Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5009A1F4D1BC0FFE06B8723CCF13FD2C791404B29F46C2D766D42350059DEBD8/0/323830333a383332303a3a2f33322d3332203d3e20323636373133.roa
File:                     323830333a383332303a3a2f33322d3332203d3e20323636373133.roa (raw, json)
Hash identifier:          cMQd3vQ7Wq81a9H1xw1cC5t8fM/q98/zGuNQtUkolPA=
Subject key identifier:   D0:5B:6F:B0:B3:58:45:2E:24:44:1F:3C:2E:F4:87:3E:FB:E6:74:F8
Certificate issuer:       /CN=2DF8BA98EB214BEAAB30C1BFDED185EE2A0F869E
Certificate serial:       2FDDA4B4C57ADF1AAC4F46AF589AAE06F2021530
Authority key identifier: 2D:F8:BA:98:EB:21:4B:EA:AB:30:C1:BF:DE:D1:85:EE:2A:0F:86:9E
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2DF8BA98EB214BEAAB30C1BFDED185EE2A0F869E.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/5009A1F4D1BC0FFE06B8723CCF13FD2C791404B29F46C2D766D42350059DEBD8/0/323830333a383332303a3a2f33322d3332203d3e20323636373133.roa
Signing time:             Tue 05 Mar 2024 18:14:19 +0000
ROA not before:           Tue 05 Mar 2024 18:09:19 +0000
ROA not after:            Tue 04 Mar 2025 18:14:19 +0000
asID:                     266713
IP address blocks:        2803:8320::/32 maxlen: 32

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/5009A1F4D1BC0FFE06B8723CCF13FD2C791404B29F46C2D766D42350059DEBD8/0/2DF8BA98EB214BEAAB30C1BFDED185EE2A0F869E.crl
                          rsync://repository.lacnic.net/rpki/lacnic/5009A1F4D1BC0FFE06B8723CCF13FD2C791404B29F46C2D766D42350059DEBD8/0/2DF8BA98EB214BEAAB30C1BFDED185EE2A0F869E.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2DF8BA98EB214BEAAB30C1BFDED185EE2A0F869E.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sat 23 Nov 2024 22:22:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2f:dd:a4:b4:c5:7a:df:1a:ac:4f:46:af:58:9a:ae:06:f2:02:15:30
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2DF8BA98EB214BEAAB30C1BFDED185EE2A0F869E
        Validity
            Not Before: Mar  5 18:09:19 2024 GMT
            Not After : Mar  4 18:14:19 2025 GMT
        Subject: CN=D05B6FB0B358452E24441F3C2EF4873EFBE674F8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ef:c0:09:b4:87:16:dc:56:2c:0b:c5:ec:ea:ea:
                    44:a2:66:d1:ee:40:6b:58:13:5b:32:ed:2c:34:fd:
                    42:5c:ab:38:12:c8:d1:5a:ed:e0:e6:8d:68:47:e6:
                    bd:7a:15:e7:dc:e5:58:4f:c9:b2:57:d2:bd:dd:45:
                    8b:d3:50:10:31:1e:13:1b:82:bb:f4:48:92:15:b9:
                    c9:0b:0a:90:cd:9d:52:01:47:a9:5a:4f:3f:58:4e:
                    43:2a:63:14:55:c0:61:e7:8f:69:0a:cf:76:d3:32:
                    66:2a:47:62:b6:ce:a8:ba:ec:8c:9b:34:ee:70:3d:
                    e2:29:38:a5:97:fb:6f:0d:d6:56:78:b4:c5:7a:75:
                    7b:c1:08:01:21:2a:68:f4:40:9c:ce:50:8e:ec:1a:
                    bb:a6:b3:8a:e0:d3:06:94:41:95:c1:47:5e:98:4f:
                    1b:0d:21:85:73:8f:95:7a:4a:e2:d5:d2:1f:36:22:
                    4e:e8:b7:cd:04:11:0d:f2:53:98:bc:f8:70:c9:06:
                    b9:58:9c:f9:e4:20:ef:7f:88:14:86:98:f1:66:2e:
                    fa:fe:d1:e5:a7:75:27:71:c5:e1:8d:a4:12:db:29:
                    df:00:23:a7:1e:46:71:37:46:72:d4:34:a8:ae:57:
                    8b:39:a6:49:74:77:55:b4:6a:4c:1e:98:2c:ac:f7:
                    b7:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D0:5B:6F:B0:B3:58:45:2E:24:44:1F:3C:2E:F4:87:3E:FB:E6:74:F8
            X509v3 Authority Key Identifier:
                keyid:2D:F8:BA:98:EB:21:4B:EA:AB:30:C1:BF:DE:D1:85:EE:2A:0F:86:9E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/5009A1F4D1BC0FFE06B8723CCF13FD2C791404B29F46C2D766D42350059DEBD8/0/2DF8BA98EB214BEAAB30C1BFDED185EE2A0F869E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2DF8BA98EB214BEAAB30C1BFDED185EE2A0F869E.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5009A1F4D1BC0FFE06B8723CCF13FD2C791404B29F46C2D766D42350059DEBD8/0/323830333a383332303a3a2f33322d3332203d3e20323636373133.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:8320::/32

    Signature Algorithm: sha256WithRSAEncryption
         74:8a:38:05:7e:c9:25:1e:4b:0f:5e:65:48:21:48:f3:65:a5:
         5b:52:9d:dd:52:20:a4:f8:a4:30:fc:49:1f:39:c0:35:43:3b:
         d0:cf:3e:56:60:3f:c6:c2:a9:d4:ec:51:54:0d:97:50:c7:fe:
         63:e0:3a:c6:0c:ae:0b:81:76:ca:07:ae:1e:a3:20:26:ef:d2:
         46:59:bd:34:83:23:f0:b7:0c:47:8e:98:b7:1b:d7:40:58:32:
         22:e4:52:27:f5:0e:7e:10:f1:f7:90:52:e5:74:f8:83:e4:72:
         87:48:47:23:e9:53:32:8d:f5:ef:32:0c:96:46:32:87:41:32:
         2c:fd:e3:23:c1:57:a9:8f:29:3b:5a:d2:7d:ae:f9:9d:51:ea:
         36:19:c4:29:fc:27:30:0f:e2:d1:f5:c9:70:88:f9:ef:e6:9e:
         fb:74:87:21:21:52:00:b3:53:79:c7:78:13:03:9e:b4:4b:a7:
         d7:1f:24:a3:28:02:69:9f:6b:fd:7a:56:9d:ca:4c:92:22:bd:
         98:26:ca:2a:bf:27:60:08:6d:57:17:de:e5:10:47:14:94:7a:
         68:d8:8c:74:a5:74:4c:9b:cd:60:b1:fe:f1:7f:d5:74:df:2b:
         d8:7e:1b:40:57:2f:7f:47:0b:4d:31:9b:f1:50:7f:da:7e:39:
         28:68:b1:25
-----BEGIN CERTIFICATE-----
MIIFvzCCBKegAwIBAgIUL92ktMV63xqsT0avWJquBvICFTAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMkRGOEJBOThFQjIxNEJFQUFCMzBDMUJGREVEMTg1RUUy
QTBGODY5RTAeFw0yNDAzMDUxODA5MTlaFw0yNTAzMDQxODE0MTlaMDMxMTAvBgNV
BAMTKEQwNUI2RkIwQjM1ODQ1MkUyNDQ0MUYzQzJFRjQ4NzNFRkJFNjc0RjgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvwAm0hxbcViwLxezq6kSiZtHu
QGtYE1sy7Sw0/UJcqzgSyNFa7eDmjWhH5r16Fefc5VhPybJX0r3dRYvTUBAxHhMb
grv0SJIVuckLCpDNnVIBR6laTz9YTkMqYxRVwGHnj2kKz3bTMmYqR2K2zqi67Iyb
NO5wPeIpOKWX+28N1lZ4tMV6dXvBCAEhKmj0QJzOUI7sGrums4rg0waUQZXBR16Y
TxsNIYVzj5V6SuLV0h82Ik7ot80EEQ3yU5i8+HDJBrlYnPnkIO9/iBSGmPFmLvr+
0eWndSdxxeGNpBLbKd8AI6ceRnE3RnLUNKiuV4s5pkl0d1W0akwemCys97ftAgMB
AAGjggLJMIICxTAdBgNVHQ4EFgQU0FtvsLNYRS4kRB88LvSHPvvmdPgwHwYDVR0j
BBgwFoAULfi6mOshS+qrMMG/3tGF7ioPhp4wDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy81MDA5QTFGNEQxQkMwRkZFMDZCODcyM0NDRjEzRkQyQzc5
MTQwNEIyOUY0NkMyRDc2NkQ0MjM1MDA1OURFQkQ4LzAvMkRGOEJBOThFQjIxNEJF
QUFCMzBDMUJGREVEMTg1RUUyQTBGODY5RS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8yREY4QkE5OEVCMjE0QkVBQUIz
MEMxQkZERUQxODVFRTJBMEY4NjlFLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNTAwOUExRjREMUJDMEZGRTA2Qjg3MjNDQ0YxM0ZEMkM3OTE0MDRCMjlG
NDZDMkQ3NjZENDIzNTAwNTlERUJEOC8wLzMyMzgzMDMzM2EzODMzMzIzMDNhM2Ey
ZjMzMzIyZDMzMzIyMDNkM2UyMDMyMzYzNjM3MzEzMy5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACgDgyAw
DQYJKoZIhvcNAQELBQADggEBAHSKOAV+ySUeSw9eZUghSPNlpVtSnd1SIKT4pDD8
SR85wDVDO9DPPlZgP8bCqdTsUVQNl1DH/mPgOsYMrguBdsoHrh6jICbv0kZZvTSD
I/C3DEeOmLcb10BYMiLkUif1Dn4Q8feQUuV0+IPkcodIRyPpUzKN9e8yDJZGModB
Miz94yPBV6mPKTta0n2u+Z1R6jYZxCn8JzAP4tH1yXCI+e/mnvt0hyEhUgCzU3nH
eBMDnrRLp9cfJKMoAmmfa/16Vp3KTJIivZgmyiq/J2AIbVcX3uUQRxSUemjYjHSl
dEybzWCx/vF/1XTfK9h+G0BXL39HC00xm/FQf9p+OShosSU=
-----END CERTIFICATE-----
Generated at Wed Nov 20 08:53:05 2024 by rpki-client on console-ams.rpki-client.org