Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/44F0982C6F950B9DDB1971CA7C58D4C69015CE120520A97C908513AE5C34CAEF/0/3230302e36382e3134362e302f32342d3234203d3e203238343033.roa
File:                     3230302e36382e3134362e302f32342d3234203d3e203238343033.roa (raw, json)
Hash identifier:          ph4OFV4EcpZ/iumu9vuiNX+lLsW3SqIsu4zu53j3Cto=
Subject key identifier:   F0:1C:02:6E:D2:53:E6:14:8C:1C:F1:B2:6C:29:20:2E:A7:9E:B7:F6
Certificate issuer:       /CN=A0A6C878C4FF92E87C217B2CFAA02D0A995D0496
Certificate serial:       0FA7310BAA9B2256A044132B0C6FAD56019EA0B7
Authority key identifier: A0:A6:C8:78:C4:FF:92:E8:7C:21:7B:2C:FA:A0:2D:0A:99:5D:04:96
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A0A6C878C4FF92E87C217B2CFAA02D0A995D0496.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/44F0982C6F950B9DDB1971CA7C58D4C69015CE120520A97C908513AE5C34CAEF/0/3230302e36382e3134362e302f32342d3234203d3e203238343033.roa
Signing time:             Wed 04 Sep 2024 15:50:00 +0000
ROA not before:           Wed 04 Sep 2024 15:45:00 +0000
ROA not after:            Wed 03 Sep 2025 15:50:00 +0000
asID:                     28403
IP address blocks:        200.68.146.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/44F0982C6F950B9DDB1971CA7C58D4C69015CE120520A97C908513AE5C34CAEF/0/A0A6C878C4FF92E87C217B2CFAA02D0A995D0496.crl
                          rsync://repository.lacnic.net/rpki/lacnic/44F0982C6F950B9DDB1971CA7C58D4C69015CE120520A97C908513AE5C34CAEF/0/A0A6C878C4FF92E87C217B2CFAA02D0A995D0496.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A0A6C878C4FF92E87C217B2CFAA02D0A995D0496.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Fri 13 Dec 2024 18:19:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0f:a7:31:0b:aa:9b:22:56:a0:44:13:2b:0c:6f:ad:56:01:9e:a0:b7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A0A6C878C4FF92E87C217B2CFAA02D0A995D0496
        Validity
            Not Before: Sep  4 15:45:00 2024 GMT
            Not After : Sep  3 15:50:00 2025 GMT
        Subject: CN=F01C026ED253E6148C1CF1B26C29202EA79EB7F6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:67:36:ee:da:ef:25:bb:c2:0a:32:e9:12:ca:
                    85:b5:0a:c2:07:f2:17:83:e0:4a:35:97:77:89:15:
                    12:54:66:da:f5:3f:9a:de:99:02:6b:f3:31:ed:82:
                    ea:43:e8:bd:c0:d1:7b:9f:5c:84:db:ef:b2:c4:3e:
                    d6:4e:90:28:de:ce:04:72:c4:88:83:a8:a9:4d:8a:
                    b9:e8:33:09:c5:8d:89:49:ad:ba:b2:05:04:83:c0:
                    4a:83:65:5d:62:92:d0:be:86:54:eb:aa:9e:22:42:
                    d1:8a:ba:8f:e2:67:e4:d3:97:ae:1b:27:ef:96:7e:
                    7f:ff:26:40:18:50:f1:ac:f4:67:87:14:32:b7:3c:
                    3d:44:62:c0:85:30:19:09:72:57:6a:a3:d2:d0:9a:
                    45:fa:46:90:9c:11:6a:10:ba:ef:b8:95:a3:5a:18:
                    9c:b7:0a:36:1c:57:df:6e:1d:37:fa:cf:4e:6f:43:
                    0a:18:96:6f:71:15:49:f3:45:70:d8:ce:bd:ac:15:
                    02:c5:ad:35:5c:93:b8:b8:13:ab:0f:b0:e6:0c:fb:
                    4c:10:5a:86:88:91:c9:6b:ae:3e:b9:1b:f7:79:6c:
                    68:98:42:89:6f:13:5f:28:e5:8b:aa:05:26:25:fd:
                    60:1f:36:8b:6f:4a:6c:f9:51:b1:02:80:2b:5f:02:
                    96:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F0:1C:02:6E:D2:53:E6:14:8C:1C:F1:B2:6C:29:20:2E:A7:9E:B7:F6
            X509v3 Authority Key Identifier:
                keyid:A0:A6:C8:78:C4:FF:92:E8:7C:21:7B:2C:FA:A0:2D:0A:99:5D:04:96

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/44F0982C6F950B9DDB1971CA7C58D4C69015CE120520A97C908513AE5C34CAEF/0/A0A6C878C4FF92E87C217B2CFAA02D0A995D0496.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A0A6C878C4FF92E87C217B2CFAA02D0A995D0496.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/44F0982C6F950B9DDB1971CA7C58D4C69015CE120520A97C908513AE5C34CAEF/0/3230302e36382e3134362e302f32342d3234203d3e203238343033.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.68.146.0/24

    Signature Algorithm: sha256WithRSAEncryption
         86:21:2c:cb:d2:12:7c:4e:92:3b:4b:1f:de:e0:38:81:4b:ed:
         55:75:ce:eb:11:87:17:d9:fe:96:fd:1b:33:82:6c:12:47:d9:
         64:ba:62:9c:6a:f8:6a:50:3f:64:60:10:a8:03:7c:3e:55:8b:
         99:34:9f:a9:3a:5c:b0:71:39:8a:df:58:79:8f:e9:b0:16:e6:
         1a:07:55:6c:f9:d4:2c:02:f6:45:3a:02:d6:f2:9d:d3:32:aa:
         fa:9d:8c:6a:58:58:98:0a:06:69:77:21:c0:76:14:88:89:2a:
         26:f3:a7:37:88:d6:83:6c:46:ad:c5:9d:9f:ca:58:72:a7:ff:
         a7:78:3d:07:f8:6c:22:77:09:ce:45:7e:ee:e7:7f:86:2a:f3:
         3f:0c:f5:a8:db:9f:6d:1c:ad:6e:bd:f9:9e:77:93:c5:94:b8:
         2b:48:6d:46:9e:25:83:6b:57:99:2d:93:f3:fb:ea:23:4c:44:
         8e:15:5c:b4:a6:05:c7:b0:26:21:8b:3b:b0:43:21:b0:49:b3:
         ec:7b:3c:ba:a2:d8:ee:af:f9:8c:7d:91:c3:f5:a9:92:4d:a2:
         52:44:74:4c:d5:14:87:ca:cb:2a:0e:29:6b:79:1e:53:ca:8e:
         f9:32:76:13:7a:dd:3f:98:d6:e0:2f:df:92:a0:97:93:63:f9:
         9c:ae:c8:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Dec 9 09:12:36 2024 by rpki-client on console-ams.rpki-client.org