Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/193ABEC27115818C343AFFAEB9C4ECD22C90E84C79E30FF33644881DAEE6C20E/0/323830363a3238353a3a2f33322d3332203d3e20323635353233.roa
File:                     323830363a3238353a3a2f33322d3332203d3e20323635353233.roa (raw, json)
Hash identifier:          rY91RkUzXG8TGmaOInwBnzLjX/O6vEUMt04UYZpKpe0=
Subject key identifier:   7E:26:AB:25:08:82:49:12:6F:DE:09:71:57:28:D1:D6:38:52:7C:BF
Certificate issuer:       /CN=40486DCD4FF9A7DB635571FBC2CCD6D2ADB8625F
Certificate serial:       4AC105DF23CDEE89E04CD3F0B7E1CFDC5BFE735F
Authority key identifier: 40:48:6D:CD:4F:F9:A7:DB:63:55:71:FB:C2:CC:D6:D2:AD:B8:62:5F
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/40486DCD4FF9A7DB635571FBC2CCD6D2ADB8625F.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/193ABEC27115818C343AFFAEB9C4ECD22C90E84C79E30FF33644881DAEE6C20E/0/323830363a3238353a3a2f33322d3332203d3e20323635353233.roa
Signing time:             Tue 05 Mar 2024 17:57:13 +0000
ROA not before:           Tue 05 Mar 2024 17:52:13 +0000
ROA not after:            Tue 04 Mar 2025 17:57:13 +0000
asID:                     265523
IP address blocks:        2806:285::/32 maxlen: 32

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/193ABEC27115818C343AFFAEB9C4ECD22C90E84C79E30FF33644881DAEE6C20E/0/40486DCD4FF9A7DB635571FBC2CCD6D2ADB8625F.crl
                          rsync://repository.lacnic.net/rpki/lacnic/193ABEC27115818C343AFFAEB9C4ECD22C90E84C79E30FF33644881DAEE6C20E/0/40486DCD4FF9A7DB635571FBC2CCD6D2ADB8625F.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/40486DCD4FF9A7DB635571FBC2CCD6D2ADB8625F.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sat 27 Jul 2024 09:32:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4a:c1:05:df:23:cd:ee:89:e0:4c:d3:f0:b7:e1:cf:dc:5b:fe:73:5f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=40486DCD4FF9A7DB635571FBC2CCD6D2ADB8625F
        Validity
            Not Before: Mar  5 17:52:13 2024 GMT
            Not After : Mar  4 17:57:13 2025 GMT
        Subject: CN=7E26AB25088249126FDE09715728D1D638527CBF
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:e7:6b:d0:42:7c:36:b0:0e:d3:66:97:ae:84:
                    54:de:33:af:d9:f7:aa:b4:5e:68:39:49:45:54:f0:
                    7a:1a:f0:05:37:62:ca:00:78:fe:11:44:ca:36:05:
                    66:22:d2:f5:80:7d:75:9a:e2:b1:2a:a2:5e:ec:ae:
                    69:f0:c3:ea:03:ee:74:ba:1f:2b:ed:80:19:d5:1e:
                    0d:d4:b7:23:8d:4b:26:bc:1b:58:cf:2c:88:e0:2b:
                    c8:18:6c:ff:52:f1:67:5c:af:c2:fa:7d:73:5d:1a:
                    e6:c6:d7:6a:1d:34:64:79:cd:ea:33:7d:e6:e0:f2:
                    a9:b8:9b:cd:29:66:9d:bc:7f:9d:44:e6:a8:67:a7:
                    2c:f8:98:e0:0c:a2:7d:c1:50:1e:ab:65:7d:63:70:
                    0b:f8:fd:23:2e:7a:da:cb:0a:da:cd:05:e3:61:0c:
                    ea:c0:78:a5:5d:f5:83:2c:cb:b6:18:fd:c0:24:2b:
                    b8:14:0d:b8:be:31:90:57:06:b8:3e:11:4c:83:42:
                    99:e2:3e:5c:e8:0c:45:d2:2d:d5:98:e2:66:88:c9:
                    49:f0:1f:44:63:c4:8e:21:8d:d5:43:aa:d4:f2:25:
                    a4:84:82:7d:a6:71:e0:9f:17:93:bb:cf:3e:b6:d2:
                    49:f2:18:7a:cd:06:49:c1:26:cb:76:b6:77:7b:32:
                    18:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:26:AB:25:08:82:49:12:6F:DE:09:71:57:28:D1:D6:38:52:7C:BF
            X509v3 Authority Key Identifier:
                keyid:40:48:6D:CD:4F:F9:A7:DB:63:55:71:FB:C2:CC:D6:D2:AD:B8:62:5F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/193ABEC27115818C343AFFAEB9C4ECD22C90E84C79E30FF33644881DAEE6C20E/0/40486DCD4FF9A7DB635571FBC2CCD6D2ADB8625F.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/40486DCD4FF9A7DB635571FBC2CCD6D2ADB8625F.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/193ABEC27115818C343AFFAEB9C4ECD22C90E84C79E30FF33644881DAEE6C20E/0/323830363a3238353a3a2f33322d3332203d3e20323635353233.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2806:285::/32

    Signature Algorithm: sha256WithRSAEncryption
         ed:0a:f7:67:76:e5:3d:bd:8c:18:ab:66:40:33:71:c7:d5:a2:
         25:cf:c7:c0:78:bb:08:09:aa:e7:58:25:ec:fe:c4:4e:cf:10:
         95:51:5b:8c:af:2d:9f:a2:bb:b1:29:e2:76:f2:ef:14:7c:86:
         42:ee:6c:58:6e:fc:dd:ca:84:47:4a:81:20:47:f9:9c:05:98:
         7a:c4:e9:6d:f8:96:83:0e:f4:37:d4:0b:52:2d:ce:42:78:69:
         de:d3:47:17:4e:82:80:2e:22:c2:9c:59:f7:90:62:62:71:89:
         1a:98:39:d3:a6:89:c8:02:a3:82:cd:e4:8e:e4:9a:50:33:0f:
         05:37:01:c1:50:13:64:a7:51:05:d6:53:44:82:52:c7:8c:62:
         91:98:01:1a:4a:30:83:fe:67:27:0e:35:52:08:4f:7c:c5:5c:
         ce:14:92:3e:d4:28:e7:dc:12:55:5b:6b:91:c8:44:95:5f:f4:
         07:00:38:43:fd:29:f5:03:09:01:ef:13:14:48:7a:20:f4:3a:
         f1:d4:51:8d:6d:1c:56:28:78:59:92:a1:16:1a:9c:d7:95:da:
         26:06:43:e2:e4:6c:ae:1a:44:56:19:c5:49:09:c0:16:34:18:
         5c:af:97:03:32:91:7f:c8:5e:4c:e1:d3:83:e6:a9:01:1c:eb:
         cf:62:66:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 23 16:33:39 2024 by rpki-client on console-ams.rpki-client.org