Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DE56898DC87FDB54ED5CF0F204F52F7481694B300B9AC6CB0E9687EF940CE7AE/0/3139312e3130322e3234312e302f32342d3234203d3e20323632393331.roa
File:                     3139312e3130322e3234312e302f32342d3234203d3e20323632393331.roa (raw, json)
Hash identifier:          PtxG7edY57PC/rrklw9JtqM2ld0Vn0pmsAHYgHv9Z3s=
Subject key identifier:   11:75:F5:81:52:11:68:75:04:DD:C8:03:3D:C6:38:68:02:93:AF:CF
Certificate issuer:       /CN=A78765AD08967A6A9A5165858220DC333AEEBF8D
Certificate serial:       2CEFC8D6FE7BCE33C51C7A78E84F2D79FF7E6D7A
Authority key identifier: A7:87:65:AD:08:96:7A:6A:9A:51:65:85:82:20:DC:33:3A:EE:BF:8D
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A78765AD08967A6A9A5165858220DC333AEEBF8D.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/DE56898DC87FDB54ED5CF0F204F52F7481694B300B9AC6CB0E9687EF940CE7AE/0/3139312e3130322e3234312e302f32342d3234203d3e20323632393331.roa
Signing time:             Tue 05 Mar 2024 18:20:59 +0000
ROA not before:           Tue 05 Mar 2024 18:15:59 +0000
ROA not after:            Tue 04 Mar 2025 18:20:59 +0000
asID:                     262931
IP address blocks:        191.102.241.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/DE56898DC87FDB54ED5CF0F204F52F7481694B300B9AC6CB0E9687EF940CE7AE/0/A78765AD08967A6A9A5165858220DC333AEEBF8D.crl
                          rsync://repository.lacnic.net/rpki/lacnic/DE56898DC87FDB54ED5CF0F204F52F7481694B300B9AC6CB0E9687EF940CE7AE/0/A78765AD08967A6A9A5165858220DC333AEEBF8D.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A78765AD08967A6A9A5165858220DC333AEEBF8D.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Thu 20 Jun 2024 02:08:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2c:ef:c8:d6:fe:7b:ce:33:c5:1c:7a:78:e8:4f:2d:79:ff:7e:6d:7a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A78765AD08967A6A9A5165858220DC333AEEBF8D
        Validity
            Not Before: Mar  5 18:15:59 2024 GMT
            Not After : Mar  4 18:20:59 2025 GMT
        Subject: CN=1175F5815211687504DDC8033DC638680293AFCF
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:aa:0d:dc:7b:b9:c4:15:59:18:b4:85:d8:6c:
                    7e:52:4c:5f:45:10:26:ae:01:73:18:0e:76:25:09:
                    ff:62:ab:6b:25:60:76:2d:28:10:02:cf:23:fd:57:
                    a2:30:b3:00:30:39:d5:75:89:74:84:42:d7:7c:8a:
                    06:eb:a8:32:37:f8:16:07:d7:14:6b:27:2b:ef:77:
                    77:20:8e:7b:c2:f3:bd:19:88:4e:bc:87:d6:11:8c:
                    61:b5:b9:e1:28:c4:35:23:91:43:d0:a0:eb:d5:9f:
                    d3:c1:85:a7:9d:68:cb:ff:eb:d9:3b:66:3e:b3:5a:
                    ce:0b:da:f2:dd:c9:e6:11:1c:8c:91:ea:03:1c:8e:
                    bc:3b:65:59:13:5f:4c:96:d0:d2:63:73:ea:7c:06:
                    02:1e:38:e4:7d:15:7e:a5:b5:e1:4c:b7:b0:25:1d:
                    d8:8d:3b:88:60:32:be:01:ec:2c:1c:9a:ff:e2:3a:
                    29:be:f9:7c:24:69:32:85:09:1b:b2:7a:2c:05:83:
                    8d:13:7d:56:63:fd:ea:65:c5:e7:9c:09:cb:ca:d7:
                    ad:40:c8:d8:9a:62:f5:7f:1c:ff:9c:22:ed:f9:9f:
                    83:a6:a6:71:ec:d6:7e:a2:83:48:48:ee:7e:d4:94:
                    7b:8e:9e:38:17:19:9b:f9:e6:4e:47:9c:c9:25:f1:
                    b3:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                11:75:F5:81:52:11:68:75:04:DD:C8:03:3D:C6:38:68:02:93:AF:CF
            X509v3 Authority Key Identifier:
                keyid:A7:87:65:AD:08:96:7A:6A:9A:51:65:85:82:20:DC:33:3A:EE:BF:8D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/DE56898DC87FDB54ED5CF0F204F52F7481694B300B9AC6CB0E9687EF940CE7AE/0/A78765AD08967A6A9A5165858220DC333AEEBF8D.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A78765AD08967A6A9A5165858220DC333AEEBF8D.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DE56898DC87FDB54ED5CF0F204F52F7481694B300B9AC6CB0E9687EF940CE7AE/0/3139312e3130322e3234312e302f32342d3234203d3e20323632393331.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  191.102.241.0/24

    Signature Algorithm: sha256WithRSAEncryption
         47:e6:1a:71:20:d9:19:0a:8e:12:5f:74:0a:5f:4f:52:22:1f:
         7c:da:c4:76:1e:ec:37:a5:6f:4b:d8:36:ca:3e:ac:d3:28:77:
         e2:1d:1b:e1:47:57:f2:4b:a6:9b:5c:72:39:a9:69:ba:1f:82:
         c9:48:2c:6a:2d:ea:e5:c9:13:d2:a2:d8:3b:51:f3:01:47:6f:
         97:59:8a:fb:80:bc:3b:5b:83:14:a7:5c:d5:9d:de:13:8e:63:
         09:73:f5:f4:51:f2:f6:31:b9:4d:7c:a8:1b:ba:fd:4e:bb:79:
         90:ab:64:73:1c:ac:cd:99:7b:c1:a4:8f:33:eb:0f:08:71:58:
         89:59:91:25:8f:67:ac:92:e3:90:be:64:7a:18:2a:50:1b:38:
         1c:16:82:81:72:17:75:49:cc:69:d6:1f:13:80:b3:ff:ad:00:
         1d:7c:93:dc:e9:a9:1d:ed:8f:33:60:63:3d:fa:b0:a5:bc:2d:
         3c:db:ae:5a:30:d8:e4:dd:99:a5:31:73:09:9f:7f:4e:39:83:
         9a:95:b7:5b:e0:a7:f7:50:7d:43:f9:b4:c2:ee:8d:e6:56:76:
         2c:54:87:cf:71:b3:b9:fc:eb:98:b0:05:40:c9:f7:41:77:b8:
         24:32:2e:5b:9e:07:4a:dc:89:c3:ac:3b:d7:72:ed:7b:88:aa:
         d1:67:4c:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 21:30:44 2024 by rpki-client on console-fra.rpki-client.org