Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/f4fc929b-3176-4cef-afcf-e549f055c134/4a9e0d893d854a49225f3bc6c6893146e0332de3.roa
File:                     4a9e0d893d854a49225f3bc6c6893146e0332de3.roa (raw, json)
Hash identifier:          OTNqtBK+0h8uw/jkXBa83TaNOw18fGjA1NVZGFOkUJg=
Subject key identifier:   20:98:80:27:9C:32:B1:A0:F5:CD:AA:A1:B2:75:AA:11:29:57:94:5E
Certificate issuer:       /CN=e282d684c8fba8017b177c8e72f4f7386eb53fd7
Certificate serial:       0B5D6F
Authority key identifier: 01:72:55:71:65:62:FC:2F:8B:D6:AC:B7:C8:F6:06:3F:63:EE:73:B5
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e282d684c8fba8017b177c8e72f4f7386eb53fd7.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/f4fc929b-3176-4cef-afcf-e549f055c134/4a9e0d893d854a49225f3bc6c6893146e0332de3.roa
Signing time:             Wed 24 Mar 2021 14:29:12 +0000
ROA not before:           Wed 24 Mar 2021 14:29:12 +0000
ROA not after:            Tue 24 Mar 2026 14:29:12 +0000
asID:                     269759
IP address blocks:        45.183.52.0/22 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/f4fc929b-3176-4cef-afcf-e549f055c134/e282d684c8fba8017b177c8e72f4f7386eb53fd7.crl
                          rsync://repository.lacnic.net/rpki/lacnic/f4fc929b-3176-4cef-afcf-e549f055c134/e282d684c8fba8017b177c8e72f4f7386eb53fd7.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e282d684c8fba8017b177c8e72f4f7386eb53fd7.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 03:49:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 744815 (0xb5d6f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e282d684c8fba8017b177c8e72f4f7386eb53fd7
        Validity
            Not Before: Mar 24 14:29:12 2021 GMT
            Not After : Mar 24 14:29:12 2026 GMT
        Subject: CN=4a9e0d893d854a49225f3bc6c6893146e0332de3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8a:49:5f:d1:61:4f:03:5f:cc:ac:96:a2:68:96:
                    c1:9c:78:4c:b5:f9:5e:a5:06:6a:11:0b:10:5e:47:
                    90:fd:9f:67:d4:5b:53:f0:18:a8:27:4a:62:55:22:
                    5b:41:24:47:0e:41:1e:3c:5e:97:70:ee:7e:cc:4b:
                    88:90:d6:94:ef:be:c6:14:55:b1:79:6d:1c:fb:3d:
                    4e:d7:c2:24:d4:2f:d2:f9:48:85:ca:76:36:8f:9f:
                    de:6a:c6:11:23:43:74:77:d4:37:f1:aa:bf:8c:2a:
                    3c:e2:43:cb:24:cc:d5:32:9a:9d:9d:fc:10:8c:aa:
                    5f:35:1d:39:46:69:7e:b4:2f:6b:83:f3:72:ba:72:
                    06:40:2c:76:95:8f:e4:6e:72:c1:ee:01:5c:d0:2c:
                    e0:3a:46:a8:83:24:b0:cd:34:c7:25:7a:15:86:e5:
                    50:76:44:35:c2:85:03:23:41:a5:e5:0e:8f:92:5c:
                    f1:07:ef:39:1d:46:94:88:9e:48:c4:35:1e:76:d3:
                    bd:e4:0f:64:61:7c:ef:27:0a:ed:73:83:12:35:1b:
                    0d:fa:39:5a:11:08:e3:43:77:aa:2e:4c:4a:9f:d1:
                    64:16:62:83:64:f0:e1:5c:74:70:67:5e:8e:1d:f3:
                    dc:38:31:bb:d9:f7:16:37:7f:ef:dc:07:ce:96:8e:
                    12:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                20:98:80:27:9C:32:B1:A0:F5:CD:AA:A1:B2:75:AA:11:29:57:94:5E
            X509v3 Authority Key Identifier:
                keyid:01:72:55:71:65:62:FC:2F:8B:D6:AC:B7:C8:F6:06:3F:63:EE:73:B5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e282d684c8fba8017b177c8e72f4f7386eb53fd7.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/f4fc929b-3176-4cef-afcf-e549f055c134/4a9e0d893d854a49225f3bc6c6893146e0332de3.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/f4fc929b-3176-4cef-afcf-e549f055c134/e282d684c8fba8017b177c8e72f4f7386eb53fd7.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.183.52.0/22

    Signature Algorithm: sha256WithRSAEncryption
         8e:78:19:3f:2e:63:c7:de:04:3a:43:fe:4a:7f:c9:77:57:53:
         e1:09:a7:6a:13:91:c9:89:4a:9d:64:61:43:eb:15:32:ef:d4:
         f6:7c:d7:94:3e:04:86:15:32:f0:1b:3b:8b:17:4f:fe:d1:ca:
         b9:12:a2:83:c6:97:19:f1:79:9f:25:46:3e:b2:d3:04:a6:c7:
         ed:53:e0:79:2a:a6:bf:75:ae:4a:c5:a2:b0:73:c3:be:26:90:
         a0:a3:67:29:ad:9f:94:6a:e7:1a:ac:69:f4:9e:eb:ff:c8:41:
         58:44:0b:a9:e7:11:cc:01:9d:49:3d:60:21:10:14:87:17:b0:
         b5:5d:e5:a0:24:0a:fa:15:9b:79:96:9e:90:c0:33:8f:1f:6f:
         a1:1d:b8:43:84:4d:bd:f7:10:3c:66:d2:e7:66:17:d8:5e:82:
         b7:fa:56:73:fb:bf:ff:06:71:77:ec:c2:f1:f1:96:1f:8e:33:
         da:b6:ca:d0:bb:01:ab:17:72:77:aa:48:d9:e8:8f:c2:ff:0a:
         ab:ba:39:33:a3:12:6a:38:b8:9b:e9:9a:1a:b2:86:35:84:98:
         e1:16:99:68:d3:85:f9:49:32:26:1d:7f:bd:72:bd:e9:59:98:
         dd:84:e9:48:98:62:21:ae:de:44:2f:3d:ff:29:8c:62:6b:69:
         7c:7d:7f:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 11:18:06 2024 by rpki-client on console-fra.rpki-client.org