Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1620f963-e060-44cd-aa15-f52e7191a723/8e51e91774f31d7639eccae3170bc3375d40a744.roa
File:                     8e51e91774f31d7639eccae3170bc3375d40a744.roa (raw, json)
Hash identifier:          i4uxK6T1Sp9e7r6Q75L4PnygbDKPgXxDfgbxmoSqpXk=
Subject key identifier:   27:C7:61:01:B7:BB:D0:E7:99:49:C7:71:E1:3D:FD:D0:36:79:D3:E0
Certificate issuer:       /CN=6f8d39caed23376f107b16b16e22c05fa02572a6
Certificate serial:       18C5E7
Authority key identifier: 48:E6:3E:45:8C:CF:F5:D6:E0:F4:3E:A4:46:E3:EB:BE:24:58:82:2C
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/6f8d39caed23376f107b16b16e22c05fa02572a6.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/1620f963-e060-44cd-aa15-f52e7191a723/8e51e91774f31d7639eccae3170bc3375d40a744.roa
Signing time:             Thu 07 Sep 2023 20:54:47 +0000
ROA not before:           Wed 06 Sep 2023 20:54:47 +0000
ROA not after:            Sun 07 Sep 2025 20:54:47 +0000
asID:                     271826
IP address blocks:        2801:1e6::/44 maxlen: 44

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/1620f963-e060-44cd-aa15-f52e7191a723/6f8d39caed23376f107b16b16e22c05fa02572a6.crl
                          rsync://repository.lacnic.net/rpki/lacnic/1620f963-e060-44cd-aa15-f52e7191a723/6f8d39caed23376f107b16b16e22c05fa02572a6.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/6f8d39caed23376f107b16b16e22c05fa02572a6.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 04 Mar 2024 17:26:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1623527 (0x18c5e7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6f8d39caed23376f107b16b16e22c05fa02572a6
        Validity
            Not Before: Sep  6 20:54:47 2023 GMT
            Not After : Sep  7 20:54:47 2025 GMT
        Subject: CN=8e51e91774f31d7639eccae3170bc3375d40a744
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:2a:85:b0:9e:45:af:05:5d:60:db:f4:a3:ae:
                    70:48:e3:61:84:a8:6b:03:c3:5d:47:4e:70:8a:d4:
                    a0:9b:03:45:4f:1e:ce:3c:6f:f8:d3:1f:50:33:9b:
                    60:a3:12:b4:21:1b:3c:35:52:1e:c1:9c:d5:59:88:
                    be:8d:ae:f2:c3:14:17:80:63:40:20:9e:69:20:1d:
                    14:5a:3c:c2:33:4d:b0:7d:4f:3b:79:01:05:3b:db:
                    9a:4f:be:c6:01:d6:1d:3f:5d:8b:15:a7:b7:94:32:
                    53:a4:6e:cb:78:5c:9c:7b:d6:03:d1:bf:6e:e2:fa:
                    45:a5:2a:16:a4:95:09:da:8b:d1:e2:5e:ac:2e:0f:
                    5d:9d:bf:03:a0:a7:14:c3:89:e7:2f:66:9c:73:5b:
                    37:5f:26:0e:ed:76:c1:65:4a:3f:67:9b:7e:8e:87:
                    ad:cd:32:b0:72:ce:8a:d5:0e:a8:5a:77:14:67:a0:
                    d2:95:1c:d0:49:e6:0e:cb:0f:a4:fe:16:ba:cc:da:
                    47:1b:ee:65:0a:63:d6:52:a3:9d:ad:ff:d0:c7:03:
                    d9:af:d5:72:d4:ae:72:02:b6:76:df:19:82:11:31:
                    db:af:5a:56:a9:66:de:42:63:fd:60:6b:75:9c:18:
                    06:79:dd:b5:c8:f2:68:a7:e3:64:ed:4d:07:d3:45:
                    31:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                27:C7:61:01:B7:BB:D0:E7:99:49:C7:71:E1:3D:FD:D0:36:79:D3:E0
            X509v3 Authority Key Identifier:
                keyid:48:E6:3E:45:8C:CF:F5:D6:E0:F4:3E:A4:46:E3:EB:BE:24:58:82:2C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/6f8d39caed23376f107b16b16e22c05fa02572a6.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1620f963-e060-44cd-aa15-f52e7191a723/8e51e91774f31d7639eccae3170bc3375d40a744.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/1620f963-e060-44cd-aa15-f52e7191a723/6f8d39caed23376f107b16b16e22c05fa02572a6.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2801:1e6::/44

    Signature Algorithm: sha256WithRSAEncryption
         38:a2:3c:9a:61:c8:33:dc:17:d0:4d:cd:c1:34:9a:19:5b:d1:
         8b:d2:92:25:29:9a:e9:24:ca:ff:e2:2d:5d:00:7a:1f:25:e0:
         e7:69:e0:6f:75:cd:f9:4c:6f:c5:8a:cf:16:e2:0f:82:a6:37:
         be:e0:6b:f5:5b:a0:74:51:59:f1:2d:d9:6b:73:42:15:27:31:
         f4:a7:e2:2f:62:ae:db:a4:d3:25:53:23:68:8c:d9:b7:e2:cc:
         63:64:b5:ca:c1:68:1a:d2:ce:44:ce:c3:a3:0b:43:a7:32:32:
         0b:49:38:6a:5f:ae:57:5b:27:bf:f5:3c:eb:94:68:51:d1:6a:
         35:6e:4e:7a:19:9f:60:d1:ab:b4:3b:7b:f6:2f:c6:df:77:d0:
         5a:74:0c:fa:64:08:f4:17:05:92:b5:e6:8e:cc:32:8d:16:de:
         ad:99:d2:bc:4f:df:99:ce:81:11:8e:57:fb:21:3b:cf:2a:c7:
         92:85:09:6b:24:47:c7:74:a9:c3:e0:66:0e:2e:98:7b:5a:09:
         4b:ab:9f:d2:9e:be:2e:68:dc:58:1c:a6:58:21:07:d4:15:c0:
         25:86:9d:76:aa:e4:d2:92:42:2b:cf:25:53:57:05:8a:03:18:
         c2:60:38:e4:cb:de:65:0d:b7:f5:86:d0:b6:72:ad:fa:8d:77:
         85:37:aa:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 1 23:41:57 2024 by rpki-client on console-ams.rpki-client.org