Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/f4bc5d7e-ea3a-4ab3-a8a5-5903eb4f1726/70cd0898d46e1f8757bf90d7b7ff390b1b20799a.roa
File:                     70cd0898d46e1f8757bf90d7b7ff390b1b20799a.roa (raw, json)
Hash identifier:          4pYu35NGVjjA6uLEFyBUBTDmqHqI+Bqw9haY6JP3V3Q=
Subject key identifier:   64:59:C4:90:F2:5B:3B:74:E6:33:3C:A2:F5:26:79:E2:98:D3:F4:8E
Certificate issuer:       /CN=aa536e2112fb6fbd4fd90b644c6fd66acba797ea
Certificate serial:       1CD97D
Authority key identifier: 34:98:A2:3B:7F:57:B4:51:CF:75:1E:21:7C:78:5E:0F:BE:35:87:87
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/aa536e2112fb6fbd4fd90b644c6fd66acba797ea.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/f4bc5d7e-ea3a-4ab3-a8a5-5903eb4f1726/70cd0898d46e1f8757bf90d7b7ff390b1b20799a.roa
Signing time:             Sat 03 Dec 2022 01:12:52 +0000
ROA not before:           Fri 02 Dec 2022 01:10:50 +0000
ROA not after:            Tue 03 Dec 2024 01:10:50 +0000
asID:                     204655
IP address blocks:        200.85.141.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/f4bc5d7e-ea3a-4ab3-a8a5-5903eb4f1726/aa536e2112fb6fbd4fd90b644c6fd66acba797ea.crl
                          rsync://repository.lacnic.net/rpki/lacnic/f4bc5d7e-ea3a-4ab3-a8a5-5903eb4f1726/aa536e2112fb6fbd4fd90b644c6fd66acba797ea.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/aa536e2112fb6fbd4fd90b644c6fd66acba797ea.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 19:38:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1890685 (0x1cd97d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=aa536e2112fb6fbd4fd90b644c6fd66acba797ea
        Validity
            Not Before: Dec  2 01:10:50 2022 GMT
            Not After : Dec  3 01:10:50 2024 GMT
        Subject: CN=70cd0898d46e1f8757bf90d7b7ff390b1b20799a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:26:7f:de:7e:97:ca:6d:12:04:89:4a:c8:c9:
                    ee:1d:b4:8d:bb:cc:3a:28:79:3a:f0:25:87:67:5f:
                    29:3c:c5:a9:e4:49:47:6e:f2:79:b1:32:39:20:5c:
                    27:db:ca:2e:82:98:94:f3:82:9b:ec:0a:93:b3:aa:
                    2f:14:17:3c:6a:80:85:ca:88:6b:5f:4e:a9:24:bb:
                    c1:ee:94:d6:25:34:ac:d9:43:e1:a0:8c:29:5f:74:
                    ef:43:96:74:ea:e5:28:de:4f:ff:38:97:7d:a7:1f:
                    6e:d3:0e:fb:d3:26:be:f6:57:b1:70:31:d6:8d:d7:
                    dd:b1:10:5e:61:2c:69:49:0d:4b:f0:f3:49:48:c8:
                    f2:70:1f:55:b0:09:e5:ab:b4:ae:0b:8c:1b:df:8b:
                    9d:c9:bc:56:45:82:04:8f:29:bf:47:96:40:12:93:
                    7e:3c:2f:51:45:86:66:84:b8:08:97:23:fa:95:3f:
                    47:be:02:54:6f:38:a5:23:c4:c9:3f:c2:a1:fd:d4:
                    b5:f4:10:1e:c0:23:d1:da:07:b7:8a:08:b2:74:58:
                    20:ed:fa:d3:2b:fb:69:9b:aa:09:b1:bb:9d:e6:55:
                    6c:d0:1e:0f:77:4c:34:94:fb:91:6a:d0:15:86:28:
                    91:25:ba:4d:d7:42:b5:87:c5:e9:00:ba:cb:6c:82:
                    a2:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:59:C4:90:F2:5B:3B:74:E6:33:3C:A2:F5:26:79:E2:98:D3:F4:8E
            X509v3 Authority Key Identifier:
                keyid:34:98:A2:3B:7F:57:B4:51:CF:75:1E:21:7C:78:5E:0F:BE:35:87:87

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/aa536e2112fb6fbd4fd90b644c6fd66acba797ea.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/f4bc5d7e-ea3a-4ab3-a8a5-5903eb4f1726/70cd0898d46e1f8757bf90d7b7ff390b1b20799a.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/f4bc5d7e-ea3a-4ab3-a8a5-5903eb4f1726/aa536e2112fb6fbd4fd90b644c6fd66acba797ea.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.85.141.0/24

    Signature Algorithm: sha256WithRSAEncryption
         23:f7:51:c2:9a:b4:8f:4a:62:a6:93:b3:df:aa:d1:02:d5:5c:
         7c:eb:b2:69:20:fd:1e:03:f8:da:42:2a:31:05:9e:e7:0a:dc:
         09:16:de:30:7b:0e:be:89:0f:79:44:a5:e5:22:26:c9:9e:c2:
         0f:3f:cc:5c:70:ef:34:ef:2a:86:b6:67:b2:28:c6:21:cd:16:
         3f:5f:2d:db:e6:be:5a:9c:c2:2c:4c:a7:db:66:b8:12:09:6f:
         8e:a6:de:c6:a5:22:a8:91:be:65:29:3d:63:ce:4f:b4:4f:ac:
         45:86:93:5c:64:ac:c8:d7:9e:e7:30:ff:e0:37:36:51:3f:2e:
         04:bb:b2:2c:d1:ff:11:50:9b:77:79:42:8f:a7:bc:2c:a4:39:
         49:ee:f1:8f:be:16:70:1a:e7:2c:2f:98:98:dd:f4:36:4c:88:
         9a:13:2a:ab:11:6b:03:95:58:b4:fb:1b:d3:b2:41:c0:bb:3c:
         60:34:1d:98:e9:20:4c:e6:a1:07:d7:77:cf:3b:4a:11:4e:d4:
         f9:12:16:e3:7b:4f:00:51:82:c7:a5:21:da:8a:3a:3d:b4:8b:
         02:e1:74:41:b2:fa:d0:4e:06:03:19:8f:34:11:b3:9d:78:e3:
         85:0b:eb:1f:de:f7:b7:b7:42:78:a6:f3:21:74:6e:14:88:ff:
         08:44:67:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 04:03:33 2024 by rpki-client on console-ams.rpki-client.org