Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/651c63b7-e13e-43bf-b010-265cb1f0b182/7383a433ad66e11706b3979ae5c2281b950226f1.roa
File:                     7383a433ad66e11706b3979ae5c2281b950226f1.roa (raw, json)
Hash identifier:          zBtPrytKxwzJOPd6vBTIGOR5oDBgql/d/esojVBrr9U=
Subject key identifier:   45:C1:A0:00:55:D2:6B:37:15:A9:51:13:D6:37:63:84:BD:5B:B1:3A
Certificate issuer:       /CN=2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82
Certificate serial:       090E26
Authority key identifier: 92:B6:4A:50:EF:06:00:D0:23:FF:00:07:AC:5F:C0:FD:73:E1:A9:D3
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/651c63b7-e13e-43bf-b010-265cb1f0b182/7383a433ad66e11706b3979ae5c2281b950226f1.roa
Signing time:             Wed 24 Nov 2021 17:21:05 +0000
ROA not before:           Wed 24 Mar 2021 03:00:00 +0000
ROA not after:            Tue 24 Mar 2026 03:00:00 +0000
asID:                     264668
IP address blocks:        2803:5810::/32 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/651c63b7-e13e-43bf-b010-265cb1f0b182/2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82.crl
                          rsync://repository.lacnic.net/rpki/lacnic/651c63b7-e13e-43bf-b010-265cb1f0b182/2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Wed 06 Mar 2024 06:24:58 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 593446 (0x90e26)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82
        Validity
            Not Before: Mar 24 03:00:00 2021 GMT
            Not After : Mar 24 03:00:00 2026 GMT
        Subject: CN=7383a433ad66e11706b3979ae5c2281b950226f1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:85:b8:48:6f:79:fc:88:d7:db:d6:d3:26:0b:9a:
                    9f:14:d5:7e:f7:d0:bc:61:89:e1:e8:31:cf:40:b8:
                    11:df:2c:56:09:07:77:fb:80:69:5a:5b:17:df:ad:
                    b6:96:2a:a8:a9:14:8f:cc:80:f5:f6:79:4a:ec:0d:
                    64:a5:3c:0f:eb:01:27:83:5e:4a:71:a7:ea:72:7d:
                    18:68:3e:f2:0a:1d:49:44:26:eb:31:fe:48:6a:4a:
                    87:c8:07:47:d1:c5:e0:4c:cd:dd:e0:30:57:37:7c:
                    f6:9d:89:59:d9:78:68:b0:2b:f0:69:ef:a7:c8:ca:
                    4d:02:ba:b0:2e:ad:a6:62:33:c3:07:7b:5b:85:a4:
                    f7:bd:d8:91:ae:d5:13:a1:c3:10:56:6a:5c:d2:95:
                    e1:a4:47:a6:a5:e6:38:db:e6:56:c0:a1:46:84:be:
                    78:4b:87:35:89:2b:b4:cb:e5:a7:63:ce:18:b6:57:
                    3b:c1:0b:b1:2b:0b:4b:bb:9e:74:8e:56:ed:f6:b4:
                    32:c0:dd:f6:dd:0b:01:d0:e0:d0:bc:11:cf:55:1f:
                    f8:1b:e0:ff:01:df:e6:8a:a4:05:c8:d3:41:97:ba:
                    bc:9c:8e:ec:60:dd:60:c9:ab:bf:16:9b:13:ba:c1:
                    48:42:a1:23:e2:e7:0d:64:0e:ca:3a:b0:eb:67:63:
                    2c:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                45:C1:A0:00:55:D2:6B:37:15:A9:51:13:D6:37:63:84:BD:5B:B1:3A
            X509v3 Authority Key Identifier:
                keyid:92:B6:4A:50:EF:06:00:D0:23:FF:00:07:AC:5F:C0:FD:73:E1:A9:D3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/651c63b7-e13e-43bf-b010-265cb1f0b182/7383a433ad66e11706b3979ae5c2281b950226f1.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/651c63b7-e13e-43bf-b010-265cb1f0b182/2b7cd4fbbabfe5565e23150fa6f1ec48b4fd3a82.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:5810::/32

    Signature Algorithm: sha256WithRSAEncryption
         05:a2:39:16:f1:9b:69:12:b7:30:e4:ea:09:99:77:20:b8:c3:
         63:a4:96:e5:ff:86:44:1c:5a:48:4d:fb:d4:7d:f7:97:26:e1:
         9f:72:09:e7:5b:f9:48:bd:8c:ec:3f:76:c9:21:5a:3d:eb:4c:
         a5:40:7b:48:7d:87:65:83:d1:ac:4d:b3:2e:6f:44:fd:e4:24:
         89:b2:32:f8:e2:88:55:a5:92:80:53:90:03:f1:af:c9:b9:93:
         a5:06:97:6d:64:ea:f8:e8:19:e7:f1:16:ae:d4:ff:62:7e:f9:
         77:b2:ee:1b:16:bb:db:ff:b7:6c:41:e8:48:95:65:48:0a:97:
         bd:48:9d:7d:69:ee:a5:8a:2c:4e:05:50:e3:02:77:a8:ec:fe:
         2c:ac:ea:e6:3a:cf:16:00:02:de:f1:77:a0:35:e4:55:76:74:
         32:29:90:36:b5:e2:86:74:9f:8e:7d:df:82:59:9d:26:c5:6a:
         f6:82:16:e2:ee:4c:d6:d4:23:56:0f:83:dd:ab:dc:f9:87:1a:
         51:a6:11:51:f6:ae:27:cc:7b:65:4d:2a:b2:1a:7a:ec:23:25:
         39:33:7b:49:6a:17:7a:53:8c:24:6e:98:f1:e6:d3:18:b7:37:
         ee:31:6c:31:f2:14:bb:68:9c:12:60:88:26:64:9d:53:26:5b:
         86:54:09:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 3 13:24:01 2024 by rpki-client on console-fra.rpki-client.org