Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/f4bc5d7e-ea3a-4ab3-a8a5-5903eb4f1726/e1409c41d2ccb39214ae59acdd37889ad5814e2a.roa
File:                     e1409c41d2ccb39214ae59acdd37889ad5814e2a.roa (raw, json)
Hash identifier:          OajXN6ag0QVQ9UKKpV2TFXDNEzz4UDIndW2P+z5+xOA=
Subject key identifier:   D3:AA:EC:7F:CA:40:25:D3:91:50:86:32:E1:F7:E2:04:21:9C:76:8A
Certificate issuer:       /CN=aa536e2112fb6fbd4fd90b644c6fd66acba797ea
Certificate serial:       1CDD2D
Authority key identifier: 34:98:A2:3B:7F:57:B4:51:CF:75:1E:21:7C:78:5E:0F:BE:35:87:87
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/aa536e2112fb6fbd4fd90b644c6fd66acba797ea.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/f4bc5d7e-ea3a-4ab3-a8a5-5903eb4f1726/e1409c41d2ccb39214ae59acdd37889ad5814e2a.roa
Signing time:             Sat 03 Dec 2022 01:40:33 +0000
ROA not before:           Fri 02 Dec 2022 01:38:46 +0000
ROA not after:            Tue 03 Dec 2024 01:38:46 +0000
asID:                     271906
IP address blocks:        200.85.143.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/f4bc5d7e-ea3a-4ab3-a8a5-5903eb4f1726/aa536e2112fb6fbd4fd90b644c6fd66acba797ea.crl
                          rsync://repository.lacnic.net/rpki/lacnic/f4bc5d7e-ea3a-4ab3-a8a5-5903eb4f1726/aa536e2112fb6fbd4fd90b644c6fd66acba797ea.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/aa536e2112fb6fbd4fd90b644c6fd66acba797ea.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 18:42:07 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1891629 (0x1cdd2d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=aa536e2112fb6fbd4fd90b644c6fd66acba797ea
        Validity
            Not Before: Dec  2 01:38:46 2022 GMT
            Not After : Dec  3 01:38:46 2024 GMT
        Subject: CN=e1409c41d2ccb39214ae59acdd37889ad5814e2a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:01:2e:3d:a6:95:07:c1:03:f9:e6:de:e9:2f:
                    07:2c:41:23:49:c9:5e:70:e3:e0:dd:10:65:cd:67:
                    6d:ea:4b:f6:c5:4a:0a:47:1e:85:68:d6:b0:1f:65:
                    55:73:4e:20:76:63:30:8a:33:42:59:4f:30:35:fb:
                    af:6a:33:a4:0a:6e:10:06:05:90:10:4a:6d:16:1a:
                    b8:52:36:da:17:2b:da:47:9a:bb:e8:a7:03:b0:34:
                    18:72:91:98:5f:8a:e1:21:67:2d:84:29:61:18:a9:
                    5f:cc:38:a0:c9:3e:8c:8e:ef:17:8c:90:13:1e:00:
                    c1:46:f4:92:3c:74:8c:a0:fb:e4:98:05:e6:aa:a2:
                    62:34:69:b6:41:e3:7f:26:ba:63:ff:b9:76:08:88:
                    d2:a6:84:5c:2f:2d:f6:a1:9c:9a:09:db:ff:59:b5:
                    5c:2a:b6:18:20:de:68:89:6b:c0:91:d9:54:bb:eb:
                    f6:61:bb:44:fb:ad:43:7c:ce:ea:34:bf:b3:2c:cd:
                    77:99:15:70:3f:2d:5c:99:4d:92:f4:3e:d3:d2:a9:
                    40:32:25:72:bf:dc:86:11:c1:90:67:aa:ad:e4:b5:
                    b6:d1:e9:d9:5b:dd:ac:61:94:ca:33:3f:92:3b:d1:
                    37:d1:d7:02:80:6a:90:07:45:7e:2d:aa:e6:0c:59:
                    da:b1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D3:AA:EC:7F:CA:40:25:D3:91:50:86:32:E1:F7:E2:04:21:9C:76:8A
            X509v3 Authority Key Identifier:
                keyid:34:98:A2:3B:7F:57:B4:51:CF:75:1E:21:7C:78:5E:0F:BE:35:87:87

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/aa536e2112fb6fbd4fd90b644c6fd66acba797ea.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/f4bc5d7e-ea3a-4ab3-a8a5-5903eb4f1726/e1409c41d2ccb39214ae59acdd37889ad5814e2a.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/f4bc5d7e-ea3a-4ab3-a8a5-5903eb4f1726/aa536e2112fb6fbd4fd90b644c6fd66acba797ea.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.85.143.0/24

    Signature Algorithm: sha256WithRSAEncryption
         27:32:f7:44:1c:70:15:f5:9e:7e:3e:02:10:51:2c:2b:26:92:
         1d:4f:fe:ca:9c:1c:fd:a6:68:26:de:cd:f9:a9:00:f9:1c:52:
         ba:25:1c:2a:e0:7e:4b:d6:92:e8:f6:04:ab:6b:66:89:9b:4b:
         a1:e0:37:c1:a4:20:16:12:be:ca:3a:38:55:58:00:1b:57:0b:
         0d:92:36:c8:85:18:cb:15:ab:3c:94:f0:37:0e:72:29:1e:ab:
         72:d8:ab:8d:f0:d7:9a:c1:ad:c4:ed:0e:28:88:84:7a:9b:3c:
         7b:01:43:b2:14:b6:45:c1:93:94:95:af:c6:96:5f:a9:c7:89:
         0d:8d:c8:20:1e:1c:f5:e8:90:b8:41:f5:e9:0e:72:9b:89:fd:
         08:a7:ab:8a:3f:10:32:45:1a:5c:eb:41:4d:8b:79:7d:e3:a4:
         21:c3:39:06:56:75:74:b1:7c:ea:fd:7e:8a:66:06:90:da:eb:
         0c:a9:99:16:91:7d:0b:2b:fc:15:39:9c:ab:05:9b:2d:35:58:
         30:f5:6f:e3:30:b8:1d:55:d3:f4:20:5d:5a:d5:ae:0d:37:8a:
         ef:05:e7:98:68:c4:f3:67:8a:53:f2:4f:12:2c:a6:33:23:84:
         ec:1b:bd:4e:d1:5a:88:c7:cf:76:ab:06:6a:08:5d:4d:8b:0a:
         26:52:ca:d5
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIDHN0tMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGFh
NTM2ZTIxMTJmYjZmYmQ0ZmQ5MGI2NDRjNmZkNjZhY2JhNzk3ZWEwHhcNMjIxMjAy
MDEzODQ2WhcNMjQxMjAzMDEzODQ2WjAzMTEwLwYDVQQDEyhlMTQwOWM0MWQyY2Ni
MzkyMTRhZTU5YWNkZDM3ODg5YWQ1ODE0ZTJhMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAmgEuPaaVB8ED+ebe6S8HLEEjSclecOPg3RBlzWdt6kv2xUoK
Rx6FaNawH2VVc04gdmMwijNCWU8wNfuvajOkCm4QBgWQEEptFhq4UjbaFyvaR5q7
6KcDsDQYcpGYX4rhIWcthClhGKlfzDigyT6Mju8XjJATHgDBRvSSPHSMoPvkmAXm
qqJiNGm2QeN/Jrpj/7l2CIjSpoRcLy32oZyaCdv/WbVcKrYYIN5oiWvAkdlUu+v2
YbtE+61DfM7qNL+zLM13mRVwPy1cmU2S9D7T0qlAMiVyv9yGEcGQZ6qt5LW20enZ
W92sYZTKMz+SO9E30dcCgGqQB0V+LarmDFnasQIDAQABo4ICWzCCAlcwHQYDVR0O
BBYEFNOq7H/KQCXTkVCGMuH34gQhnHaKMB8GA1UdIwQYMBaAFDSYojt/V7RRz3Ue
IXx4Xg++NYeHMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvYWE1MzZl
MjExMmZiNmZiZDRmZDkwYjY0NGM2ZmQ2NmFjYmE3OTdlYS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvZjRiYzVkN2UtZWEzYS00YWIzLWE4YTUtNTkwM2Vi
NGYxNzI2L2UxNDA5YzQxZDJjY2IzOTIxNGFlNTlhY2RkMzc4ODlhZDU4MTRlMmEu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9mNGJjNWQ3ZS1lYTNhLTRhYjMtYThhNS01OTAz
ZWI0ZjE3MjYvYWE1MzZlMjExMmZiNmZiZDRmZDkwYjY0NGM2ZmQ2NmFjYmE3OTdl
YS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAMhVjzANBgkqhkiG9w0BAQsFAAOCAQEAJzL3RBxwFfWefj4C
EFEsKyaSHU/+ypwc/aZoJt7N+akA+RxSuiUcKuB+S9aS6PYEq2tmiZtLoeA3waQg
FhK+yjo4VVgAG1cLDZI2yIUYyxWrPJTwNw5yKR6rctirjfDXmsGtxO0OKIiEeps8
ewFDshS2RcGTlJWvxpZfqceJDY3IIB4c9eiQuEH16Q5ym4n9CKerij8QMkUaXOtB
TYt5feOkIcM5BlZ1dLF86v1+imYGkNrrDKmZFpF9Cyv8FTmcqwWbLTVYMPVv4zC4
HVXT9CBdWtWuDTeK7wXnmGjE82eKU/JPEiymMyOE7Bu9TtFaiMfPdqsGaghdTYsK
JlLK1Q==
-----END CERTIFICATE-----
Generated at Thu Mar 28 21:31:17 2024 by rpki-client on console-ams.rpki-client.org