Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/CD0E054623AC9043C0E299C2C90B143803BD89125B0E863855C49C3B73F7BAA1/0/3230302e372e362e302f32332d3234203d3e203237363738.roa
File:                     3230302e372e362e302f32332d3234203d3e203237363738.roa (raw, json)
Hash identifier:          UprE0OOJAdFH+CW8VQEtPAWd8gISN7sGL0wLP4KDPvA=
Subject key identifier:   85:1F:2E:98:69:49:4C:38:8A:0F:47:29:D2:A9:0E:24:36:2D:98:E7
Certificate issuer:       /CN=E35FC2646A9FC8929B694AAAE04D52023AA4680C
Certificate serial:       59EDA5FF381F582D15BE3881215DD4C8EF2E8E78
Authority key identifier: E3:5F:C2:64:6A:9F:C8:92:9B:69:4A:AA:E0:4D:52:02:3A:A4:68:0C
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E35FC2646A9FC8929B694AAAE04D52023AA4680C.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/CD0E054623AC9043C0E299C2C90B143803BD89125B0E863855C49C3B73F7BAA1/0/3230302e372e362e302f32332d3234203d3e203237363738.roa
Signing time:             Tue 05 Mar 2024 18:13:05 +0000
ROA not before:           Tue 05 Mar 2024 18:08:05 +0000
ROA not after:            Tue 04 Mar 2025 18:13:05 +0000
asID:                     27678
IP address blocks:        200.7.6.0/23 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/CD0E054623AC9043C0E299C2C90B143803BD89125B0E863855C49C3B73F7BAA1/0/E35FC2646A9FC8929B694AAAE04D52023AA4680C.crl
                          rsync://repository.lacnic.net/rpki/lacnic/CD0E054623AC9043C0E299C2C90B143803BD89125B0E863855C49C3B73F7BAA1/0/E35FC2646A9FC8929B694AAAE04D52023AA4680C.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E35FC2646A9FC8929B694AAAE04D52023AA4680C.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 13 Oct 2024 15:25:50 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            59:ed:a5:ff:38:1f:58:2d:15:be:38:81:21:5d:d4:c8:ef:2e:8e:78
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=E35FC2646A9FC8929B694AAAE04D52023AA4680C
        Validity
            Not Before: Mar  5 18:08:05 2024 GMT
            Not After : Mar  4 18:13:05 2025 GMT
        Subject: CN=851F2E9869494C388A0F4729D2A90E24362D98E7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:94:6d:d3:e6:f0:b5:6b:2a:d3:5b:44:6e:fd:ae:
                    85:1f:17:4e:08:58:fb:19:99:f0:7a:7d:b9:3f:a6:
                    2a:6d:f9:ce:d8:a4:5f:56:f4:32:d2:6e:44:a8:31:
                    2e:ca:99:0e:39:3e:66:38:0f:91:b1:c0:1f:7a:1c:
                    92:46:5b:ed:51:c5:f1:ad:48:e7:a0:cd:e8:b1:8d:
                    1d:fa:9a:72:5e:5a:4a:95:11:70:15:60:ba:a3:9c:
                    b6:e8:07:50:d2:d3:21:7d:12:f3:c9:b7:f8:82:4d:
                    8e:96:0a:94:57:e2:60:98:1c:71:a1:42:b5:76:09:
                    7e:32:02:3c:dc:dc:80:bd:eb:c3:d6:5e:20:87:5f:
                    f2:c1:86:77:77:9b:5f:f3:be:9c:4a:a8:82:fb:2c:
                    6b:a0:c7:ec:40:03:f0:4f:3b:70:dc:ce:14:cd:b5:
                    3a:96:04:c5:ee:19:33:fd:ca:01:02:ea:6d:c6:06:
                    c5:40:ab:be:86:1d:98:8e:b3:3e:3e:ed:11:eb:e9:
                    9d:77:6d:d7:73:05:e0:37:80:05:58:27:54:d4:70:
                    cf:c3:90:69:d7:39:2c:10:cd:ab:67:66:87:c4:7b:
                    e9:4f:3a:87:0b:81:4d:19:fe:0f:67:fd:55:52:d0:
                    60:0f:e4:49:e6:e1:b9:d8:89:81:18:ca:40:42:db:
                    93:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                85:1F:2E:98:69:49:4C:38:8A:0F:47:29:D2:A9:0E:24:36:2D:98:E7
            X509v3 Authority Key Identifier:
                keyid:E3:5F:C2:64:6A:9F:C8:92:9B:69:4A:AA:E0:4D:52:02:3A:A4:68:0C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/CD0E054623AC9043C0E299C2C90B143803BD89125B0E863855C49C3B73F7BAA1/0/E35FC2646A9FC8929B694AAAE04D52023AA4680C.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E35FC2646A9FC8929B694AAAE04D52023AA4680C.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/CD0E054623AC9043C0E299C2C90B143803BD89125B0E863855C49C3B73F7BAA1/0/3230302e372e362e302f32332d3234203d3e203237363738.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.7.6.0/23

    Signature Algorithm: sha256WithRSAEncryption
         77:e8:3e:f8:52:bf:9e:22:82:43:1f:8e:90:26:5c:02:20:e6:
         11:6d:02:54:ed:48:96:ff:2b:3e:c8:53:36:cd:48:d4:45:e8:
         cb:8f:0f:24:86:fd:78:84:ff:94:fa:56:1c:47:c3:76:57:8e:
         c3:fe:fe:50:18:e8:5a:fc:06:7d:72:7e:64:c9:ee:4a:f4:46:
         1c:a4:92:15:4e:4e:07:d3:0e:f1:b0:cd:d7:b4:b7:e0:0e:29:
         3a:61:e4:48:42:6c:91:be:f4:dd:77:92:0d:04:4a:52:13:56:
         21:ba:8a:19:40:6b:3b:ac:09:7a:2c:5c:ed:86:f9:eb:f7:e4:
         b8:07:fc:94:01:92:b8:d6:e5:b0:c3:1b:3b:1e:a2:c9:5d:1f:
         57:c2:c8:8f:f3:4d:2d:b1:36:2b:13:31:10:c2:88:fc:dd:b5:
         c5:f9:23:cf:20:21:9b:00:ac:e4:73:fa:fa:d0:4e:8c:8d:c3:
         9f:30:53:9e:39:93:81:71:b6:16:52:e1:12:14:3a:45:58:7b:
         d9:e3:31:32:9c:30:0f:85:ad:4e:50:ba:a1:d8:b6:1e:6a:29:
         12:d7:cd:9f:86:1f:a8:11:a0:09:3a:a6:5c:79:15:57:f0:e3:
         f6:89:51:53:2e:1b:1e:e7:c3:7c:8e:ec:ae:7a:39:a7:74:7b:
         ab:d2:a8:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 8 22:07:05 2024 by rpki-client on console-fra.rpki-client.org