Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS27730.roa
File:                     AS27730.roa (raw, json)
Hash identifier:          qGiE9PkM/U3DYT2NYYs047dyaf4nYmPnHtrCDBcxmMo=
Subject key identifier:   89:62:C9:5F:57:E4:D2:39:DB:1A:89:0C:46:29:CC:2B:A9:54:58:8E
Certificate issuer:       /CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1
Certificate serial:       15F4E9FF07A405A03494A01A9F5E2265D57130E2
Authority key identifier: 41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS27730.roa
Signing time:             Tue 05 Mar 2024 18:08:00 +0000
ROA not before:           Tue 05 Mar 2024 18:03:00 +0000
ROA not after:            Tue 04 Mar 2025 18:08:00 +0000
asID:                     27730
IP address blocks:        200.5.92.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.crl
                          rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Wed 11 Dec 2024 18:44:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            15:f4:e9:ff:07:a4:05:a0:34:94:a0:1a:9f:5e:22:65:d5:71:30:e2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1
        Validity
            Not Before: Mar  5 18:03:00 2024 GMT
            Not After : Mar  4 18:08:00 2025 GMT
        Subject: CN=8962C95F57E4D239DB1A890C4629CC2BA954588E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:03:31:ce:9a:30:01:eb:b2:fb:fc:8b:50:98:
                    5a:64:89:bb:fd:9a:05:2c:44:58:63:da:16:11:4b:
                    23:c4:c1:22:c8:0c:d7:ee:c2:ba:d3:5d:51:ab:3b:
                    b4:de:1b:ba:12:43:59:ab:36:a5:f4:19:a0:36:e0:
                    87:92:59:36:6d:0a:89:0a:73:b2:33:eb:26:0c:87:
                    24:c0:27:d3:01:1e:d4:e2:0e:10:57:8d:4e:66:b8:
                    43:84:87:b2:f6:e6:fe:c7:fe:51:d5:12:32:de:d2:
                    49:b3:b1:03:1c:d5:79:31:8d:83:83:37:95:bc:93:
                    e2:ae:d2:b5:68:41:4c:78:d6:14:1c:39:a9:3f:0e:
                    a6:e5:5b:e3:ac:85:a9:23:56:82:bc:d8:a9:2b:08:
                    da:b9:e7:9e:17:2c:98:70:3e:a1:60:84:3a:9b:82:
                    13:2c:6a:b7:6b:67:a8:5e:aa:cf:88:3f:81:41:da:
                    e1:57:36:31:4a:be:82:8f:f8:a8:0d:b7:d6:5a:24:
                    82:2a:66:2d:eb:4b:61:41:aa:3e:04:5e:b7:d7:0d:
                    3e:6d:4a:53:76:5f:f0:52:b9:eb:cd:9c:76:8d:e1:
                    0c:d9:2d:3d:47:6b:93:f7:7a:ea:4f:8c:b2:0d:8c:
                    09:35:1a:bb:6d:21:5d:18:04:de:e4:6b:71:b4:51:
                    d2:e1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                89:62:C9:5F:57:E4:D2:39:DB:1A:89:0C:46:29:CC:2B:A9:54:58:8E
            X509v3 Authority Key Identifier:
                keyid:41:08:19:C7:C9:B4:C8:5C:E0:B1:D2:27:41:BE:5E:40:A1:F0:E7:B1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/410819C7C9B4C85CE0B1D22741BE5E40A1F0E7B1.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5D1A5E65ACB417339855ADA5A6C5416DC041CCF0640803843898BE56C4DF6C32/0/AS27730.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.5.92.0/24

    Signature Algorithm: sha256WithRSAEncryption
         86:29:27:27:09:80:63:00:a0:cc:69:1b:e3:e3:87:d5:e3:8e:
         26:27:91:77:f6:72:db:0a:c8:8b:43:1c:09:05:4f:28:38:0e:
         76:47:13:7b:bb:8a:f8:77:af:0a:c2:93:a2:05:03:a2:81:ec:
         60:e1:18:fc:a0:38:07:a0:ff:69:96:48:4c:57:44:2c:1e:7d:
         33:ef:2e:ac:35:19:c2:6c:fa:03:f9:4c:36:70:29:96:3b:e2:
         36:e1:16:d4:eb:3d:0d:84:da:bf:7b:f8:af:8a:7c:e7:13:1e:
         94:06:97:7a:a6:e5:75:59:7a:63:ba:79:24:83:6f:7b:1c:15:
         e3:cc:f0:79:6f:5c:96:d6:a7:e6:41:b4:90:3d:eb:cf:1f:74:
         52:60:12:ed:cd:c8:87:7a:ae:07:ea:74:85:36:38:d0:aa:0d:
         ef:ca:ea:5d:08:99:98:1e:a2:d1:4f:2b:8e:4c:84:fa:ed:60:
         52:d6:47:25:d8:bb:bd:41:44:79:fe:62:91:ec:51:49:ce:a0:
         99:85:71:6b:87:3c:5a:25:16:2c:37:9b:fd:38:47:2d:e1:88:
         63:fb:16:2f:5c:5d:0c:2d:73:03:87:dc:58:cf:9f:f1:51:a7:
         32:fc:24:18:ae:ea:21:9e:8d:84:5a:25:3b:fe:6b:e7:1d:20:
         b4:10:58:4c
-----BEGIN CERTIFICATE-----
MIIFjjCCBHagAwIBAgIUFfTp/wekBaA0lKAan14iZdVxMOIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDEwODE5QzdDOUI0Qzg1Q0UwQjFEMjI3NDFCRTVFNDBB
MUYwRTdCMTAeFw0yNDAzMDUxODAzMDBaFw0yNTAzMDQxODA4MDBaMDMxMTAvBgNV
BAMTKDg5NjJDOTVGNTdFNEQyMzlEQjFBODkwQzQ2MjlDQzJCQTk1NDU4OEUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGAzHOmjAB67L7/ItQmFpkibv9
mgUsRFhj2hYRSyPEwSLIDNfuwrrTXVGrO7TeG7oSQ1mrNqX0GaA24IeSWTZtCokK
c7Iz6yYMhyTAJ9MBHtTiDhBXjU5muEOEh7L25v7H/lHVEjLe0kmzsQMc1XkxjYOD
N5W8k+Ku0rVoQUx41hQcOak/DqblW+OshakjVoK82KkrCNq5554XLJhwPqFghDqb
ghMsardrZ6heqs+IP4FB2uFXNjFKvoKP+KgNt9ZaJIIqZi3rS2FBqj4EXrfXDT5t
SlN2X/BSuevNnHaN4QzZLT1Ha5P3eupPjLINjAk1GrttIV0YBN7ka3G0UdLhAgMB
AAGjggKYMIIClDAdBgNVHQ4EFgQUiWLJX1fk0jnbGokMRinMK6lUWI4wHwYDVR0j
BBgwFoAUQQgZx8m0yFzgsdInQb5eQKHw57EwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy81RDFBNUU2NUFDQjQxNzMzOTg1NUFEQTVBNkM1NDE2REMw
NDFDQ0YwNjQwODAzODQzODk4QkU1NkM0REY2QzMyLzAvNDEwODE5QzdDOUI0Qzg1
Q0UwQjFEMjI3NDFCRTVFNDBBMUYwRTdCMS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC80MTA4MTlDN0M5QjRDODVDRTBC
MUQyMjc0MUJFNUU0MEExRjBFN0IxLmNlcjCBlwYIKwYBBQUHAQsEgYowgYcwgYQG
CCsGAQUFBzALhnhyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy81RDFBNUU2NUFDQjQxNzMzOTg1NUFEQTVBNkM1NDE2REMwNDFDQ0YwNjQw
ODAzODQzODk4QkU1NkM0REY2QzMyLzAvQVMyNzczMC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMgFXDAN
BgkqhkiG9w0BAQsFAAOCAQEAhiknJwmAYwCgzGkb4+OH1eOOJieRd/Zy2wrIi0Mc
CQVPKDgOdkcTe7uK+HevCsKTogUDooHsYOEY/KA4B6D/aZZITFdELB59M+8urDUZ
wmz6A/lMNnApljviNuEW1Os9DYTav3v4r4p85xMelAaXeqbldVl6Y7p5JINvexwV
48zweW9cltan5kG0kD3rzx90UmAS7c3Ih3quB+p0hTY40KoN78rqXQiZmB6i0U8r
jkyE+u1gUtZHJdi7vUFEef5ikexRSc6gmYVxa4c8WiUWLDeb/ThHLeGIY/sWL1xd
DC1zA4fcWM+f8VGnMvwkGK7qIZ6NhFolO/5r5x0gtBBYTA==
-----END CERTIFICATE-----
Generated at Sat Dec 7 10:09:17 2024 by rpki-client on console-fra.rpki-client.org