Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/323830303a3830303a3a2f33362d3438203d3e203134303830.roa
File:                     323830303a3830303a3a2f33362d3438203d3e203134303830.roa (raw, json)
Hash identifier:          c8gzLgOpbTOfctA+ysRHfKDB0SWb7dFDRx1GfgyZwxc=
Subject key identifier:   5D:A7:53:BD:BD:AE:53:6D:54:58:3A:20:5C:9E:64:25:82:05:F1:9F
Certificate issuer:       /CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5
Certificate serial:       116F610271A601A3CB8DF7435E738D10A183E088
Authority key identifier: 43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/323830303a3830303a3a2f33362d3438203d3e203134303830.roa
Signing time:             Tue 05 Mar 2024 18:00:56 +0000
ROA not before:           Tue 05 Mar 2024 17:55:56 +0000
ROA not after:            Tue 04 Mar 2025 18:00:56 +0000
asID:                     14080
IP address blocks:        2800:800::/36 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.crl
                          rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Wed 26 Jun 2024 10:27:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            11:6f:61:02:71:a6:01:a3:cb:8d:f7:43:5e:73:8d:10:a1:83:e0:88
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5
        Validity
            Not Before: Mar  5 17:55:56 2024 GMT
            Not After : Mar  4 18:00:56 2025 GMT
        Subject: CN=5DA753BDBDAE536D54583A205C9E64258205F19F
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:11:4e:18:06:be:ea:9d:ba:c6:af:72:17:01:
                    9f:64:2a:56:06:11:ce:50:3b:0b:52:6a:dd:6e:81:
                    8e:43:84:9a:60:c7:d2:e7:86:6c:f7:08:a9:af:09:
                    7c:fc:67:88:73:9e:83:0e:46:83:40:19:8e:44:9d:
                    26:65:36:73:83:41:58:7f:df:52:d2:e0:8e:67:4e:
                    79:33:96:ca:d1:f3:e4:39:36:cc:70:d1:4d:9c:03:
                    89:1e:90:7e:5b:4f:32:8a:f9:f9:2d:d5:ce:55:4f:
                    94:b5:f3:99:8d:f9:4d:f0:f6:3b:02:d0:58:df:40:
                    32:94:f1:2e:ca:00:1c:f0:80:21:37:24:59:02:c0:
                    a6:61:ec:ff:b2:16:e9:f1:ca:7e:d2:f8:07:bc:40:
                    c5:dd:98:b2:09:82:db:f4:9d:89:28:02:0c:ee:9b:
                    47:9b:41:75:15:9a:db:70:56:48:87:06:c6:92:a4:
                    1c:1c:01:a1:6b:6e:dd:da:6c:f0:58:a9:c2:f9:81:
                    35:24:f8:e7:5f:87:f1:b2:fd:51:25:12:f2:a8:53:
                    30:7e:f0:d3:30:18:ac:ba:7e:07:16:67:b4:35:39:
                    9c:dc:a3:d8:b7:4f:72:5e:72:d2:7c:97:5c:98:1f:
                    42:f8:f7:13:e6:10:dd:16:59:c8:c2:5a:37:67:e3:
                    91:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5D:A7:53:BD:BD:AE:53:6D:54:58:3A:20:5C:9E:64:25:82:05:F1:9F
            X509v3 Authority Key Identifier:
                keyid:43:FF:1C:8A:E0:B4:75:7E:68:ED:D0:8A:E1:AE:B2:AD:AD:86:53:D5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/43FF1C8AE0B4757E68EDD08AE1AEB2ADAD8653D5.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/51240E7962B9380A3E627C94441EA6BB2CCA3DB1D22E934B6CC9DC5B635EF491/0/323830303a3830303a3a2f33362d3438203d3e203134303830.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2800:800::/36

    Signature Algorithm: sha256WithRSAEncryption
         46:64:50:85:ab:bc:e2:67:12:53:61:79:bb:5a:c1:08:77:75:
         69:cd:47:02:56:41:67:b5:54:c9:bb:54:df:76:47:48:a4:71:
         92:0d:45:c6:e6:41:67:46:c6:41:cf:a2:9b:75:8d:48:bd:c5:
         96:d7:d0:b8:3a:6d:84:ca:a1:57:e1:8d:96:1e:c8:ce:30:88:
         ac:f7:99:ff:d2:02:57:ec:df:01:ce:f0:18:cd:3c:03:de:4d:
         41:81:5d:d4:d5:b6:4c:7e:9e:4b:69:9a:b0:91:51:c9:3c:e4:
         a2:9d:54:84:32:f7:13:15:dd:31:a9:6e:92:f7:d4:fb:79:c1:
         7f:20:f2:6f:d3:20:b7:1d:a9:0b:89:ba:75:41:d9:fa:c5:3e:
         2f:f6:2b:10:f0:9d:3b:bb:99:7a:64:41:c1:32:d7:e1:16:1d:
         6b:5c:57:64:55:e7:66:79:07:de:3a:6f:93:c9:c8:0a:30:0f:
         d9:b6:f4:b6:0a:80:51:de:d0:89:d1:78:93:80:26:2a:7c:e5:
         fb:67:b0:02:54:0d:f1:62:b6:a6:a4:53:c6:4d:ff:8c:81:d0:
         8e:01:00:45:d6:0b:27:ac:ce:25:7f:e6:6c:ac:30:61:1c:f9:
         77:7a:1e:0e:47:be:f9:7f:64:da:ad:1f:18:34:c3:94:26:e9:
         b8:97:c4:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 21:55:36 2024 by rpki-client on console-ams.rpki-client.org