Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/026CF02C4ED29BE51A5CF7349FEF7F5AEE84C01AD4960B2C3BE10F9D37B17BE0/0/323830333a323763303a3a2f33322d3438203d3e20323634363638.roa
File:                     323830333a323763303a3a2f33322d3438203d3e20323634363638.roa (raw, json)
Hash identifier:          eYKRiLNQDSu4SmumysGos21RY5/u77lXcJMf36q77Ys=
Subject key identifier:   E7:82:E8:19:45:63:4A:20:6D:7B:93:12:95:C9:CC:0E:C9:05:E2:81
Certificate issuer:       /CN=575E8C6CA1804CEB8830FE8544A39CB633AA341C
Certificate serial:       0C52B7705F681FD2478A4FC22AE639941EFF3542
Authority key identifier: 57:5E:8C:6C:A1:80:4C:EB:88:30:FE:85:44:A3:9C:B6:33:AA:34:1C
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/575E8C6CA1804CEB8830FE8544A39CB633AA341C.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/026CF02C4ED29BE51A5CF7349FEF7F5AEE84C01AD4960B2C3BE10F9D37B17BE0/0/323830333a323763303a3a2f33322d3438203d3e20323634363638.roa
Signing time:             Tue 05 Mar 2024 17:56:44 +0000
ROA not before:           Tue 05 Mar 2024 17:51:44 +0000
ROA not after:            Tue 04 Mar 2025 17:56:44 +0000
asID:                     264668
IP address blocks:        2803:27c0::/32 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/026CF02C4ED29BE51A5CF7349FEF7F5AEE84C01AD4960B2C3BE10F9D37B17BE0/0/575E8C6CA1804CEB8830FE8544A39CB633AA341C.crl
                          rsync://repository.lacnic.net/rpki/lacnic/026CF02C4ED29BE51A5CF7349FEF7F5AEE84C01AD4960B2C3BE10F9D37B17BE0/0/575E8C6CA1804CEB8830FE8544A39CB633AA341C.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/575E8C6CA1804CEB8830FE8544A39CB633AA341C.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Thu 20 Jun 2024 02:08:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0c:52:b7:70:5f:68:1f:d2:47:8a:4f:c2:2a:e6:39:94:1e:ff:35:42
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=575E8C6CA1804CEB8830FE8544A39CB633AA341C
        Validity
            Not Before: Mar  5 17:51:44 2024 GMT
            Not After : Mar  4 17:56:44 2025 GMT
        Subject: CN=E782E81945634A206D7B931295C9CC0EC905E281
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:72:c8:03:95:b9:d9:f9:39:62:4a:75:10:74:
                    e2:b5:e7:71:17:b0:09:76:0e:7b:59:58:77:88:a6:
                    03:75:05:e1:d4:50:bb:e3:87:46:a3:c1:d6:b3:35:
                    12:f3:8a:fe:7b:10:9c:24:f6:86:88:88:26:a4:94:
                    3a:83:2e:70:3e:14:c2:f7:fd:bf:25:3d:a7:6f:1d:
                    9d:e1:99:01:71:66:cc:41:77:6e:71:3c:b8:64:f1:
                    43:f2:4e:a0:0e:c2:71:74:e9:33:3d:59:70:0c:dd:
                    4a:54:b5:c1:33:9b:25:5c:47:aa:cf:87:b2:b7:80:
                    29:96:73:3e:01:4f:46:4b:a8:07:d1:74:fc:e4:13:
                    9a:3d:7c:69:41:05:89:77:94:4d:67:ab:f8:be:fc:
                    2d:92:1c:fb:f4:53:a1:2f:d9:4a:79:54:65:6a:ba:
                    19:9b:5d:d3:60:32:3d:e9:62:90:43:24:ba:75:b9:
                    24:15:8c:bc:83:21:38:f5:67:5a:73:30:d2:3b:a5:
                    1b:12:5f:56:10:fa:23:49:0a:9c:4c:91:26:4a:c0:
                    79:3e:ae:ab:bc:f2:13:eb:90:09:95:aa:5a:8f:84:
                    30:54:aa:26:4c:b2:8a:b3:10:a3:3c:9d:62:d0:ac:
                    3f:3f:da:37:07:b6:bd:46:e9:b7:a7:e6:01:ad:23:
                    9d:dd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:82:E8:19:45:63:4A:20:6D:7B:93:12:95:C9:CC:0E:C9:05:E2:81
            X509v3 Authority Key Identifier:
                keyid:57:5E:8C:6C:A1:80:4C:EB:88:30:FE:85:44:A3:9C:B6:33:AA:34:1C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/026CF02C4ED29BE51A5CF7349FEF7F5AEE84C01AD4960B2C3BE10F9D37B17BE0/0/575E8C6CA1804CEB8830FE8544A39CB633AA341C.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/575E8C6CA1804CEB8830FE8544A39CB633AA341C.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/026CF02C4ED29BE51A5CF7349FEF7F5AEE84C01AD4960B2C3BE10F9D37B17BE0/0/323830333a323763303a3a2f33322d3438203d3e20323634363638.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:27c0::/32

    Signature Algorithm: sha256WithRSAEncryption
         75:7c:ec:82:96:86:b4:4d:29:71:fc:a0:62:79:02:93:ad:94:
         86:a7:66:37:35:6d:20:a6:20:7d:34:48:2b:02:f7:28:75:51:
         c4:2d:2a:86:59:59:63:e8:27:e4:15:3d:5f:1c:cc:67:bd:2f:
         93:cf:db:28:c1:8a:80:0f:7f:bf:f2:a3:0c:4d:0b:e5:3f:ac:
         d0:39:fb:a5:50:89:23:9b:aa:7a:a2:07:7c:16:4c:dc:5a:d0:
         fb:ee:21:10:4a:14:79:53:20:48:04:d3:b9:1c:81:c1:2f:cf:
         31:6e:11:4a:fb:f1:04:ca:56:57:5a:fb:a4:31:ed:62:a4:a4:
         cf:03:5f:08:1b:9e:aa:ee:b8:9c:d5:2c:2e:f2:ed:ab:0c:56:
         16:64:6c:61:6a:de:12:38:9a:9d:54:8a:97:4f:40:69:8c:74:
         c6:d0:0a:e9:ad:5e:05:4e:a1:b0:12:05:d3:9a:22:05:e6:bb:
         5b:29:dd:3c:d4:90:25:ec:66:b4:a4:e2:50:e2:d8:3e:85:27:
         3a:76:9b:5b:13:8c:86:18:13:80:af:83:32:8d:58:21:2f:8f:
         e9:6a:2b:c9:62:8d:0c:d4:ff:11:16:b3:04:87:d5:26:c9:8b:
         c3:2a:7f:dd:4e:5b:22:45:f8:72:0d:c0:22:bf:f1:0b:9f:e5:
         44:36:d7:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 20:28:13 2024 by rpki-client on console-ams.rpki-client.org