Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2CCF978DE00466A1F41A9C761AEB2577E55690B00C4B3DDF339A23B95B311B93/0/3230302e32392e32342e302f32342d3234203d3e2034393935.roa
File:                     3230302e32392e32342e302f32342d3234203d3e2034393935.roa (raw, json)
Hash identifier:          Y4DZOAkTQRYTUXbKUXACrgOY7ZIKFXH3P3rd+bRh8HM=
Subject key identifier:   50:15:7A:42:54:F8:8E:31:B9:89:C7:3A:BE:8B:01:C8:F4:43:55:86
Certificate issuer:       /CN=979E05FFEED48A9692454F668B83D49714C9FE39
Certificate serial:       0B7FAD5C33CD5A7F9CD30E52AAA51FFA7DAF6FF6
Authority key identifier: 97:9E:05:FF:EE:D4:8A:96:92:45:4F:66:8B:83:D4:97:14:C9:FE:39
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/979E05FFEED48A9692454F668B83D49714C9FE39.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/2CCF978DE00466A1F41A9C761AEB2577E55690B00C4B3DDF339A23B95B311B93/0/3230302e32392e32342e302f32342d3234203d3e2034393935.roa
Signing time:             Tue 05 Mar 2024 18:08:28 +0000
ROA not before:           Tue 05 Mar 2024 18:03:28 +0000
ROA not after:            Tue 04 Mar 2025 18:08:28 +0000
asID:                     4995
IP address blocks:        200.29.24.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/2CCF978DE00466A1F41A9C761AEB2577E55690B00C4B3DDF339A23B95B311B93/0/979E05FFEED48A9692454F668B83D49714C9FE39.crl
                          rsync://repository.lacnic.net/rpki/lacnic/2CCF978DE00466A1F41A9C761AEB2577E55690B00C4B3DDF339A23B95B311B93/0/979E05FFEED48A9692454F668B83D49714C9FE39.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/979E05FFEED48A9692454F668B83D49714C9FE39.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 24 Nov 2024 23:17:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0b:7f:ad:5c:33:cd:5a:7f:9c:d3:0e:52:aa:a5:1f:fa:7d:af:6f:f6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=979E05FFEED48A9692454F668B83D49714C9FE39
        Validity
            Not Before: Mar  5 18:03:28 2024 GMT
            Not After : Mar  4 18:08:28 2025 GMT
        Subject: CN=50157A4254F88E31B989C73ABE8B01C8F4435586
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:6d:d3:bb:a2:e6:17:1c:6a:3a:ab:7a:4d:dd:
                    d2:e3:23:aa:c0:d6:71:26:af:08:c0:4b:c3:b2:28:
                    20:12:ed:a3:79:d3:44:16:e8:50:6f:31:e5:2c:99:
                    e3:93:8a:60:62:16:49:6e:fd:1a:db:58:f3:5d:f3:
                    ca:aa:11:21:e2:5b:92:64:19:8c:1b:42:60:4f:14:
                    89:f2:b8:59:de:06:61:01:31:84:94:7f:35:95:f4:
                    5a:af:8a:3c:15:c5:ee:02:cb:5c:d1:5d:e0:af:62:
                    3f:fa:3d:3a:9e:ef:32:8e:f0:61:04:8f:c4:7b:91:
                    a1:c7:39:c0:30:a1:fe:f6:61:4f:57:a6:97:1e:f1:
                    41:f4:3d:ac:f0:00:23:53:17:0c:8d:07:7b:82:99:
                    e1:ce:b0:2b:6b:2c:0c:f9:97:93:4e:30:ae:9a:1a:
                    0b:7e:86:c2:99:7b:76:ba:b8:18:f2:25:8d:e7:92:
                    54:43:73:e0:be:ed:46:01:9a:8d:a4:5c:72:43:d9:
                    9d:b6:31:7c:4e:d0:de:ef:4b:80:52:24:48:a1:95:
                    2d:e8:c8:7a:e5:84:14:16:94:d8:6f:c5:31:54:d3:
                    03:c2:d2:ef:98:79:5e:4e:3b:09:62:94:28:4a:89:
                    39:fd:ae:15:e8:ec:ce:26:a9:0f:a1:56:4c:49:75:
                    67:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                50:15:7A:42:54:F8:8E:31:B9:89:C7:3A:BE:8B:01:C8:F4:43:55:86
            X509v3 Authority Key Identifier:
                keyid:97:9E:05:FF:EE:D4:8A:96:92:45:4F:66:8B:83:D4:97:14:C9:FE:39

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/2CCF978DE00466A1F41A9C761AEB2577E55690B00C4B3DDF339A23B95B311B93/0/979E05FFEED48A9692454F668B83D49714C9FE39.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/979E05FFEED48A9692454F668B83D49714C9FE39.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2CCF978DE00466A1F41A9C761AEB2577E55690B00C4B3DDF339A23B95B311B93/0/3230302e32392e32342e302f32342d3234203d3e2034393935.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.29.24.0/24

    Signature Algorithm: sha256WithRSAEncryption
         80:51:6b:0b:41:34:af:28:41:9e:5a:94:1e:8f:0a:94:dd:33:
         c5:48:6d:80:6a:09:84:54:90:d5:12:87:e2:45:7f:b8:63:a3:
         3b:a6:d9:66:7d:c2:a1:43:e9:16:e3:be:2b:44:07:c7:7a:03:
         b4:40:1f:b5:14:09:dd:77:09:d8:7d:11:a8:30:af:44:dc:95:
         ea:f2:96:78:b6:9d:72:b9:df:ba:25:ff:63:83:e7:06:84:4a:
         a0:8d:69:a7:cd:b4:af:74:68:b7:2e:f4:0d:33:d8:b0:5a:d2:
         2e:24:a9:94:1b:1d:9c:1b:1d:36:4c:11:8f:7e:10:5a:00:12:
         a1:76:87:c6:cd:b7:3c:34:77:0d:7e:bf:c5:2d:b5:66:53:6d:
         d6:06:ea:8c:10:bd:16:61:ff:b9:17:b8:48:c1:e5:1d:47:39:
         d3:4b:d7:98:06:b5:1b:9a:ae:97:ef:4f:25:1a:c8:29:32:c2:
         27:22:b1:0d:15:c7:c0:8b:75:e8:83:9a:9c:2e:e2:f9:22:90:
         b2:ae:5f:cf:3a:b9:db:26:d2:41:67:19:c4:59:ce:bf:ba:33:
         2f:0a:46:d6:56:a9:1f:5e:76:3f:c3:25:1b:86:ce:86:5d:1b:
         74:9b:6f:cc:1e:31:f2:52:a4:a5:70:0b:6b:ff:19:ff:1c:2b:
         eb:a1:5c:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:03:07 2024 by rpki-client on console-fra.rpki-client.org