Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D6CB5131E6E9F62855DC0EC50655CD810DD985ABBBFFBF4F0C653795F214ED99/0/3230302e36322e39362e302f31392d3234203d3e203134373534.roa
File:                     3230302e36322e39362e302f31392d3234203d3e203134373534.roa (raw, json)
Hash identifier:          JGus0xFvMEhRlSeyAFohasT686X5BpRo7FMKtHW6D7o=
Subject key identifier:   11:73:3A:55:BD:65:17:AC:6A:1F:89:9F:CB:F1:E3:B9:57:56:20:1E
Certificate issuer:       /CN=512FC9A3066D2E0C294F0E001A94F2F0AED7270C
Certificate serial:       3B5387B581A76282AEE904B9D5D94AFFD0005B97
Authority key identifier: 51:2F:C9:A3:06:6D:2E:0C:29:4F:0E:00:1A:94:F2:F0:AE:D7:27:0C
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/512FC9A3066D2E0C294F0E001A94F2F0AED7270C.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/D6CB5131E6E9F62855DC0EC50655CD810DD985ABBBFFBF4F0C653795F214ED99/0/3230302e36322e39362e302f31392d3234203d3e203134373534.roa
Signing time:             Tue 05 Mar 2024 18:09:45 +0000
ROA not before:           Tue 05 Mar 2024 18:04:45 +0000
ROA not after:            Tue 04 Mar 2025 18:09:45 +0000
asID:                     14754
IP address blocks:        200.62.96.0/19 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/D6CB5131E6E9F62855DC0EC50655CD810DD985ABBBFFBF4F0C653795F214ED99/0/512FC9A3066D2E0C294F0E001A94F2F0AED7270C.crl
                          rsync://repository.lacnic.net/rpki/lacnic/D6CB5131E6E9F62855DC0EC50655CD810DD985ABBBFFBF4F0C653795F214ED99/0/512FC9A3066D2E0C294F0E001A94F2F0AED7270C.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/512FC9A3066D2E0C294F0E001A94F2F0AED7270C.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Thu 18 Jul 2024 11:47:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3b:53:87:b5:81:a7:62:82:ae:e9:04:b9:d5:d9:4a:ff:d0:00:5b:97
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=512FC9A3066D2E0C294F0E001A94F2F0AED7270C
        Validity
            Not Before: Mar  5 18:04:45 2024 GMT
            Not After : Mar  4 18:09:45 2025 GMT
        Subject: CN=11733A55BD6517AC6A1F899FCBF1E3B95756201E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:93:ac:4b:a4:57:19:63:32:ec:3e:83:e8:94:16:
                    2e:cf:e9:be:41:98:fa:35:ad:13:ac:94:93:43:50:
                    26:89:f2:03:80:0a:29:ae:35:2e:21:84:a5:65:4d:
                    cc:b2:e0:40:4b:b3:f7:19:4f:5a:df:be:e9:73:c7:
                    0d:d6:b6:6c:50:29:82:b8:7b:6c:92:ee:02:e2:a5:
                    5a:26:72:52:26:ed:00:94:a8:4f:10:24:13:c3:33:
                    12:1c:2e:2e:68:9c:b4:1b:d2:96:f1:2c:88:76:e0:
                    56:ae:11:33:b1:4a:bb:17:d9:38:03:8b:b0:71:cb:
                    d0:22:77:f2:77:bb:53:47:b4:dc:66:d1:b5:e6:26:
                    c0:7a:e8:84:e9:1e:03:7d:b5:37:5a:28:eb:12:c0:
                    81:4f:f5:fb:fd:bf:38:5a:2c:6f:75:b6:38:42:c4:
                    1b:41:5f:4c:66:0d:7e:00:6f:df:ea:4d:0c:cc:43:
                    0d:8a:8d:1e:eb:25:f5:05:56:e5:aa:5f:14:70:e5:
                    b4:00:15:d6:31:04:92:85:c6:84:80:17:12:86:e9:
                    ce:bf:cf:0d:dd:92:49:29:16:e6:d7:dc:b3:9c:e6:
                    93:80:30:98:70:d9:a4:b6:7a:68:fd:1a:63:92:69:
                    19:f7:bf:66:f1:2c:00:1b:ea:26:c0:45:96:0d:36:
                    cb:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                11:73:3A:55:BD:65:17:AC:6A:1F:89:9F:CB:F1:E3:B9:57:56:20:1E
            X509v3 Authority Key Identifier:
                keyid:51:2F:C9:A3:06:6D:2E:0C:29:4F:0E:00:1A:94:F2:F0:AE:D7:27:0C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/D6CB5131E6E9F62855DC0EC50655CD810DD985ABBBFFBF4F0C653795F214ED99/0/512FC9A3066D2E0C294F0E001A94F2F0AED7270C.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/512FC9A3066D2E0C294F0E001A94F2F0AED7270C.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D6CB5131E6E9F62855DC0EC50655CD810DD985ABBBFFBF4F0C653795F214ED99/0/3230302e36322e39362e302f31392d3234203d3e203134373534.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.62.96.0/19

    Signature Algorithm: sha256WithRSAEncryption
         2f:62:e5:cb:05:0a:af:6a:50:00:61:37:9c:c1:ba:dc:9b:20:
         ae:92:1c:81:53:6c:05:a0:6f:ad:64:d4:15:e4:9e:6a:e4:bc:
         34:e1:36:2d:1e:36:70:2c:66:99:c8:2c:2a:b3:c9:4f:7c:e2:
         a6:03:56:23:e9:9c:f7:23:f6:14:1e:9c:08:8d:d4:ae:0b:44:
         ef:fe:43:18:cf:d5:bb:be:99:e1:6a:14:5f:a1:4d:17:b4:cd:
         39:50:b8:4e:de:7d:75:24:2a:74:c6:f7:6e:ad:bc:a3:2b:fa:
         e1:cd:77:a8:c7:fe:da:07:e4:e9:bb:60:80:7c:40:3d:af:6b:
         86:7e:57:8e:78:e6:9f:b6:b2:69:26:4b:b6:93:6e:a3:93:39:
         d6:72:67:16:fb:d4:3b:a9:ed:80:81:bd:65:ce:bd:48:a9:86:
         93:cc:a4:ba:d6:7a:c6:24:b6:b6:3a:c1:50:b8:19:c0:36:39:
         5f:ca:7e:ba:62:60:e0:35:c5:fc:e3:14:b0:73:c0:37:40:89:
         d5:55:ae:74:fc:2a:a5:c5:37:7a:6d:2e:11:38:69:60:53:0e:
         11:ba:e8:dd:48:3f:3a:1d:98:43:4d:93:b8:73:11:88:29:27:
         84:4e:5b:77:87:e0:fb:5a:32:50:da:be:bb:de:2a:62:0f:33:
         7f:00:96:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 15 05:29:10 2024 by rpki-client on console-ams.rpki-client.org