Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/37856c56-6989-4714-a8e6-213ada98c64c/73e3693dca08c45e97aa3bf4577dba3d19ec8cb1.roa
File:                     73e3693dca08c45e97aa3bf4577dba3d19ec8cb1.roa (raw, json)
Hash identifier:          SjzgRFnfmJpFmcLAmNwqO2G2iP/nAzhC7L2jx7P5QzE=
Subject key identifier:   D9:33:20:51:1C:A5:5F:76:5E:8B:D7:8C:84:6C:E0:9D:69:F0:5E:04
Certificate issuer:       /CN=75646578c3fee9765e952e1114e099b387860daa
Certificate serial:       14B9D8
Authority key identifier: 3A:A1:30:66:30:C0:15:25:36:09:17:0C:44:7C:D2:74:14:CC:09:64
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/75646578c3fee9765e952e1114e099b387860daa.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/37856c56-6989-4714-a8e6-213ada98c64c/73e3693dca08c45e97aa3bf4577dba3d19ec8cb1.roa
Signing time:             Wed 02 Aug 2023 17:59:29 +0000
ROA not before:           Tue 01 Aug 2023 17:59:28 +0000
ROA not after:            Sat 02 Aug 2025 17:59:28 +0000
asID:                     262186
IP address blocks:        2801:1e:e800::/48 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/37856c56-6989-4714-a8e6-213ada98c64c/75646578c3fee9765e952e1114e099b387860daa.crl
                          rsync://repository.lacnic.net/rpki/lacnic/37856c56-6989-4714-a8e6-213ada98c64c/75646578c3fee9765e952e1114e099b387860daa.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/75646578c3fee9765e952e1114e099b387860daa.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Tue 27 Feb 2024 12:10:27 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1358296 (0x14b9d8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=75646578c3fee9765e952e1114e099b387860daa
        Validity
            Not Before: Aug  1 17:59:28 2023 GMT
            Not After : Aug  2 17:59:28 2025 GMT
        Subject: CN=73e3693dca08c45e97aa3bf4577dba3d19ec8cb1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:0c:71:95:05:ac:7e:72:6d:ee:9c:90:9b:3a:
                    66:a3:44:64:ad:77:a6:f0:ef:58:99:01:6f:ee:f3:
                    c7:01:3e:66:29:49:22:7b:f2:2f:20:0a:cc:ae:ba:
                    98:d3:0b:44:1d:00:66:e1:35:a0:1a:3b:23:b7:9b:
                    df:d2:34:11:a8:29:c9:a2:08:0b:70:c7:24:4f:61:
                    70:8a:c9:6c:52:2c:81:e8:7f:8a:42:8c:bc:1e:1d:
                    ef:f0:7e:dd:2c:19:7c:dd:e9:3c:41:27:45:28:54:
                    f6:00:14:0b:d5:cd:ec:ef:02:d0:33:c6:11:be:53:
                    fd:45:c0:5f:2f:a1:70:b3:4f:6a:73:a4:ef:ad:99:
                    00:98:28:15:50:13:e3:4c:a9:7f:09:d5:ea:d7:7b:
                    09:86:4e:d7:36:e4:dd:07:1f:f3:dd:69:1b:3e:9a:
                    b1:bc:b3:79:f5:1b:73:19:95:26:a2:04:2d:c3:f8:
                    60:4a:d9:50:d0:c2:96:e0:4d:91:bc:3d:5a:9d:5f:
                    a0:0f:e7:61:2e:6d:31:3f:f8:1c:5d:07:e2:fe:6c:
                    9d:9b:5f:69:67:15:a6:6b:6d:9d:a5:bf:34:54:f5:
                    f9:f8:47:83:f5:11:46:5a:79:a4:de:52:e4:67:00:
                    c0:ef:39:83:e1:d8:ee:24:d7:0a:77:75:aa:90:98:
                    a3:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D9:33:20:51:1C:A5:5F:76:5E:8B:D7:8C:84:6C:E0:9D:69:F0:5E:04
            X509v3 Authority Key Identifier:
                keyid:3A:A1:30:66:30:C0:15:25:36:09:17:0C:44:7C:D2:74:14:CC:09:64

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/75646578c3fee9765e952e1114e099b387860daa.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/37856c56-6989-4714-a8e6-213ada98c64c/73e3693dca08c45e97aa3bf4577dba3d19ec8cb1.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/37856c56-6989-4714-a8e6-213ada98c64c/75646578c3fee9765e952e1114e099b387860daa.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2801:1e:e800::/48

    Signature Algorithm: sha256WithRSAEncryption
         00:cb:d1:76:22:bd:1d:d1:f9:ff:7e:b5:83:12:e0:9c:df:72:
         0c:90:22:16:a1:91:5c:64:b4:b9:6e:1f:54:69:30:9e:22:c6:
         47:06:5c:23:be:06:06:55:7f:01:17:1d:50:04:b4:2d:45:71:
         79:d0:1d:e4:54:9a:3b:98:cb:65:9a:ac:bc:aa:53:5f:2f:25:
         bc:79:38:43:9e:15:0f:30:ed:e2:a8:f3:19:ee:1d:5b:6f:e2:
         e1:36:4c:cb:bb:2f:63:50:1f:ed:f4:a5:c1:a8:a3:c3:9b:2b:
         00:39:68:b6:88:43:e0:eb:30:12:3e:77:55:88:5c:4c:95:1b:
         89:a0:e7:1c:95:63:2a:d5:9a:6b:02:8f:e5:fe:36:92:23:de:
         e1:a9:5f:bc:16:27:88:c3:9e:ed:b3:fe:be:a6:b8:51:18:c0:
         b0:9d:ca:0a:3b:50:b8:27:f8:0c:3a:c7:d9:a1:07:1d:6d:15:
         d2:c9:5b:80:eb:a8:73:3d:29:78:17:b2:f9:ca:eb:d7:c0:44:
         21:e5:7b:44:56:e4:67:4e:db:b0:13:75:e7:59:af:c4:ea:96:
         83:32:9f:e6:21:53:5d:3d:b8:9f:4a:b2:f9:35:c8:f8:41:4e:
         e1:22:d5:b2:57:78:02:c9:06:ec:80:2e:1a:c3:2c:ba:17:65:
         33:24:a8:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Feb 24 12:55:21 2024 by rpki-client on console-ams.rpki-client.org