Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/77c83e45-ffb0-42f8-a908-0d266d215315/b2745c1291ba5aedd7688f6fc382feee644c87e2.roa
File:                     b2745c1291ba5aedd7688f6fc382feee644c87e2.roa (raw, json)
Hash identifier:          kB5evFRMoy0oeQEA4uiXH7NrcCufBJVuR4IqdYw1y2s=
Subject key identifier:   64:B1:F9:BC:B2:09:54:53:EF:C9:83:20:8A:96:FF:A5:FF:48:75:6D
Certificate issuer:       /CN=9e1a5c9112a6778b03ecbe7e3f183d31dc1409b5
Certificate serial:       D4D6
Authority key identifier: E3:1A:B6:20:87:9E:DA:4F:7D:62:CD:37:F9:31:94:87:79:5A:C2:DB
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/9e1a5c9112a6778b03ecbe7e3f183d31dc1409b5.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/77c83e45-ffb0-42f8-a908-0d266d215315/b2745c1291ba5aedd7688f6fc382feee644c87e2.roa
Signing time:             Thu 18 May 2023 23:50:13 +0000
ROA not before:           Wed 17 May 2023 23:50:13 +0000
ROA not after:            Sun 18 May 2025 23:50:13 +0000
asID:                     14080
IP address blocks:        2801:13:d800::/48 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/77c83e45-ffb0-42f8-a908-0d266d215315/9e1a5c9112a6778b03ecbe7e3f183d31dc1409b5.crl
                          rsync://repository.lacnic.net/rpki/lacnic/77c83e45-ffb0-42f8-a908-0d266d215315/9e1a5c9112a6778b03ecbe7e3f183d31dc1409b5.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/9e1a5c9112a6778b03ecbe7e3f183d31dc1409b5.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 04 Mar 2024 17:26:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 54486 (0xd4d6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9e1a5c9112a6778b03ecbe7e3f183d31dc1409b5
        Validity
            Not Before: May 17 23:50:13 2023 GMT
            Not After : May 18 23:50:13 2025 GMT
        Subject: CN=b2745c1291ba5aedd7688f6fc382feee644c87e2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:80:7f:11:fe:19:00:97:fb:38:0b:16:71:d4:6e:
                    ac:1a:39:45:9a:4a:40:e7:4c:22:10:cf:24:76:81:
                    c6:0d:fa:03:db:8f:12:4a:d0:67:43:18:7c:37:5b:
                    cd:a1:6d:f9:fe:60:ea:93:20:73:0b:07:02:ea:50:
                    87:38:7d:e8:e9:55:54:a7:b3:e9:e1:ff:46:c3:31:
                    c8:f2:36:b8:4e:3e:85:fb:f3:77:9b:03:47:15:a1:
                    36:68:84:0a:27:ca:ca:56:5c:67:8b:22:ce:1a:18:
                    e8:fc:6c:5d:28:ae:35:cd:69:7a:2e:df:4f:f5:a5:
                    f4:29:7c:51:ae:a1:4f:33:6e:57:40:8f:80:db:e1:
                    b7:49:70:c4:d9:ff:7b:d0:44:9b:1f:b3:f3:e2:b0:
                    f9:c6:92:23:b5:5a:b3:32:89:f6:02:c0:d5:9a:64:
                    d7:81:87:60:c9:91:6d:6a:00:cf:92:55:ef:00:16:
                    b0:76:96:a2:c1:11:bf:a9:27:d4:97:fc:0c:2f:df:
                    8b:51:54:63:40:73:a4:6b:da:e4:24:18:51:88:87:
                    25:f8:cd:bd:4e:3d:00:04:e0:7c:6e:17:1b:6d:54:
                    92:47:21:a8:36:d9:c6:81:dc:be:68:1d:4f:04:38:
                    55:c2:9f:ad:85:d6:50:89:a8:0e:b9:d1:21:45:48:
                    f2:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:B1:F9:BC:B2:09:54:53:EF:C9:83:20:8A:96:FF:A5:FF:48:75:6D
            X509v3 Authority Key Identifier:
                keyid:E3:1A:B6:20:87:9E:DA:4F:7D:62:CD:37:F9:31:94:87:79:5A:C2:DB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/9e1a5c9112a6778b03ecbe7e3f183d31dc1409b5.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/77c83e45-ffb0-42f8-a908-0d266d215315/b2745c1291ba5aedd7688f6fc382feee644c87e2.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/77c83e45-ffb0-42f8-a908-0d266d215315/9e1a5c9112a6778b03ecbe7e3f183d31dc1409b5.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2801:13:d800::/48

    Signature Algorithm: sha256WithRSAEncryption
         5c:71:fc:bf:39:ce:a6:47:a4:b3:dc:9a:c0:c2:e0:86:66:e1:
         e0:48:ba:fe:de:19:f7:ae:90:fb:bd:20:4c:1a:d9:50:6f:2d:
         23:44:71:c0:75:33:0b:16:4f:91:cc:31:69:b0:5b:95:d5:2e:
         1a:df:34:0a:97:c5:7c:1a:bd:30:5d:85:25:95:e7:4f:d0:dd:
         e9:64:77:b4:6a:1b:7d:45:08:6c:2c:e3:42:e4:65:ea:68:71:
         f5:84:de:c5:d5:13:39:40:a1:ca:dd:a0:1d:07:46:4c:a7:3f:
         e3:5f:7d:2b:c4:b5:81:8d:e0:b3:1c:57:96:2d:8d:43:16:e3:
         b7:ff:eb:02:54:df:16:95:2f:4b:b4:a7:e7:ed:6a:93:83:82:
         98:90:d8:34:c9:d3:b0:79:f5:3f:b1:82:75:8c:2e:40:d6:74:
         7b:f5:01:0a:99:b7:c1:d2:bd:74:cd:bb:90:a4:24:a9:50:a1:
         46:b9:6b:1d:4f:35:3b:ca:99:2e:a7:ad:5c:97:57:62:61:8f:
         79:50:17:84:03:5a:66:10:43:f7:2f:03:20:71:dd:9f:c7:03:
         87:0e:e7:89:41:fc:ec:b2:30:c1:e6:cd:43:2b:b1:e8:68:b1:
         81:5e:02:36:5c:49:f6:76:0a:8d:22:34:5f:82:e3:1c:3d:d4:
         56:dd:4d:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 1 23:33:44 2024 by rpki-client on console-fra.rpki-client.org