Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/35D7D37DF398ACFA714DB98008A80EC63AC65C6A43D6130E0FD980FE3F313F9B/0/323830313a3134353a3a2f34302d3438203d3e203634313530.roa
File:                     323830313a3134353a3a2f34302d3438203d3e203634313530.roa (raw, json)
Hash identifier:          WTlWp/aQFl/JBeH8Uow9qxCL+jRUvE4KfsBci1OcJPc=
Subject key identifier:   EA:E9:55:43:23:F8:B2:EA:99:27:13:75:1A:E3:CB:4B:6A:E8:CC:7B
Certificate issuer:       /CN=77B81134906868C6E3E9D1FFFFFA566816CB9125
Certificate serial:       6220B63740B8169242723A81C065B2F555FCCEDA
Authority key identifier: 77:B8:11:34:90:68:68:C6:E3:E9:D1:FF:FF:FA:56:68:16:CB:91:25
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/77B81134906868C6E3E9D1FFFFFA566816CB9125.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/35D7D37DF398ACFA714DB98008A80EC63AC65C6A43D6130E0FD980FE3F313F9B/0/323830313a3134353a3a2f34302d3438203d3e203634313530.roa
Signing time:             Tue 05 Mar 2024 17:48:58 +0000
ROA not before:           Tue 05 Mar 2024 17:43:58 +0000
ROA not after:            Tue 04 Mar 2025 17:48:58 +0000
asID:                     64150
IP address blocks:        2801:145::/40 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/35D7D37DF398ACFA714DB98008A80EC63AC65C6A43D6130E0FD980FE3F313F9B/0/77B81134906868C6E3E9D1FFFFFA566816CB9125.crl
                          rsync://repository.lacnic.net/rpki/lacnic/35D7D37DF398ACFA714DB98008A80EC63AC65C6A43D6130E0FD980FE3F313F9B/0/77B81134906868C6E3E9D1FFFFFA566816CB9125.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/77B81134906868C6E3E9D1FFFFFA566816CB9125.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Wed 19 Jun 2024 16:28:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            62:20:b6:37:40:b8:16:92:42:72:3a:81:c0:65:b2:f5:55:fc:ce:da
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=77B81134906868C6E3E9D1FFFFFA566816CB9125
        Validity
            Not Before: Mar  5 17:43:58 2024 GMT
            Not After : Mar  4 17:48:58 2025 GMT
        Subject: CN=EAE9554323F8B2EA992713751AE3CB4B6AE8CC7B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:c6:03:dc:57:04:57:7b:74:26:3b:bb:38:c8:
                    18:c3:d3:7c:b5:e2:3f:40:5a:93:88:04:c8:f2:33:
                    e8:b1:9a:a5:0b:c5:fb:3f:3c:23:2a:d1:06:52:45:
                    bf:77:de:f9:2e:a4:5c:24:ee:7d:43:35:3d:2b:38:
                    2e:19:b0:08:cd:23:fb:31:9b:51:5f:67:4b:df:6f:
                    6b:1b:6e:ca:d6:34:60:c6:d5:6d:25:24:2e:03:6d:
                    e8:12:d4:7f:60:01:07:b4:d1:51:bd:de:90:0b:88:
                    39:b6:73:fb:27:71:9b:e0:e9:92:20:7a:3b:81:3b:
                    83:db:d3:ff:82:36:39:64:02:3b:96:11:0f:27:74:
                    89:cd:19:2c:60:67:d1:96:74:7b:01:a3:96:af:c9:
                    c4:bb:e3:34:a7:0f:e4:ef:a6:b0:a7:0c:69:0b:99:
                    47:83:1a:f2:1e:a9:14:cc:42:33:19:21:f4:e9:de:
                    c2:d8:05:70:9b:21:a5:e9:af:f7:79:4f:7b:48:3c:
                    ed:cf:bb:09:38:ab:f9:de:c7:6b:35:ae:bb:da:44:
                    87:e6:27:f2:fa:3b:54:dd:dd:3c:2e:c6:64:9d:1e:
                    49:78:6c:97:52:7d:f3:76:bf:17:09:2e:72:8a:9c:
                    58:ff:52:7d:c6:2e:1b:2f:10:ad:3e:7b:dd:51:de:
                    7f:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EA:E9:55:43:23:F8:B2:EA:99:27:13:75:1A:E3:CB:4B:6A:E8:CC:7B
            X509v3 Authority Key Identifier:
                keyid:77:B8:11:34:90:68:68:C6:E3:E9:D1:FF:FF:FA:56:68:16:CB:91:25

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/35D7D37DF398ACFA714DB98008A80EC63AC65C6A43D6130E0FD980FE3F313F9B/0/77B81134906868C6E3E9D1FFFFFA566816CB9125.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/77B81134906868C6E3E9D1FFFFFA566816CB9125.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/35D7D37DF398ACFA714DB98008A80EC63AC65C6A43D6130E0FD980FE3F313F9B/0/323830313a3134353a3a2f34302d3438203d3e203634313530.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2801:145::/40

    Signature Algorithm: sha256WithRSAEncryption
         29:49:e8:3a:ba:06:75:59:e2:55:cb:24:e8:ef:32:dd:07:f1:
         11:a7:a2:9f:18:8f:35:d3:8e:33:9c:de:96:0c:73:c3:ce:17:
         be:db:c9:bc:f9:3c:ea:0a:84:46:13:05:10:d2:92:c8:9b:b3:
         45:1f:16:5b:e2:e9:9e:9c:63:7b:7c:bc:f3:7a:0b:1b:36:56:
         46:33:78:97:ae:76:b5:a2:31:dd:02:09:4d:2e:b2:22:28:99:
         99:06:64:99:53:ff:fc:ed:3b:a4:29:fb:8c:86:6c:dd:69:02:
         f4:c1:4c:50:43:47:a9:5a:2e:21:70:f8:2e:0c:1c:a8:86:06:
         a0:58:8f:7a:d4:37:85:f6:e1:e1:8f:49:32:13:df:fa:c7:40:
         60:5b:73:5a:67:05:b8:2a:81:1c:e0:fc:10:69:62:df:8c:f3:
         14:e9:95:66:10:07:e3:f9:79:b1:e2:01:a5:f3:1a:ab:fb:f0:
         c6:4e:91:6a:85:06:4b:2f:b0:ee:ef:be:89:4d:2e:35:2b:7c:
         1f:7e:77:0b:f7:e7:56:f6:25:55:99:b0:e8:f2:90:3e:c3:41:
         dc:18:f6:43:3a:dc:d5:37:ca:0b:c3:3b:5d:e5:cf:ac:b0:31:
         fa:1e:32:5c:ba:dd:d3:56:0e:3c:ad:93:67:e3:ca:c1:3c:21:
         78:32:e8:ae
-----BEGIN CERTIFICATE-----
MIIFvDCCBKSgAwIBAgIUYiC2N0C4FpJCcjqBwGWy9VX8ztowDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzdCODExMzQ5MDY4NjhDNkUzRTlEMUZGRkZGQTU2Njgx
NkNCOTEyNTAeFw0yNDAzMDUxNzQzNThaFw0yNTAzMDQxNzQ4NThaMDMxMTAvBgNV
BAMTKEVBRTk1NTQzMjNGOEIyRUE5OTI3MTM3NTFBRTNDQjRCNkFFOENDN0IwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3xgPcVwRXe3QmO7s4yBjD03y1
4j9AWpOIBMjyM+ixmqULxfs/PCMq0QZSRb933vkupFwk7n1DNT0rOC4ZsAjNI/sx
m1FfZ0vfb2sbbsrWNGDG1W0lJC4DbegS1H9gAQe00VG93pALiDm2c/sncZvg6ZIg
ejuBO4Pb0/+CNjlkAjuWEQ8ndInNGSxgZ9GWdHsBo5avycS74zSnD+TvprCnDGkL
mUeDGvIeqRTMQjMZIfTp3sLYBXCbIaXpr/d5T3tIPO3Puwk4q/nex2s1rrvaRIfm
J/L6O1Td3TwuxmSdHkl4bJdSffN2vxcJLnKKnFj/Un3GLhsvEK0+e91R3n9TAgMB
AAGjggLGMIICwjAdBgNVHQ4EFgQU6ulVQyP4suqZJxN1GuPLS2rozHswHwYDVR0j
BBgwFoAUd7gRNJBoaMbj6dH///pWaBbLkSUwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8zNUQ3RDM3REYzOThBQ0ZBNzE0REI5ODAwOEE4MEVDNjNB
QzY1QzZBNDNENjEzMEUwRkQ5ODBGRTNGMzEzRjlCLzAvNzdCODExMzQ5MDY4NjhD
NkUzRTlEMUZGRkZGQTU2NjgxNkNCOTEyNS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC83N0I4MTEzNDkwNjg2OEM2RTNF
OUQxRkZGRkZBNTY2ODE2Q0I5MTI1LmNlcjCBwwYIKwYBBQUHAQsEgbYwgbMwgbAG
CCsGAQUFBzALhoGjcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMzVEN0QzN0RGMzk4QUNGQTcxNERCOTgwMDhBODBFQzYzQUM2NUM2QTQz
RDYxMzBFMEZEOTgwRkUzRjMxM0Y5Qi8wLzMyMzgzMDMxM2EzMTM0MzUzYTNhMmYz
NDMwMmQzNDM4MjAzZDNlMjAzNjM0MzEzNTMwLnJvYTAYBgNVHSABAf8EDjAMMAoG
CCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAOBAIAAjAIAwYAKAEBRQAwDQYJ
KoZIhvcNAQELBQADggEBAClJ6Dq6BnVZ4lXLJOjvMt0H8RGnop8YjzXTjjOc3pYM
c8POF77bybz5POoKhEYTBRDSksibs0UfFlvi6Z6cY3t8vPN6Cxs2VkYzeJeudrWi
Md0CCU0usiIomZkGZJlT//ztO6Qp+4yGbN1pAvTBTFBDR6laLiFw+C4MHKiGBqBY
j3rUN4X24eGPSTIT3/rHQGBbc1pnBbgqgRzg/BBpYt+M8xTplWYQB+P5ebHiAaXz
Gqv78MZOkWqFBksvsO7vvolNLjUrfB9+dwv351b2JVWZsOjykD7DQdwY9kM63NU3
ygvDO13lz6ywMfoeMly63dNWDjytk2fjysE8IXgy6K4=
-----END CERTIFICATE-----
Generated at Sun Jun 16 00:43:34 2024 by rpki-client on console-ams.rpki-client.org