Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/35D7D37DF398ACFA714DB98008A80EC63AC65C6A43D6130E0FD980FE3F313F9B/0/34352e36382e33342e302f32332d3234203d3e203634313530.roa
File:                     34352e36382e33342e302f32332d3234203d3e203634313530.roa (raw, json)
Hash identifier:          Se17CAUi8L8EKB7MOjASVcAf3SMr/BtufcXvojSgLOI=
Subject key identifier:   4C:3E:5C:6A:AE:96:0B:BF:02:FA:8D:ED:D8:E6:7F:A4:A2:07:F9:BE
Certificate issuer:       /CN=77B81134906868C6E3E9D1FFFFFA566816CB9125
Certificate serial:       5D9A6319AE4FF1EAFC9AC2C4372AE1AAD7465A8D
Authority key identifier: 77:B8:11:34:90:68:68:C6:E3:E9:D1:FF:FF:FA:56:68:16:CB:91:25
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/77B81134906868C6E3E9D1FFFFFA566816CB9125.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/35D7D37DF398ACFA714DB98008A80EC63AC65C6A43D6130E0FD980FE3F313F9B/0/34352e36382e33342e302f32332d3234203d3e203634313530.roa
Signing time:             Tue 05 Mar 2024 17:48:59 +0000
ROA not before:           Tue 05 Mar 2024 17:43:59 +0000
ROA not after:            Tue 04 Mar 2025 17:48:59 +0000
asID:                     64150
IP address blocks:        45.68.34.0/23 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/35D7D37DF398ACFA714DB98008A80EC63AC65C6A43D6130E0FD980FE3F313F9B/0/77B81134906868C6E3E9D1FFFFFA566816CB9125.crl
                          rsync://repository.lacnic.net/rpki/lacnic/35D7D37DF398ACFA714DB98008A80EC63AC65C6A43D6130E0FD980FE3F313F9B/0/77B81134906868C6E3E9D1FFFFFA566816CB9125.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/77B81134906868C6E3E9D1FFFFFA566816CB9125.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Wed 19 Jun 2024 16:28:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5d:9a:63:19:ae:4f:f1:ea:fc:9a:c2:c4:37:2a:e1:aa:d7:46:5a:8d
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=77B81134906868C6E3E9D1FFFFFA566816CB9125
        Validity
            Not Before: Mar  5 17:43:59 2024 GMT
            Not After : Mar  4 17:48:59 2025 GMT
        Subject: CN=4C3E5C6AAE960BBF02FA8DEDD8E67FA4A207F9BE
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:88:6c:14:7d:51:ae:ae:61:27:fa:a0:24:54:32:
                    08:4b:17:5a:60:b6:11:10:e8:50:46:32:3f:cd:3c:
                    86:fc:00:94:31:3c:6a:08:68:d8:64:a6:2d:c2:9a:
                    ff:41:54:fc:bf:ee:7c:36:57:4f:37:8b:04:b8:1f:
                    e7:b8:bd:06:f2:d7:e9:dd:6b:8b:48:db:10:83:c2:
                    b0:97:13:c0:34:ec:48:0a:d2:c1:c0:6a:29:50:ad:
                    5d:4e:ff:21:e5:82:5e:b3:e5:a0:f5:be:83:2f:b4:
                    f9:21:35:97:e7:b6:a1:f3:6c:77:5c:3b:17:7a:75:
                    ed:31:7c:7d:02:12:a7:14:3f:cc:27:ad:c9:f0:a1:
                    0a:99:86:8a:28:0a:96:c2:2a:c8:0b:e8:d3:22:f7:
                    3c:eb:a0:14:4f:5e:76:0a:7d:80:0b:df:04:bb:ec:
                    42:d3:da:f1:72:72:e3:90:88:8e:85:73:b1:9c:2a:
                    7d:a6:8f:a5:ae:7c:10:e0:6f:48:97:f6:ec:29:ee:
                    52:f7:f9:8e:08:39:29:bc:7d:01:34:27:ed:29:0e:
                    db:7c:18:28:08:86:1c:a3:cd:ec:23:92:87:ac:a5:
                    95:cd:e6:5f:b2:33:49:ba:b2:fd:c0:11:2e:34:d8:
                    6b:ef:e3:d7:ad:23:03:7d:b6:57:c6:45:63:9a:a8:
                    c2:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4C:3E:5C:6A:AE:96:0B:BF:02:FA:8D:ED:D8:E6:7F:A4:A2:07:F9:BE
            X509v3 Authority Key Identifier:
                keyid:77:B8:11:34:90:68:68:C6:E3:E9:D1:FF:FF:FA:56:68:16:CB:91:25

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/35D7D37DF398ACFA714DB98008A80EC63AC65C6A43D6130E0FD980FE3F313F9B/0/77B81134906868C6E3E9D1FFFFFA566816CB9125.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/77B81134906868C6E3E9D1FFFFFA566816CB9125.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/35D7D37DF398ACFA714DB98008A80EC63AC65C6A43D6130E0FD980FE3F313F9B/0/34352e36382e33342e302f32332d3234203d3e203634313530.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.68.34.0/23

    Signature Algorithm: sha256WithRSAEncryption
         20:91:9a:51:80:d3:3a:a3:51:9c:1d:28:f0:0a:0b:56:b2:9c:
         1a:2b:34:13:62:95:0c:b4:e5:05:c4:7b:0c:76:c7:ef:88:7a:
         88:45:cf:75:3d:ce:7b:ce:3c:1e:3b:1f:57:bb:03:7e:57:47:
         c5:1e:a3:96:a3:f7:c0:68:22:28:b5:de:2d:eb:50:30:ce:20:
         57:71:55:31:01:b7:d9:6d:1c:5e:cb:bc:3e:04:22:09:fd:8b:
         b9:27:f5:ec:c6:72:70:00:95:1f:ab:c8:b5:fd:a6:47:79:2d:
         4e:ea:8f:ef:c4:f4:60:5b:a8:f4:8d:dd:08:62:f9:f0:67:36:
         94:dc:4f:ef:ca:3f:f4:78:5c:17:c0:8d:2b:a8:aa:e3:ea:e3:
         25:d7:d9:e2:78:b1:31:87:3e:af:fc:4d:9a:69:8c:cb:4b:6c:
         b3:0e:f1:4b:ef:84:f0:5c:70:c2:cb:47:49:61:a6:14:09:ba:
         0c:a5:a2:b4:bb:8a:f5:90:d5:4c:97:ff:f3:08:db:94:3c:50:
         c3:f2:68:02:99:1e:b1:df:77:61:3b:5d:cc:50:17:49:99:32:
         b8:e1:f9:dd:2a:42:b4:a4:44:af:c9:a1:98:09:e9:ac:24:d5:
         ef:19:5b:59:a2:c3:0f:5a:ec:42:43:4a:35:18:18:89:af:7d:
         7b:96:81:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 23:40:08 2024 by rpki-client on console-fra.rpki-client.org