Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/77c83e45-ffb0-42f8-a908-0d266d215315/4e207a68b6f2b891856569776f7f56e08bb034e8.roa
File:                     4e207a68b6f2b891856569776f7f56e08bb034e8.roa (raw, json)
Hash identifier:          6bSB9QbQ/Rl6cIiBpsufL4gOazU+hzN2TFVnNkpmC8o=
Subject key identifier:   C3:B7:53:8C:2C:D4:E3:2E:80:41:3F:0D:3A:FA:51:62:A2:D6:46:9C
Certificate issuer:       /CN=9e1a5c9112a6778b03ecbe7e3f183d31dc1409b5
Certificate serial:       0135CA
Authority key identifier: E3:1A:B6:20:87:9E:DA:4F:7D:62:CD:37:F9:31:94:87:79:5A:C2:DB
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/9e1a5c9112a6778b03ecbe7e3f183d31dc1409b5.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/77c83e45-ffb0-42f8-a908-0d266d215315/4e207a68b6f2b891856569776f7f56e08bb034e8.roa
Signing time:             Thu 01 Jun 2023 16:21:50 +0000
ROA not before:           Wed 31 May 2023 16:21:50 +0000
ROA not after:            Sun 01 Jun 2025 16:21:50 +0000
asID:                     19429
IP address blocks:        2801:13:d808::/48 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/77c83e45-ffb0-42f8-a908-0d266d215315/9e1a5c9112a6778b03ecbe7e3f183d31dc1409b5.crl
                          rsync://repository.lacnic.net/rpki/lacnic/77c83e45-ffb0-42f8-a908-0d266d215315/9e1a5c9112a6778b03ecbe7e3f183d31dc1409b5.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/9e1a5c9112a6778b03ecbe7e3f183d31dc1409b5.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 04 Mar 2024 17:26:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 79306 (0x135ca)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9e1a5c9112a6778b03ecbe7e3f183d31dc1409b5
        Validity
            Not Before: May 31 16:21:50 2023 GMT
            Not After : Jun  1 16:21:50 2025 GMT
        Subject: CN=4e207a68b6f2b891856569776f7f56e08bb034e8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:81:a5:f6:54:51:02:5b:82:c3:69:df:e1:9a:f1:
                    c4:d0:85:49:fc:3a:c5:66:0e:3c:6b:d5:12:71:a6:
                    86:7e:23:da:68:64:c6:9d:18:09:df:cf:d6:68:f6:
                    39:b7:76:c2:ad:2a:1d:e3:a0:8e:53:09:43:55:ff:
                    57:81:dc:4c:1e:cb:fd:23:70:ca:6a:1a:2e:19:01:
                    34:53:94:9c:bf:a9:7f:73:6d:29:60:ad:61:98:3c:
                    03:b0:b9:77:85:ab:a4:0b:cc:cc:ca:e9:b5:26:62:
                    d6:84:dc:09:70:bd:5f:70:16:2b:c3:32:6e:5b:e1:
                    f8:8c:ae:6e:4c:a7:66:40:3f:da:cb:27:2c:e0:f0:
                    92:aa:88:57:ed:08:85:f0:00:88:38:03:bf:76:07:
                    4b:7c:e0:50:e5:b5:8f:b3:5b:6d:dd:62:16:29:ea:
                    a5:4b:23:17:92:d7:9f:59:3c:a2:54:c6:c8:ab:ca:
                    23:2b:75:be:16:bb:92:eb:e4:dd:e3:ba:42:21:38:
                    61:9d:43:f7:e0:c3:22:1a:a0:e0:f4:cd:d6:f2:47:
                    23:c7:58:16:f5:37:5e:2d:ae:27:bc:b1:ed:5b:f8:
                    a8:1c:09:1b:48:a1:8f:70:e9:62:10:e4:2e:1a:72:
                    f8:71:d6:3a:38:8d:b0:c5:35:48:69:b5:a9:b7:1c:
                    76:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C3:B7:53:8C:2C:D4:E3:2E:80:41:3F:0D:3A:FA:51:62:A2:D6:46:9C
            X509v3 Authority Key Identifier:
                keyid:E3:1A:B6:20:87:9E:DA:4F:7D:62:CD:37:F9:31:94:87:79:5A:C2:DB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/9e1a5c9112a6778b03ecbe7e3f183d31dc1409b5.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/77c83e45-ffb0-42f8-a908-0d266d215315/4e207a68b6f2b891856569776f7f56e08bb034e8.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/77c83e45-ffb0-42f8-a908-0d266d215315/9e1a5c9112a6778b03ecbe7e3f183d31dc1409b5.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2801:13:d808::/48

    Signature Algorithm: sha256WithRSAEncryption
         18:bc:e3:c6:0c:b7:41:5e:35:47:f4:43:da:01:50:b2:ef:e2:
         a8:54:e8:1a:d0:0a:45:47:88:94:bc:b9:52:7b:19:b0:e3:e2:
         77:6c:ab:d0:54:09:54:e9:38:58:65:40:6b:a1:8c:64:b8:9d:
         b3:4c:91:de:a3:34:53:03:1b:0a:45:b0:b7:b9:9f:bf:58:ae:
         07:c9:63:b5:0f:1e:45:75:fb:1c:97:a6:38:7e:62:c3:62:4f:
         b3:b7:54:3c:20:c4:18:32:35:78:e0:af:c5:6c:fe:2e:66:27:
         e3:70:25:19:ba:92:5e:e1:cd:33:f7:a5:40:35:77:a0:24:b2:
         9b:8f:8f:19:64:64:14:3e:12:88:26:34:ef:1d:bc:d9:ff:dc:
         1d:51:18:b6:7d:f8:7b:4f:e3:c2:50:a3:77:68:ea:69:b2:a1:
         34:11:db:93:d0:5f:6e:0a:b2:c6:81:ae:3e:f2:90:90:00:03:
         8f:e4:a0:d3:1b:8d:57:9e:24:3b:2b:11:2c:b9:27:c9:b4:1e:
         ec:ca:fe:53:74:29:40:b9:aa:fb:42:6b:bf:5b:76:7d:a7:71:
         16:9e:d3:84:ba:06:0c:e9:64:63:3d:c5:8e:72:ac:dc:7b:88:
         13:58:77:56:69:7b:73:03:84:b8:b0:ce:df:67:07:e4:c4:c1:
         22:95:24:d7
-----BEGIN CERTIFICATE-----
MIIFQzCCBCugAwIBAgIDATXKMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDll
MWE1YzkxMTJhNjc3OGIwM2VjYmU3ZTNmMTgzZDMxZGMxNDA5YjUwHhcNMjMwNTMx
MTYyMTUwWhcNMjUwNjAxMTYyMTUwWjAzMTEwLwYDVQQDEyg0ZTIwN2E2OGI2ZjJi
ODkxODU2NTY5Nzc2ZjdmNTZlMDhiYjAzNGU4MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAgaX2VFECW4LDad/hmvHE0IVJ/DrFZg48a9UScaaGfiPaaGTG
nRgJ38/WaPY5t3bCrSod46COUwlDVf9XgdxMHsv9I3DKahouGQE0U5Scv6l/c20p
YK1hmDwDsLl3haukC8zMyum1JmLWhNwJcL1fcBYrwzJuW+H4jK5uTKdmQD/ayycs
4PCSqohX7QiF8ACIOAO/dgdLfOBQ5bWPs1tt3WIWKeqlSyMXktefWTyiVMbIq8oj
K3W+FruS6+Td47pCIThhnUP34MMiGqDg9M3W8kcjx1gW9TdeLa4nvLHtW/ioHAkb
SKGPcOliEOQuGnL4cdY6OI2wxTVIabWptxx2JwIDAQABo4ICXjCCAlowHQYDVR0O
BBYEFMO3U4ws1OMugEE/DTr6UWKi1kacMB8GA1UdIwQYMBaAFOMatiCHntpPfWLN
N/kxlId5WsLbMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvOWUxYTVj
OTExMmE2Nzc4YjAzZWNiZTdlM2YxODNkMzFkYzE0MDliNS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvNzdjODNlNDUtZmZiMC00MmY4LWE5MDgtMGQyNjZk
MjE1MzE1LzRlMjA3YTY4YjZmMmI4OTE4NTY1Njk3NzZmN2Y1NmUwOGJiMDM0ZTgu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy83N2M4M2U0NS1mZmIwLTQyZjgtYTkwOC0wZDI2
NmQyMTUzMTUvOWUxYTVjOTExMmE2Nzc4YjAzZWNiZTdlM2YxODNkMzFkYzE0MDli
NS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQT
MBEwDwQCAAIwCQMHACgBABPYCDANBgkqhkiG9w0BAQsFAAOCAQEAGLzjxgy3QV41
R/RD2gFQsu/iqFToGtAKRUeIlLy5UnsZsOPid2yr0FQJVOk4WGVAa6GMZLids0yR
3qM0UwMbCkWwt7mfv1iuB8ljtQ8eRXX7HJemOH5iw2JPs7dUPCDEGDI1eOCvxWz+
LmYn43AlGbqSXuHNM/elQDV3oCSym4+PGWRkFD4SiCY07x282f/cHVEYtn34e0/j
wlCjd2jqabKhNBHbk9BfbgqyxoGuPvKQkAADj+Sg0xuNV54kOysRLLknybQe7Mr+
U3QpQLmq+0Jrv1t2fadxFp7ThLoGDOlkYz3FjnKs3HuIE1h3Vml7cwOEuLDO32cH
5MTBIpUk1w==
-----END CERTIFICATE-----
Generated at Fri Mar 1 23:42:05 2024 by rpki-client on console-ams.rpki-client.org