Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3f8c3b2f-b0fc-4a20-a9a5-5236fda16ee3/3c0cd6b9b628a691b4fd89db46ca3b45a04f24ce.roa
File:                     3c0cd6b9b628a691b4fd89db46ca3b45a04f24ce.roa (raw, json)
Hash identifier:          tbFb1Zggj709+G0SV+4JLhrW66T3b63MBYTq6D9F2Ig=
Subject key identifier:   E9:B3:88:78:81:AC:E2:7B:90:5E:D1:C2:EB:DF:6F:93:F9:32:9A:7F
Certificate issuer:       /CN=e9249d6078896379eaa31ec8630fd15d97793e5d
Certificate serial:       16A288
Authority key identifier: 37:8A:05:D0:C7:20:08:96:73:1A:23:6E:D0:92:16:78:45:AC:CD:0F
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e9249d6078896379eaa31ec8630fd15d97793e5d.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/3f8c3b2f-b0fc-4a20-a9a5-5236fda16ee3/3c0cd6b9b628a691b4fd89db46ca3b45a04f24ce.roa
Signing time:             Fri 03 Jun 2022 00:15:06 +0000
ROA not before:           Wed 24 Mar 2021 03:00:00 +0000
ROA not after:            Tue 24 Mar 2026 03:00:00 +0000
asID:                     267928
IP address blocks:        2801:1d:800::/48 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/3f8c3b2f-b0fc-4a20-a9a5-5236fda16ee3/e9249d6078896379eaa31ec8630fd15d97793e5d.crl
                          rsync://repository.lacnic.net/rpki/lacnic/3f8c3b2f-b0fc-4a20-a9a5-5236fda16ee3/e9249d6078896379eaa31ec8630fd15d97793e5d.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e9249d6078896379eaa31ec8630fd15d97793e5d.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 03:49:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1483400 (0x16a288)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e9249d6078896379eaa31ec8630fd15d97793e5d
        Validity
            Not Before: Mar 24 03:00:00 2021 GMT
            Not After : Mar 24 03:00:00 2026 GMT
        Subject: CN=3c0cd6b9b628a691b4fd89db46ca3b45a04f24ce
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:df:ba:3f:e9:c7:5d:81:7b:33:5d:90:be:10:
                    e1:2f:96:56:42:84:15:a4:64:94:c2:52:cc:65:be:
                    e7:8b:6d:57:c7:d7:fd:e4:94:78:30:d5:80:55:ae:
                    a5:94:f0:fb:00:49:b8:6a:eb:4b:4f:7f:3f:94:3f:
                    33:11:3f:67:da:f0:08:ab:75:cd:23:50:65:2c:62:
                    6b:91:0e:29:ce:14:1c:61:35:45:c0:9d:30:49:29:
                    c2:5d:95:26:a8:1d:03:ba:69:a5:63:f0:f4:ee:91:
                    8c:5b:dc:8b:86:ec:26:f2:31:ff:b7:70:46:03:51:
                    79:9b:6f:0a:6d:63:80:4d:e2:b1:8f:fb:5b:dc:e6:
                    fc:b2:32:59:f6:ee:3a:88:62:43:13:ad:4a:65:25:
                    3e:d4:61:12:9a:93:df:ce:ef:ff:3d:a8:5c:6e:4d:
                    9b:27:dc:f1:d1:1b:df:b0:25:e0:90:07:00:75:e6:
                    f7:39:ad:7a:15:b8:32:51:d9:8a:5c:bc:22:7f:7a:
                    f2:74:46:1e:23:03:eb:54:22:34:1a:27:39:9b:52:
                    e9:62:62:98:11:93:c1:bf:32:e4:6e:d3:90:4d:67:
                    13:7b:38:7b:97:5e:f4:ac:ba:ca:be:37:39:d0:e8:
                    d2:a1:ea:f0:64:ce:96:47:c8:d4:9e:d1:a9:58:3d:
                    ab:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E9:B3:88:78:81:AC:E2:7B:90:5E:D1:C2:EB:DF:6F:93:F9:32:9A:7F
            X509v3 Authority Key Identifier:
                keyid:37:8A:05:D0:C7:20:08:96:73:1A:23:6E:D0:92:16:78:45:AC:CD:0F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e9249d6078896379eaa31ec8630fd15d97793e5d.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3f8c3b2f-b0fc-4a20-a9a5-5236fda16ee3/3c0cd6b9b628a691b4fd89db46ca3b45a04f24ce.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/3f8c3b2f-b0fc-4a20-a9a5-5236fda16ee3/e9249d6078896379eaa31ec8630fd15d97793e5d.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2801:1d:800::/48

    Signature Algorithm: sha256WithRSAEncryption
         25:92:04:33:08:61:d4:a7:f8:12:94:ba:41:9a:60:24:7e:3c:
         58:d9:ef:39:95:27:42:6d:08:a8:b7:d3:d1:1f:f9:65:49:fe:
         87:33:25:fb:41:19:bf:a1:b2:07:3f:6d:d8:81:a7:ed:28:f6:
         d5:69:e2:df:49:d1:45:69:34:94:ad:b6:a4:24:72:30:98:a2:
         f4:f4:90:03:ec:5e:42:fb:59:87:12:e6:67:78:13:b8:54:3d:
         b1:43:79:3d:48:20:0a:d9:7c:af:e5:a2:6e:4c:f3:dd:21:5b:
         53:c1:c2:2c:a2:dc:d2:91:23:35:6d:21:a0:fc:7b:c2:d0:2b:
         5d:a2:d6:28:3d:ba:41:22:86:68:57:90:ed:66:81:9a:c4:fd:
         d8:e8:e3:50:c3:05:86:d2:aa:5b:42:60:83:78:19:bf:d3:79:
         da:99:62:df:38:e9:e9:ba:d6:92:36:a9:72:a6:6b:50:e7:ea:
         90:e2:8e:57:ac:97:df:7c:f4:9e:7f:db:7c:b4:47:97:80:7e:
         0f:43:8b:50:de:ec:82:2b:12:12:9c:71:ba:d7:97:0d:b0:07:
         16:3f:31:c2:9d:c8:0a:6b:1c:23:60:e1:c7:b2:de:17:10:e0:
         0a:93:ed:c9:4e:3d:8a:04:73:9d:e3:56:72:86:14:69:c6:c3:
         bc:8f:0f:f3
-----BEGIN CERTIFICATE-----
MIIFQzCCBCugAwIBAgIDFqKIMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGU5
MjQ5ZDYwNzg4OTYzNzllYWEzMWVjODYzMGZkMTVkOTc3OTNlNWQwHhcNMjEwMzI0
MDMwMDAwWhcNMjYwMzI0MDMwMDAwWjAzMTEwLwYDVQQDEygzYzBjZDZiOWI2Mjhh
NjkxYjRmZDg5ZGI0NmNhM2I0NWEwNGYyNGNlMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEArt+6P+nHXYF7M12QvhDhL5ZWQoQVpGSUwlLMZb7ni21Xx9f9
5JR4MNWAVa6llPD7AEm4autLT38/lD8zET9n2vAIq3XNI1BlLGJrkQ4pzhQcYTVF
wJ0wSSnCXZUmqB0DummlY/D07pGMW9yLhuwm8jH/t3BGA1F5m28KbWOATeKxj/tb
3Ob8sjJZ9u46iGJDE61KZSU+1GESmpPfzu//Pahcbk2bJ9zx0RvfsCXgkAcAdeb3
Oa16FbgyUdmKXLwif3rydEYeIwPrVCI0Gic5m1LpYmKYEZPBvzLkbtOQTWcTezh7
l170rLrKvjc50OjSoerwZM6WR8jUntGpWD2r0QIDAQABo4ICXjCCAlowHQYDVR0O
BBYEFOmziHiBrOJ7kF7Rwuvfb5P5Mpp/MB8GA1UdIwQYMBaAFDeKBdDHIAiWcxoj
btCSFnhFrM0PMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvZTkyNDlk
NjA3ODg5NjM3OWVhYTMxZWM4NjMwZmQxNWQ5Nzc5M2U1ZC5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvM2Y4YzNiMmYtYjBmYy00YTIwLWE5YTUtNTIzNmZk
YTE2ZWUzLzNjMGNkNmI5YjYyOGE2OTFiNGZkODlkYjQ2Y2EzYjQ1YTA0ZjI0Y2Uu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy8zZjhjM2IyZi1iMGZjLTRhMjAtYTlhNS01MjM2
ZmRhMTZlZTMvZTkyNDlkNjA3ODg5NjM3OWVhYTMxZWM4NjMwZmQxNWQ5Nzc5M2U1
ZC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQT
MBEwDwQCAAIwCQMHACgBAB0IADANBgkqhkiG9w0BAQsFAAOCAQEAJZIEMwhh1Kf4
EpS6QZpgJH48WNnvOZUnQm0IqLfT0R/5ZUn+hzMl+0EZv6GyBz9t2IGn7Sj21Wni
30nRRWk0lK22pCRyMJii9PSQA+xeQvtZhxLmZ3gTuFQ9sUN5PUggCtl8r+Wibkzz
3SFbU8HCLKLc0pEjNW0hoPx7wtArXaLWKD26QSKGaFeQ7WaBmsT92OjjUMMFhtKq
W0Jgg3gZv9N52pli3zjp6brWkjapcqZrUOfqkOKOV6yX33z0nn/bfLRHl4B+D0OL
UN7sgisSEpxxuteXDbAHFj8xwp3ICmscI2Dhx7LeFxDgCpPtyU49igRzneNWcoYU
acbDvI8P8w==
-----END CERTIFICATE-----
Generated at Thu Mar 28 08:34:31 2024 by rpki-client on console-fra.rpki-client.org