Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/21fbe07b-352d-4dad-a763-e458524c159b/31c4c1d3d545cd97238935be27c035a7450c279e.roa
File:                     31c4c1d3d545cd97238935be27c035a7450c279e.roa (raw, json)
Hash identifier:          GpFUMlz4b48QuHKvS806Xe8zdtPzmEZ6L0JdQ4MxPXg=
Subject key identifier:   6B:A4:21:A9:87:FE:37:1B:A1:F3:11:D4:24:FC:6E:E7:CC:6E:96:39
Certificate issuer:       /CN=8e9cf41123ed6894a352817e4249195f52cfe85e
Certificate serial:       0F489B
Authority key identifier: B1:EB:E3:06:23:F7:F0:5D:51:4C:29:EA:72:46:CC:D0:F8:30:E7:BA
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8e9cf41123ed6894a352817e4249195f52cfe85e.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/21fbe07b-352d-4dad-a763-e458524c159b/31c4c1d3d545cd97238935be27c035a7450c279e.roa
Signing time:             Thu 01 Jun 2023 14:47:40 +0000
ROA not before:           Wed 31 May 2023 14:47:40 +0000
ROA not after:            Sun 01 Jun 2025 14:47:40 +0000
asID:                     266769
IP address blocks:        2803:2f20::/32 maxlen: 64

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/21fbe07b-352d-4dad-a763-e458524c159b/8e9cf41123ed6894a352817e4249195f52cfe85e.crl
                          rsync://repository.lacnic.net/rpki/lacnic/21fbe07b-352d-4dad-a763-e458524c159b/8e9cf41123ed6894a352817e4249195f52cfe85e.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8e9cf41123ed6894a352817e4249195f52cfe85e.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sat 02 Mar 2024 22:28:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1001627 (0xf489b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8e9cf41123ed6894a352817e4249195f52cfe85e
        Validity
            Not Before: May 31 14:47:40 2023 GMT
            Not After : Jun  1 14:47:40 2025 GMT
        Subject: CN=31c4c1d3d545cd97238935be27c035a7450c279e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:82:2f:70:8d:d8:d3:19:17:6d:e2:69:5d:e7:3f:
                    0d:2f:aa:af:17:18:6e:0a:65:af:a9:c0:54:ac:cd:
                    67:5c:71:e8:75:ff:f5:86:6c:e8:a7:07:47:57:22:
                    0a:74:44:9d:c3:31:fe:83:37:db:74:12:e4:70:df:
                    75:96:3c:66:04:97:f1:85:f2:cf:1a:c2:4a:ac:fc:
                    78:61:9c:37:19:e6:fc:07:31:8e:d9:e8:e4:13:93:
                    e8:dd:3f:42:94:11:07:f4:cf:87:eb:7a:6e:7f:12:
                    c0:e5:eb:54:7d:95:31:cc:47:6f:47:96:d6:2b:fd:
                    42:84:1c:02:97:55:06:bb:90:dd:a7:6b:4f:ee:68:
                    ba:eb:38:73:1f:43:21:83:de:b3:19:2e:05:d4:ad:
                    a3:bf:0f:be:0a:6a:13:ab:ab:19:39:24:74:57:a8:
                    d8:0b:b1:c8:ff:b6:6e:36:74:bb:1a:9d:b5:b5:8e:
                    47:a8:28:17:44:bc:97:02:c0:a0:4b:25:70:a8:1e:
                    f2:25:12:02:3d:96:c6:8e:bb:dd:33:0d:22:9c:6c:
                    5f:f5:8b:fe:5f:3b:b4:16:e5:64:8b:55:3e:d9:4f:
                    a4:02:10:61:9d:b5:57:88:52:b9:06:94:92:e0:2b:
                    35:73:8b:5d:30:33:cf:f6:f2:48:75:6e:27:37:4b:
                    f8:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6B:A4:21:A9:87:FE:37:1B:A1:F3:11:D4:24:FC:6E:E7:CC:6E:96:39
            X509v3 Authority Key Identifier:
                keyid:B1:EB:E3:06:23:F7:F0:5D:51:4C:29:EA:72:46:CC:D0:F8:30:E7:BA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8e9cf41123ed6894a352817e4249195f52cfe85e.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/21fbe07b-352d-4dad-a763-e458524c159b/31c4c1d3d545cd97238935be27c035a7450c279e.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/21fbe07b-352d-4dad-a763-e458524c159b/8e9cf41123ed6894a352817e4249195f52cfe85e.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:2f20::/32

    Signature Algorithm: sha256WithRSAEncryption
         6e:e4:b4:4d:5c:6a:ec:7f:42:25:6e:0c:1d:8f:1d:11:57:f4:
         c5:dd:12:1e:bc:db:91:8f:0c:12:63:40:e4:13:7e:74:8f:30:
         10:77:5c:a3:f5:17:9f:c3:1e:df:24:ed:d7:ec:7d:fe:b3:82:
         69:e0:2c:ef:63:05:a0:a0:0a:5e:b8:21:34:d0:37:94:66:c3:
         e1:9f:34:61:61:18:70:54:cd:9a:2d:cf:8b:6d:66:75:e2:24:
         eb:dd:b7:7d:30:49:9f:b9:b8:bf:68:1b:0d:b2:85:92:9e:96:
         97:15:bc:4d:23:5a:9c:ef:9f:a9:b4:d2:b1:88:a4:b3:71:ec:
         c2:18:ce:ff:fe:3a:4b:7d:c2:a2:75:2e:70:b2:d4:6b:94:c3:
         81:d7:1f:01:91:3b:45:e1:d9:e4:f7:27:64:49:9a:e6:d8:6b:
         0e:24:f4:24:9d:06:76:e1:d2:16:29:7c:b7:fd:91:43:85:f6:
         32:20:1f:11:6c:02:a1:a8:85:b4:a7:2e:27:44:91:6f:89:2a:
         16:6c:a9:79:24:93:46:26:c5:fa:19:fa:87:84:fb:a8:7c:4a:
         30:a3:40:ff:fd:67:df:58:50:67:23:df:f2:8d:a3:de:41:71:
         cb:e7:2d:3b:83:05:89:bb:99:21:08:e0:52:b8:50:a8:68:b3:
         f7:56:79:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 02:35:12 2024 by rpki-client on console-fra.rpki-client.org