Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2A3DC6A413BF60284F0EE22095F38DBBA69B7322EF39B67C336CC9EAA06C6482/0/323830303a3334303a3a2f33322d3438203d3e2035363932.roa
File:                     323830303a3334303a3a2f33322d3438203d3e2035363932.roa (raw, json)
Hash identifier:          yziMmYVBCuWQhG+CGZwYD+QH3+qRR6KoOzDv5R6h7QM=
Subject key identifier:   48:72:52:07:9C:85:91:81:C3:EB:9E:DE:1E:93:52:0A:3B:08:5F:9E
Certificate issuer:       /CN=7BF55E4B2D028A4096F46A4EB8260399DEE1E8FD
Certificate serial:       23B1469F1C6617177D5C0850B0F9AC5B1D4DF08E
Authority key identifier: 7B:F5:5E:4B:2D:02:8A:40:96:F4:6A:4E:B8:26:03:99:DE:E1:E8:FD
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7BF55E4B2D028A4096F46A4EB8260399DEE1E8FD.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/2A3DC6A413BF60284F0EE22095F38DBBA69B7322EF39B67C336CC9EAA06C6482/0/323830303a3334303a3a2f33322d3438203d3e2035363932.roa
Signing time:             Tue 05 Mar 2024 18:15:17 +0000
ROA not before:           Tue 05 Mar 2024 18:10:17 +0000
ROA not after:            Tue 04 Mar 2025 18:15:17 +0000
asID:                     5692
IP address blocks:        2800:340::/32 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/2A3DC6A413BF60284F0EE22095F38DBBA69B7322EF39B67C336CC9EAA06C6482/0/7BF55E4B2D028A4096F46A4EB8260399DEE1E8FD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/2A3DC6A413BF60284F0EE22095F38DBBA69B7322EF39B67C336CC9EAA06C6482/0/7BF55E4B2D028A4096F46A4EB8260399DEE1E8FD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7BF55E4B2D028A4096F46A4EB8260399DEE1E8FD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Wed 11 Dec 2024 18:44:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            23:b1:46:9f:1c:66:17:17:7d:5c:08:50:b0:f9:ac:5b:1d:4d:f0:8e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7BF55E4B2D028A4096F46A4EB8260399DEE1E8FD
        Validity
            Not Before: Mar  5 18:10:17 2024 GMT
            Not After : Mar  4 18:15:17 2025 GMT
        Subject: CN=487252079C859181C3EB9EDE1E93520A3B085F9E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:0c:2d:eb:da:0d:30:ad:76:44:b6:e9:7a:68:
                    16:68:be:01:7f:cc:52:78:03:99:98:e5:99:28:51:
                    8f:e2:23:2a:db:a7:9f:11:50:f6:20:c1:6d:32:db:
                    0a:a3:55:65:0c:ad:cb:fb:5f:b9:a0:cc:e2:f6:e6:
                    7d:0b:84:ec:4f:63:95:e4:01:9f:2f:15:f0:23:2b:
                    04:86:34:08:2c:72:e3:75:56:d0:19:e0:f3:ef:72:
                    d9:9f:70:4c:35:e2:0c:c6:db:bb:ab:26:f7:0b:06:
                    07:2b:8c:ba:10:e7:f1:4e:e3:bf:4a:24:04:5d:f9:
                    02:46:2b:b7:1a:f6:70:01:51:67:25:bf:e5:0e:f4:
                    4b:68:c2:44:37:22:a4:64:1e:df:52:df:32:dd:59:
                    7a:ab:54:fd:ee:f4:46:85:12:51:0e:80:e8:e3:0b:
                    59:2a:f4:1b:11:a4:f3:01:c2:9d:1c:0b:74:68:44:
                    4a:7a:83:85:45:2a:44:1c:85:a2:72:b4:6c:34:38:
                    eb:41:b2:bf:40:90:1d:94:3b:da:39:5e:98:9b:2a:
                    f1:51:02:b0:15:93:b1:55:cd:11:8f:79:0c:6c:86:
                    64:26:b6:62:c2:cd:af:9a:3f:b3:b6:c1:51:6e:d0:
                    c9:e7:64:9b:2b:65:1f:dc:60:05:14:40:bd:3f:49:
                    69:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:72:52:07:9C:85:91:81:C3:EB:9E:DE:1E:93:52:0A:3B:08:5F:9E
            X509v3 Authority Key Identifier:
                keyid:7B:F5:5E:4B:2D:02:8A:40:96:F4:6A:4E:B8:26:03:99:DE:E1:E8:FD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/2A3DC6A413BF60284F0EE22095F38DBBA69B7322EF39B67C336CC9EAA06C6482/0/7BF55E4B2D028A4096F46A4EB8260399DEE1E8FD.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7BF55E4B2D028A4096F46A4EB8260399DEE1E8FD.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2A3DC6A413BF60284F0EE22095F38DBBA69B7322EF39B67C336CC9EAA06C6482/0/323830303a3334303a3a2f33322d3438203d3e2035363932.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2800:340::/32

    Signature Algorithm: sha256WithRSAEncryption
         a1:33:51:db:40:a1:9d:ca:b5:47:1c:18:c6:7b:9c:da:b5:c1:
         98:75:9b:4a:5e:34:b9:9e:f4:0b:47:2c:2d:26:60:4f:07:9f:
         3e:a8:b3:ba:c9:5c:14:23:9d:e0:f6:df:77:c1:3f:c1:31:04:
         9f:c1:99:3f:47:1b:e4:9c:e1:44:86:2c:c0:29:2c:95:6b:ff:
         87:41:07:8c:8b:c5:10:af:9b:9d:b0:44:ac:7f:c4:0e:00:88:
         42:a7:04:0e:af:98:ea:c5:ec:18:f1:e8:50:3d:fd:d9:11:ac:
         70:db:0c:06:c9:fd:22:0c:d7:7a:13:54:0e:5b:9d:3f:c4:da:
         9e:5b:43:7c:ca:62:a6:09:e2:c5:88:77:82:c6:db:c4:32:6c:
         98:26:cd:66:d7:ee:02:f1:8f:a9:73:e8:24:eb:5e:36:49:b5:
         6e:d6:36:cb:36:9c:e5:3c:4d:a3:b0:3a:fa:05:af:53:78:bd:
         b8:33:c7:3f:5f:c8:ac:01:92:b4:74:99:ef:80:02:e0:f9:fd:
         9e:78:56:51:fe:e0:b7:8d:a3:e6:e9:e4:b1:57:68:38:b4:c1:
         09:c2:9f:00:3c:58:e3:f9:41:09:fe:c0:ba:b0:aa:a9:af:39:
         11:47:c7:bf:6a:46:43:b0:c7:c0:44:01:a7:91:ac:7f:62:48:
         66:18:1a:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Dec 8 05:17:16 2024 by rpki-client on console-ams.rpki-client.org