Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/068283BAC57B18C7F69A467090852B3E644D3A902595A553F35B4407C4527B83/0/323830333a316531303a3a2f33322d3438203d3e20323731393735.roa
File:                     323830333a316531303a3a2f33322d3438203d3e20323731393735.roa (raw, json)
Hash identifier:          yzmDake4cV7rrH4qnf4Q3JzYo0iRP7ZXd+UHeTCgfcg=
Subject key identifier:   C4:08:8C:13:50:5A:9A:98:EC:0B:63:9D:25:BC:95:EF:64:CE:AA:DF
Certificate issuer:       /CN=1909866B39096A8CF30007831196809049603B39
Certificate serial:       1B6EE66449977C27BD8DE1771D8A35C850F9892A
Authority key identifier: 19:09:86:6B:39:09:6A:8C:F3:00:07:83:11:96:80:90:49:60:3B:39
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1909866B39096A8CF30007831196809049603B39.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/068283BAC57B18C7F69A467090852B3E644D3A902595A553F35B4407C4527B83/0/323830333a316531303a3a2f33322d3438203d3e20323731393735.roa
Signing time:             Tue 05 Mar 2024 17:58:02 +0000
ROA not before:           Tue 05 Mar 2024 17:53:02 +0000
ROA not after:            Tue 04 Mar 2025 17:58:02 +0000
asID:                     271975
IP address blocks:        2803:1e10::/32 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/068283BAC57B18C7F69A467090852B3E644D3A902595A553F35B4407C4527B83/0/1909866B39096A8CF30007831196809049603B39.crl
                          rsync://repository.lacnic.net/rpki/lacnic/068283BAC57B18C7F69A467090852B3E644D3A902595A553F35B4407C4527B83/0/1909866B39096A8CF30007831196809049603B39.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1909866B39096A8CF30007831196809049603B39.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Fri 13 Dec 2024 19:02:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1b:6e:e6:64:49:97:7c:27:bd:8d:e1:77:1d:8a:35:c8:50:f9:89:2a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1909866B39096A8CF30007831196809049603B39
        Validity
            Not Before: Mar  5 17:53:02 2024 GMT
            Not After : Mar  4 17:58:02 2025 GMT
        Subject: CN=C4088C13505A9A98EC0B639D25BC95EF64CEAADF
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:73:1d:94:99:34:54:59:5f:4c:7b:27:01:79:
                    ae:7a:5e:18:c5:78:2a:98:65:d8:f3:46:e9:27:5a:
                    77:01:9b:1d:58:7b:ad:e3:06:d5:fc:02:b8:d6:cc:
                    5c:61:5b:80:3c:8f:41:a6:48:94:84:be:21:fe:2a:
                    4d:4c:be:71:cb:53:c2:10:4e:df:e3:69:b3:47:b7:
                    d0:7e:73:29:2f:bb:88:da:ea:3d:2d:30:3d:98:e5:
                    99:4d:d2:42:4d:42:60:07:a6:e4:66:e9:f8:ef:ae:
                    38:af:3b:79:27:f2:9e:c0:9c:c9:a5:53:f4:38:6e:
                    a3:b4:7c:a9:c6:70:6c:a6:11:c2:9b:c8:5d:39:be:
                    69:5e:7d:ed:e6:8d:25:42:be:ff:b2:5a:f8:1b:a5:
                    d5:5d:a2:76:17:3d:05:3c:33:7b:ec:45:fd:5a:73:
                    11:64:28:f1:79:72:84:d0:55:c4:eb:6f:70:1b:03:
                    2d:d5:5f:49:30:04:4e:d4:9b:6d:dc:a0:77:71:b7:
                    5d:54:9b:a8:0b:79:65:9a:9b:27:04:d3:c3:68:49:
                    7c:b4:a6:57:c4:d5:30:27:d9:ad:84:f8:85:d6:75:
                    ca:d0:7a:1f:50:1f:ed:de:de:2f:96:a6:f7:bf:45:
                    85:65:00:61:01:2a:fc:79:77:85:fe:cc:01:69:d7:
                    69:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C4:08:8C:13:50:5A:9A:98:EC:0B:63:9D:25:BC:95:EF:64:CE:AA:DF
            X509v3 Authority Key Identifier:
                keyid:19:09:86:6B:39:09:6A:8C:F3:00:07:83:11:96:80:90:49:60:3B:39

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/068283BAC57B18C7F69A467090852B3E644D3A902595A553F35B4407C4527B83/0/1909866B39096A8CF30007831196809049603B39.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1909866B39096A8CF30007831196809049603B39.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/068283BAC57B18C7F69A467090852B3E644D3A902595A553F35B4407C4527B83/0/323830333a316531303a3a2f33322d3438203d3e20323731393735.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:1e10::/32

    Signature Algorithm: sha256WithRSAEncryption
         2a:f5:a3:d8:8e:d3:8c:2c:9e:c7:88:2c:41:0f:ef:9f:d1:c7:
         a2:1b:b3:09:9e:0a:60:0d:03:92:c6:58:81:72:05:20:98:d1:
         a0:58:62:fa:73:51:0f:dc:56:68:98:08:91:6d:32:f5:b2:62:
         00:ff:c3:7e:61:21:ce:9c:df:dc:d0:85:28:d0:c4:6e:5e:e1:
         66:e2:f6:07:cc:7e:5c:71:87:2d:c0:70:08:cf:a0:90:bc:a3:
         90:43:83:76:6b:04:c1:b9:6e:7d:ef:6d:1c:39:e2:4e:d2:29:
         0b:59:d1:37:21:f5:f1:7e:d0:25:03:48:44:32:88:83:03:26:
         97:1a:1a:7b:08:36:0a:26:88:81:69:5d:a0:03:f5:4b:fa:54:
         0b:79:ec:28:4a:ad:cb:5e:eb:12:9f:bb:7a:24:57:86:4e:45:
         3d:f4:5f:dd:9c:f6:c7:fb:e0:e1:d1:6d:15:85:f6:25:b7:83:
         91:98:7f:cd:89:1e:67:22:8b:42:37:22:1f:20:1a:08:9f:d4:
         d7:32:ed:81:76:0b:28:c5:91:7e:05:80:9d:7a:e9:be:9a:35:
         ba:1a:8d:db:79:81:73:07:7e:4d:4b:9a:de:74:75:c7:aa:fe:
         95:0c:21:b2:8d:70:af:75:11:f5:f9:74:e3:db:7e:dc:7a:dc:
         12:5b:c9:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 10 09:56:08 2024 by rpki-client on console-ams.rpki-client.org