Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/3230312e3138322e3133322e302f32332d3234203d3e203634313036.roa
File:                     3230312e3138322e3133322e302f32332d3234203d3e203634313036.roa (raw, json)
Hash identifier:          7pD3a2DXy9aD69iNaE6SS/djYe+cgoPr/891gO0DJUc=
Subject key identifier:   2B:23:24:E0:E2:D3:6C:24:C7:29:0E:FF:B4:37:81:AE:51:54:5D:12
Certificate issuer:       /CN=481B3876880F63D5F9BA6D763D7E663E9DB369FC
Certificate serial:       54440ACEFC53E0939CA861299627AC91C940BDD5
Authority key identifier: 48:1B:38:76:88:0F:63:D5:F9:BA:6D:76:3D:7E:66:3E:9D:B3:69:FC
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/3230312e3138322e3133322e302f32332d3234203d3e203634313036.roa
Signing time:             Tue 05 Mar 2024 18:15:58 +0000
ROA not before:           Tue 05 Mar 2024 18:10:58 +0000
ROA not after:            Tue 04 Mar 2025 18:15:58 +0000
asID:                     64106
IP address blocks:        201.182.132.0/23 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.crl
                          rsync://repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Fri 14 Jun 2024 21:27:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            54:44:0a:ce:fc:53:e0:93:9c:a8:61:29:96:27:ac:91:c9:40:bd:d5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=481B3876880F63D5F9BA6D763D7E663E9DB369FC
        Validity
            Not Before: Mar  5 18:10:58 2024 GMT
            Not After : Mar  4 18:15:58 2025 GMT
        Subject: CN=2B2324E0E2D36C24C7290EFFB43781AE51545D12
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:28:d8:37:be:d8:e4:d3:e8:f5:91:b3:15:be:
                    c0:ba:64:68:6c:86:33:fe:5a:5b:87:9b:b9:ae:06:
                    d1:dc:40:a5:2e:86:4f:21:76:03:39:eb:ef:ed:21:
                    ab:9e:77:a3:5e:29:2d:77:f9:7b:50:75:1f:6c:28:
                    67:c9:eb:27:08:64:73:39:2d:d0:dc:4c:19:b1:4f:
                    5c:8c:9c:b9:ba:66:8c:6c:a1:a1:bd:72:d3:86:01:
                    0d:57:45:62:d4:ab:a6:1d:7e:ac:82:4f:d7:1f:6d:
                    34:1d:ff:93:f8:b5:9e:ea:6b:c8:64:ba:91:6a:89:
                    67:b9:de:c3:58:e6:14:3c:05:65:40:11:ed:c7:f6:
                    f5:fd:65:78:94:61:81:ee:59:00:64:7a:be:8e:ba:
                    98:63:f7:b7:d6:d4:0b:0c:35:39:31:4b:40:7a:e6:
                    52:9f:31:c7:46:9f:d7:54:b7:d5:f4:e7:b3:3f:0c:
                    65:67:48:f1:5c:b5:eb:52:00:18:cf:e1:1b:f4:97:
                    41:be:94:f1:a5:00:93:96:db:fb:5a:39:08:ff:37:
                    8c:11:13:93:b2:26:d6:99:a3:46:7c:b9:14:65:03:
                    08:c2:25:66:f0:9b:99:22:1f:2c:23:eb:cd:94:88:
                    df:cc:5b:9b:fb:9f:5d:85:9e:eb:8f:26:87:21:95:
                    cf:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2B:23:24:E0:E2:D3:6C:24:C7:29:0E:FF:B4:37:81:AE:51:54:5D:12
            X509v3 Authority Key Identifier:
                keyid:48:1B:38:76:88:0F:63:D5:F9:BA:6D:76:3D:7E:66:3E:9D:B3:69:FC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/3230312e3138322e3133322e302f32332d3234203d3e203634313036.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  201.182.132.0/23

    Signature Algorithm: sha256WithRSAEncryption
         8e:f1:42:d2:b6:8f:27:ea:cf:60:b7:10:6b:57:f9:9b:d0:94:
         02:b8:86:d0:d0:d9:98:fd:62:d0:c3:53:4b:58:e8:3e:e8:25:
         31:45:7c:a4:6f:13:ea:d4:c9:b2:ec:20:1f:61:49:4f:20:e5:
         ed:c7:ce:7d:c4:80:f5:72:99:b8:12:88:2f:c5:64:b9:fd:11:
         0a:b3:f1:b1:89:8f:41:99:0d:ff:a8:d3:22:0d:d5:23:76:06:
         f2:b5:1e:a7:fd:62:95:e5:bf:e8:3c:91:47:63:5c:b9:8a:45:
         be:9c:f2:7a:c9:47:ca:d5:9c:81:79:a9:89:65:4c:49:b2:0e:
         a8:5c:c7:b5:71:39:e9:ff:ee:27:61:16:30:44:44:32:b4:7c:
         c3:de:d0:05:dc:c7:ab:b2:14:d8:d4:ec:39:51:56:6a:44:81:
         1f:2e:f3:1e:2b:40:65:59:36:c9:d1:20:d7:60:a8:da:26:d7:
         ac:f4:e3:49:51:a1:38:3f:a5:a6:0f:c8:c4:0e:e3:5c:54:b7:
         2a:15:ec:07:b0:38:07:cd:f6:70:c6:a2:c5:a6:bb:e3:80:cc:
         13:4e:d4:9a:95:02:74:c2:3f:a8:78:bf:09:26:bb:55:bc:7a:
         d7:9d:91:c7:1d:3c:b2:50:88:13:a2:b6:d9:21:ce:1d:bb:d9:
         89:79:99:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 10 12:30:05 2024 by rpki-client on console-fra.rpki-client.org