Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2E7B64309727F4467B68A76D90D305BFE3CCFC91518535BD875EE550381A1DFC/0/323830333a643730303a646130303a3a2f34302d3430203d3e203631343631.roa
File:                     323830333a643730303a646130303a3a2f34302d3430203d3e203631343631.roa (raw, json)
Hash identifier:          hnuHiEAKDWTdoXxkUREAtX6KFIFuyx458ePyxN6HUos=
Subject key identifier:   76:AA:3C:9C:57:72:EA:77:47:64:F2:D8:AC:C1:AC:11:A9:EC:F8:73
Certificate issuer:       /CN=B137142754DED915D3341628E74A8B91AF0CB76A
Certificate serial:       2007505A8C5CE709449EF1F2ED7D62B741CF505C
Authority key identifier: B1:37:14:27:54:DE:D9:15:D3:34:16:28:E7:4A:8B:91:AF:0C:B7:6A
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B137142754DED915D3341628E74A8B91AF0CB76A.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/2E7B64309727F4467B68A76D90D305BFE3CCFC91518535BD875EE550381A1DFC/0/323830333a643730303a646130303a3a2f34302d3430203d3e203631343631.roa
Signing time:             Tue 05 Mar 2024 17:49:03 +0000
ROA not before:           Tue 05 Mar 2024 17:44:03 +0000
ROA not after:            Tue 04 Mar 2025 17:49:03 +0000
asID:                     61461
IP address blocks:        2803:d700:da00::/40 maxlen: 40

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/2E7B64309727F4467B68A76D90D305BFE3CCFC91518535BD875EE550381A1DFC/0/B137142754DED915D3341628E74A8B91AF0CB76A.crl
                          rsync://repository.lacnic.net/rpki/lacnic/2E7B64309727F4467B68A76D90D305BFE3CCFC91518535BD875EE550381A1DFC/0/B137142754DED915D3341628E74A8B91AF0CB76A.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B137142754DED915D3341628E74A8B91AF0CB76A.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 24 Nov 2024 23:17:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            20:07:50:5a:8c:5c:e7:09:44:9e:f1:f2:ed:7d:62:b7:41:cf:50:5c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=B137142754DED915D3341628E74A8B91AF0CB76A
        Validity
            Not Before: Mar  5 17:44:03 2024 GMT
            Not After : Mar  4 17:49:03 2025 GMT
        Subject: CN=76AA3C9C5772EA774764F2D8ACC1AC11A9ECF873
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:9c:c4:5f:6c:c1:d1:b0:cd:e1:01:94:ac:e9:
                    17:42:12:cc:a7:c4:e2:63:ca:51:37:c5:90:67:be:
                    e3:a2:0a:df:bb:db:a9:91:a3:dd:04:b4:d5:bd:36:
                    a5:56:a5:8c:bb:17:d7:ab:7a:aa:3c:03:c4:1b:09:
                    df:0c:4b:03:77:db:df:92:dc:2e:0c:e3:90:5a:79:
                    b3:6c:19:6b:bc:48:ae:56:ff:07:c0:54:11:f0:46:
                    b2:19:dc:94:0d:cb:c6:66:76:4a:02:61:19:bc:3c:
                    f5:dc:72:2f:58:8c:29:3a:fa:3d:b1:d9:f0:57:d9:
                    e7:c4:cb:1e:f5:c0:b1:f3:81:78:d5:f7:f1:50:97:
                    74:4c:ce:8b:7e:47:0f:2b:18:fa:3f:93:2c:d9:6c:
                    c7:d9:44:ab:b2:ad:98:6b:59:d9:e7:94:eb:b7:45:
                    3d:5a:0d:c5:a4:ea:7a:a8:fe:b2:3b:6a:29:8b:e8:
                    4b:8f:ca:31:e3:3a:92:d2:ac:51:65:2d:4a:e8:46:
                    0d:38:bd:93:f1:bc:37:f8:e1:05:04:6a:6e:8a:01:
                    75:49:7b:48:0d:57:32:04:34:9e:ce:a9:ea:b8:24:
                    cf:1f:7b:21:8e:7f:7d:0c:18:d9:d2:41:8e:12:a5:
                    c2:f0:1e:03:55:93:12:c4:5b:78:52:62:54:36:71:
                    4e:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                76:AA:3C:9C:57:72:EA:77:47:64:F2:D8:AC:C1:AC:11:A9:EC:F8:73
            X509v3 Authority Key Identifier:
                keyid:B1:37:14:27:54:DE:D9:15:D3:34:16:28:E7:4A:8B:91:AF:0C:B7:6A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/2E7B64309727F4467B68A76D90D305BFE3CCFC91518535BD875EE550381A1DFC/0/B137142754DED915D3341628E74A8B91AF0CB76A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B137142754DED915D3341628E74A8B91AF0CB76A.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2E7B64309727F4467B68A76D90D305BFE3CCFC91518535BD875EE550381A1DFC/0/323830333a643730303a646130303a3a2f34302d3430203d3e203631343631.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:d700:da00::/40

    Signature Algorithm: sha256WithRSAEncryption
         db:34:94:d6:23:fe:d4:b8:b2:e6:ca:ea:8b:a1:9f:c3:43:ba:
         ab:70:fa:98:73:44:e4:32:d2:2c:43:60:ce:2a:a5:43:60:f2:
         88:54:8a:c0:9e:8a:66:24:8a:d0:a3:67:44:82:37:c8:44:92:
         49:42:2f:cb:cd:32:48:31:cf:ab:7e:65:71:17:3f:85:cb:eb:
         e6:18:da:35:7d:3e:92:d1:b6:95:29:dd:96:00:90:47:45:3c:
         b2:11:80:68:15:cf:06:a0:34:bf:2a:e3:d5:06:05:6f:5a:0a:
         e2:c0:8d:71:ba:60:f6:06:0c:11:80:a2:0b:da:64:23:0e:e4:
         e1:b8:88:17:c2:1a:fe:03:3a:7b:5d:08:3c:d9:5b:ab:d6:08:
         13:b3:0e:a4:a4:25:5e:96:80:04:9a:cd:6f:3e:0b:c8:50:d2:
         ef:22:e9:d4:4a:7a:ae:1e:e3:ac:0c:4e:86:5e:ce:49:4d:be:
         19:63:92:26:70:eb:77:a6:6d:0e:77:5b:3f:59:db:dc:c6:01:
         68:5f:f5:ab:4d:1a:83:8d:bc:48:f1:12:86:96:d6:f0:35:4f:
         ad:56:26:58:12:5e:b5:43:ba:35:7a:e4:2d:e6:f4:85:99:22:
         1f:a4:c5:21:e4:8e:9c:80:f8:19:38:b5:3d:32:7b:e8:35:73:
         b4:f5:2d:dd
-----BEGIN CERTIFICATE-----
MIIFyDCCBLCgAwIBAgIUIAdQWoxc5wlEnvHy7X1it0HPUFwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjEzNzE0Mjc1NERFRDkxNUQzMzQxNjI4RTc0QThCOTFB
RjBDQjc2QTAeFw0yNDAzMDUxNzQ0MDNaFw0yNTAzMDQxNzQ5MDNaMDMxMTAvBgNV
BAMTKDc2QUEzQzlDNTc3MkVBNzc0NzY0RjJEOEFDQzFBQzExQTlFQ0Y4NzMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAnMRfbMHRsM3hAZSs6RdCEsyn
xOJjylE3xZBnvuOiCt+726mRo90EtNW9NqVWpYy7F9ereqo8A8QbCd8MSwN329+S
3C4M45BaebNsGWu8SK5W/wfAVBHwRrIZ3JQNy8ZmdkoCYRm8PPXcci9YjCk6+j2x
2fBX2efEyx71wLHzgXjV9/FQl3RMzot+Rw8rGPo/kyzZbMfZRKuyrZhrWdnnlOu3
RT1aDcWk6nqo/rI7aimL6EuPyjHjOpLSrFFlLUroRg04vZPxvDf44QUEam6KAXVJ
e0gNVzIENJ7Oqeq4JM8feyGOf30MGNnSQY4SpcLwHgNVkxLEW3hSYlQ2cU4zAgMB
AAGjggLSMIICzjAdBgNVHQ4EFgQUdqo8nFdy6ndHZPLYrMGsEans+HMwHwYDVR0j
BBgwFoAUsTcUJ1Te2RXTNBYo50qLka8Mt2owDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8yRTdCNjQzMDk3MjdGNDQ2N0I2OEE3NkQ5MEQzMDVCRkUz
Q0NGQzkxNTE4NTM1QkQ4NzVFRTU1MDM4MUExREZDLzAvQjEzNzE0Mjc1NERFRDkx
NUQzMzQxNjI4RTc0QThCOTFBRjBDQjc2QS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9CMTM3MTQyNzU0REVEOTE1RDMz
NDE2MjhFNzRBOEI5MUFGMENCNzZBLmNlcjCBzwYIKwYBBQUHAQsEgcIwgb8wgbwG
CCsGAQUFBzALhoGvcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMkU3QjY0MzA5NzI3RjQ0NjdCNjhBNzZEOTBEMzA1QkZFM0NDRkM5MTUx
ODUzNUJEODc1RUU1NTAzODFBMURGQy8wLzMyMzgzMDMzM2E2NDM3MzAzMDNhNjQ2
MTMwMzAzYTNhMmYzNDMwMmQzNDMwMjAzZDNlMjAzNjMxMzQzNjMxLnJvYTAYBgNV
HSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAI
AwYAKAPXANowDQYJKoZIhvcNAQELBQADggEBANs0lNYj/tS4subK6ouhn8NDuqtw
+phzROQy0ixDYM4qpUNg8ohUisCeimYkitCjZ0SCN8hEkklCL8vNMkgxz6t+ZXEX
P4XL6+YY2jV9PpLRtpUp3ZYAkEdFPLIRgGgVzwagNL8q49UGBW9aCuLAjXG6YPYG
DBGAogvaZCMO5OG4iBfCGv4DOntdCDzZW6vWCBOzDqSkJV6WgASazW8+C8hQ0u8i
6dRKeq4e46wMToZezklNvhljkiZw63embQ53Wz9Z29zGAWhf9atNGoONvEjxEoaW
1vA1T61WJlgSXrVDujV65C3m9IWZIh+kxSHkjpyA+Bk4tT0ye+g1c7T1Ld0=
-----END CERTIFICATE-----
Generated at Thu Nov 21 19:10:55 2024 by rpki-client on console-fra.rpki-client.org