Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/94303CBC1F355E55C223ADEB8B5BF25E0EBCBF73FC04665B0428A1A90AE29C15/0/3230312e3133302e38322e302f32332d3234203d3e203631343731.roa
File:                     3230312e3133302e38322e302f32332d3234203d3e203631343731.roa (raw, json)
Hash identifier:          X+ijMGLPnXusebsw0aZOgzkPX++pUMnYLeZhRLgL0Ms=
Subject key identifier:   BD:EE:7C:2F:A2:D7:66:1C:8C:D3:AC:E0:36:93:18:71:F1:49:BA:F6
Certificate issuer:       /CN=98DB6B3E362C5897A9A6A35ADC133E2D65079F97
Certificate serial:       70374920C590818335AB9D302007833908E026B1
Authority key identifier: 98:DB:6B:3E:36:2C:58:97:A9:A6:A3:5A:DC:13:3E:2D:65:07:9F:97
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/98DB6B3E362C5897A9A6A35ADC133E2D65079F97.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/94303CBC1F355E55C223ADEB8B5BF25E0EBCBF73FC04665B0428A1A90AE29C15/0/3230312e3133302e38322e302f32332d3234203d3e203631343731.roa
Signing time:             Tue 05 Mar 2024 18:01:50 +0000
ROA not before:           Tue 05 Mar 2024 17:56:50 +0000
ROA not after:            Tue 04 Mar 2025 18:01:50 +0000
asID:                     61471
IP address blocks:        201.130.82.0/23 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/94303CBC1F355E55C223ADEB8B5BF25E0EBCBF73FC04665B0428A1A90AE29C15/0/98DB6B3E362C5897A9A6A35ADC133E2D65079F97.crl
                          rsync://repository.lacnic.net/rpki/lacnic/94303CBC1F355E55C223ADEB8B5BF25E0EBCBF73FC04665B0428A1A90AE29C15/0/98DB6B3E362C5897A9A6A35ADC133E2D65079F97.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/98DB6B3E362C5897A9A6A35ADC133E2D65079F97.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 15 Jul 2024 02:30:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            70:37:49:20:c5:90:81:83:35:ab:9d:30:20:07:83:39:08:e0:26:b1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=98DB6B3E362C5897A9A6A35ADC133E2D65079F97
        Validity
            Not Before: Mar  5 17:56:50 2024 GMT
            Not After : Mar  4 18:01:50 2025 GMT
        Subject: CN=BDEE7C2FA2D7661C8CD3ACE036931871F149BAF6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:99:e2:90:b9:11:2f:c9:94:2e:d4:07:0c:3e:
                    1c:5e:64:02:5d:5a:76:b3:5a:91:7e:42:08:56:75:
                    d8:7d:3d:b9:7d:7b:96:dd:41:b4:c6:58:92:f3:19:
                    91:61:12:b7:21:0a:6f:77:f3:a6:23:e0:6c:e3:41:
                    bb:b3:34:e7:93:3f:0a:fc:e1:ca:3f:06:de:b2:fe:
                    f5:0b:dd:30:23:96:d9:06:76:2c:4f:2d:6d:4f:f9:
                    6b:1f:5a:0f:3d:a5:f7:69:be:19:fe:68:44:1f:a4:
                    10:34:14:f1:a3:73:dc:6c:87:61:4e:8b:db:d0:6e:
                    a7:95:6b:2e:44:18:8a:58:1d:e9:ee:7a:65:a8:80:
                    b4:04:f2:c0:ec:ea:17:42:2d:1e:36:d0:77:60:89:
                    4d:44:74:ab:89:5c:93:54:90:5f:dc:8f:fe:4a:17:
                    a3:04:ff:05:dd:69:6f:53:75:4b:85:7b:7a:3e:0e:
                    3a:62:aa:c0:38:0a:2b:45:7e:24:ea:f1:9a:13:5b:
                    38:dd:7c:9c:f9:00:b4:34:f6:60:f4:f9:8e:63:2b:
                    46:d1:e9:cd:fe:a9:29:75:f1:e2:a2:de:2b:6f:92:
                    33:22:fa:5c:85:d0:ce:d3:0f:e5:bd:ba:81:d8:10:
                    25:a2:12:89:0c:0d:38:89:5f:99:db:c9:16:8a:5a:
                    f2:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BD:EE:7C:2F:A2:D7:66:1C:8C:D3:AC:E0:36:93:18:71:F1:49:BA:F6
            X509v3 Authority Key Identifier:
                keyid:98:DB:6B:3E:36:2C:58:97:A9:A6:A3:5A:DC:13:3E:2D:65:07:9F:97

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/94303CBC1F355E55C223ADEB8B5BF25E0EBCBF73FC04665B0428A1A90AE29C15/0/98DB6B3E362C5897A9A6A35ADC133E2D65079F97.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/98DB6B3E362C5897A9A6A35ADC133E2D65079F97.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/94303CBC1F355E55C223ADEB8B5BF25E0EBCBF73FC04665B0428A1A90AE29C15/0/3230312e3133302e38322e302f32332d3234203d3e203631343731.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  201.130.82.0/23

    Signature Algorithm: sha256WithRSAEncryption
         51:e6:7e:47:27:a1:b2:a8:39:96:85:d9:14:17:c5:b9:57:e9:
         fb:a5:69:f4:34:7c:82:0a:7c:34:a1:aa:43:bf:ed:3f:1f:c6:
         2c:4a:24:25:04:32:e2:f2:b0:4b:be:7b:d5:64:d6:b3:d2:09:
         61:eb:63:df:fc:b2:8e:2e:9b:cc:82:59:c0:90:80:76:23:ba:
         37:39:71:ef:11:7e:98:48:56:25:43:24:20:ee:f0:57:e6:50:
         cd:e9:22:ff:eb:42:04:06:6b:fe:97:0b:a1:3d:ae:cf:08:8d:
         a6:5c:8f:35:66:6d:75:25:d5:d9:a0:4e:f9:95:20:d6:9b:dc:
         34:78:11:91:fe:b7:f7:ec:2d:64:52:7a:0a:b3:6a:e7:6f:50:
         e8:69:9c:a4:6a:c8:a0:2e:7a:be:d4:07:a6:22:71:8a:09:2e:
         fb:52:39:cc:82:c4:b2:46:19:3a:04:3e:99:dd:19:91:ce:72:
         f1:48:88:0b:61:67:d8:46:9e:f9:32:02:62:21:70:9f:41:7e:
         c7:49:52:32:b9:68:89:a1:fd:cb:05:49:d8:3a:eb:49:b1:81:
         60:2b:88:ba:ee:46:30:8b:14:cc:dd:30:2a:f7:86:da:52:6b:
         0e:62:c6:e5:1b:e5:c5:46:b0:68:0c:62:44:14:c0:0d:9e:3b:
         d1:e8:cc:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 11 07:23:36 2024 by rpki-client on console-fra.rpki-client.org