Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/25464C9B8AD92A55446F1DB59CF02C7287BE2E0239736DBA2E6AAEEC851E35C8/0/3230302e3131392e3134342e302f32322d3234203d3e203134373534.roa
File:                     3230302e3131392e3134342e302f32322d3234203d3e203134373534.roa (raw, json)
Hash identifier:          SIieCOt/3O+3q1GdMvCOr5OFRf083ZocRfKFyqaKyvE=
Subject key identifier:   26:37:00:0A:D0:5C:99:69:7E:1D:87:91:B1:33:90:37:84:A8:BE:35
Certificate issuer:       /CN=30B067F4705EDF16C63ED51B9F8946787B07F237
Certificate serial:       752E0E3C39B48DF4E5090F1CB2F03573891DCE29
Authority key identifier: 30:B0:67:F4:70:5E:DF:16:C6:3E:D5:1B:9F:89:46:78:7B:07:F2:37
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/30B067F4705EDF16C63ED51B9F8946787B07F237.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/25464C9B8AD92A55446F1DB59CF02C7287BE2E0239736DBA2E6AAEEC851E35C8/0/3230302e3131392e3134342e302f32322d3234203d3e203134373534.roa
Signing time:             Tue 05 Mar 2024 17:42:36 +0000
ROA not before:           Tue 05 Mar 2024 17:37:36 +0000
ROA not after:            Tue 04 Mar 2025 17:42:36 +0000
asID:                     14754
IP address blocks:        200.119.144.0/22 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/25464C9B8AD92A55446F1DB59CF02C7287BE2E0239736DBA2E6AAEEC851E35C8/0/30B067F4705EDF16C63ED51B9F8946787B07F237.crl
                          rsync://repository.lacnic.net/rpki/lacnic/25464C9B8AD92A55446F1DB59CF02C7287BE2E0239736DBA2E6AAEEC851E35C8/0/30B067F4705EDF16C63ED51B9F8946787B07F237.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/30B067F4705EDF16C63ED51B9F8946787B07F237.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Thu 18 Jul 2024 11:47:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            75:2e:0e:3c:39:b4:8d:f4:e5:09:0f:1c:b2:f0:35:73:89:1d:ce:29
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=30B067F4705EDF16C63ED51B9F8946787B07F237
        Validity
            Not Before: Mar  5 17:37:36 2024 GMT
            Not After : Mar  4 17:42:36 2025 GMT
        Subject: CN=2637000AD05C99697E1D8791B133903784A8BE35
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:7b:c5:59:91:b2:3e:4d:3f:32:f7:0b:53:3f:
                    a3:7b:de:0f:5d:86:7d:2c:a3:a0:87:81:be:c1:62:
                    13:f0:28:ce:65:1f:55:ee:c1:16:db:24:dc:c2:92:
                    95:5e:7d:55:1b:f7:20:7e:99:c1:d6:28:03:ab:24:
                    6a:df:1d:bb:c7:91:29:69:ab:50:35:a6:d6:80:c1:
                    3f:41:ba:bc:df:7e:da:98:de:1d:88:f7:29:c9:fe:
                    05:0d:23:7e:b4:4b:24:14:fd:93:cd:fa:e7:9c:3f:
                    02:f5:20:fb:b5:66:07:2f:12:af:34:35:28:a4:1c:
                    74:26:f7:5c:f1:78:6e:3d:f5:04:d1:2d:e1:eb:74:
                    fc:cb:a9:e9:e9:27:56:9b:6c:48:19:b9:ef:6c:73:
                    b9:98:21:b9:57:ca:d1:58:3e:22:d4:23:a5:9c:ff:
                    f1:3b:eb:42:15:39:d3:79:c4:fd:db:82:6f:b1:f7:
                    02:53:1e:86:db:dc:8f:ad:7c:15:57:60:13:81:b8:
                    17:ed:33:fb:2b:fa:00:7d:e4:24:2b:67:94:fb:6f:
                    ac:1d:c8:7c:fa:17:fd:7c:73:f4:7a:42:80:96:53:
                    bb:ea:de:92:2e:1f:52:9f:90:a6:a3:38:b7:8a:cc:
                    ec:70:3c:70:26:f7:0f:78:7a:42:24:4a:ec:51:e9:
                    5c:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:37:00:0A:D0:5C:99:69:7E:1D:87:91:B1:33:90:37:84:A8:BE:35
            X509v3 Authority Key Identifier:
                keyid:30:B0:67:F4:70:5E:DF:16:C6:3E:D5:1B:9F:89:46:78:7B:07:F2:37

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/25464C9B8AD92A55446F1DB59CF02C7287BE2E0239736DBA2E6AAEEC851E35C8/0/30B067F4705EDF16C63ED51B9F8946787B07F237.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/30B067F4705EDF16C63ED51B9F8946787B07F237.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/25464C9B8AD92A55446F1DB59CF02C7287BE2E0239736DBA2E6AAEEC851E35C8/0/3230302e3131392e3134342e302f32322d3234203d3e203134373534.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.119.144.0/22

    Signature Algorithm: sha256WithRSAEncryption
         91:14:f2:0f:1e:01:ba:b2:14:ed:e7:3a:97:db:0c:35:af:cd:
         0c:3e:df:af:63:4e:60:fa:2b:72:06:68:9f:cf:52:74:ff:34:
         64:95:f3:62:62:c7:cf:f4:78:51:e0:ea:d7:c2:6e:16:69:a8:
         99:2a:b8:75:4d:ec:0b:06:65:b2:55:0e:f8:68:e5:d8:cc:6f:
         a4:14:4c:75:4f:33:e9:e4:1a:61:2f:37:ce:ad:2c:61:07:27:
         fb:f6:4a:f2:c4:dd:a5:81:36:1a:2d:c0:0c:be:5f:8c:99:ab:
         68:39:f3:73:a6:c1:d7:bb:df:b3:e6:a3:41:99:23:03:1f:00:
         de:ab:59:62:26:05:a1:c4:4c:6b:4b:88:cc:34:d5:9f:a9:c1:
         64:b2:6d:fb:3c:be:a6:43:12:51:85:91:79:e1:80:b9:6f:80:
         6f:af:4d:83:be:e8:8a:25:49:6a:91:2f:63:5f:48:b6:c3:91:
         29:0f:00:f9:8d:ee:b5:3f:77:29:0d:bf:1c:30:4b:20:1f:a2:
         39:d9:f9:90:e4:63:5a:3a:d9:be:a4:d8:36:06:db:76:bf:07:
         c1:a4:02:26:fb:02:cf:c3:c4:f0:3b:e8:0d:52:e5:8c:d5:a7:
         77:e4:86:98:af:51:3a:b4:13:9f:e2:ef:65:24:8c:90:81:06:
         e4:dc:93:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 15 00:34:09 2024 by rpki-client on console-ams.rpki-client.org