Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7e5504d7-1a40-43f8-b6bb-36c782f1a848/b9b9a6a228b4f2f495f64bc407e115b51ebff4cc.roa
File:                     b9b9a6a228b4f2f495f64bc407e115b51ebff4cc.roa (raw, json)
Hash identifier:          SaRTysTO1drbQtTYLFXMmAD8yMCdfIKM6my+SJ5Rnuo=
Subject key identifier:   B7:22:02:5B:42:52:12:DB:E8:90:CC:F8:B4:01:BA:19:AB:D7:05:E1
Certificate issuer:       /CN=3412449a934b8459db5d421617e014290aa33b9d
Certificate serial:       0CF030
Authority key identifier: 6D:47:6F:A3:09:CC:24:11:D6:D6:B2:6E:44:01:DE:4F:1F:E8:A6:A2
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3412449a934b8459db5d421617e014290aa33b9d.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/7e5504d7-1a40-43f8-b6bb-36c782f1a848/b9b9a6a228b4f2f495f64bc407e115b51ebff4cc.roa
Signing time:             Wed 24 Mar 2021 14:45:21 +0000
ROA not before:           Wed 24 Mar 2021 14:45:21 +0000
ROA not after:            Tue 24 Mar 2026 14:45:21 +0000
asID:                     3551
IP address blocks:        2001:1368::/32 maxlen: 32

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/7e5504d7-1a40-43f8-b6bb-36c782f1a848/3412449a934b8459db5d421617e014290aa33b9d.crl
                          rsync://repository.lacnic.net/rpki/lacnic/7e5504d7-1a40-43f8-b6bb-36c782f1a848/3412449a934b8459db5d421617e014290aa33b9d.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3412449a934b8459db5d421617e014290aa33b9d.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 03 Mar 2024 11:46:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 847920 (0xcf030)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3412449a934b8459db5d421617e014290aa33b9d
        Validity
            Not Before: Mar 24 14:45:21 2021 GMT
            Not After : Mar 24 14:45:21 2026 GMT
        Subject: CN=b9b9a6a228b4f2f495f64bc407e115b51ebff4cc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:0f:df:a8:b5:a4:a2:f9:31:1b:8b:af:01:35:
                    4e:cd:c8:47:3e:60:fa:64:5f:2f:0b:41:a9:02:88:
                    96:64:6e:e1:f2:56:1e:60:8a:43:b7:a5:d2:9b:df:
                    31:66:51:25:98:fc:8d:1f:4a:08:6c:a4:7c:81:db:
                    ec:cc:f3:eb:c9:1c:fe:95:ae:a9:9d:98:73:b9:d8:
                    78:4a:7a:79:6e:53:c5:15:7e:05:51:2f:2b:13:18:
                    38:f0:b0:dd:a5:b7:1d:31:a9:02:35:1f:90:aa:f9:
                    f0:53:c7:fd:4b:fb:66:4b:c9:60:87:09:2b:39:41:
                    73:da:96:27:28:ba:78:61:6b:8e:f2:1a:c8:b4:9d:
                    7b:1b:b4:c4:a9:2a:91:d1:af:31:77:a8:5a:88:02:
                    32:41:9c:88:1e:16:f8:81:2b:f7:01:e5:e5:7b:09:
                    2b:bb:39:ca:d7:be:ca:1f:b1:1d:eb:a6:74:ba:e9:
                    91:bc:bd:3f:b7:df:8b:e9:37:89:33:c4:3d:91:c6:
                    f0:cb:21:bd:81:1d:11:41:36:fd:08:f6:fd:21:0c:
                    63:dc:e7:11:68:32:58:70:64:62:d1:42:ae:9e:a3:
                    85:c9:de:ef:84:94:ff:65:cd:55:8f:91:66:58:9a:
                    c1:1b:c8:de:3a:ce:fb:a6:b3:ba:4b:33:7c:e8:cc:
                    5e:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B7:22:02:5B:42:52:12:DB:E8:90:CC:F8:B4:01:BA:19:AB:D7:05:E1
            X509v3 Authority Key Identifier:
                keyid:6D:47:6F:A3:09:CC:24:11:D6:D6:B2:6E:44:01:DE:4F:1F:E8:A6:A2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3412449a934b8459db5d421617e014290aa33b9d.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7e5504d7-1a40-43f8-b6bb-36c782f1a848/b9b9a6a228b4f2f495f64bc407e115b51ebff4cc.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/7e5504d7-1a40-43f8-b6bb-36c782f1a848/3412449a934b8459db5d421617e014290aa33b9d.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2001:1368::/32

    Signature Algorithm: sha256WithRSAEncryption
         05:c9:d3:e8:ca:b7:5d:4c:1f:cc:9e:5d:cf:6f:c1:04:a2:91:
         aa:18:b2:e2:e5:f2:ea:a4:17:f0:fe:14:fb:8d:65:14:57:21:
         03:7f:94:1c:61:10:ae:71:ec:4b:1e:b7:b4:58:0b:c5:72:4d:
         82:d4:fc:04:ba:1e:a1:2c:30:2f:a8:4c:97:e2:f9:6e:59:da:
         b7:42:b9:23:8a:17:b9:75:4e:6d:08:7d:a1:63:29:96:1f:80:
         cb:ca:0a:4e:47:bf:dc:73:53:5e:93:fd:25:be:41:88:4c:5b:
         c3:1f:09:51:5f:cb:f8:c3:3a:9c:39:11:77:b3:60:39:86:49:
         26:89:9e:b8:5b:fe:bf:d9:b8:b3:64:85:c2:7c:11:26:9a:f1:
         bc:ba:6e:4f:44:84:ef:0c:42:b8:74:c2:d6:bd:d4:bd:f3:54:
         83:ae:ea:a0:4a:f5:df:a2:33:0c:fa:85:98:2a:58:4f:cc:2f:
         29:ad:bb:b3:5e:1a:1c:b9:0a:e5:ae:b5:80:44:17:80:3c:0a:
         d7:49:28:80:5d:9f:90:45:f2:76:b9:cd:7c:32:e4:5a:78:b6:
         ac:ee:88:20:0d:db:06:20:c8:d1:1e:83:b7:23:d8:5c:28:38:
         75:c2:c2:b5:65:90:cf:55:05:75:fb:6b:ab:13:b0:f2:7f:37:
         76:b6:ed:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 19:38:11 2024 by rpki-client on console-fra.rpki-client.org