Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D5FAD6E6CD7CE551643D04D5DFB81669E35B3ACDD1B9376B37C3245319A0E364/0/3138362e32342e33322e302f32322d3232203d3e2036333036.roa
File:                     3138362e32342e33322e302f32322d3232203d3e2036333036.roa (raw, json)
Hash identifier:          PUSCI/JNYMcS6CZIiQ54abtxhc2ZjZJE6CPr8HxLSOQ=
Subject key identifier:   76:31:15:93:79:BD:89:61:05:A8:A9:A1:56:AB:83:61:0C:47:31:E2
Certificate issuer:       /CN=35705A9ED706FD45725A72D9D83EF1D9B9A12E9C
Certificate serial:       04078CC4F192F6139C3ABFE1BB7E9C8DAD2F7843
Authority key identifier: 35:70:5A:9E:D7:06:FD:45:72:5A:72:D9:D8:3E:F1:D9:B9:A1:2E:9C
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/35705A9ED706FD45725A72D9D83EF1D9B9A12E9C.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/D5FAD6E6CD7CE551643D04D5DFB81669E35B3ACDD1B9376B37C3245319A0E364/0/3138362e32342e33322e302f32322d3232203d3e2036333036.roa
Signing time:             Tue 05 Mar 2024 17:42:01 +0000
ROA not before:           Tue 05 Mar 2024 17:37:01 +0000
ROA not after:            Tue 04 Mar 2025 17:42:01 +0000
asID:                     6306
IP address blocks:        186.24.32.0/22 maxlen: 22

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/D5FAD6E6CD7CE551643D04D5DFB81669E35B3ACDD1B9376B37C3245319A0E364/0/35705A9ED706FD45725A72D9D83EF1D9B9A12E9C.crl
                          rsync://repository.lacnic.net/rpki/lacnic/D5FAD6E6CD7CE551643D04D5DFB81669E35B3ACDD1B9376B37C3245319A0E364/0/35705A9ED706FD45725A72D9D83EF1D9B9A12E9C.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/35705A9ED706FD45725A72D9D83EF1D9B9A12E9C.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 24 Nov 2024 23:17:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:07:8c:c4:f1:92:f6:13:9c:3a:bf:e1:bb:7e:9c:8d:ad:2f:78:43
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=35705A9ED706FD45725A72D9D83EF1D9B9A12E9C
        Validity
            Not Before: Mar  5 17:37:01 2024 GMT
            Not After : Mar  4 17:42:01 2025 GMT
        Subject: CN=7631159379BD896105A8A9A156AB83610C4731E2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:86:6c:3e:b3:17:30:6f:98:53:96:7c:11:d9:e6:
                    93:cf:4c:c1:d9:c0:1a:e7:a1:20:24:f4:29:fa:fa:
                    dc:5b:c6:0c:2d:ac:de:14:1c:86:30:0b:b0:54:9e:
                    63:fe:dd:b0:cd:c3:9d:77:2b:e8:67:f8:38:18:1e:
                    6e:1a:a2:24:78:70:91:a9:43:fa:37:12:7a:ec:e0:
                    07:71:87:26:3a:12:50:00:bb:9f:c3:ae:1a:00:48:
                    6e:45:72:72:cc:94:12:bd:49:5c:7f:fa:b5:04:49:
                    91:0a:de:77:f4:8a:d9:37:e1:3f:59:22:7c:e0:30:
                    17:73:0f:2b:72:8b:17:56:31:2d:91:56:2a:6c:d5:
                    6d:3f:c7:27:35:2c:42:4f:c9:1d:ee:14:c4:60:bb:
                    24:e8:ef:15:54:6f:c6:5c:3e:e1:a2:a6:c7:54:3f:
                    8d:6a:89:76:80:34:4c:eb:a2:50:3d:00:29:33:7b:
                    ee:e8:88:d3:c5:f5:b4:6a:a2:02:8f:b9:8a:02:47:
                    c9:93:09:fe:0d:ed:3e:45:66:44:be:03:a6:0c:4b:
                    12:f5:73:3a:56:5f:4d:49:cd:e5:a0:8d:9c:c5:9f:
                    41:7b:2a:82:9b:d2:79:d9:ca:40:b7:72:17:69:36:
                    13:60:48:1d:08:14:d3:09:66:36:16:ad:32:59:57:
                    12:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                76:31:15:93:79:BD:89:61:05:A8:A9:A1:56:AB:83:61:0C:47:31:E2
            X509v3 Authority Key Identifier:
                keyid:35:70:5A:9E:D7:06:FD:45:72:5A:72:D9:D8:3E:F1:D9:B9:A1:2E:9C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/D5FAD6E6CD7CE551643D04D5DFB81669E35B3ACDD1B9376B37C3245319A0E364/0/35705A9ED706FD45725A72D9D83EF1D9B9A12E9C.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/35705A9ED706FD45725A72D9D83EF1D9B9A12E9C.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D5FAD6E6CD7CE551643D04D5DFB81669E35B3ACDD1B9376B37C3245319A0E364/0/3138362e32342e33322e302f32322d3232203d3e2036333036.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  186.24.32.0/22

    Signature Algorithm: sha256WithRSAEncryption
         41:69:37:6d:38:0e:84:e3:9d:72:99:7a:e2:59:92:ab:31:7f:
         a3:8b:e7:b8:f9:b0:31:bb:48:88:b8:37:27:4d:89:75:9f:75:
         e2:b5:27:4d:eb:f8:20:ed:59:0d:77:49:2a:dc:ba:ec:7a:07:
         dd:ad:23:3c:3d:81:82:a1:f3:a9:e5:29:77:25:4a:1c:4c:15:
         db:c3:32:18:93:d4:10:0c:ec:38:58:14:00:e5:09:9a:ed:81:
         9e:14:b5:f6:88:64:70:ef:e6:3b:a0:1e:69:47:42:77:46:4c:
         e0:ca:15:80:71:7e:b9:d1:89:59:e4:73:1a:d3:c0:a7:16:86:
         75:5b:d3:f9:f5:f4:b8:aa:fe:31:5f:2c:af:b6:04:f4:6a:66:
         a3:67:0d:b6:b9:b7:b5:89:64:f1:e4:90:1c:4c:16:1a:c4:b7:
         35:b6:24:6a:93:56:9d:f0:dc:e8:78:17:a8:b6:19:a0:1c:28:
         fe:7e:82:ca:9e:68:4e:49:3a:4b:0b:aa:cf:40:16:75:77:d0:
         d2:43:c2:ad:89:ca:4f:a9:f0:b8:ee:c0:29:67:15:d6:39:b3:
         f2:9b:14:77:c4:ba:a2:9a:9c:8c:72:05:ff:12:34:09:39:ce:
         07:db:0c:21:86:80:de:18:3d:a2:c1:9c:17:21:47:99:43:d5:
         bf:cf:36:a0
-----BEGIN CERTIFICATE-----
MIIFujCCBKKgAwIBAgIUBAeMxPGS9hOcOr/hu36cja0veEMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzU3MDVBOUVENzA2RkQ0NTcyNUE3MkQ5RDgzRUYxRDlC
OUExMkU5QzAeFw0yNDAzMDUxNzM3MDFaFw0yNTAzMDQxNzQyMDFaMDMxMTAvBgNV
BAMTKDc2MzExNTkzNzlCRDg5NjEwNUE4QTlBMTU2QUI4MzYxMEM0NzMxRTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCGbD6zFzBvmFOWfBHZ5pPPTMHZ
wBrnoSAk9Cn6+txbxgwtrN4UHIYwC7BUnmP+3bDNw513K+hn+DgYHm4aoiR4cJGp
Q/o3Enrs4AdxhyY6ElAAu5/DrhoASG5FcnLMlBK9SVx/+rUESZEK3nf0itk34T9Z
InzgMBdzDytyixdWMS2RVips1W0/xyc1LEJPyR3uFMRguyTo7xVUb8ZcPuGipsdU
P41qiXaANEzrolA9ACkze+7oiNPF9bRqogKPuYoCR8mTCf4N7T5FZkS+A6YMSxL1
czpWX01JzeWgjZzFn0F7KoKb0nnZykC3chdpNhNgSB0IFNMJZjYWrTJZVxJhAgMB
AAGjggLEMIICwDAdBgNVHQ4EFgQUdjEVk3m9iWEFqKmhVquDYQxHMeIwHwYDVR0j
BBgwFoAUNXBantcG/UVyWnLZ2D7x2bmhLpwwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9ENUZBRDZFNkNEN0NFNTUxNjQzRDA0RDVERkI4MTY2OUUz
NUIzQUNERDFCOTM3NkIzN0MzMjQ1MzE5QTBFMzY0LzAvMzU3MDVBOUVENzA2RkQ0
NTcyNUE3MkQ5RDgzRUYxRDlCOUExMkU5Qy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8zNTcwNUE5RUQ3MDZGRDQ1NzI1
QTcyRDlEODNFRjFEOUI5QTEyRTlDLmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG
CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRDVGQUQ2RTZDRDdDRTU1MTY0M0QwNEQ1REZCODE2NjlFMzVCM0FDREQx
QjkzNzZCMzdDMzI0NTMxOUEwRTM2NC8wLzMxMzgzNjJlMzIzNDJlMzMzMjJlMzAy
ZjMyMzIyZDMyMzIyMDNkM2UyMDM2MzMzMDM2LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCuhggMA0GCSqG
SIb3DQEBCwUAA4IBAQBBaTdtOA6E451ymXriWZKrMX+ji+e4+bAxu0iIuDcnTYl1
n3XitSdN6/gg7VkNd0kq3LrsegfdrSM8PYGCofOp5Sl3JUocTBXbwzIYk9QQDOw4
WBQA5Qma7YGeFLX2iGRw7+Y7oB5pR0J3RkzgyhWAcX650YlZ5HMa08CnFoZ1W9P5
9fS4qv4xXyyvtgT0amajZw22ube1iWTx5JAcTBYaxLc1tiRqk1ad8NzoeBeothmg
HCj+foLKnmhOSTpLC6rPQBZ1d9DSQ8KticpPqfC47sApZxXWObPymxR3xLqimpyM
cgX/EjQJOc4H2wwhhoDeGD2iwZwXIUeZQ9W/zzag
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:07:56 2024 by rpki-client on console-ams.rpki-client.org