Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/20bfb98c-4b5d-490d-9342-b7421a481939/8da12086ff9ca9bddbcb8c8116cd59e84a4b8cd1.roa
File:                     8da12086ff9ca9bddbcb8c8116cd59e84a4b8cd1.roa (raw, json)
Hash identifier:          +uhOAopNchOxfX/8dq8LLWTJQDl/hLCl5AkfwGYfvaQ=
Subject key identifier:   87:47:7F:6E:D5:1E:45:48:EA:F8:14:77:67:A6:56:48:73:B6:FB:13
Certificate issuer:       /CN=8f74f3635561538d1905f0fa0258d3d5fa209b59
Certificate serial:       198A03
Authority key identifier: BA:AC:1D:D6:8B:CE:41:55:3B:31:5D:E7:C4:E8:D4:28:8E:D2:52:FE
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8f74f3635561538d1905f0fa0258d3d5fa209b59.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/20bfb98c-4b5d-490d-9342-b7421a481939/8da12086ff9ca9bddbcb8c8116cd59e84a4b8cd1.roa
Signing time:             Tue 06 Sep 2022 15:46:08 +0000
ROA not before:           Tue 06 Sep 2022 15:45:32 +0000
ROA not after:            Fri 06 Sep 2024 15:45:32 +0000
asID:                     263236
IP address blocks:        2803:9680:3333::/48 maxlen: 64

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/20bfb98c-4b5d-490d-9342-b7421a481939/8f74f3635561538d1905f0fa0258d3d5fa209b59.crl
                          rsync://repository.lacnic.net/rpki/lacnic/20bfb98c-4b5d-490d-9342-b7421a481939/8f74f3635561538d1905f0fa0258d3d5fa209b59.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8f74f3635561538d1905f0fa0258d3d5fa209b59.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 01 Apr 2024 05:58:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1673731 (0x198a03)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8f74f3635561538d1905f0fa0258d3d5fa209b59
        Validity
            Not Before: Sep  6 15:45:32 2022 GMT
            Not After : Sep  6 15:45:32 2024 GMT
        Subject: CN=8da12086ff9ca9bddbcb8c8116cd59e84a4b8cd1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:1e:2d:76:ca:f5:b3:d3:ca:b9:9f:82:92:9c:
                    fe:02:97:fc:ef:2c:d6:39:79:7a:24:37:68:fb:82:
                    56:a1:e4:a7:c8:5d:49:c6:b2:34:7f:71:80:45:6b:
                    86:48:ac:fd:82:7a:75:8e:70:36:9d:5d:bf:a6:ea:
                    dc:95:52:cd:6e:22:b3:ef:6b:a9:82:54:68:8a:e8:
                    d4:ce:34:44:49:8b:46:03:19:5f:c5:2e:65:41:2b:
                    35:cc:10:6e:70:c4:18:00:2f:df:b0:17:30:f2:e0:
                    22:e9:c3:b2:67:d1:e5:9c:fc:2e:16:d4:05:1b:18:
                    47:1b:57:8d:8d:17:1c:bb:df:3f:89:69:4e:da:22:
                    a5:a0:e7:0c:4a:be:14:d9:d2:7b:ca:e6:dd:05:f7:
                    64:f3:d2:f5:e9:26:ce:d3:58:44:a7:7c:ea:21:a6:
                    5d:09:bc:bd:98:73:41:29:00:b9:d8:ba:38:a2:5f:
                    b8:a3:0b:af:95:0c:6d:01:9b:19:11:f5:1d:05:92:
                    b6:9a:e9:2f:e2:56:1c:2c:75:f7:23:df:eb:20:f9:
                    1f:59:c3:b4:8a:24:33:69:67:9e:3d:25:f8:15:1d:
                    fc:e5:99:e8:9b:9a:d0:bb:c7:be:9d:d7:4d:9f:eb:
                    c6:74:ce:4d:97:60:68:38:51:ec:44:a3:95:6e:fc:
                    fc:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                87:47:7F:6E:D5:1E:45:48:EA:F8:14:77:67:A6:56:48:73:B6:FB:13
            X509v3 Authority Key Identifier:
                keyid:BA:AC:1D:D6:8B:CE:41:55:3B:31:5D:E7:C4:E8:D4:28:8E:D2:52:FE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8f74f3635561538d1905f0fa0258d3d5fa209b59.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/20bfb98c-4b5d-490d-9342-b7421a481939/8da12086ff9ca9bddbcb8c8116cd59e84a4b8cd1.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/20bfb98c-4b5d-490d-9342-b7421a481939/8f74f3635561538d1905f0fa0258d3d5fa209b59.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:9680:3333::/48

    Signature Algorithm: sha256WithRSAEncryption
         30:00:19:5a:9f:60:d5:80:0c:7b:24:f7:49:d2:fc:33:8d:11:
         42:e5:96:75:6c:d1:97:33:ff:eb:c4:66:4f:82:2b:eb:3c:5d:
         88:bb:6d:a8:30:af:8f:5d:93:90:11:04:5d:a0:50:2e:d2:ba:
         3a:aa:a5:e3:21:24:53:c9:b9:4e:fa:c8:8a:c1:d9:da:ee:ba:
         f2:2a:d3:14:da:61:81:de:9b:dc:e0:f6:d7:e8:84:56:f9:a1:
         c3:e6:c2:01:5f:a3:97:62:d6:e9:18:f6:a7:f0:b1:b8:b7:4e:
         83:05:ca:b3:fb:18:38:5e:2d:44:ce:b7:57:8b:80:b3:51:40:
         8f:40:c2:c8:2b:f3:e8:cb:fa:3d:20:d6:6b:d2:ae:b2:45:68:
         4e:ff:87:18:17:e0:3d:d7:95:60:0b:b5:07:ab:d7:a2:07:83:
         1d:f3:f8:46:a8:ab:52:97:01:b3:c1:2b:70:21:1e:a9:8e:b6:
         e4:57:47:12:3a:9c:71:41:a4:07:7d:50:16:16:59:1d:c4:62:
         f9:cd:9f:db:1c:da:37:a1:f6:a6:36:d7:d6:0a:cd:93:aa:ef:
         5a:11:3a:5c:70:6a:46:76:ea:c5:7b:dd:61:03:6b:37:98:18:
         56:65:03:1e:40:59:b8:00:ba:25:35:64:8c:d1:57:87:1a:b5:
         65:6a:cc:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 07:06:33 2024 by rpki-client on console-ams.rpki-client.org