Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F40AADD9C3A2CB7ADB90AFE235A6092B23824D5EF00503F30B65187B2B22F321/0/3230302e3131392e3135322e302f32332d3332203d3e203134373534.roa
File:                     3230302e3131392e3135322e302f32332d3332203d3e203134373534.roa (raw, json)
Hash identifier:          eqM+jBAR6D6Rz2kdQQYWaJBuz4LGDICfHK8Y7dnDU18=
Subject key identifier:   EA:EC:A7:A2:4E:EC:33:1B:A7:9D:1A:C6:8B:4F:49:F1:05:0F:E3:3E
Certificate issuer:       /CN=AD316BC50E186BC4D6EED8B1A71E2F7FAA5F953D
Certificate serial:       4F4C331B51B26BA2527CED8AA8D912C2C1984D32
Authority key identifier: AD:31:6B:C5:0E:18:6B:C4:D6:EE:D8:B1:A7:1E:2F:7F:AA:5F:95:3D
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AD316BC50E186BC4D6EED8B1A71E2F7FAA5F953D.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/F40AADD9C3A2CB7ADB90AFE235A6092B23824D5EF00503F30B65187B2B22F321/0/3230302e3131392e3135322e302f32332d3332203d3e203134373534.roa
Signing time:             Tue 05 Mar 2024 18:08:26 +0000
ROA not before:           Tue 05 Mar 2024 18:03:26 +0000
ROA not after:            Tue 04 Mar 2025 18:08:26 +0000
asID:                     14754
IP address blocks:        200.119.152.0/23 maxlen: 32

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/F40AADD9C3A2CB7ADB90AFE235A6092B23824D5EF00503F30B65187B2B22F321/0/AD316BC50E186BC4D6EED8B1A71E2F7FAA5F953D.crl
                          rsync://repository.lacnic.net/rpki/lacnic/F40AADD9C3A2CB7ADB90AFE235A6092B23824D5EF00503F30B65187B2B22F321/0/AD316BC50E186BC4D6EED8B1A71E2F7FAA5F953D.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AD316BC50E186BC4D6EED8B1A71E2F7FAA5F953D.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sat 20 Jul 2024 11:01:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4f:4c:33:1b:51:b2:6b:a2:52:7c:ed:8a:a8:d9:12:c2:c1:98:4d:32
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=AD316BC50E186BC4D6EED8B1A71E2F7FAA5F953D
        Validity
            Not Before: Mar  5 18:03:26 2024 GMT
            Not After : Mar  4 18:08:26 2025 GMT
        Subject: CN=EAECA7A24EEC331BA79D1AC68B4F49F1050FE33E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:38:1d:fa:11:0a:0f:39:f9:5f:e9:7b:e9:28:
                    18:e4:e6:d4:ad:9e:19:2f:68:f5:07:21:d2:6a:cc:
                    e5:4d:c6:49:18:07:65:5b:02:1c:b0:64:0a:3c:6f:
                    28:f0:07:c0:a7:14:60:52:4c:b2:48:1e:7c:2e:01:
                    cb:71:48:d0:1c:3b:6d:7a:21:22:e9:b1:99:f8:bd:
                    16:45:83:c6:a9:2a:13:ba:15:db:7f:98:6b:a3:d3:
                    6f:1d:a2:67:09:30:8b:b0:41:96:9c:c7:84:82:12:
                    27:e6:48:2d:e0:9e:95:7f:bd:06:d5:f5:30:a3:16:
                    c4:f7:8a:2e:26:fa:4f:3b:3f:3e:b3:f9:12:7c:ab:
                    22:bf:75:be:ed:bc:ee:5a:b0:9b:ef:98:42:79:ca:
                    c5:e2:c3:1b:fa:0f:56:1d:80:4b:e5:be:c2:19:d0:
                    22:ca:49:fc:17:c6:a1:a0:ee:5d:b5:96:34:e2:8a:
                    d7:11:9c:68:f9:8c:df:a6:f2:12:78:a6:fc:7d:78:
                    1f:4d:21:6e:d7:93:1d:ba:f7:cf:d0:65:d1:72:c4:
                    f0:6d:b7:73:af:eb:9f:2a:ca:92:2e:60:58:29:23:
                    06:5a:03:b2:95:fc:97:f7:46:86:fd:35:6e:73:8a:
                    3e:12:b9:eb:82:f4:de:8e:72:01:1d:78:d4:da:86:
                    36:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:EC:A7:A2:4E:EC:33:1B:A7:9D:1A:C6:8B:4F:49:F1:05:0F:E3:3E
            X509v3 Authority Key Identifier:
                keyid:AD:31:6B:C5:0E:18:6B:C4:D6:EE:D8:B1:A7:1E:2F:7F:AA:5F:95:3D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/F40AADD9C3A2CB7ADB90AFE235A6092B23824D5EF00503F30B65187B2B22F321/0/AD316BC50E186BC4D6EED8B1A71E2F7FAA5F953D.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AD316BC50E186BC4D6EED8B1A71E2F7FAA5F953D.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F40AADD9C3A2CB7ADB90AFE235A6092B23824D5EF00503F30B65187B2B22F321/0/3230302e3131392e3135322e302f32332d3332203d3e203134373534.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.119.152.0/23

    Signature Algorithm: sha256WithRSAEncryption
         50:2e:12:d3:84:9d:e0:28:b7:c9:7c:41:e6:f9:f4:a9:72:aa:
         cb:6f:2b:a7:4f:0d:26:2f:2f:2d:3e:70:ed:1c:e5:15:0d:61:
         09:de:0a:df:b0:fe:65:59:f7:54:cd:d6:9d:0b:56:75:b7:34:
         78:10:47:5b:b6:00:4b:f8:23:4c:78:8a:8d:b4:71:b7:5e:82:
         ca:85:af:62:73:77:e8:ee:a0:f0:17:bd:06:98:24:34:d8:c6:
         59:b9:1c:84:68:f5:f6:e0:61:4a:fe:6f:e5:5c:10:1d:d3:a6:
         09:74:ba:42:a1:8f:f5:d6:cd:92:cc:58:5a:ac:ee:ec:8c:02:
         cf:55:95:ab:d6:04:d4:ef:40:72:67:93:31:b6:7d:d0:ad:94:
         a2:94:03:45:9e:0b:87:52:b4:0d:8b:c2:d2:cf:89:fc:dd:ed:
         ce:aa:4b:4a:0a:0c:c7:e4:48:8e:fe:c0:59:e4:a1:f3:c0:41:
         7e:f4:95:83:66:b2:05:fc:c9:3e:a6:0a:99:7f:32:ba:f9:36:
         5d:d8:ac:c1:8a:07:23:78:ff:a2:45:94:69:cd:a1:a4:f5:c4:
         49:ec:7f:2e:bb:38:72:4e:53:49:04:de:9b:c4:c4:44:27:b0:
         23:35:cb:94:9c:92:6c:a8:b4:93:6f:98:0d:c9:a0:8a:47:06:
         63:1d:71:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 15 23:05:39 2024 by rpki-client on console-ams.rpki-client.org