Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4db983dd-bc09-46d5-89b9-e217ecbcfdd1/7dba9e96df2509d284917a71f369d75f5eefe26b.roa
File:                     7dba9e96df2509d284917a71f369d75f5eefe26b.roa (raw, json)
Hash identifier:          3bgGgmLKgGlxxovWa9G4A6cE4ZTvJ8vLA82T7PjoZRw=
Subject key identifier:   88:B2:2E:B8:EC:B9:31:D2:EA:3C:47:C8:A5:E4:5E:1A:B7:91:23:76
Certificate issuer:       /CN=44d1fb45b2ba74749f3b3780a0a39138e86370e1
Certificate serial:       0DDD3B
Authority key identifier: C8:A1:58:9A:F5:F4:0C:D2:32:13:33:72:36:B0:DF:84:AE:F8:2E:89
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/44d1fb45b2ba74749f3b3780a0a39138e86370e1.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/4db983dd-bc09-46d5-89b9-e217ecbcfdd1/7dba9e96df2509d284917a71f369d75f5eefe26b.roa
Signing time:             Wed 24 Mar 2021 14:41:30 +0000
ROA not before:           Wed 24 Mar 2021 14:41:30 +0000
ROA not after:            Tue 24 Mar 2026 14:41:30 +0000
asID:                     264744
IP address blocks:        2803:af40::/32 maxlen: 35

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/4db983dd-bc09-46d5-89b9-e217ecbcfdd1/44d1fb45b2ba74749f3b3780a0a39138e86370e1.crl
                          rsync://repository.lacnic.net/rpki/lacnic/4db983dd-bc09-46d5-89b9-e217ecbcfdd1/44d1fb45b2ba74749f3b3780a0a39138e86370e1.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/44d1fb45b2ba74749f3b3780a0a39138e86370e1.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 03:49:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 908603 (0xddd3b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=44d1fb45b2ba74749f3b3780a0a39138e86370e1
        Validity
            Not Before: Mar 24 14:41:30 2021 GMT
            Not After : Mar 24 14:41:30 2026 GMT
        Subject: CN=7dba9e96df2509d284917a71f369d75f5eefe26b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:a0:4a:56:f1:de:38:b7:c8:c3:7b:3f:88:cd:
                    07:6b:1e:8d:43:77:31:da:5e:c9:5e:2f:78:b0:4a:
                    f4:18:67:19:a1:ab:26:41:9d:07:dc:8d:4c:9e:82:
                    00:5f:a2:60:4b:c8:e0:7b:d3:9a:3d:c2:f7:4d:cd:
                    07:83:26:94:e4:53:e7:a5:e9:fe:b4:15:8f:1c:97:
                    5b:79:c6:05:d3:ae:52:45:02:34:6d:2e:76:f7:72:
                    67:fa:e9:eb:b3:62:2a:b9:3a:41:a7:c9:4c:86:14:
                    c5:16:67:5d:9b:8b:33:f2:d5:d0:7d:5e:cb:0c:24:
                    49:6d:b3:fe:29:72:54:88:90:ad:f4:7c:42:fc:cd:
                    47:e5:7b:6a:4c:34:98:75:e9:62:3d:3e:1c:a1:e4:
                    b0:9d:cf:2d:99:d7:65:0f:1d:32:9f:6b:b2:7f:02:
                    b9:40:1c:7d:2a:70:62:d9:e9:ee:99:41:be:76:da:
                    a5:b4:99:ba:1b:2b:b0:20:ec:55:1b:62:df:05:5f:
                    11:a7:4b:a7:1b:7c:ba:81:19:a3:b0:32:57:b2:a7:
                    b5:12:c3:7b:b4:5c:ca:2b:28:9e:63:c4:06:9d:17:
                    f0:0b:61:2e:f6:ef:81:bc:92:bb:41:bc:1b:1a:11:
                    bb:26:4a:4a:ae:b1:2f:e9:4d:51:ca:7f:5e:33:62:
                    76:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                88:B2:2E:B8:EC:B9:31:D2:EA:3C:47:C8:A5:E4:5E:1A:B7:91:23:76
            X509v3 Authority Key Identifier:
                keyid:C8:A1:58:9A:F5:F4:0C:D2:32:13:33:72:36:B0:DF:84:AE:F8:2E:89

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/44d1fb45b2ba74749f3b3780a0a39138e86370e1.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4db983dd-bc09-46d5-89b9-e217ecbcfdd1/7dba9e96df2509d284917a71f369d75f5eefe26b.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/4db983dd-bc09-46d5-89b9-e217ecbcfdd1/44d1fb45b2ba74749f3b3780a0a39138e86370e1.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:af40::/32

    Signature Algorithm: sha256WithRSAEncryption
         2d:53:66:98:1d:e1:f1:9f:75:e9:24:d4:4f:f2:20:e2:da:67:
         0c:6f:f7:ba:b8:1c:d1:38:01:f9:0c:d0:97:95:91:7c:de:96:
         c9:21:16:49:e1:5e:cd:dc:03:21:fe:ae:1b:04:d2:a7:e7:dc:
         ab:d3:54:47:c6:91:b3:01:91:1f:cf:24:f1:ec:53:61:39:b4:
         c4:1c:2f:b7:93:10:a3:28:48:f2:1f:35:d5:c3:38:59:b9:5c:
         ec:df:23:d7:fb:68:85:d5:65:eb:53:cf:dc:64:de:a0:38:d9:
         35:e3:90:bc:7c:ee:d5:bd:77:99:64:37:6f:db:9a:f5:a8:7a:
         be:21:cc:3d:e4:97:d4:8e:c5:41:7f:a3:f9:ec:c8:21:c4:81:
         65:03:9d:d3:76:db:c6:1e:4d:b3:76:08:2d:77:ce:74:1a:39:
         8f:5f:d4:3b:20:f8:7d:b4:b6:86:05:83:27:04:7f:57:b2:7a:
         28:b2:99:dc:e9:e5:dc:fd:17:81:7c:43:a6:b1:72:55:ee:ad:
         d5:e1:e6:da:c3:05:8c:99:25:d0:00:2a:c3:5c:77:80:83:a1:
         58:37:25:08:43:be:53:ac:fb:4f:02:7e:5c:6a:9e:19:31:bc:
         84:ad:1c:33:36:37:1e:42:7e:f0:63:e3:2e:0d:5d:bb:c5:96:
         90:99:27:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 04:54:53 2024 by rpki-client on console-ams.rpki-client.org