Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/512c2cc7-2c7e-4579-9d78-69582babcd4a/7a614e5043e963a76a202532ea825031b191e1aa.roa
File:                     7a614e5043e963a76a202532ea825031b191e1aa.roa (raw, json)
Hash identifier:          rpkTQTkyCGfFSKHC0WVMlRWzWvntNEv3xsoW8Q7acpA=
Subject key identifier:   DA:84:0B:C7:48:BB:BC:22:A5:45:48:BB:C8:78:C4:10:9B:DC:F6:DE
Certificate issuer:       /CN=58d4d9b526509407bcd0b39b8d13b0c940d11a2e
Certificate serial:       08EC36
Authority key identifier: 4E:61:CF:E0:E4:F7:03:42:5B:39:DD:7C:1C:1A:D6:75:06:29:8C:04
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/58d4d9b526509407bcd0b39b8d13b0c940d11a2e.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/512c2cc7-2c7e-4579-9d78-69582babcd4a/7a614e5043e963a76a202532ea825031b191e1aa.roa
Signing time:             Wed 24 Mar 2021 14:40:27 +0000
ROA not before:           Wed 24 Mar 2021 14:40:27 +0000
ROA not after:            Tue 24 Mar 2026 14:40:27 +0000
asID:                     269853
IP address blocks:        2803:10e0::/32 maxlen: 46

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/512c2cc7-2c7e-4579-9d78-69582babcd4a/58d4d9b526509407bcd0b39b8d13b0c940d11a2e.crl
                          rsync://repository.lacnic.net/rpki/lacnic/512c2cc7-2c7e-4579-9d78-69582babcd4a/58d4d9b526509407bcd0b39b8d13b0c940d11a2e.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/58d4d9b526509407bcd0b39b8d13b0c940d11a2e.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 26 Feb 2024 16:36:17 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 584758 (0x8ec36)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=58d4d9b526509407bcd0b39b8d13b0c940d11a2e
        Validity
            Not Before: Mar 24 14:40:27 2021 GMT
            Not After : Mar 24 14:40:27 2026 GMT
        Subject: CN=7a614e5043e963a76a202532ea825031b191e1aa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:52:80:df:f9:60:18:39:17:6f:c4:e6:21:4e:
                    58:81:5a:14:cb:1e:62:f4:32:62:0b:67:bd:34:b9:
                    fc:57:a6:78:d0:29:76:97:3b:bd:35:88:77:dc:1b:
                    36:1b:d1:b2:e4:6f:b8:a5:36:ee:d9:5f:12:85:3c:
                    e5:c2:89:ed:b3:70:3a:fb:d2:46:66:fd:29:9c:51:
                    0a:41:83:1b:6f:0c:f1:88:71:33:83:62:5f:a8:06:
                    e3:28:27:c7:7f:5f:45:52:ae:5a:01:54:91:b1:61:
                    9f:ca:ba:3c:dd:38:4d:58:2f:4e:69:6c:18:f1:4f:
                    41:78:82:9f:95:6b:1c:21:53:35:33:8b:65:50:5f:
                    d6:0e:80:d4:86:d0:dd:99:57:4d:d4:3d:9f:ea:b2:
                    7f:b4:2b:a5:9e:fe:97:ad:28:72:df:3a:f3:24:7a:
                    3d:8a:e1:4e:b7:84:07:21:71:58:d6:d6:3e:49:1e:
                    a5:06:e9:2c:18:ac:74:a8:42:73:fb:09:67:f2:a1:
                    97:ca:6c:fb:c6:36:05:06:8b:4b:15:fb:16:0d:c1:
                    bf:a0:89:d0:84:df:80:2c:ed:12:1c:8b:86:88:1f:
                    4f:81:cb:36:1a:87:46:c3:fa:f3:0c:fe:dd:9c:e3:
                    7d:a0:94:95:8a:0e:32:61:94:f4:12:c1:88:42:3e:
                    98:65
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DA:84:0B:C7:48:BB:BC:22:A5:45:48:BB:C8:78:C4:10:9B:DC:F6:DE
            X509v3 Authority Key Identifier:
                keyid:4E:61:CF:E0:E4:F7:03:42:5B:39:DD:7C:1C:1A:D6:75:06:29:8C:04

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/58d4d9b526509407bcd0b39b8d13b0c940d11a2e.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/512c2cc7-2c7e-4579-9d78-69582babcd4a/7a614e5043e963a76a202532ea825031b191e1aa.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/512c2cc7-2c7e-4579-9d78-69582babcd4a/58d4d9b526509407bcd0b39b8d13b0c940d11a2e.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:10e0::/32

    Signature Algorithm: sha256WithRSAEncryption
         5c:16:38:5c:61:05:a6:05:45:f5:27:e1:d9:ce:23:5b:11:d6:
         62:a5:e6:90:4c:77:2e:1f:58:32:9b:c1:f8:ad:1b:05:9f:f5:
         dd:3d:4b:64:1c:bd:81:63:c9:5f:be:00:8e:6d:2c:51:43:69:
         b6:41:7f:c3:7a:4c:9f:be:da:d6:20:78:bd:c3:a9:65:ca:fe:
         8c:d4:51:67:8e:fc:46:f9:70:e1:09:37:bc:a4:32:9c:15:89:
         11:4a:b0:9b:9f:fd:b6:32:ae:89:af:9c:92:c3:c9:55:d1:ce:
         93:fc:d2:34:ba:83:31:ae:e5:46:d0:23:77:60:d6:9e:24:14:
         cb:4b:2b:4a:78:79:79:13:89:7f:65:23:cd:f7:6d:1d:c0:8b:
         6e:d5:0e:9f:1b:5d:40:bf:1e:5f:66:95:e4:d9:b0:e4:3e:d0:
         0f:30:c0:a9:bb:ed:af:27:b3:0e:ec:10:cd:95:98:f4:ea:2f:
         87:8b:a3:e9:d1:af:5b:b6:fc:45:d1:4a:79:ec:4c:05:4b:51:
         85:17:00:74:bb:07:55:db:90:8e:2a:0b:5b:95:3d:74:6b:f3:
         d2:13:f5:5f:80:1a:5d:d6:e4:68:1f:27:45:b6:d9:11:7d:b8:
         8b:9c:89:7d:a5:44:1d:c7:77:6d:2d:80:7c:49:ac:69:7b:7c:
         11:87:86:ed
-----BEGIN CERTIFICATE-----
MIIFQTCCBCmgAwIBAgIDCOw2MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDU4
ZDRkOWI1MjY1MDk0MDdiY2QwYjM5YjhkMTNiMGM5NDBkMTFhMmUwHhcNMjEwMzI0
MTQ0MDI3WhcNMjYwMzI0MTQ0MDI3WjAzMTEwLwYDVQQDEyg3YTYxNGU1MDQzZTk2
M2E3NmEyMDI1MzJlYTgyNTAzMWIxOTFlMWFhMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEApFKA3/lgGDkXb8TmIU5YgVoUyx5i9DJiC2e9NLn8V6Z40Cl2
lzu9NYh33Bs2G9Gy5G+4pTbu2V8ShTzlwonts3A6+9JGZv0pnFEKQYMbbwzxiHEz
g2JfqAbjKCfHf19FUq5aAVSRsWGfyro83ThNWC9OaWwY8U9BeIKflWscIVM1M4tl
UF/WDoDUhtDdmVdN1D2f6rJ/tCulnv6XrShy3zrzJHo9iuFOt4QHIXFY1tY+SR6l
BuksGKx0qEJz+wln8qGXymz7xjYFBotLFfsWDcG/oInQhN+ALO0SHIuGiB9Pgcs2
GodGw/rzDP7dnON9oJSVig4yYZT0EsGIQj6YZQIDAQABo4ICXDCCAlgwHQYDVR0O
BBYEFNqEC8dIu7wipUVIu8h4xBCb3PbeMB8GA1UdIwQYMBaAFE5hz+Dk9wNCWznd
fBwa1nUGKYwEMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvNThkNGQ5
YjUyNjUwOTQwN2JjZDBiMzliOGQxM2IwYzk0MGQxMWEyZS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvNTEyYzJjYzctMmM3ZS00NTc5LTlkNzgtNjk1ODJi
YWJjZDRhLzdhNjE0ZTUwNDNlOTYzYTc2YTIwMjUzMmVhODI1MDMxYjE5MWUxYWEu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy81MTJjMmNjNy0yYzdlLTQ1NzktOWQ3OC02OTU4
MmJhYmNkNGEvNThkNGQ5YjUyNjUwOTQwN2JjZDBiMzliOGQxM2IwYzk0MGQxMWEy
ZS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQR
MA8wDQQCAAIwBwMFACgDEOAwDQYJKoZIhvcNAQELBQADggEBAFwWOFxhBaYFRfUn
4dnOI1sR1mKl5pBMdy4fWDKbwfitGwWf9d09S2QcvYFjyV++AI5tLFFDabZBf8N6
TJ++2tYgeL3DqWXK/ozUUWeO/Eb5cOEJN7ykMpwViRFKsJuf/bYyromvnJLDyVXR
zpP80jS6gzGu5UbQI3dg1p4kFMtLK0p4eXkTiX9lI833bR3Ai27VDp8bXUC/Hl9m
leTZsOQ+0A8wwKm77a8nsw7sEM2VmPTqL4eLo+nRr1u2/EXRSnnsTAVLUYUXAHS7
B1XbkI4qC1uVPXRr89IT9V+AGl3W5GgfJ0W22RF9uIuciX2lRB3Hd20tgHxJrGl7
fBGHhu0=
-----END CERTIFICATE-----
Generated at Fri Feb 23 20:02:45 2024 by rpki-client on console-fra.rpki-client.org