Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5BDE3AF68B1A87E79458AA6D1B175E1357B89802F0F2404ECD7C130E77A36FF5/0/323830333a396563303a3a2f33322d3332203d3e20323632313834.roa
File:                     323830333a396563303a3a2f33322d3332203d3e20323632313834.roa (raw, json)
Hash identifier:          CEzttqfn4JxS3NGy7esi/s5gRhdX1Hgm5skCfNSJhkI=
Subject key identifier:   B8:D4:2F:A5:8C:B4:97:74:CD:66:49:C4:71:CF:F6:E8:FA:04:BD:E9
Certificate issuer:       /CN=56CC624428BCED9F377BAC95D562A585D509F1B4
Certificate serial:       0353C5CFAB8251B22AAA2CB0DCA1BD0BF37BF7B2
Authority key identifier: 56:CC:62:44:28:BC:ED:9F:37:7B:AC:95:D5:62:A5:85:D5:09:F1:B4
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/56CC624428BCED9F377BAC95D562A585D509F1B4.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/5BDE3AF68B1A87E79458AA6D1B175E1357B89802F0F2404ECD7C130E77A36FF5/0/323830333a396563303a3a2f33322d3332203d3e20323632313834.roa
Signing time:             Tue 05 Mar 2024 18:13:22 +0000
ROA not before:           Tue 05 Mar 2024 18:08:22 +0000
ROA not after:            Tue 04 Mar 2025 18:13:22 +0000
asID:                     262184
IP address blocks:        2803:9ec0::/32 maxlen: 32

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/5BDE3AF68B1A87E79458AA6D1B175E1357B89802F0F2404ECD7C130E77A36FF5/0/56CC624428BCED9F377BAC95D562A585D509F1B4.crl
                          rsync://repository.lacnic.net/rpki/lacnic/5BDE3AF68B1A87E79458AA6D1B175E1357B89802F0F2404ECD7C130E77A36FF5/0/56CC624428BCED9F377BAC95D562A585D509F1B4.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/56CC624428BCED9F377BAC95D562A585D509F1B4.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Fri 21 Jun 2024 08:25:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            03:53:c5:cf:ab:82:51:b2:2a:aa:2c:b0:dc:a1:bd:0b:f3:7b:f7:b2
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=56CC624428BCED9F377BAC95D562A585D509F1B4
        Validity
            Not Before: Mar  5 18:08:22 2024 GMT
            Not After : Mar  4 18:13:22 2025 GMT
        Subject: CN=B8D42FA58CB49774CD6649C471CFF6E8FA04BDE9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f0:11:0c:33:07:0a:9b:78:8f:1a:2e:7a:0b:53:
                    6c:52:4b:d7:4e:14:8c:2d:7f:5a:4b:59:72:b2:cd:
                    1f:6b:6f:21:94:71:98:4d:07:dc:3b:ba:a3:a1:25:
                    c2:92:da:55:97:95:7f:09:5b:3b:05:a9:ce:3a:af:
                    6c:6f:37:6a:8d:d9:11:12:36:56:88:c6:37:4c:9d:
                    03:23:13:fa:80:58:79:a0:34:ff:dd:44:99:f5:f7:
                    a5:10:60:1e:a9:80:26:e2:1f:74:ab:19:45:e0:df:
                    93:5a:8c:2d:ff:ef:50:ee:c0:72:7c:66:a8:13:55:
                    68:8f:b2:e3:a0:a1:a3:4f:1e:77:76:0a:0c:9f:90:
                    be:34:d2:a8:df:a8:db:ab:88:b9:1b:6b:fb:9b:86:
                    d7:6f:bc:d2:3d:85:73:04:d5:5b:c0:08:3b:aa:7e:
                    93:82:16:86:8e:9d:79:c1:42:b2:1e:0a:33:0c:e9:
                    a9:6b:1a:26:7f:51:ca:d5:fa:e6:d3:8d:22:f8:1e:
                    00:6b:00:aa:72:7c:27:da:f3:f7:18:5a:5f:0a:9d:
                    27:63:03:06:3c:6b:42:ce:6c:2d:8c:c7:d8:d2:b8:
                    93:24:85:20:4d:52:8a:9b:01:5d:ad:6b:a5:f0:26:
                    aa:ac:8e:8c:97:41:04:96:30:d1:b6:7d:fa:ac:91:
                    28:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B8:D4:2F:A5:8C:B4:97:74:CD:66:49:C4:71:CF:F6:E8:FA:04:BD:E9
            X509v3 Authority Key Identifier:
                keyid:56:CC:62:44:28:BC:ED:9F:37:7B:AC:95:D5:62:A5:85:D5:09:F1:B4

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/5BDE3AF68B1A87E79458AA6D1B175E1357B89802F0F2404ECD7C130E77A36FF5/0/56CC624428BCED9F377BAC95D562A585D509F1B4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/56CC624428BCED9F377BAC95D562A585D509F1B4.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5BDE3AF68B1A87E79458AA6D1B175E1357B89802F0F2404ECD7C130E77A36FF5/0/323830333a396563303a3a2f33322d3332203d3e20323632313834.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:9ec0::/32

    Signature Algorithm: sha256WithRSAEncryption
         bd:69:b6:b2:09:93:32:a9:61:8b:40:d6:c4:c5:a4:6a:b7:86:
         60:0b:f8:48:18:a0:c9:7f:f8:e7:dc:80:e2:2b:8f:73:79:c4:
         0f:10:67:72:ef:d5:59:ef:b1:df:4e:69:a4:ba:36:ab:0e:3f:
         24:06:53:1b:6d:30:9f:cd:3c:05:c0:6a:20:76:46:ce:32:bd:
         df:36:07:37:44:c1:81:88:0c:4e:18:b3:09:0f:2f:b5:58:e1:
         1a:16:24:42:39:fb:5e:26:a0:55:f4:bd:fd:30:c9:a8:0f:f4:
         3e:a5:70:c7:4a:55:f1:ae:20:fa:6f:43:aa:34:4a:01:6e:a4:
         64:2c:31:84:0c:d1:ee:41:a3:32:13:7a:b6:8b:7f:6c:b6:04:
         b5:f3:38:ba:5f:aa:81:7b:17:54:6c:62:10:db:b2:2f:42:b5:
         9c:d3:39:63:7b:56:82:4d:3f:63:dc:f8:a9:49:c0:b6:10:22:
         e7:b8:2d:06:a9:26:62:77:36:ed:0a:33:2f:2d:eb:f3:50:23:
         00:ad:00:f4:a6:91:78:43:bc:3e:1b:da:82:0c:d3:14:d8:2d:
         12:93:87:64:bc:16:84:42:f7:53:b9:5f:aa:89:93:e8:be:9a:
         98:00:36:9e:4c:42:3f:37:de:35:d5:d9:c9:2b:24:b5:b1:da:
         b1:08:0e:3e
-----BEGIN CERTIFICATE-----
MIIFvzCCBKegAwIBAgIUA1PFz6uCUbIqqiyw3KG9C/N797IwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTZDQzYyNDQyOEJDRUQ5RjM3N0JBQzk1RDU2MkE1ODVE
NTA5RjFCNDAeFw0yNDAzMDUxODA4MjJaFw0yNTAzMDQxODEzMjJaMDMxMTAvBgNV
BAMTKEI4RDQyRkE1OENCNDk3NzRDRDY2NDlDNDcxQ0ZGNkU4RkEwNEJERTkwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwEQwzBwqbeI8aLnoLU2xSS9dO
FIwtf1pLWXKyzR9rbyGUcZhNB9w7uqOhJcKS2lWXlX8JWzsFqc46r2xvN2qN2RES
NlaIxjdMnQMjE/qAWHmgNP/dRJn196UQYB6pgCbiH3SrGUXg35NajC3/71DuwHJ8
ZqgTVWiPsuOgoaNPHnd2CgyfkL400qjfqNuriLkba/ubhtdvvNI9hXME1VvACDuq
fpOCFoaOnXnBQrIeCjMM6alrGiZ/UcrV+ubTjSL4HgBrAKpyfCfa8/cYWl8KnSdj
AwY8a0LObC2Mx9jSuJMkhSBNUoqbAV2ta6XwJqqsjoyXQQSWMNG2ffqskSgRAgMB
AAGjggLJMIICxTAdBgNVHQ4EFgQUuNQvpYy0l3TNZknEcc/26PoEvekwHwYDVR0j
BBgwFoAUVsxiRCi87Z83e6yV1WKlhdUJ8bQwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy81QkRFM0FGNjhCMUE4N0U3OTQ1OEFBNkQxQjE3NUUxMzU3
Qjg5ODAyRjBGMjQwNEVDRDdDMTMwRTc3QTM2RkY1LzAvNTZDQzYyNDQyOEJDRUQ5
RjM3N0JBQzk1RDU2MkE1ODVENTA5RjFCNC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC81NkNDNjI0NDI4QkNFRDlGMzc3
QkFDOTVENTYyQTU4NUQ1MDlGMUI0LmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvNUJERTNBRjY4QjFBODdFNzk0NThBQTZEMUIxNzVFMTM1N0I4OTgwMkYw
RjI0MDRFQ0Q3QzEzMEU3N0EzNkZGNS8wLzMyMzgzMDMzM2EzOTY1NjMzMDNhM2Ey
ZjMzMzIyZDMzMzIyMDNkM2UyMDMyMzYzMjMxMzgzNC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACgDnsAw
DQYJKoZIhvcNAQELBQADggEBAL1ptrIJkzKpYYtA1sTFpGq3hmAL+EgYoMl/+Ofc
gOIrj3N5xA8QZ3Lv1Vnvsd9OaaS6NqsOPyQGUxttMJ/NPAXAaiB2Rs4yvd82BzdE
wYGIDE4YswkPL7VY4RoWJEI5+14moFX0vf0wyagP9D6lcMdKVfGuIPpvQ6o0SgFu
pGQsMYQM0e5BozITeraLf2y2BLXzOLpfqoF7F1RsYhDbsi9CtZzTOWN7VoJNP2Pc
+KlJwLYQIue4LQapJmJ3Nu0KMy8t6/NQIwCtAPSmkXhDvD4b2oIM0xTYLRKTh2S8
FoRC91O5X6qJk+i+mpgANp5MQj833jXV2ckrJLWx2rEIDj4=
-----END CERTIFICATE-----
Generated at Mon Jun 17 11:41:11 2024 by rpki-client on console-ams.rpki-client.org