Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/7ce107532f0ec909c2a76d613b2a5e280820dd63.roa
File:                     7ce107532f0ec909c2a76d613b2a5e280820dd63.roa (raw, json)
Hash identifier:          MumX1g2t+JmU2E7IiyWMI7CziI4R9MSzZI8YCzsKuzU=
Subject key identifier:   F9:F1:1B:2C:B6:AA:DF:C5:BF:A6:A1:AE:7A:D2:B3:A0:3A:34:65:AB
Certificate issuer:       /CN=297e119ebe51a00d6560ab73fd79c51ada403f19
Certificate serial:       01B18F
Authority key identifier: 07:09:37:88:ED:4A:80:C2:0C:DE:CE:10:A7:FF:BB:31:21:A2:72:9E
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/7ce107532f0ec909c2a76d613b2a5e280820dd63.roa
Signing time:             Wed 14 Sep 2022 16:21:16 +0000
ROA not before:           Fri 19 Aug 2022 16:20:25 +0000
ROA not after:            Mon 19 Aug 2024 16:20:25 +0000
asID:                     27823
IP address blocks:        200.58.103.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.crl
                          rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 12:22:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 110991 (0x1b18f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=297e119ebe51a00d6560ab73fd79c51ada403f19
        Validity
            Not Before: Aug 19 16:20:25 2022 GMT
            Not After : Aug 19 16:20:25 2024 GMT
        Subject: CN=7ce107532f0ec909c2a76d613b2a5e280820dd63
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:e3:a6:95:c6:aa:da:ec:cd:c7:d3:f3:e7:da:
                    73:b3:fc:3a:f5:e0:aa:21:2f:82:80:01:4d:d3:c8:
                    e9:c5:57:df:a2:04:73:1e:fc:bd:d2:e8:20:9b:94:
                    a3:c4:5e:16:f3:89:c7:ed:bd:6e:7a:5c:f1:a7:7f:
                    b1:2a:a2:7e:3b:86:de:1b:54:a5:30:97:4d:f5:93:
                    d8:57:13:67:46:41:03:df:ba:2c:02:b4:a3:95:f4:
                    20:75:3e:c3:13:b4:66:34:21:49:21:f8:51:00:06:
                    db:79:28:c2:27:82:a6:a5:8a:51:ec:8a:d4:88:80:
                    fc:d8:e5:4a:17:f6:8a:55:f9:9a:1d:58:b1:ed:fa:
                    d5:48:4e:bb:76:76:19:80:04:39:45:06:a2:27:5a:
                    a9:fc:36:26:5a:7c:3c:91:d4:89:d9:af:8e:60:93:
                    19:56:b6:81:27:f1:5d:71:99:f9:0a:66:0d:e5:9a:
                    97:3b:66:85:6b:55:e9:17:b3:48:ff:a2:33:7e:ba:
                    41:97:8f:73:54:2a:d3:eb:4f:85:ee:02:3a:4b:e9:
                    c0:30:fa:de:d1:56:b9:67:27:7c:e8:10:68:5d:14:
                    8a:95:ab:74:55:09:98:80:48:29:d1:88:ec:0b:e7:
                    cb:69:64:f5:83:2d:2a:f6:59:99:03:43:b2:76:03:
                    22:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F9:F1:1B:2C:B6:AA:DF:C5:BF:A6:A1:AE:7A:D2:B3:A0:3A:34:65:AB
            X509v3 Authority Key Identifier:
                keyid:07:09:37:88:ED:4A:80:C2:0C:DE:CE:10:A7:FF:BB:31:21:A2:72:9E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/7ce107532f0ec909c2a76d613b2a5e280820dd63.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.58.103.0/24

    Signature Algorithm: sha256WithRSAEncryption
         3e:e3:fa:43:de:07:02:f9:8e:17:a2:2a:47:a0:eb:e9:68:28:
         68:15:7b:27:58:03:ff:4c:88:7c:ec:32:5d:33:1d:f3:6a:cb:
         c7:80:83:4d:4f:93:c9:ce:c1:c3:9f:fc:ec:3d:68:35:b1:fe:
         b8:ae:1b:ab:39:d2:10:84:2a:d2:44:bd:b0:e7:0d:3b:5c:a0:
         05:7f:1e:5f:81:81:fd:7d:87:cb:ca:67:71:da:97:f3:9d:05:
         ad:fb:03:b2:24:f3:4c:73:34:fc:18:a3:ef:cd:18:45:7b:15:
         63:ef:82:f3:b1:f4:67:58:56:65:7a:7a:9d:4e:b6:13:62:5e:
         25:13:c8:54:05:dc:f4:7f:a2:45:7c:46:dc:73:86:8e:c0:36:
         0c:76:7b:41:f0:e0:a3:ad:b0:c1:9d:85:7f:c0:88:cb:01:96:
         31:37:2a:8b:ad:86:25:e5:ba:23:c3:d6:54:db:da:61:14:22:
         9c:7f:b4:14:a9:9c:a0:cd:a9:13:d1:35:4f:e2:09:76:9e:06:
         a9:50:28:e5:5b:96:af:d4:bc:0c:6b:9a:ed:a2:6d:8c:38:41:
         ab:43:0c:4a:9b:cb:7b:57:ec:4f:23:4c:e3:30:53:03:86:79:
         b2:d2:97:9f:3b:4c:56:ea:a0:bb:df:55:9b:7c:1f:19:1e:99:
         8c:3d:22:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 19:40:25 2024 by rpki-client on console-fra.rpki-client.org