Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/597EBC297BBD824DD56B6F5C398686DA66CAC830FA9CBD54BD8F24CE3AA7A50F/0/3230302e3131352e3132302e302f32342d3234203d3e20323732383332.roa
File:                     3230302e3131352e3132302e302f32342d3234203d3e20323732383332.roa (raw, json)
Hash identifier:          bvdwn+DMu/baNLX38zNWTrzoM6a0S/NlClA1G4bPNtw=
Subject key identifier:   94:F4:78:69:B5:9B:A5:65:D0:A6:40:4B:32:BC:8F:37:94:89:6D:02
Certificate issuer:       /CN=4D56876B86897911DD0C6CF938CF6E3FEB03C360
Certificate serial:       7B7494556C9939E204FC269B35B418073EC533D8
Authority key identifier: 4D:56:87:6B:86:89:79:11:DD:0C:6C:F9:38:CF:6E:3F:EB:03:C3:60
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4D56876B86897911DD0C6CF938CF6E3FEB03C360.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/597EBC297BBD824DD56B6F5C398686DA66CAC830FA9CBD54BD8F24CE3AA7A50F/0/3230302e3131352e3132302e302f32342d3234203d3e20323732383332.roa
Signing time:             Tue 05 Mar 2024 18:14:02 +0000
ROA not before:           Tue 05 Mar 2024 18:09:02 +0000
ROA not after:            Tue 04 Mar 2025 18:14:02 +0000
asID:                     272832
IP address blocks:        200.115.120.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/597EBC297BBD824DD56B6F5C398686DA66CAC830FA9CBD54BD8F24CE3AA7A50F/0/4D56876B86897911DD0C6CF938CF6E3FEB03C360.crl
                          rsync://repository.lacnic.net/rpki/lacnic/597EBC297BBD824DD56B6F5C398686DA66CAC830FA9CBD54BD8F24CE3AA7A50F/0/4D56876B86897911DD0C6CF938CF6E3FEB03C360.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4D56876B86897911DD0C6CF938CF6E3FEB03C360.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Tue 18 Jun 2024 10:43:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7b:74:94:55:6c:99:39:e2:04:fc:26:9b:35:b4:18:07:3e:c5:33:d8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4D56876B86897911DD0C6CF938CF6E3FEB03C360
        Validity
            Not Before: Mar  5 18:09:02 2024 GMT
            Not After : Mar  4 18:14:02 2025 GMT
        Subject: CN=94F47869B59BA565D0A6404B32BC8F3794896D02
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:13:81:3e:48:d2:6f:81:77:ea:28:68:10:a2:
                    29:24:02:9c:ba:eb:81:ce:7c:0a:b4:f4:bb:66:bc:
                    d6:31:96:c9:a4:dd:73:1b:cd:65:49:f6:66:c4:8c:
                    dc:32:f8:5a:4c:d8:72:ed:ce:46:df:fb:bb:cf:17:
                    5d:37:01:58:95:35:1f:67:6a:8d:cd:05:d9:94:23:
                    cd:36:29:6e:45:96:b3:5e:39:f6:62:b6:bd:c4:60:
                    f1:f3:49:41:60:e1:49:20:5a:24:ef:17:02:d3:52:
                    e0:fd:92:08:c8:8e:cb:3d:31:a1:c7:16:15:5e:c7:
                    43:a2:a8:f3:c9:12:2a:cd:99:6c:d2:bb:6f:93:68:
                    cc:e5:9d:d6:cc:a6:0b:c7:4e:49:df:81:e0:2a:6f:
                    3b:aa:a5:04:5d:74:47:9d:85:db:c4:42:c8:e2:a8:
                    ad:57:18:a5:33:9a:3f:43:6e:ba:bc:44:96:4c:9f:
                    49:be:f5:ae:04:60:40:52:e8:f5:68:35:ad:39:ef:
                    13:f0:23:ca:4e:fd:e0:32:a0:9c:fe:fa:c1:3d:5c:
                    cd:11:55:c2:f9:5a:46:c6:0e:29:f8:10:57:a2:f2:
                    b0:e4:d5:9e:4f:d2:73:1b:86:e6:9f:09:11:fd:88:
                    12:ca:e7:4b:6c:5c:08:3d:bd:dc:08:41:5b:63:9a:
                    f0:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                94:F4:78:69:B5:9B:A5:65:D0:A6:40:4B:32:BC:8F:37:94:89:6D:02
            X509v3 Authority Key Identifier:
                keyid:4D:56:87:6B:86:89:79:11:DD:0C:6C:F9:38:CF:6E:3F:EB:03:C3:60

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/597EBC297BBD824DD56B6F5C398686DA66CAC830FA9CBD54BD8F24CE3AA7A50F/0/4D56876B86897911DD0C6CF938CF6E3FEB03C360.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4D56876B86897911DD0C6CF938CF6E3FEB03C360.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/597EBC297BBD824DD56B6F5C398686DA66CAC830FA9CBD54BD8F24CE3AA7A50F/0/3230302e3131352e3132302e302f32342d3234203d3e20323732383332.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.115.120.0/24

    Signature Algorithm: sha256WithRSAEncryption
         6d:69:44:e3:e8:98:ce:43:d4:00:8d:4d:0c:2d:7b:07:5f:7e:
         6f:6e:3c:3b:ea:08:cd:d4:37:65:cd:30:b0:d5:a8:c7:b1:44:
         68:ed:15:88:44:e7:c2:28:3a:6e:87:d7:b9:63:bf:e8:f3:95:
         e4:89:35:f4:9e:3b:ff:20:7f:bd:5f:81:c3:b7:db:eb:3b:d3:
         b2:a1:97:ea:33:d9:81:09:c3:31:5e:d5:bb:05:6f:55:f2:2c:
         55:21:b2:58:d0:c6:ba:4b:92:e4:cd:64:e0:63:bb:f1:40:4c:
         dc:1c:9b:73:01:e3:16:1b:ca:df:3b:eb:a9:b2:d2:70:1d:2e:
         8b:74:94:17:9d:fe:2f:43:9c:e3:cf:dc:18:71:64:13:94:32:
         bf:c6:f8:9d:55:1b:bc:e6:b9:4b:56:da:05:68:4e:c7:85:45:
         39:f7:28:61:de:d2:e4:3d:82:06:48:da:cd:1b:21:35:6e:00:
         91:9c:b1:98:6c:cb:2c:cd:c6:9f:d6:93:b8:e3:c8:94:25:f7:
         ab:ef:73:1e:00:ab:e0:6b:19:9a:e6:1d:c0:bd:38:3a:e7:6d:
         83:70:32:15:28:7e:a6:91:c4:42:6e:2b:dd:f4:dc:5b:7c:2d:
         86:46:2d:44:8f:87:f0:e3:b6:1a:e9:bd:a3:58:fc:53:c8:7a:
         44:80:c8:ff
-----BEGIN CERTIFICATE-----
MIIFwjCCBKqgAwIBAgIUe3SUVWyZOeIE/CabNbQYBz7FM9gwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNEQ1Njg3NkI4Njg5NzkxMUREMEM2Q0Y5MzhDRjZFM0ZF
QjAzQzM2MDAeFw0yNDAzMDUxODA5MDJaFw0yNTAzMDQxODE0MDJaMDMxMTAvBgNV
BAMTKDk0RjQ3ODY5QjU5QkE1NjVEMEE2NDA0QjMyQkM4RjM3OTQ4OTZEMDIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6E4E+SNJvgXfqKGgQoikkApy6
64HOfAq09LtmvNYxlsmk3XMbzWVJ9mbEjNwy+FpM2HLtzkbf+7vPF103AViVNR9n
ao3NBdmUI802KW5FlrNeOfZitr3EYPHzSUFg4UkgWiTvFwLTUuD9kgjIjss9MaHH
FhVex0OiqPPJEirNmWzSu2+TaMzlndbMpgvHTknfgeAqbzuqpQRddEedhdvEQsji
qK1XGKUzmj9Dbrq8RJZMn0m+9a4EYEBS6PVoNa057xPwI8pO/eAyoJz++sE9XM0R
VcL5WkbGDin4EFei8rDk1Z5P0nMbhuafCRH9iBLK50tsXAg9vdwIQVtjmvDVAgMB
AAGjggLMMIICyDAdBgNVHQ4EFgQUlPR4abWbpWXQpkBLMryPN5SJbQIwHwYDVR0j
BBgwFoAUTVaHa4aJeRHdDGz5OM9uP+sDw2AwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy81OTdFQkMyOTdCQkQ4MjRERDU2QjZGNUMzOTg2ODZEQTY2
Q0FDODMwRkE5Q0JENTRCRDhGMjRDRTNBQTdBNTBGLzAvNEQ1Njg3NkI4Njg5Nzkx
MUREMEM2Q0Y5MzhDRjZFM0ZFQjAzQzM2MC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC80RDU2ODc2Qjg2ODk3OTExREQw
QzZDRjkzOENGNkUzRkVCMDNDMzYwLmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG
CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNTk3RUJDMjk3QkJEODI0REQ1NkI2RjVDMzk4Njg2REE2NkNBQzgzMEZB
OUNCRDU0QkQ4RjI0Q0UzQUE3QTUwRi8wLzMyMzAzMDJlMzEzMTM1MmUzMTMyMzAy
ZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM3MzIzODMzMzIucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADI
c3gwDQYJKoZIhvcNAQELBQADggEBAG1pROPomM5D1ACNTQwtewdffm9uPDvqCM3U
N2XNMLDVqMexRGjtFYhE58IoOm6H17ljv+jzleSJNfSeO/8gf71fgcO32+s707Kh
l+oz2YEJwzFe1bsFb1XyLFUhsljQxrpLkuTNZOBju/FATNwcm3MB4xYbyt8766my
0nAdLot0lBed/i9DnOPP3BhxZBOUMr/G+J1VG7zmuUtW2gVoTseFRTn3KGHe0uQ9
ggZI2s0bITVuAJGcsZhsyyzNxp/Wk7jjyJQl96vvcx4Aq+BrGZrmHcC9ODrnbYNw
MhUofqaRxEJuK9303Ft8LYZGLUSPh/DjthrpvaNY/FPIekSAyP8=
-----END CERTIFICATE-----
Generated at Fri Jun 14 12:17:38 2024 by rpki-client on console-fra.rpki-client.org