Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2426F1357BCCE68115004A5E63061793303E971AE62EC06F48B8B8D568AA82E0/0/323830333a343335303a3530303a3a2f34302d3430203d3e20323733383833.roa
File:                     323830333a343335303a3530303a3a2f34302d3430203d3e20323733383833.roa (raw, json)
Hash identifier:          +xs46ueZlyHSUNWz6f+U8MHWC8Vq85hQCKFXjbMqgGU=
Subject key identifier:   CF:B7:C1:F5:EF:42:EF:C0:72:89:90:FE:C6:B1:B5:00:D9:EF:69:74
Certificate issuer:       /CN=FC6165EDE0618587777D4D1F276F1CAFA98A645B
Certificate serial:       3A5A0E93CA9C7E4D90303889466A8A3F0849D0C9
Authority key identifier: FC:61:65:ED:E0:61:85:87:77:7D:4D:1F:27:6F:1C:AF:A9:8A:64:5B
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FC6165EDE0618587777D4D1F276F1CAFA98A645B.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/2426F1357BCCE68115004A5E63061793303E971AE62EC06F48B8B8D568AA82E0/0/323830333a343335303a3530303a3a2f34302d3430203d3e20323733383833.roa
Signing time:             Fri 25 Jul 2025 02:26:39 +0000
ROA not before:           Fri 25 Jul 2025 02:21:39 +0000
ROA not after:            Fri 24 Jul 2026 02:26:39 +0000
asID:                     273883
IP address blocks:        2803:4350:500::/40 maxlen: 40
Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/2426F1357BCCE68115004A5E63061793303E971AE62EC06F48B8B8D568AA82E0/0/FC6165EDE0618587777D4D1F276F1CAFA98A645B.crl
                          rsync://repository.lacnic.net/rpki/lacnic/2426F1357BCCE68115004A5E63061793303E971AE62EC06F48B8B8D568AA82E0/0/FC6165EDE0618587777D4D1F276F1CAFA98A645B.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FC6165EDE0618587777D4D1F276F1CAFA98A645B.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Tue 05 Aug 2025 13:00:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3a:5a:0e:93:ca:9c:7e:4d:90:30:38:89:46:6a:8a:3f:08:49:d0:c9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FC6165EDE0618587777D4D1F276F1CAFA98A645B
        Validity
            Not Before: Jul 25 02:21:39 2025 GMT
            Not After : Jul 24 02:26:39 2026 GMT
        Subject: CN=CFB7C1F5EF42EFC0728990FEC6B1B500D9EF6974
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:c8:f6:2f:cc:aa:7c:6e:d4:69:f3:63:55:00:
                    80:68:fe:5c:09:b9:40:84:e1:c7:e3:49:ac:04:6b:
                    02:95:b6:08:b8:ea:98:64:8c:82:18:38:1f:30:c6:
                    14:0e:d4:77:8f:45:78:5e:45:4c:b2:b1:01:c8:a6:
                    b9:c1:f1:46:ce:74:35:a0:d0:22:0e:75:39:45:76:
                    7d:54:c5:86:93:40:3b:9f:2f:c1:3e:6d:97:94:5d:
                    2e:96:7f:65:85:fb:12:12:76:02:d2:2a:0d:26:9e:
                    ef:35:c2:fa:b7:e9:af:a5:00:8d:02:6e:ca:0a:45:
                    ff:7c:75:9a:6a:37:bd:d0:04:0e:81:bc:15:13:17:
                    f4:de:64:eb:fd:62:35:99:a2:8a:f9:1d:f6:9b:46:
                    7f:89:96:e9:ca:d0:92:5b:9a:b7:d9:8d:79:8c:ee:
                    64:25:ec:72:5a:74:df:9e:90:5e:c1:75:bf:eb:1e:
                    3c:c6:0a:ea:34:7c:a7:65:b6:a9:06:73:a9:b1:ca:
                    0e:9c:8e:eb:f7:1c:1e:51:9a:40:0b:76:e6:1a:a1:
                    60:84:97:66:d4:ad:66:a2:f8:cb:0c:a9:a6:15:e1:
                    be:43:42:ed:16:3a:7b:14:66:3f:75:86:87:99:37:
                    95:eb:87:54:c4:2c:ba:29:a2:78:36:8f:d4:ea:36:
                    02:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CF:B7:C1:F5:EF:42:EF:C0:72:89:90:FE:C6:B1:B5:00:D9:EF:69:74
            X509v3 Authority Key Identifier:
                keyid:FC:61:65:ED:E0:61:85:87:77:7D:4D:1F:27:6F:1C:AF:A9:8A:64:5B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/2426F1357BCCE68115004A5E63061793303E971AE62EC06F48B8B8D568AA82E0/0/FC6165EDE0618587777D4D1F276F1CAFA98A645B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/FC6165EDE0618587777D4D1F276F1CAFA98A645B.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2426F1357BCCE68115004A5E63061793303E971AE62EC06F48B8B8D568AA82E0/0/323830333a343335303a3530303a3a2f34302d3430203d3e20323733383833.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:4350:500::/40

    Signature Algorithm: sha256WithRSAEncryption
         40:3b:57:a1:b3:44:9d:94:fd:0a:0f:16:02:96:02:0f:84:12:
         2b:52:18:f8:be:2d:be:f9:e9:6b:6c:92:00:95:a6:a0:86:0b:
         24:a0:c7:d1:9f:c9:ca:05:8a:56:e5:c6:0e:af:44:7c:ca:d0:
         a8:bd:2f:10:d7:08:2f:c6:6d:45:08:b5:66:09:78:0f:c7:68:
         5a:22:4c:dd:76:c1:83:af:e4:1d:9f:b0:aa:07:e1:26:3c:52:
         68:4d:1b:40:8a:f0:4a:91:60:a6:fe:c0:b9:56:17:c4:1b:23:
         ec:ad:6b:0c:99:54:7c:02:99:00:97:68:55:90:41:a9:ae:9b:
         ee:30:84:9a:12:6d:da:da:65:9a:23:17:0e:7c:8d:23:6e:ef:
         c7:72:4a:e4:d3:7c:1b:ca:56:08:fd:fa:0e:fe:d8:4e:93:6e:
         99:b2:55:f2:70:92:0e:8a:72:a0:3f:ec:10:29:57:ed:cf:3e:
         d7:46:64:ae:20:8f:6d:96:f7:07:f3:f9:d5:71:c3:ba:04:a2:
         75:c5:7c:49:05:64:d4:86:c3:06:8f:54:38:ae:a3:7b:c9:a3:
         80:ca:69:01:f8:c6:7c:9f:db:d0:41:9c:25:b5:4c:ba:a0:7d:
         80:e3:23:75:f8:69:01:af:2e:71:3b:8e:30:e2:b0:0f:9f:b6:
         4d:f2:ff:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 2 14:09:07 2025 by rpki-client