Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/608f1497-c989-461d-91bb-de00f3e19f42/68673b4a4110a3bd0579bb5d377311728d7b72fd.roa
File:                     68673b4a4110a3bd0579bb5d377311728d7b72fd.roa (raw, json)
Hash identifier:          aouEVuod7fPnAd4nL+E/U8t1SRuOTEhsxVsSRy7NyUw=
Subject key identifier:   B4:5F:13:EB:85:6D:5F:A5:15:3E:46:CD:B8:DD:7F:C9:DC:C5:01:30
Certificate issuer:       /CN=97fa08408a8541db6c54279772f066050e91b323
Certificate serial:       052B9D
Authority key identifier: 6C:E5:64:5A:A0:3B:0C:9B:29:07:15:15:53:8E:36:4A:FF:51:72:F4
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/97fa08408a8541db6c54279772f066050e91b323.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/608f1497-c989-461d-91bb-de00f3e19f42/68673b4a4110a3bd0579bb5d377311728d7b72fd.roa
Signing time:             Wed 24 Mar 2021 14:29:38 +0000
ROA not before:           Wed 24 Mar 2021 14:29:38 +0000
ROA not after:            Tue 24 Mar 2026 14:29:38 +0000
asID:                     28100
IP address blocks:        2803:e040::/32 maxlen: 32

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/608f1497-c989-461d-91bb-de00f3e19f42/97fa08408a8541db6c54279772f066050e91b323.crl
                          rsync://repository.lacnic.net/rpki/lacnic/608f1497-c989-461d-91bb-de00f3e19f42/97fa08408a8541db6c54279772f066050e91b323.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/97fa08408a8541db6c54279772f066050e91b323.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 26 Feb 2024 14:04:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 338845 (0x52b9d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=97fa08408a8541db6c54279772f066050e91b323
        Validity
            Not Before: Mar 24 14:29:38 2021 GMT
            Not After : Mar 24 14:29:38 2026 GMT
        Subject: CN=68673b4a4110a3bd0579bb5d377311728d7b72fd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:81:11:10:95:ab:ad:71:35:db:98:1c:68:b6:7a:
                    0c:de:56:69:e6:96:96:3b:d2:10:e2:41:00:fd:3e:
                    59:7e:f4:3e:9b:be:bf:46:d5:a8:e9:c0:88:7c:4f:
                    75:77:c2:26:d9:b0:9e:60:dd:0e:cd:21:07:31:16:
                    e4:ca:ae:1f:c8:7b:5f:5d:40:95:9b:8e:27:a5:38:
                    9c:83:0a:8a:ef:c2:7b:a0:12:8f:53:c4:ea:25:9b:
                    37:87:01:26:da:25:a6:59:85:a2:45:d8:72:f7:83:
                    7a:4a:6a:77:5b:22:96:62:e0:54:e6:25:4f:0e:dc:
                    a9:cb:5e:bd:d4:47:36:8d:f3:5b:7c:e7:ea:3d:84:
                    44:32:71:ed:43:83:53:42:26:85:0d:17:95:fa:dc:
                    53:8d:91:df:e4:ea:c3:4c:c8:23:ca:a5:f8:ef:76:
                    ef:a3:74:5f:96:ae:0b:11:5d:64:1f:7f:50:ba:6b:
                    7f:ea:5a:25:c8:86:d6:60:2d:26:95:cf:9f:ac:7f:
                    49:aa:b1:60:10:f0:83:64:c3:4f:c4:96:3e:6b:09:
                    8d:0d:97:90:01:fd:91:24:68:32:0d:d6:3b:1d:c2:
                    f6:3a:bb:29:f7:02:75:06:f0:24:ef:c3:4a:db:73:
                    17:d0:a3:56:b9:e4:28:59:bc:db:17:46:93:86:a8:
                    ae:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B4:5F:13:EB:85:6D:5F:A5:15:3E:46:CD:B8:DD:7F:C9:DC:C5:01:30
            X509v3 Authority Key Identifier:
                keyid:6C:E5:64:5A:A0:3B:0C:9B:29:07:15:15:53:8E:36:4A:FF:51:72:F4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/97fa08408a8541db6c54279772f066050e91b323.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/608f1497-c989-461d-91bb-de00f3e19f42/68673b4a4110a3bd0579bb5d377311728d7b72fd.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/608f1497-c989-461d-91bb-de00f3e19f42/97fa08408a8541db6c54279772f066050e91b323.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:e040::/32

    Signature Algorithm: sha256WithRSAEncryption
         0b:97:ad:fc:88:0f:71:a2:3a:10:23:34:f4:50:e8:83:78:93:
         3c:49:6e:c1:15:a6:01:c7:39:44:7b:5b:94:de:1b:38:e4:58:
         4f:0e:3f:b4:76:d9:08:e7:4d:4a:b4:26:91:15:25:ee:8e:37:
         18:ac:3c:cc:27:95:bf:b3:19:75:f7:de:c7:2b:38:b1:db:cd:
         22:fb:a9:49:a2:f9:e7:2f:4c:d9:05:b2:c4:df:cb:51:bf:94:
         4f:f1:97:09:e9:99:6b:fb:7c:bb:92:f8:d9:8d:0f:9b:41:27:
         9d:65:02:b6:49:cb:88:48:f9:2f:18:b2:19:ae:df:23:8f:48:
         54:a0:6d:fa:db:b5:ef:c4:f4:62:6f:7a:10:f8:f3:b8:ac:db:
         d2:5f:78:f0:c9:1d:76:7a:3c:53:61:ef:c5:eb:3f:64:64:8d:
         e1:40:e4:31:67:ec:0f:5d:5f:ed:2a:7d:86:97:1c:7c:a0:71:
         16:c8:05:78:06:6a:7b:c7:21:d5:d2:4a:0a:18:03:6a:9b:74:
         5c:c8:48:40:85:cd:27:9a:91:7f:6f:80:cd:6c:a1:36:e6:17:
         64:8a:75:32:f0:3c:4b:c5:bd:f0:7d:93:1f:e4:c6:a5:ff:35:
         c3:5c:d7:61:14:23:b1:1f:01:16:b0:cc:d8:91:29:a3:a3:7c:
         7b:4b:ce:52
-----BEGIN CERTIFICATE-----
MIIFQTCCBCmgAwIBAgIDBSudMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDk3
ZmEwODQwOGE4NTQxZGI2YzU0Mjc5NzcyZjA2NjA1MGU5MWIzMjMwHhcNMjEwMzI0
MTQyOTM4WhcNMjYwMzI0MTQyOTM4WjAzMTEwLwYDVQQDEyg2ODY3M2I0YTQxMTBh
M2JkMDU3OWJiNWQzNzczMTE3MjhkN2I3MmZkMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAgREQlautcTXbmBxotnoM3lZp5paWO9IQ4kEA/T5ZfvQ+m76/
RtWo6cCIfE91d8Im2bCeYN0OzSEHMRbkyq4fyHtfXUCVm44npTicgwqK78J7oBKP
U8TqJZs3hwEm2iWmWYWiRdhy94N6Smp3WyKWYuBU5iVPDtypy1691Ec2jfNbfOfq
PYREMnHtQ4NTQiaFDReV+txTjZHf5OrDTMgjyqX473bvo3Rflq4LEV1kH39Qumt/
6lolyIbWYC0mlc+frH9JqrFgEPCDZMNPxJY+awmNDZeQAf2RJGgyDdY7HcL2Orsp
9wJ1BvAk78NK23MX0KNWueQoWbzbF0aThqiudwIDAQABo4ICXDCCAlgwHQYDVR0O
BBYEFLRfE+uFbV+lFT5Gzbjdf8ncxQEwMB8GA1UdIwQYMBaAFGzlZFqgOwybKQcV
FVOONkr/UXL0MA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvOTdmYTA4
NDA4YTg1NDFkYjZjNTQyNzk3NzJmMDY2MDUwZTkxYjMyMy5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvNjA4ZjE0OTctYzk4OS00NjFkLTkxYmItZGUwMGYz
ZTE5ZjQyLzY4NjczYjRhNDExMGEzYmQwNTc5YmI1ZDM3NzMxMTcyOGQ3YjcyZmQu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy82MDhmMTQ5Ny1jOTg5LTQ2MWQtOTFiYi1kZTAw
ZjNlMTlmNDIvOTdmYTA4NDA4YTg1NDFkYjZjNTQyNzk3NzJmMDY2MDUwZTkxYjMy
My5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQR
MA8wDQQCAAIwBwMFACgD4EAwDQYJKoZIhvcNAQELBQADggEBAAuXrfyID3GiOhAj
NPRQ6IN4kzxJbsEVpgHHOUR7W5TeGzjkWE8OP7R22QjnTUq0JpEVJe6ONxisPMwn
lb+zGXX33scrOLHbzSL7qUmi+ecvTNkFssTfy1G/lE/xlwnpmWv7fLuS+NmND5tB
J51lArZJy4hI+S8Yshmu3yOPSFSgbfrbte/E9GJvehD487is29JfePDJHXZ6PFNh
78XrP2RkjeFA5DFn7A9dX+0qfYaXHHygcRbIBXgGanvHIdXSSgoYA2qbdFzISECF
zSeakX9vgM1soTbmF2SKdTLwPEvFvfB9kx/kxqX/NcNc12EUI7EfARawzNiRKaOj
fHtLzlI=
-----END CERTIFICATE-----
Generated at Fri Feb 23 14:20:42 2024 by rpki-client on console-fra.rpki-client.org