Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/323830313a3161353a353a3a2f34382d3438203d3e20323733303431.roa
File:                     323830313a3161353a353a3a2f34382d3438203d3e20323733303431.roa (raw, json)
Hash identifier:          /vIhQ4d9OH6JfXA87KcTRmX9WzUorBFoUTOlIKHPal4=
Subject key identifier:   5D:A8:75:77:3A:CE:43:2C:A2:C3:E2:B5:5A:1E:CC:96:48:5F:C2:63
Certificate issuer:       /CN=D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E
Certificate serial:       612CB36DDCBC778CF030166C49A19BB95CACCE6C
Authority key identifier: D8:B2:2F:03:33:B8:F6:4A:EF:4F:95:D7:6A:23:E4:5D:9D:53:0D:1E
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/323830313a3161353a353a3a2f34382d3438203d3e20323733303431.roa
Signing time:             Tue 05 Mar 2024 17:54:02 +0000
ROA not before:           Tue 05 Mar 2024 17:49:02 +0000
ROA not after:            Tue 04 Mar 2025 17:54:02 +0000
asID:                     273041
IP address blocks:        2801:1a5:5::/48 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.crl
                          rsync://repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Tue 18 Jun 2024 10:43:01 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            61:2c:b3:6d:dc:bc:77:8c:f0:30:16:6c:49:a1:9b:b9:5c:ac:ce:6c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E
        Validity
            Not Before: Mar  5 17:49:02 2024 GMT
            Not After : Mar  4 17:54:02 2025 GMT
        Subject: CN=5DA875773ACE432CA2C3E2B55A1ECC96485FC263
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9a:7a:33:a2:b6:21:2c:4e:15:aa:d7:4c:86:3e:
                    79:de:71:87:07:d8:42:ef:e8:82:f3:f4:64:39:43:
                    f7:91:cd:e0:0e:f2:3c:db:4b:5d:18:5d:f5:13:22:
                    35:85:13:32:cd:43:b6:cd:4a:c9:49:22:1e:5f:74:
                    70:e5:ce:74:c4:de:b9:cc:a1:42:b2:2a:75:15:5f:
                    fc:92:f9:6b:da:82:d1:28:85:ce:ce:5e:cf:f1:25:
                    fc:e0:41:f6:15:28:be:55:b9:6f:f4:96:71:e5:e4:
                    07:b3:1d:2e:9c:5e:1f:1c:3c:44:57:49:7e:65:20:
                    13:2a:2d:b4:ca:ed:44:8d:2b:d1:79:76:95:f4:da:
                    e5:3c:fe:e3:ad:f9:d6:cf:49:df:60:f1:2a:99:1a:
                    43:7f:fa:da:d1:15:ab:9c:06:99:d7:f2:bb:f5:a8:
                    53:1a:58:0f:cc:79:6b:90:df:6b:a0:8c:b2:a9:d9:
                    65:bd:50:13:90:16:fc:9e:de:6f:f4:08:ad:f3:80:
                    f7:55:ac:78:02:1f:bb:b1:8e:17:52:7b:a1:31:f2:
                    cd:06:19:d4:1a:2f:b9:0f:4a:ad:02:00:42:02:ed:
                    41:f1:14:43:5d:1c:71:eb:3e:d9:c3:a3:2c:2e:a8:
                    60:32:3c:d5:1b:3d:07:c5:37:4e:6e:08:27:64:a1:
                    d5:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5D:A8:75:77:3A:CE:43:2C:A2:C3:E2:B5:5A:1E:CC:96:48:5F:C2:63
            X509v3 Authority Key Identifier:
                keyid:D8:B2:2F:03:33:B8:F6:4A:EF:4F:95:D7:6A:23:E4:5D:9D:53:0D:1E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/D8B22F0333B8F64AEF4F95D76A23E45D9D530D1E.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7B4AA68B181AA124E2833D86B0ABC160C2CE76C81C69568AB0E784FBF644E486/0/323830313a3161353a353a3a2f34382d3438203d3e20323733303431.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2801:1a5:5::/48

    Signature Algorithm: sha256WithRSAEncryption
         23:9f:a5:ca:91:13:73:9a:46:b0:f0:84:99:07:d7:19:af:7a:
         d5:02:98:29:09:9f:5c:d9:99:cd:5c:cd:9d:b1:05:32:3a:f8:
         c7:8d:7d:25:2a:d3:2c:1c:86:69:3d:54:61:5f:b8:02:d3:d0:
         6d:af:f6:10:35:71:1a:96:77:8b:1e:49:21:83:a1:a3:24:4f:
         3b:c0:67:8d:b6:58:a9:b5:06:8c:ca:8c:2b:59:a1:ff:e0:db:
         2b:81:4e:d0:9f:21:68:df:6b:73:16:25:2f:7c:c0:83:96:f8:
         2b:fb:9d:9e:c5:ab:a2:07:14:fa:70:1d:10:14:4d:4e:29:b0:
         c9:0a:0e:c5:25:3f:d0:b9:f1:64:23:5b:2e:06:94:3c:59:97:
         5c:0b:1c:f3:c6:14:70:bb:4f:0e:81:de:00:70:31:c4:79:52:
         4e:5b:74:fa:cf:b1:1e:3c:3c:84:cb:5c:09:dc:01:c3:12:67:
         63:d8:ec:a8:db:27:05:c7:c3:98:ee:e0:a1:c4:3d:aa:5f:3e:
         89:e8:6b:d1:d2:0f:fa:59:ee:9a:af:c2:58:a9:51:37:bc:3b:
         d5:6d:46:31:a6:c4:0b:50:01:e2:e3:89:7a:5b:c2:f9:bf:6e:
         db:08:db:e9:f7:ae:0c:63:67:57:95:59:4e:0c:ca:85:6c:ce:
         3a:ff:56:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 14 06:15:40 2024 by rpki-client on console-fra.rpki-client.org