Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7974DF2B4FA6EB74EEC85173F0BA46BD3C1FFD6F1C6F593B41350EA7A5565E78/0/323830333a333563303a3a2f33322d3332203d3e20323635363839.roa
File:                     323830333a333563303a3a2f33322d3332203d3e20323635363839.roa (raw, json)
Hash identifier:          rW23slAAJxuxXj3NTkff/OEVw+yshlEST/PaOs0lFyI=
Subject key identifier:   A3:7B:B2:B8:AE:2C:3D:C7:38:CE:C8:1C:9F:00:AA:F9:A4:40:89:D0
Certificate issuer:       /CN=66D7CB6044C192E36153B39F7AF75BC83FF1DCB6
Certificate serial:       7802748400682DC2B7CD9FFFCA862D08889F7F5F
Authority key identifier: 66:D7:CB:60:44:C1:92:E3:61:53:B3:9F:7A:F7:5B:C8:3F:F1:DC:B6
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/66D7CB6044C192E36153B39F7AF75BC83FF1DCB6.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/7974DF2B4FA6EB74EEC85173F0BA46BD3C1FFD6F1C6F593B41350EA7A5565E78/0/323830333a333563303a3a2f33322d3332203d3e20323635363839.roa
Signing time:             Tue 05 Mar 2024 18:08:36 +0000
ROA not before:           Tue 05 Mar 2024 18:03:36 +0000
ROA not after:            Tue 04 Mar 2025 18:08:36 +0000
asID:                     265689
IP address blocks:        2803:35c0::/32 maxlen: 32

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/7974DF2B4FA6EB74EEC85173F0BA46BD3C1FFD6F1C6F593B41350EA7A5565E78/0/66D7CB6044C192E36153B39F7AF75BC83FF1DCB6.crl
                          rsync://repository.lacnic.net/rpki/lacnic/7974DF2B4FA6EB74EEC85173F0BA46BD3C1FFD6F1C6F593B41350EA7A5565E78/0/66D7CB6044C192E36153B39F7AF75BC83FF1DCB6.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/66D7CB6044C192E36153B39F7AF75BC83FF1DCB6.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Wed 26 Jun 2024 01:51:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            78:02:74:84:00:68:2d:c2:b7:cd:9f:ff:ca:86:2d:08:88:9f:7f:5f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=66D7CB6044C192E36153B39F7AF75BC83FF1DCB6
        Validity
            Not Before: Mar  5 18:03:36 2024 GMT
            Not After : Mar  4 18:08:36 2025 GMT
        Subject: CN=A37BB2B8AE2C3DC738CEC81C9F00AAF9A44089D0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:fd:88:4c:b4:0b:0b:de:f9:8c:9b:de:3d:cc:
                    91:51:a3:21:cc:89:3b:1b:fe:90:16:b6:fb:bb:19:
                    cf:cd:9b:16:95:09:02:5d:96:e6:43:12:ff:0a:88:
                    95:38:35:b0:30:c7:bc:aa:d0:7e:e4:56:12:88:49:
                    62:49:02:ea:cc:10:30:db:2a:8b:a8:00:37:80:93:
                    c3:a8:ce:e6:6a:1a:52:c1:ab:5e:5c:5e:2c:cd:27:
                    c6:3a:68:fc:3e:77:ef:4e:85:a1:44:2e:90:5c:e8:
                    da:88:a8:df:99:82:98:f1:77:76:da:87:59:ad:97:
                    2d:37:f0:32:75:7f:64:50:96:2d:8f:f4:e3:45:91:
                    72:43:73:2c:e2:60:a1:15:cf:85:3c:e7:3e:e5:54:
                    99:de:a1:eb:9c:93:b0:a1:61:ab:a3:c1:10:5a:b5:
                    0e:a1:0f:04:b1:21:b8:ab:ae:57:e0:dc:45:00:3d:
                    a0:1a:58:77:4e:ed:a6:71:bc:c3:a6:a1:34:8c:15:
                    50:1f:e1:30:0f:2f:77:8b:39:c2:f3:e6:67:2f:2f:
                    10:ed:85:bc:e9:e6:29:a3:e3:b6:16:53:da:53:23:
                    cd:03:bd:5c:33:2d:c6:05:aa:76:d3:88:4a:4d:c2:
                    db:48:3f:f8:98:a2:33:97:a3:66:7e:4e:bf:4d:a6:
                    37:29
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A3:7B:B2:B8:AE:2C:3D:C7:38:CE:C8:1C:9F:00:AA:F9:A4:40:89:D0
            X509v3 Authority Key Identifier:
                keyid:66:D7:CB:60:44:C1:92:E3:61:53:B3:9F:7A:F7:5B:C8:3F:F1:DC:B6

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/7974DF2B4FA6EB74EEC85173F0BA46BD3C1FFD6F1C6F593B41350EA7A5565E78/0/66D7CB6044C192E36153B39F7AF75BC83FF1DCB6.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/66D7CB6044C192E36153B39F7AF75BC83FF1DCB6.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7974DF2B4FA6EB74EEC85173F0BA46BD3C1FFD6F1C6F593B41350EA7A5565E78/0/323830333a333563303a3a2f33322d3332203d3e20323635363839.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:35c0::/32

    Signature Algorithm: sha256WithRSAEncryption
         8a:c7:f7:7b:97:16:83:38:86:cd:e5:35:81:2f:0c:92:82:aa:
         94:8e:a5:be:46:0e:b2:b4:39:e2:b8:c1:59:27:6b:2f:c1:fb:
         54:76:19:1a:19:f3:64:12:af:21:b0:f8:19:3b:08:69:a6:2b:
         d6:b7:e2:b1:61:27:c3:2a:39:3a:b9:7b:fb:ad:74:a5:7c:73:
         33:fe:88:85:eb:0b:25:0d:63:9f:cb:f8:25:a4:c2:c6:c6:68:
         9e:a1:e9:13:9f:a3:fa:be:05:8b:b3:2e:a2:5f:f1:3e:58:08:
         a1:09:8d:ab:5e:7f:31:ec:0a:c7:32:9b:cc:b1:8f:df:e9:2d:
         bb:c0:f9:26:a7:5f:e8:ec:18:fd:b8:8b:35:55:d0:cb:82:c3:
         78:d1:23:b3:f0:30:2d:5e:a6:9e:37:8e:08:cc:06:e2:14:c0:
         0a:6b:f3:29:4f:90:63:00:28:6a:62:e1:04:70:37:ba:17:ec:
         b9:23:3e:49:54:70:93:df:ed:e4:01:c4:19:92:77:76:91:df:
         a1:0e:0d:74:8b:6b:c4:8d:c3:a8:cb:38:25:8f:69:48:22:1e:
         6b:a9:33:7f:c1:35:56:9a:9d:20:3d:d8:38:97:f9:ed:ac:59:
         a3:c1:45:91:ea:97:d6:37:c9:43:c5:f6:53:99:7e:8e:02:58:
         17:0c:6a:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 03:12:13 2024 by rpki-client on console-ams.rpki-client.org