Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/3230302e302e31392e302f32342d3234203d3e203532323934.roa
File:                     3230302e302e31392e302f32342d3234203d3e203532323934.roa (raw, json)
Hash identifier:          J6kvJX5r61e6CwyBjwaEacY535QSdyDgJs3lIu1VYVc=
Subject key identifier:   AC:30:43:38:D2:06:60:70:21:F3:67:5E:D9:B7:26:AF:F7:47:7F:14
Certificate issuer:       /CN=481B3876880F63D5F9BA6D763D7E663E9DB369FC
Certificate serial:       3D759E37ED5E12A3AE3F24AF58C369AFAB0E14CF
Authority key identifier: 48:1B:38:76:88:0F:63:D5:F9:BA:6D:76:3D:7E:66:3E:9D:B3:69:FC
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/3230302e302e31392e302f32342d3234203d3e203532323934.roa
Signing time:             Tue 05 Mar 2024 18:15:51 +0000
ROA not before:           Tue 05 Mar 2024 18:10:51 +0000
ROA not after:            Tue 04 Mar 2025 18:15:51 +0000
asID:                     52294
IP address blocks:        200.0.19.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.crl
                          rsync://repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Fri 14 Jun 2024 21:27:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3d:75:9e:37:ed:5e:12:a3:ae:3f:24:af:58:c3:69:af:ab:0e:14:cf
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=481B3876880F63D5F9BA6D763D7E663E9DB369FC
        Validity
            Not Before: Mar  5 18:10:51 2024 GMT
            Not After : Mar  4 18:15:51 2025 GMT
        Subject: CN=AC304338D206607021F3675ED9B726AFF7477F14
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:9b:97:ce:51:52:e9:39:43:c2:a2:94:80:56:
                    24:4d:b2:b0:fe:9e:93:1b:a2:e3:8e:b8:ab:31:ed:
                    b0:db:cb:21:e9:fa:be:29:9f:38:a2:d3:f8:18:81:
                    25:2a:76:44:f5:3e:12:f0:ae:95:3e:4a:db:09:02:
                    7f:fd:8b:0c:e9:26:2b:8f:2d:94:9b:cb:3b:78:e6:
                    a0:76:ea:ca:34:de:b8:8a:ca:e3:c2:78:88:6c:67:
                    01:3d:ed:50:6e:73:a3:59:b0:03:1d:8b:64:4e:15:
                    71:2c:58:ce:bb:49:98:f1:83:b6:93:56:e9:0b:fe:
                    3d:25:9a:20:e0:9e:27:99:f6:35:f0:13:ba:45:95:
                    81:cf:12:98:5e:21:fc:0a:f6:6e:c6:c6:fd:c9:84:
                    94:a2:b5:50:1e:c2:65:e8:08:b2:e0:43:32:67:c0:
                    da:3c:0e:64:f7:41:e9:6e:94:86:92:c4:5d:a0:b9:
                    e9:77:28:07:95:45:1a:27:81:2f:1f:b8:29:5d:05:
                    b8:40:46:ae:ad:1a:6e:6f:56:eb:13:a2:6e:96:a4:
                    ea:fc:16:15:8e:e9:37:dc:db:bd:88:fb:50:a6:3f:
                    56:b2:88:ce:f0:d6:66:33:c4:f7:f0:0c:ce:67:7e:
                    19:55:ba:17:6f:10:e0:a6:43:e5:34:6b:f7:52:21:
                    3f:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AC:30:43:38:D2:06:60:70:21:F3:67:5E:D9:B7:26:AF:F7:47:7F:14
            X509v3 Authority Key Identifier:
                keyid:48:1B:38:76:88:0F:63:D5:F9:BA:6D:76:3D:7E:66:3E:9D:B3:69:FC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/3230302e302e31392e302f32342d3234203d3e203532323934.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.0.19.0/24

    Signature Algorithm: sha256WithRSAEncryption
         51:02:e1:2d:4e:66:69:9a:ee:c8:20:a5:2b:3a:56:07:fa:49:
         bd:f9:17:cd:18:3d:7c:e3:2f:6b:2d:f5:9a:6b:15:f2:bd:9f:
         4d:db:fc:a3:ec:b0:d5:7c:81:2b:02:fc:92:fa:27:d5:b3:5c:
         8f:3f:95:ed:86:d5:b1:1e:9a:aa:ca:4c:c3:20:5e:14:a6:48:
         cc:db:44:a3:6f:79:b0:47:d3:34:6a:dd:db:a5:81:ed:20:e9:
         6c:58:13:50:78:74:cb:e5:6c:55:f3:5e:a8:92:20:56:59:f5:
         33:44:bb:15:26:17:32:8a:34:7e:54:6b:79:99:f7:53:ca:d5:
         11:77:38:38:2a:e6:97:37:49:c7:08:74:51:f5:86:3f:2d:8e:
         03:9f:05:3e:ca:b9:83:6a:a8:d3:5c:7a:40:9d:78:85:ce:fc:
         5c:c9:c4:92:fa:aa:8b:eb:f7:17:1b:df:c1:60:24:b7:9c:89:
         47:e6:23:60:91:43:19:af:f7:dc:0e:fe:36:f8:7c:a0:6c:ab:
         e7:e7:e3:be:34:b5:11:54:2d:d9:fb:42:25:d1:3b:49:d8:b7:
         6c:b0:af:e5:0e:d8:01:dd:05:9c:13:00:14:37:fb:f2:68:6d:
         d8:a2:a2:37:b6:07:1c:dd:3a:1c:1d:95:99:13:29:ab:6d:fe:
         05:c0:53:cb
-----BEGIN CERTIFICATE-----
MIIFujCCBKKgAwIBAgIUPXWeN+1eEqOuPySvWMNpr6sOFM8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDgxQjM4NzY4ODBGNjNENUY5QkE2RDc2M0Q3RTY2M0U5
REIzNjlGQzAeFw0yNDAzMDUxODEwNTFaFw0yNTAzMDQxODE1NTFaMDMxMTAvBgNV
BAMTKEFDMzA0MzM4RDIwNjYwNzAyMUYzNjc1RUQ5QjcyNkFGRjc0NzdGMTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2m5fOUVLpOUPCopSAViRNsrD+
npMbouOOuKsx7bDbyyHp+r4pnzii0/gYgSUqdkT1PhLwrpU+StsJAn/9iwzpJiuP
LZSbyzt45qB26so03riKyuPCeIhsZwE97VBuc6NZsAMdi2ROFXEsWM67SZjxg7aT
VukL/j0lmiDgnieZ9jXwE7pFlYHPEpheIfwK9m7Gxv3JhJSitVAewmXoCLLgQzJn
wNo8DmT3QelulIaSxF2guel3KAeVRRongS8fuCldBbhARq6tGm5vVusTom6WpOr8
FhWO6Tfc272I+1CmP1ayiM7w1mYzxPfwDM5nfhlVuhdvEOCmQ+U0a/dSIT/xAgMB
AAGjggLEMIICwDAdBgNVHQ4EFgQUrDBDONIGYHAh82de2bcmr/dHfxQwHwYDVR0j
BBgwFoAUSBs4dogPY9X5um12PX5mPp2zafwwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8xRjgyMDVBNUJCOTcyMDFFOTkwRDMzNzJCN0FGOTQxNTVE
N0YxODYzRUUyRTc5QjQ0NzQwNkYwNTQwRDlCMDAyLzAvNDgxQjM4NzY4ODBGNjNE
NUY5QkE2RDc2M0Q3RTY2M0U5REIzNjlGQy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC80ODFCMzg3Njg4MEY2M0Q1RjlC
QTZENzYzRDdFNjYzRTlEQjM2OUZDLmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG
CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMUY4MjA1QTVCQjk3MjAxRTk5MEQzMzcyQjdBRjk0MTU1RDdGMTg2M0VF
MkU3OUI0NDc0MDZGMDU0MEQ5QjAwMi8wLzMyMzAzMDJlMzAyZTMxMzkyZTMwMmYz
MjM0MmQzMjM0MjAzZDNlMjAzNTMyMzIzOTM0LnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyAATMA0GCSqG
SIb3DQEBCwUAA4IBAQBRAuEtTmZpmu7IIKUrOlYH+km9+RfNGD184y9rLfWaaxXy
vZ9N2/yj7LDVfIErAvyS+ifVs1yPP5XthtWxHpqqykzDIF4UpkjM20Sjb3mwR9M0
at3bpYHtIOlsWBNQeHTL5WxV816okiBWWfUzRLsVJhcyijR+VGt5mfdTytURdzg4
KuaXN0nHCHRR9YY/LY4DnwU+yrmDaqjTXHpAnXiFzvxcycSS+qqL6/cXG9/BYCS3
nIlH5iNgkUMZr/fcDv42+HygbKvn5+O+NLURVC3Z+0Il0TtJ2LdssK/lDtgB3QWc
EwAUN/vyaG3YoqI3tgcc3TocHZWZEymrbf4FwFPL
-----END CERTIFICATE-----
Generated at Mon Jun 10 13:14:24 2024 by rpki-client on console-ams.rpki-client.org