Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/2d937f66-ace6-42a2-baae-e150b66d0e5e/1e0f9e4515686a409b8009c791821dffe93c034d.roa
File:                     1e0f9e4515686a409b8009c791821dffe93c034d.roa (raw, json)
Hash identifier:          ypBD/h6Eb6moBHOcUJGrMx8rokJf4fY1lXldY6Sk5cs=
Subject key identifier:   5D:91:0F:D7:95:80:A2:37:E9:89:C9:17:7A:19:72:A1:AD:34:5E:13
Certificate issuer:       /CN=a0ece5cb3349a401474499eb301920b68090f2ce
Certificate serial:       239796
Authority key identifier: 94:52:6C:1C:EE:97:CC:0E:93:E7:50:7E:90:7F:EB:BE:B5:E2:99:1D
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a0ece5cb3349a401474499eb301920b68090f2ce.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/2d937f66-ace6-42a2-baae-e150b66d0e5e/1e0f9e4515686a409b8009c791821dffe93c034d.roa
Signing time:             Fri 15 Sep 2023 08:30:00 +0000
ROA not before:           Thu 14 Sep 2023 08:30:00 +0000
ROA not after:            Sat 13 Sep 2025 08:30:00 +0000
asID:                     266664
IP address blocks:        2803:efc0::/32 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/2d937f66-ace6-42a2-baae-e150b66d0e5e/a0ece5cb3349a401474499eb301920b68090f2ce.crl
                          rsync://repository.lacnic.net/rpki/lacnic/2d937f66-ace6-42a2-baae-e150b66d0e5e/a0ece5cb3349a401474499eb301920b68090f2ce.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a0ece5cb3349a401474499eb301920b68090f2ce.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 15 Apr 2024 06:03:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2332566 (0x239796)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a0ece5cb3349a401474499eb301920b68090f2ce
        Validity
            Not Before: Sep 14 08:30:00 2023 GMT
            Not After : Sep 13 08:30:00 2025 GMT
        Subject: CN=1e0f9e4515686a409b8009c791821dffe93c034d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f0:fe:8c:df:40:f9:28:e0:ef:e7:1f:f8:44:e4:
                    67:06:78:21:e6:0d:cb:86:fc:f9:30:8f:c2:4c:bf:
                    c3:05:ff:1b:00:19:3c:4e:f7:f1:85:72:00:4f:fd:
                    12:bf:b8:1f:aa:44:c8:e4:15:33:eb:8c:cf:8f:d3:
                    46:df:9f:df:54:18:c8:0b:df:96:05:44:50:2b:e3:
                    ca:8d:7d:c9:5b:4d:42:b5:4c:d2:fd:20:fe:c0:35:
                    f9:64:2c:e8:a3:45:6f:ab:f0:c0:6d:9f:1d:af:32:
                    ed:09:8f:87:cb:79:08:bb:cc:70:c9:e1:ec:48:d1:
                    f5:6d:fa:6c:24:db:ce:7a:6b:df:4c:f9:e1:6b:2a:
                    e9:37:97:ec:b4:0c:35:71:86:e6:25:04:c2:ae:1d:
                    2e:02:a2:f9:e0:0b:7d:89:31:44:0a:3c:bb:29:c8:
                    07:49:58:40:85:2d:89:f2:00:39:3b:b3:ca:6c:7c:
                    9c:5f:f1:52:26:44:6c:5b:48:a1:c4:73:82:f9:6c:
                    6c:f2:8e:0e:56:96:b1:ca:85:92:08:a2:05:ea:22:
                    29:ad:3e:4f:22:82:e1:4c:28:d2:46:b3:3d:c8:64:
                    aa:a4:2f:55:d6:23:4c:60:d2:5b:fa:40:dc:da:4a:
                    07:7e:30:c5:6e:23:41:68:20:0d:ab:60:34:b4:fd:
                    b2:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5D:91:0F:D7:95:80:A2:37:E9:89:C9:17:7A:19:72:A1:AD:34:5E:13
            X509v3 Authority Key Identifier:
                keyid:94:52:6C:1C:EE:97:CC:0E:93:E7:50:7E:90:7F:EB:BE:B5:E2:99:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/a0ece5cb3349a401474499eb301920b68090f2ce.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/2d937f66-ace6-42a2-baae-e150b66d0e5e/1e0f9e4515686a409b8009c791821dffe93c034d.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/2d937f66-ace6-42a2-baae-e150b66d0e5e/a0ece5cb3349a401474499eb301920b68090f2ce.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:efc0::/32

    Signature Algorithm: sha256WithRSAEncryption
         4a:4d:75:15:ef:1f:f6:40:d8:98:58:0a:bd:69:c5:17:75:75:
         46:b8:f3:98:fe:91:d4:43:35:3e:09:fc:a9:db:81:72:87:d9:
         18:38:b2:80:9f:ef:5e:75:2b:58:7f:ee:48:8b:8b:b1:34:2f:
         2b:14:23:1e:d0:af:bf:4c:44:c3:33:3a:4b:d8:5a:85:89:9f:
         53:db:d2:65:f9:d4:82:2f:20:59:93:17:74:ed:35:52:25:1d:
         aa:ff:dc:78:7d:44:ac:07:3f:b2:ab:59:75:76:25:ec:d2:99:
         5c:a2:08:14:15:41:97:29:3c:b2:52:d9:71:43:f6:fa:bf:7e:
         90:aa:59:65:45:a8:a4:8d:23:c6:65:e2:d0:33:97:4e:47:e9:
         85:f1:93:d2:18:d1:eb:84:9f:05:ab:18:34:00:f7:d4:33:b1:
         14:0e:98:e5:8a:a5:3d:81:c3:ff:d2:22:b0:f4:ff:7b:f9:f4:
         5c:9e:bc:75:19:e5:51:94:db:dc:7f:98:fa:c1:66:08:99:ef:
         b5:66:9b:bf:b5:45:ac:e4:64:9c:0e:60:2c:06:70:08:af:42:
         7f:f4:0e:60:59:1e:9d:9a:80:66:54:97:4a:83:53:be:00:8a:
         c0:7b:06:2f:76:ca:a7:23:90:d7:c4:c9:ac:30:9e:14:ab:27:
         ee:82:73:0a
-----BEGIN CERTIFICATE-----
MIIFQTCCBCmgAwIBAgIDI5eWMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGEw
ZWNlNWNiMzM0OWE0MDE0NzQ0OTllYjMwMTkyMGI2ODA5MGYyY2UwHhcNMjMwOTE0
MDgzMDAwWhcNMjUwOTEzMDgzMDAwWjAzMTEwLwYDVQQDEygxZTBmOWU0NTE1Njg2
YTQwOWI4MDA5Yzc5MTgyMWRmZmU5M2MwMzRkMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA8P6M30D5KODv5x/4RORnBngh5g3Lhvz5MI/CTL/DBf8bABk8
TvfxhXIAT/0Sv7gfqkTI5BUz64zPj9NG35/fVBjIC9+WBURQK+PKjX3JW01CtUzS
/SD+wDX5ZCzoo0Vvq/DAbZ8drzLtCY+Hy3kIu8xwyeHsSNH1bfpsJNvOemvfTPnh
ayrpN5fstAw1cYbmJQTCrh0uAqL54At9iTFECjy7KcgHSVhAhS2J8gA5O7PKbHyc
X/FSJkRsW0ihxHOC+Wxs8o4OVpaxyoWSCKIF6iIprT5PIoLhTCjSRrM9yGSqpC9V
1iNMYNJb+kDc2koHfjDFbiNBaCANq2A0tP2yQwIDAQABo4ICXDCCAlgwHQYDVR0O
BBYEFF2RD9eVgKI36YnJF3oZcqGtNF4TMB8GA1UdIwQYMBaAFJRSbBzul8wOk+dQ
fpB/67614pkdMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvYTBlY2U1
Y2IzMzQ5YTQwMTQ3NDQ5OWViMzAxOTIwYjY4MDkwZjJjZS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvMmQ5MzdmNjYtYWNlNi00MmEyLWJhYWUtZTE1MGI2
NmQwZTVlLzFlMGY5ZTQ1MTU2ODZhNDA5YjgwMDljNzkxODIxZGZmZTkzYzAzNGQu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8yZDkzN2Y2Ni1hY2U2LTQyYTItYmFhZS1lMTUw
YjY2ZDBlNWUvYTBlY2U1Y2IzMzQ5YTQwMTQ3NDQ5OWViMzAxOTIwYjY4MDkwZjJj
ZS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQR
MA8wDQQCAAIwBwMFACgD78AwDQYJKoZIhvcNAQELBQADggEBAEpNdRXvH/ZA2JhY
Cr1pxRd1dUa485j+kdRDNT4J/KnbgXKH2Rg4soCf7151K1h/7kiLi7E0LysUIx7Q
r79MRMMzOkvYWoWJn1Pb0mX51IIvIFmTF3TtNVIlHar/3Hh9RKwHP7KrWXV2JezS
mVyiCBQVQZcpPLJS2XFD9vq/fpCqWWVFqKSNI8Zl4tAzl05H6YXxk9IY0euEnwWr
GDQA99QzsRQOmOWKpT2Bw//SIrD0/3v59FyevHUZ5VGU29x/mPrBZgiZ77Vmm7+1
RazkZJwOYCwGcAivQn/0DmBZHp2agGZUl0qDU74AisB7Bi92yqcjkNfEyawwnhSr
J+6Ccwo=
-----END CERTIFICATE-----
Generated at Fri Apr 12 07:43:45 2024 by rpki-client on console-ams.rpki-client.org