Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/27563bb6-2bea-4fda-a2eb-6215884fcfac/38258d99bb636709589373a5a6bb6eeaa33f125e.roa
File:                     38258d99bb636709589373a5a6bb6eeaa33f125e.roa (raw, json)
Hash identifier:          VcSnj7szGPzotH17g7P8r/iuS9ZEz4Eicz2QpBs6g84=
Subject key identifier:   79:08:CF:64:06:D7:61:20:76:4A:CE:C9:62:DE:30:E1:D4:19:FA:E9
Certificate issuer:       /CN=c377b15b5c36ee1de24ca21880a56c0880146624
Certificate serial:       026075
Authority key identifier: 6A:9A:76:12:C1:25:F9:29:22:85:D2:AE:51:3D:48:69:2D:D8:D9:35
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c377b15b5c36ee1de24ca21880a56c0880146624.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/27563bb6-2bea-4fda-a2eb-6215884fcfac/38258d99bb636709589373a5a6bb6eeaa33f125e.roa
Signing time:             Wed 24 Mar 2021 14:35:15 +0000
ROA not before:           Wed 24 Mar 2021 14:35:14 +0000
ROA not after:            Tue 24 Mar 2026 14:35:14 +0000
asID:                     10753
IP address blocks:        2801:15c:2::/48 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/27563bb6-2bea-4fda-a2eb-6215884fcfac/c377b15b5c36ee1de24ca21880a56c0880146624.crl
                          rsync://repository.lacnic.net/rpki/lacnic/27563bb6-2bea-4fda-a2eb-6215884fcfac/c377b15b5c36ee1de24ca21880a56c0880146624.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c377b15b5c36ee1de24ca21880a56c0880146624.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Wed 17 Apr 2024 09:58:00 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 155765 (0x26075)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c377b15b5c36ee1de24ca21880a56c0880146624
        Validity
            Not Before: Mar 24 14:35:14 2021 GMT
            Not After : Mar 24 14:35:14 2026 GMT
        Subject: CN=38258d99bb636709589373a5a6bb6eeaa33f125e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:e2:59:27:4f:1b:66:9b:8e:62:ea:b5:ff:95:
                    fa:94:e1:24:7d:dd:b4:a1:4c:6b:b1:2f:6f:e2:66:
                    6b:ac:e3:14:8f:46:12:31:e7:70:1e:31:a5:62:6b:
                    e9:d5:bb:e0:a1:b2:b5:09:4c:25:87:18:b4:90:a8:
                    b3:d1:ee:9b:c3:21:c7:f0:29:b2:18:d7:98:a2:40:
                    08:68:97:10:8b:7d:61:89:8b:72:b9:63:f0:fe:e6:
                    c4:bb:02:d4:02:7a:81:1c:ee:87:0d:6e:25:47:c0:
                    1c:45:5f:56:28:41:3d:6d:db:b5:e5:2d:95:b7:82:
                    b2:3b:66:93:7f:4a:a5:fb:b1:09:6d:bc:45:09:18:
                    15:d1:99:b3:9c:af:73:3a:c8:5b:b0:79:03:f6:5f:
                    10:47:e0:7a:11:4e:bd:a1:57:85:eb:d5:61:e0:6b:
                    a1:ff:2c:96:3a:94:05:6a:28:9d:61:7b:b9:e8:55:
                    a2:7b:26:c8:16:6e:fe:05:64:76:6c:31:ef:41:7e:
                    a3:5b:c6:11:ba:b6:08:57:8e:18:b5:b5:f8:bb:f9:
                    3e:b0:ab:af:3c:d3:11:fb:5e:33:fd:0b:a4:f6:07:
                    2f:b1:66:3f:89:9b:ee:fc:3e:d5:5a:ce:90:ff:bf:
                    40:91:7e:44:c9:de:c5:28:3f:e0:b5:9c:3e:98:d1:
                    a2:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                79:08:CF:64:06:D7:61:20:76:4A:CE:C9:62:DE:30:E1:D4:19:FA:E9
            X509v3 Authority Key Identifier:
                keyid:6A:9A:76:12:C1:25:F9:29:22:85:D2:AE:51:3D:48:69:2D:D8:D9:35

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c377b15b5c36ee1de24ca21880a56c0880146624.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/27563bb6-2bea-4fda-a2eb-6215884fcfac/38258d99bb636709589373a5a6bb6eeaa33f125e.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/27563bb6-2bea-4fda-a2eb-6215884fcfac/c377b15b5c36ee1de24ca21880a56c0880146624.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2801:15c:2::/48

    Signature Algorithm: sha256WithRSAEncryption
         8d:50:a0:13:b6:f4:f1:92:ca:7a:8c:08:95:25:16:10:e4:59:
         fd:0e:e4:d2:9f:53:1e:8b:fc:74:d1:a3:19:d9:85:5a:3e:9e:
         08:0a:1e:ac:9a:4f:f7:14:a8:1e:b5:60:d7:d1:80:32:71:43:
         a5:3c:d8:31:0f:85:5b:e9:4c:d0:84:09:9e:ec:ae:c5:a5:0d:
         f7:48:03:99:49:3c:f1:bb:f5:75:54:7d:57:5b:c0:72:ca:4f:
         27:94:9c:18:ae:4e:d2:99:98:4f:0e:6d:aa:08:c9:d0:7b:63:
         bd:2d:8e:d8:fb:e9:22:19:8c:3b:67:73:49:87:e4:66:58:7b:
         1d:5b:f8:af:ea:71:94:e5:dc:5f:0f:d6:77:59:90:55:20:05:
         5a:29:09:3c:96:dc:ae:af:5b:0b:e8:97:1d:d3:9a:8b:8c:cb:
         28:4a:27:9d:4a:d7:e0:04:9b:d9:c4:2f:5e:da:68:a6:49:21:
         57:15:79:b2:7e:2b:9c:28:5a:29:5a:f5:6e:38:ab:93:45:5a:
         3b:bf:f1:d4:fe:24:f6:30:09:46:42:23:be:e9:74:e0:97:1b:
         6f:80:f6:43:3c:7b:a8:25:e2:3e:cb:03:5c:3e:28:45:e4:2f:
         28:b5:04:04:e0:38:87:f6:8e:6a:e9:4b:ee:2c:80:1f:bd:aa:
         fe:8d:8a:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 14 11:06:18 2024 by rpki-client on console-ams.rpki-client.org