Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D6CB5131E6E9F62855DC0EC50655CD810DD985ABBBFFBF4F0C653795F214ED99/0/3230302e36322e36342e302f31392d3234203d3e203134373534.roa
File:                     3230302e36322e36342e302f31392d3234203d3e203134373534.roa (raw, json)
Hash identifier:          N3WDJe3EnF9TttBQHkND0qmosca3kQmKqhz8aJ20q6A=
Subject key identifier:   B8:A8:43:9E:10:26:27:76:FB:9A:9D:A5:24:92:BC:D6:87:6F:DA:42
Certificate issuer:       /CN=512FC9A3066D2E0C294F0E001A94F2F0AED7270C
Certificate serial:       5ADA0B7FB8FDEB2163B2641B62D3A51BEDE3C640
Authority key identifier: 51:2F:C9:A3:06:6D:2E:0C:29:4F:0E:00:1A:94:F2:F0:AE:D7:27:0C
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/512FC9A3066D2E0C294F0E001A94F2F0AED7270C.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/D6CB5131E6E9F62855DC0EC50655CD810DD985ABBBFFBF4F0C653795F214ED99/0/3230302e36322e36342e302f31392d3234203d3e203134373534.roa
Signing time:             Tue 05 Mar 2024 18:09:46 +0000
ROA not before:           Tue 05 Mar 2024 18:04:46 +0000
ROA not after:            Tue 04 Mar 2025 18:09:46 +0000
asID:                     14754
IP address blocks:        200.62.64.0/19 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/D6CB5131E6E9F62855DC0EC50655CD810DD985ABBBFFBF4F0C653795F214ED99/0/512FC9A3066D2E0C294F0E001A94F2F0AED7270C.crl
                          rsync://repository.lacnic.net/rpki/lacnic/D6CB5131E6E9F62855DC0EC50655CD810DD985ABBBFFBF4F0C653795F214ED99/0/512FC9A3066D2E0C294F0E001A94F2F0AED7270C.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/512FC9A3066D2E0C294F0E001A94F2F0AED7270C.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Thu 18 Jul 2024 11:47:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5a:da:0b:7f:b8:fd:eb:21:63:b2:64:1b:62:d3:a5:1b:ed:e3:c6:40
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=512FC9A3066D2E0C294F0E001A94F2F0AED7270C
        Validity
            Not Before: Mar  5 18:04:46 2024 GMT
            Not After : Mar  4 18:09:46 2025 GMT
        Subject: CN=B8A8439E10262776FB9A9DA52492BCD6876FDA42
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:26:46:be:35:63:fe:8e:c2:0e:2b:11:15:95:
                    c6:e4:a5:4a:f8:fd:07:22:49:31:6b:fa:66:8b:91:
                    23:ce:f5:f0:9a:87:4f:b0:66:eb:df:a2:02:b2:53:
                    75:5e:5e:23:a0:57:88:d9:d1:9f:45:24:42:38:75:
                    b3:2d:ca:26:0c:f4:f4:58:db:a5:a1:60:7e:a9:94:
                    8e:e0:4a:6d:3a:d0:86:75:ef:4c:b8:1f:71:99:2b:
                    17:43:3f:c5:31:7d:0d:64:37:12:75:ea:2b:44:fb:
                    b2:02:1d:ce:d0:ca:f6:42:65:a8:05:85:61:17:12:
                    c8:da:65:0b:58:81:8e:02:f4:bd:0d:3f:34:3f:f4:
                    d1:84:21:c5:7e:75:d2:bd:07:d8:c3:3d:f7:1e:b9:
                    b7:bc:bd:de:4e:0c:ee:02:3d:06:48:7a:d0:62:af:
                    e2:a5:14:0c:b9:c8:23:72:a7:b5:eb:ca:09:d2:8e:
                    6f:98:fe:ec:ad:e4:79:ac:84:e2:47:00:e4:0a:6d:
                    6d:31:b5:59:46:79:91:8b:69:ba:4b:9c:b7:26:84:
                    80:5c:e3:cf:88:ed:49:81:ca:73:bd:fc:d8:f7:02:
                    03:47:56:ab:e2:01:dd:e1:9b:d8:ec:bc:b5:44:fb:
                    e9:84:e0:02:fe:de:9f:29:26:cd:fe:08:8b:8f:ea:
                    c2:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B8:A8:43:9E:10:26:27:76:FB:9A:9D:A5:24:92:BC:D6:87:6F:DA:42
            X509v3 Authority Key Identifier:
                keyid:51:2F:C9:A3:06:6D:2E:0C:29:4F:0E:00:1A:94:F2:F0:AE:D7:27:0C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/D6CB5131E6E9F62855DC0EC50655CD810DD985ABBBFFBF4F0C653795F214ED99/0/512FC9A3066D2E0C294F0E001A94F2F0AED7270C.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/512FC9A3066D2E0C294F0E001A94F2F0AED7270C.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D6CB5131E6E9F62855DC0EC50655CD810DD985ABBBFFBF4F0C653795F214ED99/0/3230302e36322e36342e302f31392d3234203d3e203134373534.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.62.64.0/19

    Signature Algorithm: sha256WithRSAEncryption
         98:7b:7c:46:29:0e:ba:59:95:22:95:c2:8f:79:3b:e6:5e:cc:
         fa:97:8f:04:d9:06:93:37:1e:81:b4:f4:5a:d0:8f:44:08:d9:
         c2:e7:18:ac:00:ef:3f:1b:28:4d:a6:49:7e:7c:62:fe:db:e4:
         5e:ec:1b:7f:f7:89:f4:66:11:35:9d:40:da:fa:74:92:bb:8c:
         bd:79:01:2e:36:5a:56:7c:af:70:87:d8:6e:19:cd:1d:37:dc:
         6d:b1:81:e7:8b:b9:32:5c:51:31:1c:db:ed:99:34:10:9a:8b:
         ef:19:15:a1:fe:26:36:f9:e9:d8:4c:96:58:1f:91:ff:f6:5f:
         e3:41:2b:15:1b:bb:09:a5:78:00:96:f3:02:16:60:eb:88:d1:
         86:ea:ae:3d:41:73:78:a3:a0:8e:54:e1:c0:ca:49:8b:e5:f1:
         d7:2c:2c:3d:94:05:ae:33:b9:a5:1f:8f:6c:af:00:31:5d:16:
         f8:56:8f:1a:ff:48:0a:06:b3:7a:8c:ae:33:63:d3:b4:ee:bb:
         30:5e:31:27:db:14:d0:62:2c:6e:91:69:d4:68:49:5b:56:8a:
         0c:4b:7d:2b:ae:fc:64:91:4a:4a:5a:4d:a6:4b:48:3f:73:e8:
         ee:cb:d3:75:9b:32:4b:4c:36:3e:1f:56:73:47:01:bb:1e:90:
         51:4b:4a:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 15 05:29:10 2024 by rpki-client on console-ams.rpki-client.org