=b0e08d14f156cb7201cd8c295802f6bef1fddd63
Certificate serial:       1F5A75
Authority key identifier: E8:07:7F:DE:3B:0E:F4:94:96:7B:77:8C:52:48:F0:31:63:44:DD:8E
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b0e08d14f156cb7201cd8c295802f6bef1fddd63.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/e88e5cb6-d396-4124-944b-b4bd37ac5ead/79f2b02135afca1665c0ab1dba3138544ab00815.roa
Signing time:             Mon 19 Jun 2023 21:10:08 +0000
ROA not before:           Sun 18 Jun 2023 21:10:08 +0000
ROA not after:            Thu 19 Jun 2025 21:10:08 +0000
asID:                     269828
IP address blocks:        45.186.148.0/22 maxlen: 24
                          2803:3760::/32 maxlen: 32

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/e88e5cb6-d396-4124-944b-b4bd37ac5ead/b0e08d14f156cb7201cd8c295802f6bef1fddd63.crl
                          rsync://repository.lacnic.net/rpki/lacnic/e88e5cb6-d396-4124-944b-b4bd37ac5ead/b0e08d14f156cb7201cd8c295802f6bef1fddd63.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b0e08d14f156cb7201cd8c295802f6bef1fddd63.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 26 Feb 2024 16:36:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2054773 (0x1f5a75)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b0e08d14f156cb7201cd8c295802f6bef1fddd63
        Validity
            Not Before: Jun 18 21:10:08 2023 GMT
            Not After : Jun 19 21:10:08 2025 GMT
        Subject: CN=79f2b02135afca1665c0ab1dba3138544ab00815
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:92:51:26:8f:26:e1:45:6a:48:4f:ce:aa:1e:98:
                    24:17:57:25:52:b3:9f:c6:06:32:17:83:2f:d6:01:
                    4a:59:4d:ad:97:44:48:d3:b3:ef:3f:9f:07:17:ea:
                    23:23:24:a2:65:6d:0b:49:9e:b6:f5:26:be:d7:9d:
                    92:f5:bf:ea:89:32:46:d5:86:d5:5a:08:7c:b2:e7:
                    3a:76:a7:14:9e:b7:b5:b2:89:09:9f:83:ad:51:b6:
                    bf:b9:39:8b:47:f7:2d:33:90:01:5d:ff:41:12:14:
                    72:83:48:46:fc:50:78:1f:9a:e1:79:54:50:75:b5:
                    2b:6b:c9:29:8c:69:4c:9e:16:3e:ec:f3:c6:78:f1:
                    06:33:af:ec:83:91:bc:eb:fa:c0:99:ae:a9:35:b2:
                    c7:f6:42:04:d5:d9:0b:f0:ea:d9:13:b6:86:06:6d:
                    d6:23:1d:54:5a:58:67:22:b8:c8:23:29:33:3f:26:
                    02:fc:47:2f:a6:6e:71:1a:9b:94:c7:ba:3b:1c:a0:
                    3f:0d:f6:c6:b7:8c:47:4c:74:ee:1a:05:1b:6a:d8:
                    ab:bc:6a:25:95:39:6d:ec:f1:e8:bf:e6:7f:db:77:
                    75:b6:08:cd:f3:bf:c8:c0:23:22:08:a2:31:45:7e:
                    51:2c:f4:5f:1d:39:48:71:e9:1e:fc:e5:8c:76:47:
                    89:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C8:ED:A8:12:B2:EC:7A:89:72:53:66:B7:EF:AD:04:94:F9:B6:19:D0
            X509v3 Authority Key Identifier:
                keyid:E8:07:7F:DE:3B:0E:F4:94:96:7B:77:8C:52:48:F0:31:63:44:DD:8E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b0e08d14f156cb7201cd8c295802f6bef1fddd63.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/e88e5cb6-d396-4124-944b-b4bd37ac5ead/79f2b02135afca1665c0ab1dba3138544ab00815.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/e88e5cb6-d396-4124-944b-b4bd37ac5ead/b0e08d14f156cb7201cd8c295802f6bef1fddd63.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.186.148.0/22
                IPv6:
                  2803:3760::/32

    Signature Algorithm: sha256WithRSAEncryption
         76:bf:92:0b:b1:34:ba:a5:8f:83:32:4a:b1:3d:41:62:74:a6:
         ec:88:17:75:3a:c2:89:0b:cd:cb:b8:3a:49:39:41:5f:0d:cc:
         b6:67:0d:13:88:53:e7:bc:7f:9d:bc:df:48:57:b7:53:0d:9d:
         3f:7e:cb:8c:ca:58:c6:76:af:b1:b1:fc:ea:27:b3:c5:07:64:
         c4:1f:e2:e5:1b:d6:11:a3:db:fa:fc:6e:d4:59:5e:06:58:51:
         4d:c3:54:7e:ab:10:87:05:aa:de:7b:b0:60:3d:86:81:f7:a5:
         88:a5:f3:d9:14:de:26:20:e6:c4:45:13:a9:9d:cf:22:f9:38:
         e4:b2:db:da:37:61:9a:50:9b:7e:b0:86:85:b8:6a:3f:bb:d5:
         9a:40:5d:e2:cb:9f:56:62:de:bd:e6:e7:91:b2:9d:fe:3c:2a:
         df:46:8d:a3:90:a6:89:1a:a2:86:65:3c:88:24:b0:cc:45:a7:
         24:28:3a:47:ee:27:94:f9:50:93:7c:16:a0:fd:d1:07:a0:b0:
         a0:08:ce:7c:d4:a5:67:c1:b1:6d:13:fd:5a:3f:8d:f3:0e:f2:
         de:42:33:aa:8e:c3:16:e4:52:13:34:9d:dc:13:c1:00:ad:04:
         f8:aa:1c:6f:a7:c8:56:d1:f7:a5:7e:23:53:97:36:5e:f5:00:
         5f:b1:af:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 23 20:03:06 2024 by rpki-client on console-fra.rpki-client.org