Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5b1e152f-fc50-435b-beeb-8b3866e1b0fe/cac0175df1daeec0845ab80188615c89f36fefb5.roa
File:                     cac0175df1daeec0845ab80188615c89f36fefb5.roa (raw, json)
Hash identifier:          ilqqvnzAhCf6KPMTSAl91I6jTP9R3p7fVKXCmAPIdP0=
Subject key identifier:   2F:0E:62:28:4E:21:5C:D1:8E:F7:49:77:9E:D3:94:57:95:36:48:D5
Certificate issuer:       /CN=f595ed733bf54f430d174bb1f0bf895d6bc70b64
Certificate serial:       1636D1
Authority key identifier: 34:D1:75:0D:84:1E:60:5A:A0:B8:09:8B:97:F1:F6:1C:36:10:0E:97
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f595ed733bf54f430d174bb1f0bf895d6bc70b64.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/5b1e152f-fc50-435b-beeb-8b3866e1b0fe/cac0175df1daeec0845ab80188615c89f36fefb5.roa
Signing time:             Fri 16 Dec 2022 21:06:28 +0000
ROA not before:           Thu 15 Dec 2022 21:05:46 +0000
ROA not after:            Mon 16 Dec 2024 21:05:46 +0000
asID:                     269862
IP address blocks:        2803:b0e0::/32 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/5b1e152f-fc50-435b-beeb-8b3866e1b0fe/f595ed733bf54f430d174bb1f0bf895d6bc70b64.crl
                          rsync://repository.lacnic.net/rpki/lacnic/5b1e152f-fc50-435b-beeb-8b3866e1b0fe/f595ed733bf54f430d174bb1f0bf895d6bc70b64.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f595ed733bf54f430d174bb1f0bf895d6bc70b64.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 01 Apr 2024 05:58:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1455825 (0x1636d1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f595ed733bf54f430d174bb1f0bf895d6bc70b64
        Validity
            Not Before: Dec 15 21:05:46 2022 GMT
            Not After : Dec 16 21:05:46 2024 GMT
        Subject: CN=cac0175df1daeec0845ab80188615c89f36fefb5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:91:a8:d0:3b:88:19:99:10:8b:09:7e:ca:09:11:
                    cb:dc:d3:6a:be:90:f5:10:2c:f9:31:ae:26:4c:46:
                    43:52:37:df:61:54:cc:39:f4:8b:d3:2e:92:9d:bf:
                    bb:d7:66:f5:f3:c4:2b:f4:1c:19:ce:b8:72:36:9b:
                    ff:d3:a8:d6:29:6f:42:8d:41:ec:c2:bf:c5:f7:8b:
                    c0:c9:91:48:59:f8:dd:59:81:92:70:ac:f6:3a:0e:
                    68:71:dd:bb:2d:d6:87:ad:98:37:61:24:72:aa:d0:
                    c9:b7:e4:05:e9:d7:c7:b2:55:ff:e1:7f:8e:8a:18:
                    aa:0f:34:04:ff:89:83:9c:7b:c1:5a:1b:5c:4d:8a:
                    19:b2:a3:a3:7e:3a:35:3a:cc:42:50:40:70:ba:14:
                    71:6e:f0:cb:f3:19:f6:9d:d9:f5:13:b7:3e:fb:a2:
                    27:1a:c8:46:e0:da:24:3d:25:4d:29:a7:84:15:b0:
                    15:33:62:70:e6:d6:7b:e5:ad:9b:a1:31:77:70:9f:
                    07:7a:23:aa:12:82:e2:f0:f9:a8:bb:a9:02:ee:f3:
                    55:e5:9f:a0:16:9e:8b:d0:d5:3f:10:df:76:a7:af:
                    08:3d:ac:33:c3:b0:0f:75:13:84:bd:a2:ff:15:ef:
                    95:18:18:7a:3a:31:c8:eb:ce:07:36:19:50:c0:ab:
                    bc:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2F:0E:62:28:4E:21:5C:D1:8E:F7:49:77:9E:D3:94:57:95:36:48:D5
            X509v3 Authority Key Identifier:
                keyid:34:D1:75:0D:84:1E:60:5A:A0:B8:09:8B:97:F1:F6:1C:36:10:0E:97

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f595ed733bf54f430d174bb1f0bf895d6bc70b64.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5b1e152f-fc50-435b-beeb-8b3866e1b0fe/cac0175df1daeec0845ab80188615c89f36fefb5.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/5b1e152f-fc50-435b-beeb-8b3866e1b0fe/f595ed733bf54f430d174bb1f0bf895d6bc70b64.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:b0e0::/32

    Signature Algorithm: sha256WithRSAEncryption
         05:30:31:83:f5:81:7e:7d:1c:fb:1e:df:40:83:0d:2f:e8:a5:
         bc:4e:e7:66:64:10:e5:99:56:06:f8:45:57:dd:dc:a5:d5:f7:
         97:39:f0:2a:fe:58:3e:e7:6f:45:b6:21:ee:a9:59:08:d6:28:
         f5:f3:7c:1f:4c:34:d8:0d:66:fb:0b:6f:97:91:d4:e7:96:71:
         ed:72:4b:58:6f:d8:2f:a7:5c:b4:74:8b:ac:17:ef:73:2f:91:
         81:0f:f6:b0:8f:1d:9d:74:6e:70:a9:0a:07:ad:52:2f:a4:36:
         bc:a1:44:03:5f:43:de:72:6c:88:f8:6b:22:90:0d:df:bd:94:
         e0:18:d2:61:91:15:1e:aa:74:3a:33:bf:4c:29:7c:38:c2:6b:
         fa:6f:11:74:28:08:9d:09:6d:0a:1e:4d:8c:92:2d:2a:ab:e7:
         dd:03:ee:be:57:95:ec:25:87:fe:82:84:eb:a2:f2:61:b9:8d:
         81:67:ab:70:9d:59:86:07:db:bb:74:7b:b0:3b:c3:8c:0a:df:
         29:d2:3d:4f:51:44:24:cc:0e:64:61:5e:4c:7b:af:c5:91:62:
         ed:63:ca:86:90:1f:a7:3e:08:66:bb:8c:32:76:ab:e3:5a:df:
         a4:79:42:bb:01:d2:7b:c3:3d:07:2b:09:c5:72:d4:62:1f:31:
         e8:10:8c:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 11:05:06 2024 by rpki-client on console-ams.rpki-client.org