Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/6c1824fdbcf15121089c2932f791097998b66024.roa
File:                     6c1824fdbcf15121089c2932f791097998b66024.roa (raw, json)
Hash identifier:          tB923NtHKHMA/a91EswpSYH7zwzuHIxGMxxkZFxeWrk=
Subject key identifier:   C2:3D:86:79:7F:97:AB:E5:90:2E:4D:A3:19:FC:6A:C1:2C:D1:25:D0
Certificate issuer:       /CN=297e119ebe51a00d6560ab73fd79c51ada403f19
Certificate serial:       019175
Authority key identifier: 07:09:37:88:ED:4A:80:C2:0C:DE:CE:10:A7:FF:BB:31:21:A2:72:9E
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/6c1824fdbcf15121089c2932f791097998b66024.roa
Signing time:             Wed 14 Sep 2022 14:44:10 +0000
ROA not before:           Fri 19 Aug 2022 16:19:43 +0000
ROA not after:            Mon 19 Aug 2024 16:19:43 +0000
asID:                     27823
IP address blocks:        200.58.124.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.crl
                          rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 01 Apr 2024 05:58:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 102773 (0x19175)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=297e119ebe51a00d6560ab73fd79c51ada403f19
        Validity
            Not Before: Aug 19 16:19:43 2022 GMT
            Not After : Aug 19 16:19:43 2024 GMT
        Subject: CN=6c1824fdbcf15121089c2932f791097998b66024
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8d:ce:fd:9f:ad:1f:2a:68:87:06:05:29:44:64:
                    f1:2a:eb:b1:27:84:b7:b6:d5:65:ac:8f:26:eb:38:
                    fc:a8:12:ee:a8:9d:75:92:3f:37:ef:67:5a:61:78:
                    55:af:e9:f7:80:dd:62:60:60:5c:b0:32:16:3c:ea:
                    92:ed:84:bf:e3:f5:8a:d8:db:38:7d:9c:da:99:2e:
                    94:61:5b:2d:d4:eb:e2:1f:59:fb:8a:55:fd:92:2a:
                    09:40:81:3f:0b:b0:9a:1b:d3:31:7a:15:9e:97:6c:
                    2c:95:66:93:a5:03:a9:97:d4:89:a7:c9:ab:3a:91:
                    2b:ae:90:3b:ce:2a:f4:7a:8d:90:2a:dd:2e:21:62:
                    c3:7a:61:92:00:52:c0:0f:ed:ad:0f:01:ec:0c:13:
                    4f:3d:31:3f:0e:fa:c7:e4:34:50:b4:85:10:fb:6e:
                    7e:e3:a3:c0:bf:4b:83:34:2c:b4:b6:89:03:f4:c0:
                    cc:a6:a3:11:69:d1:22:ee:50:6e:e1:cc:a4:2f:16:
                    be:fa:02:2e:77:88:14:dc:3f:04:05:ad:34:f8:26:
                    7d:b1:1f:8d:e4:5c:81:2f:ab:76:a1:e5:c8:2a:8d:
                    db:e6:48:11:c9:32:d7:b0:3a:b8:df:69:73:65:da:
                    0a:b2:0d:e0:d6:d1:cd:e3:63:7d:a9:aa:5e:00:c8:
                    32:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C2:3D:86:79:7F:97:AB:E5:90:2E:4D:A3:19:FC:6A:C1:2C:D1:25:D0
            X509v3 Authority Key Identifier:
                keyid:07:09:37:88:ED:4A:80:C2:0C:DE:CE:10:A7:FF:BB:31:21:A2:72:9E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/6c1824fdbcf15121089c2932f791097998b66024.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.58.124.0/24

    Signature Algorithm: sha256WithRSAEncryption
         b1:6c:88:fe:48:8c:3a:ed:c7:31:6d:00:96:f4:a2:ea:9f:e2:
         5c:28:a6:d0:6c:1d:c4:dd:dc:e3:2f:6e:46:50:d7:a5:9d:31:
         ec:32:64:34:b2:b9:19:ce:21:59:a2:62:95:29:dd:bd:16:5f:
         34:73:44:55:43:34:9f:58:8f:a1:18:e0:e1:c3:07:65:29:ea:
         e3:03:f8:36:de:0c:26:04:b4:ae:3d:6c:ee:8e:d3:2f:26:0a:
         dd:df:11:0d:2d:97:24:8e:56:d6:1c:55:40:50:74:04:ef:92:
         a2:0b:bf:c6:7b:1c:64:78:b4:a1:d7:77:bd:33:69:25:c7:6d:
         09:bc:e1:e5:e8:6c:34:e0:53:8c:5f:71:68:98:32:5a:05:dd:
         78:d6:e6:e9:f7:d7:20:80:29:bd:51:6f:f9:5b:2a:ce:d4:21:
         20:c7:ee:d2:49:f3:9d:76:f3:43:8f:64:62:bb:03:d0:6d:4a:
         2b:c6:84:9d:88:89:e1:fe:87:69:d9:fb:8d:37:af:e3:39:28:
         4b:a6:33:ae:7b:60:5b:7f:52:e9:c0:93:01:c1:ce:44:aa:93:
         b4:b7:c3:61:7e:a1:1a:b7:32:c3:9a:fb:e0:97:63:2e:9d:06:
         46:7d:dd:0d:71:97:1f:1d:48:59:4a:48:58:96:38:f4:62:e5:
         37:98:c3:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 06:25:30 2024 by rpki-client on console-ams.rpki-client.org