Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/527F9083A8D5CB3C6601D1A30419252600927049BEEAB605C45EC89B72BA9FDA/0/323830333a3434303a3a2f33322d3438203d3e20323633373734.roa
File:                     323830333a3434303a3a2f33322d3438203d3e20323633373734.roa (raw, json)
Hash identifier:          dJ1pvygHmC+4d8IY91a1NXt4t9RJjWUJte8RoyEPDCE=
Subject key identifier:   4B:14:D6:CB:17:C2:F0:DA:57:60:85:8A:56:51:C1:7F:B1:27:7A:D8
Certificate issuer:       /CN=4B7687F569E5893215BAF86B72C4274237504316
Certificate serial:       545FFA8094180E61B3992986E84732547AD4A210
Authority key identifier: 4B:76:87:F5:69:E5:89:32:15:BA:F8:6B:72:C4:27:42:37:50:43:16
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4B7687F569E5893215BAF86B72C4274237504316.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/527F9083A8D5CB3C6601D1A30419252600927049BEEAB605C45EC89B72BA9FDA/0/323830333a3434303a3a2f33322d3438203d3e20323633373734.roa
Signing time:             Thu 11 Jul 2024 11:25:00 +0000
ROA not before:           Thu 11 Jul 2024 11:20:00 +0000
ROA not after:            Thu 10 Jul 2025 11:25:00 +0000
asID:                     263774
IP address blocks:        2803:440::/32 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/527F9083A8D5CB3C6601D1A30419252600927049BEEAB605C45EC89B72BA9FDA/0/4B7687F569E5893215BAF86B72C4274237504316.crl
                          rsync://repository.lacnic.net/rpki/lacnic/527F9083A8D5CB3C6601D1A30419252600927049BEEAB605C45EC89B72BA9FDA/0/4B7687F569E5893215BAF86B72C4274237504316.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4B7687F569E5893215BAF86B72C4274237504316.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sat 02 Nov 2024 22:17:36 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            54:5f:fa:80:94:18:0e:61:b3:99:29:86:e8:47:32:54:7a:d4:a2:10
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4B7687F569E5893215BAF86B72C4274237504316
        Validity
            Not Before: Jul 11 11:20:00 2024 GMT
            Not After : Jul 10 11:25:00 2025 GMT
        Subject: CN=4B14D6CB17C2F0DA5760858A5651C17FB1277AD8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:b0:53:f0:a1:df:27:84:33:4d:93:00:59:1a:
                    5e:54:88:8d:42:df:4f:d5:2e:4a:4e:e7:c9:67:fc:
                    5e:63:1a:f0:b8:47:d0:9f:4e:ab:fc:f3:71:f0:11:
                    a2:d6:4b:e5:4d:a3:02:5b:54:eb:a7:02:05:c8:a4:
                    26:6d:2b:85:72:43:58:f8:39:75:83:1f:11:08:ef:
                    1a:d1:4a:e3:78:89:72:67:44:b3:a1:fe:ec:60:20:
                    a1:45:5b:44:a8:0f:ee:18:44:e8:1d:3e:c5:8b:4d:
                    4e:b3:b1:6f:21:b0:d8:1d:df:12:b6:ee:f6:a6:7d:
                    78:f7:59:96:16:e2:33:cf:18:81:16:21:93:1b:65:
                    7a:d6:1c:9a:48:3e:37:d4:e7:70:dc:4d:cc:49:b3:
                    e0:8e:47:18:24:ae:ce:cf:81:d4:b9:39:84:10:d0:
                    ab:90:63:4a:df:c6:15:17:1b:44:0a:72:37:31:29:
                    2e:c9:89:dc:66:55:37:c1:89:e9:17:99:03:94:41:
                    a3:95:bc:a1:e7:9a:fc:b8:41:af:a6:64:f3:5f:36:
                    85:75:c0:98:4a:4d:43:1a:01:a5:76:17:3e:71:1d:
                    ed:01:ae:d9:08:d2:e0:47:00:18:5a:02:19:83:14:
                    b0:66:1c:44:a0:fe:93:c1:26:64:89:ba:b5:a7:dd:
                    d2:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4B:14:D6:CB:17:C2:F0:DA:57:60:85:8A:56:51:C1:7F:B1:27:7A:D8
            X509v3 Authority Key Identifier:
                keyid:4B:76:87:F5:69:E5:89:32:15:BA:F8:6B:72:C4:27:42:37:50:43:16

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/527F9083A8D5CB3C6601D1A30419252600927049BEEAB605C45EC89B72BA9FDA/0/4B7687F569E5893215BAF86B72C4274237504316.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4B7687F569E5893215BAF86B72C4274237504316.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/527F9083A8D5CB3C6601D1A30419252600927049BEEAB605C45EC89B72BA9FDA/0/323830333a3434303a3a2f33322d3438203d3e20323633373734.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:440::/32

    Signature Algorithm: sha256WithRSAEncryption
         4a:fc:17:59:f1:c4:8f:be:58:40:06:0c:5d:62:c6:cb:ab:a0:
         48:0e:ef:f5:95:5f:2e:7a:82:f3:f1:51:04:a0:e2:56:f4:c8:
         41:ef:17:4e:39:6a:9f:ae:61:41:fc:25:36:93:7c:77:59:30:
         e2:38:5c:c0:e2:6e:f9:b5:f9:ac:0f:18:88:37:66:ca:20:18:
         a5:71:ce:05:f9:d1:5a:18:01:8e:89:a1:51:bb:c6:29:ad:05:
         13:7b:a4:f1:fb:af:27:7b:8a:0a:08:f3:09:d8:1d:3b:bc:db:
         a9:e8:eb:aa:c6:94:fb:7c:2b:1b:16:24:cc:b5:fb:0e:f6:8e:
         62:97:d3:18:55:f9:84:61:6a:ee:cf:0d:91:27:ea:4a:32:2c:
         3b:11:4b:eb:b8:56:24:73:e4:26:9c:0f:99:d6:ab:60:51:68:
         59:31:e4:3a:d5:74:b0:e5:5c:25:4c:44:b3:31:0e:e4:09:43:
         c3:16:c9:44:36:19:44:a4:bf:b6:4b:e5:c7:6b:1d:2e:20:25:
         bc:d4:c0:f3:a4:43:b8:f2:56:c2:e7:4e:34:4b:8c:b2:fb:a7:
         3a:e1:dc:02:c5:6c:28:e3:d9:2a:df:98:28:0e:50:e1:11:d4:
         bc:46:e4:f3:76:ca:de:dd:23:36:9a:59:5d:47:0d:6c:83:33:
         dd:b5:b9:0c
-----BEGIN CERTIFICATE-----
MIIFvTCCBKWgAwIBAgIUVF/6gJQYDmGzmSmG6EcyVHrUohAwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNEI3Njg3RjU2OUU1ODkzMjE1QkFGODZCNzJDNDI3NDIz
NzUwNDMxNjAeFw0yNDA3MTExMTIwMDBaFw0yNTA3MTAxMTI1MDBaMDMxMTAvBgNV
BAMTKDRCMTRENkNCMTdDMkYwREE1NzYwODU4QTU2NTFDMTdGQjEyNzdBRDgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6sFPwod8nhDNNkwBZGl5UiI1C
30/VLkpO58ln/F5jGvC4R9CfTqv883HwEaLWS+VNowJbVOunAgXIpCZtK4VyQ1j4
OXWDHxEI7xrRSuN4iXJnRLOh/uxgIKFFW0SoD+4YROgdPsWLTU6zsW8hsNgd3xK2
7vamfXj3WZYW4jPPGIEWIZMbZXrWHJpIPjfU53DcTcxJs+CORxgkrs7PgdS5OYQQ
0KuQY0rfxhUXG0QKcjcxKS7JidxmVTfBiekXmQOUQaOVvKHnmvy4Qa+mZPNfNoV1
wJhKTUMaAaV2Fz5xHe0BrtkI0uBHABhaAhmDFLBmHESg/pPBJmSJurWn3dJLAgMB
AAGjggLHMIICwzAdBgNVHQ4EFgQUSxTWyxfC8NpXYIWKVlHBf7EnetgwHwYDVR0j
BBgwFoAUS3aH9WnliTIVuvhrcsQnQjdQQxYwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy81MjdGOTA4M0E4RDVDQjNDNjYwMUQxQTMwNDE5MjUyNjAw
OTI3MDQ5QkVFQUI2MDVDNDVFQzg5QjcyQkE5RkRBLzAvNEI3Njg3RjU2OUU1ODkz
MjE1QkFGODZCNzJDNDI3NDIzNzUwNDMxNi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC80Qjc2ODdGNTY5RTU4OTMyMTVC
QUY4NkI3MkM0Mjc0MjM3NTA0MzE2LmNlcjCBxQYIKwYBBQUHAQsEgbgwgbUwgbIG
CCsGAQUFBzALhoGlcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNTI3RjkwODNBOEQ1Q0IzQzY2MDFEMUEzMDQxOTI1MjYwMDkyNzA0OUJF
RUFCNjA1QzQ1RUM4OUI3MkJBOUZEQS8wLzMyMzgzMDMzM2EzNDM0MzAzYTNhMmYz
MzMyMmQzNDM4MjAzZDNlMjAzMjM2MzMzNzM3MzQucm9hMBgGA1UdIAEB/wQOMAww
CgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAoAwRAMA0G
CSqGSIb3DQEBCwUAA4IBAQBK/BdZ8cSPvlhABgxdYsbLq6BIDu/1lV8ueoLz8VEE
oOJW9MhB7xdOOWqfrmFB/CU2k3x3WTDiOFzA4m75tfmsDxiIN2bKIBilcc4F+dFa
GAGOiaFRu8YprQUTe6Tx+68ne4oKCPMJ2B07vNup6OuqxpT7fCsbFiTMtfsO9o5i
l9MYVfmEYWruzw2RJ+pKMiw7EUvruFYkc+QmnA+Z1qtgUWhZMeQ61XSw5VwlTESz
MQ7kCUPDFslENhlEpL+2S+XHax0uICW81MDzpEO48lbC5040S4yy+6c64dwCxWwo
49kq35goDlDhEdS8RuTzdsre3SM2mlldRw1sgzPdtbkM
-----END CERTIFICATE-----
Generated at Wed Oct 30 15:13:04 2024 by rpki-client on console-ams.rpki-client.org