Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/512c2cc7-2c7e-4579-9d78-69582babcd4a/12cb168b0f3d54518654dd453d4956795baeb636.roa
File:                     12cb168b0f3d54518654dd453d4956795baeb636.roa (raw, json)
Hash identifier:          OwZRQUVEJoMXE5PlBC4rsBAx01p7LMoi+x+pHkZBRZs=
Subject key identifier:   B4:62:15:6A:98:7F:03:CD:D2:BD:A5:1D:91:68:E9:8A:64:C5:B6:4C
Certificate issuer:       /CN=58d4d9b526509407bcd0b39b8d13b0c940d11a2e
Certificate serial:       08EDB0
Authority key identifier: 4E:61:CF:E0:E4:F7:03:42:5B:39:DD:7C:1C:1A:D6:75:06:29:8C:04
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/58d4d9b526509407bcd0b39b8d13b0c940d11a2e.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/512c2cc7-2c7e-4579-9d78-69582babcd4a/12cb168b0f3d54518654dd453d4956795baeb636.roa
Signing time:             Wed 24 Mar 2021 14:40:27 +0000
ROA not before:           Wed 24 Mar 2021 14:40:27 +0000
ROA not after:            Tue 24 Mar 2026 14:40:27 +0000
asID:                     269853
IP address blocks:        2803:10e0::/32 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/512c2cc7-2c7e-4579-9d78-69582babcd4a/58d4d9b526509407bcd0b39b8d13b0c940d11a2e.crl
                          rsync://repository.lacnic.net/rpki/lacnic/512c2cc7-2c7e-4579-9d78-69582babcd4a/58d4d9b526509407bcd0b39b8d13b0c940d11a2e.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/58d4d9b526509407bcd0b39b8d13b0c940d11a2e.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Tue 27 Feb 2024 02:19:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 585136 (0x8edb0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=58d4d9b526509407bcd0b39b8d13b0c940d11a2e
        Validity
            Not Before: Mar 24 14:40:27 2021 GMT
            Not After : Mar 24 14:40:27 2026 GMT
        Subject: CN=12cb168b0f3d54518654dd453d4956795baeb636
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:38:44:70:7b:29:d0:81:8c:7c:26:f3:48:1b:
                    88:83:b2:15:e4:2f:9e:81:e5:d3:ec:5e:82:05:70:
                    8d:c5:ed:90:5a:91:15:7e:74:d8:b1:a9:f8:bf:d9:
                    aa:18:ac:51:2d:5f:8b:48:f8:8e:ff:60:90:5e:c3:
                    97:b3:28:7f:b1:86:2b:e1:67:ae:56:3f:41:4a:82:
                    1f:71:d5:6d:4e:e1:07:86:55:8d:2d:d5:f6:cd:34:
                    61:44:01:45:cf:1c:4d:f7:fc:67:db:9e:36:ae:4a:
                    99:08:37:31:f6:e7:c6:8e:0f:61:8f:ae:df:d9:18:
                    0d:a4:31:15:4e:71:33:25:0d:99:70:f2:ed:51:a6:
                    52:0b:8d:bf:a9:65:e7:18:29:32:15:48:e9:6a:94:
                    c1:6a:c1:a9:7d:de:89:0b:88:c6:66:90:66:dd:26:
                    a7:5a:19:9d:f9:2c:5e:0d:a6:b8:d3:aa:e7:2c:4b:
                    62:22:db:8e:39:da:c1:81:4a:44:82:5e:cf:35:b4:
                    ed:ee:8b:d8:ea:da:ca:af:31:6a:ae:ee:05:c7:53:
                    26:6a:c9:23:db:08:76:b7:02:21:26:38:f6:d6:8d:
                    39:db:d8:61:68:1e:9a:7c:04:8a:18:3e:32:d8:4e:
                    d6:dd:94:24:5c:a5:94:68:ec:f2:9f:c3:38:f5:8e:
                    1a:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B4:62:15:6A:98:7F:03:CD:D2:BD:A5:1D:91:68:E9:8A:64:C5:B6:4C
            X509v3 Authority Key Identifier:
                keyid:4E:61:CF:E0:E4:F7:03:42:5B:39:DD:7C:1C:1A:D6:75:06:29:8C:04

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/58d4d9b526509407bcd0b39b8d13b0c940d11a2e.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/512c2cc7-2c7e-4579-9d78-69582babcd4a/12cb168b0f3d54518654dd453d4956795baeb636.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/512c2cc7-2c7e-4579-9d78-69582babcd4a/58d4d9b526509407bcd0b39b8d13b0c940d11a2e.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:10e0::/32

    Signature Algorithm: sha256WithRSAEncryption
         3f:df:65:8d:c8:89:77:c3:89:12:89:8d:92:6a:cf:35:88:71:
         45:90:54:ae:a0:33:18:67:86:6f:05:04:35:f6:cc:57:5b:ab:
         6d:c0:7e:0f:8c:35:67:ef:16:ce:ea:b7:bc:97:3b:50:cc:d1:
         63:3f:3f:4a:4b:3b:4c:5b:b1:f8:31:db:1e:8b:53:c3:d0:dc:
         a5:d6:37:6b:17:aa:a0:79:aa:a0:c1:54:3e:b8:dc:a3:c5:ef:
         4b:22:48:ae:be:b9:fb:bc:f1:c1:e9:2c:b2:9a:8d:b9:fe:dd:
         4f:17:49:d3:65:da:32:4b:06:cc:3c:85:45:c4:f1:a7:9f:84:
         78:bd:30:c3:f9:ac:e1:be:11:9a:3f:ad:7c:bb:89:14:dc:df:
         b1:d2:f1:be:f1:95:2d:c6:69:fe:7b:12:02:e4:ba:e7:7c:83:
         82:63:1b:5b:c9:7d:7d:a4:64:be:b0:92:90:0d:18:33:8e:09:
         96:d2:cb:39:bb:d2:f8:5e:1d:f9:80:89:b9:60:15:86:6c:db:
         65:33:20:3e:3b:af:87:a8:ae:b7:6e:34:26:cf:6e:03:52:6d:
         db:a9:95:0a:12:03:dc:ec:01:53:57:01:ec:a1:ea:ff:5a:49:
         02:90:f7:b5:b7:1f:c8:d8:e0:f5:0b:8e:ee:b5:5c:1f:24:9b:
         3f:48:96:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Feb 24 06:30:02 2024 by rpki-client on console-fra.rpki-client.org