Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/ed6df284-a5b2-4ee5-b6ec-7b4f910e0858/816e0f8e13e2276604e0b312d4cbb235f8111910.roa
File:                     816e0f8e13e2276604e0b312d4cbb235f8111910.roa (raw, json)
Hash identifier:          kLqqm7PNsKHlHtYf2KHbb9v1DFZBuKGIVWsgWy1sxXs=
Subject key identifier:   6F:28:4D:C2:88:DB:53:C2:50:92:95:0B:2A:40:BC:AE:E4:FF:AE:3A
Certificate issuer:       /CN=490f37bee96384123b3395427350a811771a9d08
Certificate serial:       152C
Authority key identifier: E5:BF:FB:E5:AD:8E:40:16:25:D5:19:9D:3A:7C:E7:65:11:22:7E:CA
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/490f37bee96384123b3395427350a811771a9d08.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/ed6df284-a5b2-4ee5-b6ec-7b4f910e0858/816e0f8e13e2276604e0b312d4cbb235f8111910.roa
Signing time:             Tue 26 Jul 2022 23:38:55 +0000
ROA not before:           Tue 26 Jul 2022 03:00:00 +0000
ROA not after:            Fri 26 Jul 2024 03:00:00 +0000
asID:                     270086
IP address blocks:        177.128.202.0/23 maxlen: 24
                          2803:3be0::/32 maxlen: 32

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/ed6df284-a5b2-4ee5-b6ec-7b4f910e0858/490f37bee96384123b3395427350a811771a9d08.crl
                          rsync://repository.lacnic.net/rpki/lacnic/ed6df284-a5b2-4ee5-b6ec-7b4f910e0858/490f37bee96384123b3395427350a811771a9d08.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/490f37bee96384123b3395427350a811771a9d08.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 01 Apr 2024 05:58:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5420 (0x152c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=490f37bee96384123b3395427350a811771a9d08
        Validity
            Not Before: Jul 26 03:00:00 2022 GMT
            Not After : Jul 26 03:00:00 2024 GMT
        Subject: CN=816e0f8e13e2276604e0b312d4cbb235f8111910
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:84:4b:0e:b4:e6:18:9e:31:21:4a:a5:8e:c0:0b:
                    12:8b:d6:0a:93:87:c0:48:4a:a8:9e:2d:61:92:09:
                    c8:4b:a3:7a:5a:96:79:b2:d0:4b:31:1b:47:b4:26:
                    d7:a8:48:bc:00:f0:2a:68:87:00:e6:e6:53:b6:5d:
                    26:dc:9e:a0:dd:c8:96:d1:c5:17:c7:62:49:a1:b2:
                    a8:13:a4:cf:b7:e2:a7:56:1a:ed:bc:46:62:2a:35:
                    c4:97:ff:a7:9e:ed:1c:3a:d6:87:74:55:e4:c1:06:
                    61:22:88:15:86:9b:fa:e5:71:7f:8a:d1:fb:f0:27:
                    85:8e:4e:f3:bf:40:e2:2d:57:45:c3:f1:db:d4:03:
                    b3:68:86:27:0c:ef:91:dd:3f:48:1d:54:ee:f2:15:
                    27:6e:17:6c:2b:6d:19:88:26:22:27:e2:12:f9:d1:
                    a4:01:56:f8:f7:1f:ce:08:c6:eb:a9:78:1a:60:9c:
                    f1:a1:d2:04:35:05:5a:c5:83:2a:62:c3:55:d5:12:
                    ea:ca:a5:29:a3:e1:4d:a1:c8:3a:2a:4a:2f:86:a0:
                    f6:66:9d:4a:1c:19:0a:fd:9e:c1:bf:77:bd:9b:2f:
                    3e:7a:b6:19:46:2c:c9:47:ef:38:5c:ff:af:c2:f8:
                    1d:d2:48:11:8f:ba:d3:25:1b:99:c6:cf:19:ae:89:
                    b3:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:28:4D:C2:88:DB:53:C2:50:92:95:0B:2A:40:BC:AE:E4:FF:AE:3A
            X509v3 Authority Key Identifier:
                keyid:E5:BF:FB:E5:AD:8E:40:16:25:D5:19:9D:3A:7C:E7:65:11:22:7E:CA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/490f37bee96384123b3395427350a811771a9d08.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/ed6df284-a5b2-4ee5-b6ec-7b4f910e0858/816e0f8e13e2276604e0b312d4cbb235f8111910.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/ed6df284-a5b2-4ee5-b6ec-7b4f910e0858/490f37bee96384123b3395427350a811771a9d08.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  177.128.202.0/23
                IPv6:
                  2803:3be0::/32

    Signature Algorithm: sha256WithRSAEncryption
         79:4b:5a:72:6c:5d:bc:5d:c1:84:b6:2c:c9:07:5d:a4:1f:43:
         f6:99:98:1e:54:04:94:da:b4:b7:67:ce:19:0e:a3:40:08:5f:
         c4:37:db:b7:f7:cb:65:4e:dc:8f:b2:6e:60:17:00:56:da:61:
         b2:ff:51:db:e4:67:dd:79:a9:82:e3:f4:44:d6:24:24:36:ed:
         a7:01:12:fc:4d:51:df:1a:ee:cc:64:a2:f3:80:f3:9c:09:38:
         1c:35:d1:07:48:a2:bd:53:3f:84:9e:3f:46:89:42:8b:48:c2:
         09:4f:6c:85:a4:30:92:5e:01:b0:05:a9:07:a6:5a:e9:17:f4:
         ec:a9:e6:35:6e:41:4b:45:9d:30:e5:8f:94:9f:ef:20:c1:9c:
         88:2b:41:6e:ee:c8:b5:1d:2f:dd:0b:75:f1:23:50:c9:f0:e6:
         75:4d:91:56:8e:da:90:92:b4:c9:3d:6b:d2:53:c3:58:a4:58:
         29:1d:f4:ba:41:2a:86:05:1f:f1:e7:6e:92:1c:9d:a1:6f:f1:
         0a:16:6d:14:12:a1:90:35:db:4e:a7:de:3c:29:45:ac:58:ba:
         1f:3c:fa:08:11:7a:04:34:e6:b7:95:49:e6:8a:59:7f:6b:37:
         1b:82:d9:56:3e:7c:21:a5:22:93:a4:a5:0e:4b:a3:65:c4:cd:
         ce:69:04:28
-----BEGIN CERTIFICATE-----
MIIFTjCCBDagAwIBAgICFSwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDkw
ZjM3YmVlOTYzODQxMjNiMzM5NTQyNzM1MGE4MTE3NzFhOWQwODAeFw0yMjA3MjYw
MzAwMDBaFw0yNDA3MjYwMzAwMDBaMDMxMTAvBgNVBAMTKDgxNmUwZjhlMTNlMjI3
NjYwNGUwYjMxMmQ0Y2JiMjM1ZjgxMTE5MTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCESw605hieMSFKpY7ACxKL1gqTh8BISqieLWGSCchLo3palnmy
0EsxG0e0JteoSLwA8CpohwDm5lO2XSbcnqDdyJbRxRfHYkmhsqgTpM+34qdWGu28
RmIqNcSX/6ee7Rw61od0VeTBBmEiiBWGm/rlcX+K0fvwJ4WOTvO/QOItV0XD8dvU
A7NohicM75HdP0gdVO7yFSduF2wrbRmIJiIn4hL50aQBVvj3H84IxuupeBpgnPGh
0gQ1BVrFgypiw1XVEurKpSmj4U2hyDoqSi+GoPZmnUocGQr9nsG/d72bLz56thlG
LMlH7zhc/6/C+B3SSBGPutMlG5nGzxmuibNrAgMBAAGjggJqMIICZjAdBgNVHQ4E
FgQUbyhNwojbU8JQkpULKkC8ruT/rjowHwYDVR0jBBgwFoAU5b/75a2OQBYl1Rmd
OnznZREifsowDgYDVR0PAQH/BAQDAgeAMIGaBggrBgEFBQcBAQSBjTCBijCBhwYI
KwYBBQUHMAKGe3JzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kvbGFj
bmljLzQ4ZjA4M2JiLWY2MDMtNDg5My05OTkwLTAyODRjMDRjZWI4NS80OTBmMzdi
ZWU5NjM4NDEyM2IzMzk1NDI3MzUwYTgxMTc3MWE5ZDA4LmNlcjCBmgYIKwYBBQUH
AQsEgY0wgYowgYcGCCsGAQUFBzALhntyc3luYzovL3JlcG9zaXRvcnkubGFjbmlj
Lm5ldC9ycGtpL2xhY25pYy9lZDZkZjI4NC1hNWIyLTRlZTUtYjZlYy03YjRmOTEw
ZTA4NTgvODE2ZTBmOGUxM2UyMjc2NjA0ZTBiMzEyZDRjYmIyMzVmODExMTkxMC5y
b2EwgY8GA1UdHwSBhzCBhDCBgaB/oH2Ge3JzeW5jOi8vcmVwb3NpdG9yeS5sYWNu
aWMubmV0L3Jwa2kvbGFjbmljL2VkNmRmMjg0LWE1YjItNGVlNS1iNmVjLTdiNGY5
MTBlMDg1OC80OTBmMzdiZWU5NjM4NDEyM2IzMzk1NDI3MzUwYTgxMTc3MWE5ZDA4
LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8w
HTAMBAIAATAGAwQBsYDKMA0EAgACMAcDBQAoAzvgMA0GCSqGSIb3DQEBCwUAA4IB
AQB5S1pybF28XcGEtizJB12kH0P2mZgeVASU2rS3Z84ZDqNACF/EN9u398tlTtyP
sm5gFwBW2mGy/1Hb5GfdeamC4/RE1iQkNu2nARL8TVHfGu7MZKLzgPOcCTgcNdEH
SKK9Uz+Enj9GiUKLSMIJT2yFpDCSXgGwBakHplrpF/TsqeY1bkFLRZ0w5Y+Un+8g
wZyIK0Fu7si1HS/dC3XxI1DJ8OZ1TZFWjtqQkrTJPWvSU8NYpFgpHfS6QSqGBR/x
526SHJ2hb/EKFm0UEqGQNdtOp948KUWsWLofPPoIEXoENOa3lUnmill/azcbgtlW
PnwhpSKTpKUOS6NlxM3OaQQo
-----END CERTIFICATE-----
Generated at Fri Mar 29 08:55:33 2024 by rpki-client on console-fra.rpki-client.org