Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/486aa283-9d76-4014-902e-a75cbbd00761/2ae7a76aecc4d79469724626402456e6d744433e.roa
File:                     2ae7a76aecc4d79469724626402456e6d744433e.roa (raw, json)
Hash identifier:          4ULaWU4qxLozsvJs4p/Mf1URu8NzozxkJW0rGYqT7DY=
Subject key identifier:   EB:64:0B:51:92:23:B9:48:02:2F:BB:9D:6A:97:05:18:48:11:1D:AE
Certificate issuer:       /CN=e4ca76e1f142510e55c0107f95de81dc2fc73164
Certificate serial:       0D1434
Authority key identifier: 3A:82:65:DC:10:75:3F:CF:5D:19:7E:7B:6A:F4:C7:48:10:36:4C:BC
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e4ca76e1f142510e55c0107f95de81dc2fc73164.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/486aa283-9d76-4014-902e-a75cbbd00761/2ae7a76aecc4d79469724626402456e6d744433e.roa
Signing time:             Wed 24 Mar 2021 14:36:30 +0000
ROA not before:           Wed 24 Mar 2021 14:36:29 +0000
ROA not after:            Tue 24 Mar 2026 14:36:29 +0000
asID:                     26605
IP address blocks:        2801:0:280::/48 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/486aa283-9d76-4014-902e-a75cbbd00761/e4ca76e1f142510e55c0107f95de81dc2fc73164.crl
                          rsync://repository.lacnic.net/rpki/lacnic/486aa283-9d76-4014-902e-a75cbbd00761/e4ca76e1f142510e55c0107f95de81dc2fc73164.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e4ca76e1f142510e55c0107f95de81dc2fc73164.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 03:49:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 857140 (0xd1434)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e4ca76e1f142510e55c0107f95de81dc2fc73164
        Validity
            Not Before: Mar 24 14:36:29 2021 GMT
            Not After : Mar 24 14:36:29 2026 GMT
        Subject: CN=2ae7a76aecc4d79469724626402456e6d744433e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:fe:1b:4e:13:03:8c:1a:81:e5:16:21:c2:3a:
                    ad:f0:97:9d:11:ed:c4:cc:c2:4d:81:ce:13:73:37:
                    54:9d:c2:fa:cd:40:42:a7:fe:6c:b9:4c:9e:d8:48:
                    e0:04:64:c5:55:45:79:95:53:85:7a:4e:84:d2:bc:
                    dd:3c:ef:7a:61:4c:26:29:90:a1:ea:8b:6b:a2:35:
                    44:09:25:b7:2a:5c:dc:29:38:7b:1f:d8:65:8b:47:
                    ad:74:00:3e:ff:14:9f:2e:8e:2d:90:3f:6e:b8:f8:
                    03:1d:0a:f8:30:03:08:5d:f2:55:43:e1:9b:b8:9e:
                    6d:64:58:a6:51:d2:90:2c:96:7b:c8:da:92:9e:df:
                    72:3b:80:5b:db:27:35:63:e7:d0:21:37:50:ee:e3:
                    fc:a5:0a:7a:0b:50:58:80:8a:58:38:b4:56:23:6d:
                    23:78:9d:48:83:4d:4e:06:3a:67:f6:be:51:74:ec:
                    4f:85:d7:4d:54:25:6e:3e:60:13:07:5b:ea:2f:ce:
                    7c:45:c7:d4:29:44:17:c2:32:be:4a:d7:7d:9c:5d:
                    33:b7:ae:c1:73:e0:26:c0:06:7e:9b:85:2d:cf:25:
                    fa:8b:37:02:20:f3:fd:b8:c6:b6:1f:ee:4e:bc:c2:
                    33:1c:a0:02:ad:68:f3:fd:79:e1:38:c4:ac:27:eb:
                    db:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EB:64:0B:51:92:23:B9:48:02:2F:BB:9D:6A:97:05:18:48:11:1D:AE
            X509v3 Authority Key Identifier:
                keyid:3A:82:65:DC:10:75:3F:CF:5D:19:7E:7B:6A:F4:C7:48:10:36:4C:BC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e4ca76e1f142510e55c0107f95de81dc2fc73164.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/486aa283-9d76-4014-902e-a75cbbd00761/2ae7a76aecc4d79469724626402456e6d744433e.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/486aa283-9d76-4014-902e-a75cbbd00761/e4ca76e1f142510e55c0107f95de81dc2fc73164.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2801:0:280::/48

    Signature Algorithm: sha256WithRSAEncryption
         66:a9:b3:68:d0:35:26:f8:12:f8:bb:20:9d:dc:bd:f1:61:65:
         34:33:61:32:14:75:6b:01:e6:9e:5c:08:f5:97:67:11:58:d6:
         68:f3:b9:7f:cb:8c:ee:2b:78:b4:c3:5a:d7:18:9b:c7:f8:4b:
         fc:9d:90:df:d2:6e:33:7e:97:cc:ac:78:f3:6b:73:87:fb:4a:
         f4:b7:8f:f0:27:45:6a:3f:7c:4b:4b:bd:af:d1:a7:05:5a:d5:
         95:87:c0:eb:24:22:b2:a7:49:d2:1c:45:15:e8:5a:e0:db:13:
         a0:5d:63:ad:0e:68:1e:e5:0c:91:6f:a6:be:6a:a7:aa:20:48:
         2c:5b:fd:83:45:81:0f:28:21:f1:74:85:c6:00:cf:04:6e:a9:
         b6:9c:63:ef:9b:d8:41:1c:55:17:1e:e9:c0:fd:38:cf:55:c4:
         ce:0a:f5:1d:5d:16:11:4b:02:35:d7:0c:92:b9:25:da:ba:cc:
         0f:a6:b7:2b:a0:0b:b5:cf:cf:a0:f0:40:db:be:27:6e:98:01:
         40:fc:7a:1b:81:86:6b:c8:d1:f9:40:00:83:d3:b4:81:f9:9a:
         c2:04:b1:9f:65:a0:eb:9c:51:6f:7b:1b:62:e0:f2:64:5b:36:
         48:5c:32:57:a8:56:d9:dd:74:21:de:ad:ec:50:c6:97:83:15:
         26:93:26:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 04:08:02 2024 by rpki-client on console-ams.rpki-client.org