Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/659788A355B108A4D7DDA3E5C9DC41E82D7901FBAA866666F06EE17AB609C185/0/3230302e302e36352e302f32342d3332203d3e203230333132.roa
File:                     3230302e302e36352e302f32342d3332203d3e203230333132.roa (raw, json)
Hash identifier:          SDbufudO0jOE8hX0PChV/cXffQfDSFDWPXS/c86AYmU=
Subject key identifier:   02:9B:04:83:0D:BA:3E:44:F0:74:08:E5:CD:5B:C9:02:C3:67:72:83
Certificate issuer:       /CN=01726C9CC40D25E04818139CB428E3A47F5D05EC
Certificate serial:       712F37A416B269896F3C9AAB1AED094CC30923EC
Authority key identifier: 01:72:6C:9C:C4:0D:25:E0:48:18:13:9C:B4:28:E3:A4:7F:5D:05:EC
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/01726C9CC40D25E04818139CB428E3A47F5D05EC.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/659788A355B108A4D7DDA3E5C9DC41E82D7901FBAA866666F06EE17AB609C185/0/3230302e302e36352e302f32342d3332203d3e203230333132.roa
Signing time:             Tue 05 Mar 2024 17:49:29 +0000
ROA not before:           Tue 05 Mar 2024 17:44:29 +0000
ROA not after:            Tue 04 Mar 2025 17:49:29 +0000
asID:                     20312
IP address blocks:        200.0.65.0/24 maxlen: 32

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/659788A355B108A4D7DDA3E5C9DC41E82D7901FBAA866666F06EE17AB609C185/0/01726C9CC40D25E04818139CB428E3A47F5D05EC.crl
                          rsync://repository.lacnic.net/rpki/lacnic/659788A355B108A4D7DDA3E5C9DC41E82D7901FBAA866666F06EE17AB609C185/0/01726C9CC40D25E04818139CB428E3A47F5D05EC.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/01726C9CC40D25E04818139CB428E3A47F5D05EC.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sat 23 Nov 2024 22:22:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            71:2f:37:a4:16:b2:69:89:6f:3c:9a:ab:1a:ed:09:4c:c3:09:23:ec
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=01726C9CC40D25E04818139CB428E3A47F5D05EC
        Validity
            Not Before: Mar  5 17:44:29 2024 GMT
            Not After : Mar  4 17:49:29 2025 GMT
        Subject: CN=029B04830DBA3E44F07408E5CD5BC902C3677283
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:9c:62:62:cf:3c:54:7f:16:e9:73:96:fd:d9:
                    92:23:11:92:51:c3:65:af:2c:9b:42:7e:09:26:66:
                    91:25:2f:12:d5:13:fe:b3:30:83:d9:f1:3c:67:e9:
                    27:92:71:58:a8:0e:37:6d:4e:09:34:c2:c5:cd:99:
                    3f:68:f7:48:b6:18:4b:9c:2a:1a:93:3f:05:47:d3:
                    02:0f:14:e3:e0:30:03:cc:f5:ed:7f:c8:c7:cf:c1:
                    37:77:3a:eb:e1:7d:7b:6b:7c:08:5a:b9:ee:95:96:
                    fc:28:36:12:00:e2:18:3f:4c:e6:96:e8:4a:2e:7d:
                    e5:37:32:0a:0a:c2:d4:75:86:23:03:2a:90:d9:cf:
                    e7:4c:8d:c2:c8:c7:a7:5b:be:f4:3d:c6:f6:2a:be:
                    9c:3a:90:08:1c:67:fc:7b:d4:cb:f3:2a:bd:59:b9:
                    37:9f:39:da:9c:55:ff:9c:23:dd:7f:ea:f1:98:1d:
                    d0:c4:ce:f8:9f:1b:6f:35:f6:25:2b:1e:35:fe:3b:
                    39:73:b6:b9:75:d7:e6:e6:5b:41:9c:f4:df:c3:19:
                    dc:83:33:c5:f3:53:d3:e7:cc:b0:c8:c8:c0:e0:bd:
                    af:a5:11:92:35:d9:cb:13:f4:3f:27:d1:f5:4d:5e:
                    c6:b5:31:40:cd:3c:7a:4a:f6:fb:2c:88:90:c3:ff:
                    99:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                02:9B:04:83:0D:BA:3E:44:F0:74:08:E5:CD:5B:C9:02:C3:67:72:83
            X509v3 Authority Key Identifier:
                keyid:01:72:6C:9C:C4:0D:25:E0:48:18:13:9C:B4:28:E3:A4:7F:5D:05:EC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/659788A355B108A4D7DDA3E5C9DC41E82D7901FBAA866666F06EE17AB609C185/0/01726C9CC40D25E04818139CB428E3A47F5D05EC.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/01726C9CC40D25E04818139CB428E3A47F5D05EC.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/659788A355B108A4D7DDA3E5C9DC41E82D7901FBAA866666F06EE17AB609C185/0/3230302e302e36352e302f32342d3332203d3e203230333132.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.0.65.0/24

    Signature Algorithm: sha256WithRSAEncryption
         02:9f:7a:69:d0:02:fc:d3:a6:ce:2c:ee:c9:51:32:7b:95:6b:
         19:51:fe:bb:ae:ab:04:9c:31:ed:e6:6a:36:70:8b:86:81:cf:
         e5:f6:ab:d8:fa:6e:0d:a6:4c:ab:e5:cc:38:13:54:d5:a1:ce:
         f1:37:54:bf:8c:2c:68:4d:c5:18:9e:2e:45:86:6b:09:cb:f8:
         0a:68:cd:e1:34:bd:04:37:18:47:14:df:16:e7:e3:38:12:24:
         9c:6a:28:c7:36:8d:04:64:10:7d:87:fe:d3:d1:4b:a3:64:e1:
         6c:3b:ce:31:bf:97:87:81:03:71:e1:13:15:29:96:15:d6:25:
         00:39:88:ab:9a:f0:f7:f7:ac:e6:de:72:e4:dd:74:d0:19:13:
         b7:7c:d6:45:a4:bf:5f:7b:21:33:cf:d7:7e:ea:99:a8:8d:52:
         87:e9:62:79:b8:d3:5b:fd:44:25:e3:9f:41:16:19:3d:62:3b:
         06:85:77:17:46:47:c4:b0:d4:99:a1:63:30:fd:3d:79:83:82:
         26:f0:4b:71:d9:15:89:7c:ab:0f:27:d6:29:07:20:eb:a8:7c:
         87:e5:cd:6d:1a:59:58:6e:ba:14:fe:89:38:26:39:2d:f8:7d:
         75:3e:0f:98:7e:fa:91:e4:ce:f1:46:3e:e1:d1:b4:a9:35:38:
         b7:07:6f:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 01:29:16 2024 by rpki-client on console-fra.rpki-client.org