Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9F9F582B5E6E3D9ADB07291B00AB30EF4C84E211575C500C933DD3766C6B0D85/0/3139302e3130372e3132382e302f32302d3234203d3e203134373534.roa
File:                     3139302e3130372e3132382e302f32302d3234203d3e203134373534.roa (raw, json)
Hash identifier:          +5lgWZocy2DPUv4G94yLB4wt1soVqSKMVeehmTprMVA=
Subject key identifier:   BC:57:FE:12:53:67:68:3E:AC:C2:6A:25:11:9F:81:9B:F9:7D:90:83
Certificate issuer:       /CN=78533EB3FC1F0B8C193CBD87000A8F6754AAFE91
Certificate serial:       1950CF80156433390F9AF82B296C8E201CAD5403
Authority key identifier: 78:53:3E:B3:FC:1F:0B:8C:19:3C:BD:87:00:0A:8F:67:54:AA:FE:91
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/78533EB3FC1F0B8C193CBD87000A8F6754AAFE91.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/9F9F582B5E6E3D9ADB07291B00AB30EF4C84E211575C500C933DD3766C6B0D85/0/3139302e3130372e3132382e302f32302d3234203d3e203134373534.roa
Signing time:             Tue 05 Mar 2024 18:05:56 +0000
ROA not before:           Tue 05 Mar 2024 18:00:56 +0000
ROA not after:            Tue 04 Mar 2025 18:05:56 +0000
asID:                     14754
IP address blocks:        190.107.128.0/20 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/9F9F582B5E6E3D9ADB07291B00AB30EF4C84E211575C500C933DD3766C6B0D85/0/78533EB3FC1F0B8C193CBD87000A8F6754AAFE91.crl
                          rsync://repository.lacnic.net/rpki/lacnic/9F9F582B5E6E3D9ADB07291B00AB30EF4C84E211575C500C933DD3766C6B0D85/0/78533EB3FC1F0B8C193CBD87000A8F6754AAFE91.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/78533EB3FC1F0B8C193CBD87000A8F6754AAFE91.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Thu 18 Jul 2024 11:47:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            19:50:cf:80:15:64:33:39:0f:9a:f8:2b:29:6c:8e:20:1c:ad:54:03
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=78533EB3FC1F0B8C193CBD87000A8F6754AAFE91
        Validity
            Not Before: Mar  5 18:00:56 2024 GMT
            Not After : Mar  4 18:05:56 2025 GMT
        Subject: CN=BC57FE125367683EACC26A25119F819BF97D9083
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:c5:fa:25:af:26:5b:5d:57:98:4d:e7:20:24:
                    45:39:81:62:0d:8d:c0:d9:f3:a3:7f:53:59:4c:84:
                    8e:de:27:44:c6:cb:bc:d2:25:30:d0:35:51:93:cf:
                    c5:ab:23:6c:6e:69:1f:58:46:3e:b8:70:46:3c:f3:
                    35:48:60:c7:07:02:95:96:8e:89:f4:4b:45:6c:6a:
                    df:c4:9e:dd:e7:eb:89:5e:35:9b:5f:d0:9d:d9:6d:
                    18:1e:1a:8b:ec:2a:1b:fc:6d:41:ba:ea:58:09:aa:
                    11:73:33:62:01:e8:ae:70:eb:b5:c0:9d:d0:9f:34:
                    87:a5:87:ea:83:8b:31:ee:fb:99:cb:2b:3f:a7:f5:
                    1c:15:68:b3:f7:29:67:c3:f9:45:9a:9b:0d:26:18:
                    33:4e:4d:ab:a9:e6:c4:a6:ef:a7:85:90:2d:61:19:
                    d6:10:8c:f5:0a:61:e9:a3:34:2c:01:27:4d:a2:d0:
                    c2:d5:bc:a8:a5:43:30:8a:ad:fa:7a:88:40:45:0f:
                    7e:1c:7b:f2:2a:07:62:09:91:29:b4:fa:f4:4c:92:
                    22:6f:68:b0:85:b3:1d:30:66:26:08:41:3b:68:e4:
                    36:c3:6d:77:18:4e:f5:4d:2f:6d:1d:0f:da:e1:b2:
                    65:5e:c8:bd:36:93:23:3d:90:39:c2:38:c4:d3:41:
                    ce:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BC:57:FE:12:53:67:68:3E:AC:C2:6A:25:11:9F:81:9B:F9:7D:90:83
            X509v3 Authority Key Identifier:
                keyid:78:53:3E:B3:FC:1F:0B:8C:19:3C:BD:87:00:0A:8F:67:54:AA:FE:91

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/9F9F582B5E6E3D9ADB07291B00AB30EF4C84E211575C500C933DD3766C6B0D85/0/78533EB3FC1F0B8C193CBD87000A8F6754AAFE91.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/78533EB3FC1F0B8C193CBD87000A8F6754AAFE91.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9F9F582B5E6E3D9ADB07291B00AB30EF4C84E211575C500C933DD3766C6B0D85/0/3139302e3130372e3132382e302f32302d3234203d3e203134373534.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.107.128.0/20

    Signature Algorithm: sha256WithRSAEncryption
         b4:da:64:dc:5f:40:29:d2:9d:fb:2d:93:3b:78:e0:3f:0c:aa:
         9e:ad:e2:d2:5a:a1:7c:63:74:36:d3:60:55:62:cc:d9:57:2e:
         1e:b0:e4:3a:7e:24:74:20:0f:39:16:78:e1:26:7e:0a:db:e9:
         2b:80:f1:e7:b8:22:40:1d:72:ec:27:1c:29:bf:7f:ee:57:45:
         06:96:80:5b:a4:e7:c7:e1:c6:9f:3e:fe:37:e7:a6:cd:af:56:
         81:91:fd:07:77:ca:5c:b2:00:28:29:0b:1e:cf:29:7a:8c:aa:
         71:e9:ca:76:2d:08:6e:4b:b2:b9:ab:9c:20:e8:79:fb:65:93:
         4b:61:3e:7e:e1:15:1e:13:17:88:83:9a:52:64:12:32:0d:69:
         68:c8:cc:9c:73:b0:bb:da:f3:f3:92:45:ea:90:6d:cc:10:41:
         4b:70:df:40:c6:44:e2:22:2e:22:f6:ba:47:57:b6:53:ec:70:
         96:a0:65:9d:fe:11:f5:90:02:24:f0:2e:09:80:fb:c0:6d:ff:
         56:3f:c8:ca:eb:6b:f7:c9:7b:dd:e7:07:32:60:0d:5e:c5:0d:
         8f:e1:78:76:17:74:10:40:d3:93:08:3d:87:94:fd:d2:98:88:
         b7:d0:ea:b1:40:e0:04:ac:5b:f8:8d:ab:1c:78:a1:98:9f:a1:
         d8:d9:4d:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 15 05:29:10 2024 by rpki-client on console-ams.rpki-client.org