Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0EF073E93B26C8BA436446A8EB7A85047DD16C8EFC0493AFD13A1B25BE2EECC6/0/323830333a653139303a3a2f33322d3438203d3e203634313134.roa
File:                     323830333a653139303a3a2f33322d3438203d3e203634313134.roa (raw, json)
Hash identifier:          M0O50BlrVMfaklQs/IiyazK+3VDGXdCzr6tRIBp+I0o=
Subject key identifier:   D2:1D:B3:00:A0:95:F1:59:CC:07:86:32:39:F8:91:E2:6D:01:F7:E0
Certificate issuer:       /CN=F58D9ED99688FE2A606A833A8F2AC6C8FCCEF246
Certificate serial:       53CDE9F8586866EE303656426EC96311E47FF9B6
Authority key identifier: F5:8D:9E:D9:96:88:FE:2A:60:6A:83:3A:8F:2A:C6:C8:FC:CE:F2:46
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F58D9ED99688FE2A606A833A8F2AC6C8FCCEF246.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/0EF073E93B26C8BA436446A8EB7A85047DD16C8EFC0493AFD13A1B25BE2EECC6/0/323830333a653139303a3a2f33322d3438203d3e203634313134.roa
Signing time:             Tue 05 Mar 2024 17:46:58 +0000
ROA not before:           Tue 05 Mar 2024 17:41:58 +0000
ROA not after:            Tue 04 Mar 2025 17:46:58 +0000
asID:                     64114
IP address blocks:        2803:e190::/32 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/0EF073E93B26C8BA436446A8EB7A85047DD16C8EFC0493AFD13A1B25BE2EECC6/0/F58D9ED99688FE2A606A833A8F2AC6C8FCCEF246.crl
                          rsync://repository.lacnic.net/rpki/lacnic/0EF073E93B26C8BA436446A8EB7A85047DD16C8EFC0493AFD13A1B25BE2EECC6/0/F58D9ED99688FE2A606A833A8F2AC6C8FCCEF246.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F58D9ED99688FE2A606A833A8F2AC6C8FCCEF246.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 24 Nov 2024 23:17:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            53:cd:e9:f8:58:68:66:ee:30:36:56:42:6e:c9:63:11:e4:7f:f9:b6
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F58D9ED99688FE2A606A833A8F2AC6C8FCCEF246
        Validity
            Not Before: Mar  5 17:41:58 2024 GMT
            Not After : Mar  4 17:46:58 2025 GMT
        Subject: CN=D21DB300A095F159CC07863239F891E26D01F7E0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:bc:7c:8d:44:e4:f9:de:96:7c:64:a9:9c:f8:
                    d5:38:1e:39:4a:e1:95:70:ca:09:8b:52:7e:0e:a4:
                    63:05:a9:9a:9b:9c:20:9a:7e:5a:60:e7:41:38:7a:
                    91:1c:ed:a0:68:9f:60:28:24:93:6e:a7:7d:58:2e:
                    48:68:79:0b:51:de:7f:60:95:e2:3d:36:77:e9:71:
                    2d:d4:a0:af:b5:4b:8e:9a:27:8f:87:af:31:c6:da:
                    cf:d0:54:0b:d1:ec:41:d4:5d:17:70:76:27:49:1b:
                    65:54:fa:cf:f8:1e:8c:b0:4c:b3:9b:a6:5d:45:63:
                    57:d6:59:66:33:f1:f6:92:11:56:d4:f4:12:b6:16:
                    80:b4:4c:94:9c:e5:78:27:dc:a2:9e:ce:64:a2:a7:
                    e0:a5:4d:46:4c:7c:7a:4e:55:1f:5b:a3:78:9f:fa:
                    a3:29:4f:0d:cb:9c:ef:a6:9f:e9:b9:d2:be:50:71:
                    66:e8:4c:be:e9:03:03:de:0a:9e:b4:13:d8:be:26:
                    63:96:9f:9d:9a:e4:1c:48:b7:55:8d:42:4a:e8:78:
                    bd:d6:5b:99:a6:c0:31:b1:89:76:3b:74:43:f7:bc:
                    5a:b2:99:6e:d5:36:97:6f:fb:c4:11:fd:6f:d1:55:
                    0c:2b:f9:5d:20:66:ca:ed:e3:b2:47:0d:fc:bc:0c:
                    9e:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D2:1D:B3:00:A0:95:F1:59:CC:07:86:32:39:F8:91:E2:6D:01:F7:E0
            X509v3 Authority Key Identifier:
                keyid:F5:8D:9E:D9:96:88:FE:2A:60:6A:83:3A:8F:2A:C6:C8:FC:CE:F2:46

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/0EF073E93B26C8BA436446A8EB7A85047DD16C8EFC0493AFD13A1B25BE2EECC6/0/F58D9ED99688FE2A606A833A8F2AC6C8FCCEF246.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F58D9ED99688FE2A606A833A8F2AC6C8FCCEF246.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0EF073E93B26C8BA436446A8EB7A85047DD16C8EFC0493AFD13A1B25BE2EECC6/0/323830333a653139303a3a2f33322d3438203d3e203634313134.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:e190::/32

    Signature Algorithm: sha256WithRSAEncryption
         93:f4:31:96:d1:37:e3:45:2c:af:53:e4:b7:8b:09:43:5e:16:
         ce:75:35:83:54:d7:b3:c1:94:ea:d2:4c:13:c1:36:3c:6f:28:
         38:0b:c3:8a:19:d4:cd:4b:19:e4:4c:72:b0:ff:5d:a4:53:e2:
         2c:32:40:4e:e1:36:11:f2:15:69:1f:61:6e:8a:3d:ab:04:a4:
         41:1c:a0:b3:f5:2f:a1:c8:6b:69:3e:37:41:be:4d:73:66:23:
         72:69:f7:b2:f9:39:60:f2:07:e9:81:56:40:e0:ce:f1:14:e2:
         79:f4:0d:91:de:bf:a7:20:7d:6e:df:31:6e:bd:98:85:c4:3c:
         af:a4:43:52:70:bb:75:5c:6e:91:37:db:08:d5:6c:0a:da:3c:
         a4:19:8d:39:34:58:bd:bb:41:83:ed:50:73:cc:53:f1:47:e8:
         5b:be:63:dd:67:a7:70:24:4c:16:26:5f:25:66:1b:72:ae:a0:
         72:36:b8:6d:77:33:5c:da:40:b3:81:c9:43:6b:57:fe:d2:61:
         be:66:5d:6a:6d:61:ad:a7:ed:d2:94:73:d6:b2:b0:51:d5:b0:
         19:d9:f0:62:28:28:1b:78:82:c8:25:7f:a6:0c:d4:f5:fd:d1:
         48:c6:5c:94:cf:1e:59:af:81:3e:74:fb:64:e0:df:c1:0e:b9:
         21:53:50:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 21:01:40 2024 by rpki-client on console-fra.rpki-client.org