Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/81A266F8152CBB106F1FEFE167201B2DF81CE38502EB834FF9E421D83E728469/0/323830333a613963303a3a2f33322d3438203d3e20323635383139.roa
File:                     323830333a613963303a3a2f33322d3438203d3e20323635383139.roa (raw, json)
Hash identifier:          5pSPvmDhWMONHiaYX+jcvlh2kQnQfAYHgeLBcvubEUc=
Subject key identifier:   B6:E7:FD:E3:D1:A9:6E:0A:43:CB:D6:5B:A1:65:38:60:AF:60:B6:15
Certificate issuer:       /CN=16423C98CF2548839D74EFD9FB7304F4DAB4AE75
Certificate serial:       09AB8901CBB9E5F6D4276F17A65B00AA14190102
Authority key identifier: 16:42:3C:98:CF:25:48:83:9D:74:EF:D9:FB:73:04:F4:DA:B4:AE:75
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/16423C98CF2548839D74EFD9FB7304F4DAB4AE75.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/81A266F8152CBB106F1FEFE167201B2DF81CE38502EB834FF9E421D83E728469/0/323830333a613963303a3a2f33322d3438203d3e20323635383139.roa
Signing time:             Tue 05 Mar 2024 18:21:17 +0000
ROA not before:           Tue 05 Mar 2024 18:16:17 +0000
ROA not after:            Tue 04 Mar 2025 18:21:17 +0000
asID:                     265819
IP address blocks:        2803:a9c0::/32 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/81A266F8152CBB106F1FEFE167201B2DF81CE38502EB834FF9E421D83E728469/0/16423C98CF2548839D74EFD9FB7304F4DAB4AE75.crl
                          rsync://repository.lacnic.net/rpki/lacnic/81A266F8152CBB106F1FEFE167201B2DF81CE38502EB834FF9E421D83E728469/0/16423C98CF2548839D74EFD9FB7304F4DAB4AE75.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/16423C98CF2548839D74EFD9FB7304F4DAB4AE75.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 09 Sep 2024 07:27:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            09:ab:89:01:cb:b9:e5:f6:d4:27:6f:17:a6:5b:00:aa:14:19:01:02
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=16423C98CF2548839D74EFD9FB7304F4DAB4AE75
        Validity
            Not Before: Mar  5 18:16:17 2024 GMT
            Not After : Mar  4 18:21:17 2025 GMT
        Subject: CN=B6E7FDE3D1A96E0A43CBD65BA1653860AF60B615
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:38:06:e4:a4:e4:60:5d:e1:39:ee:11:d9:9a:
                    36:c4:ab:47:2b:50:94:ac:a3:ff:f9:07:31:2d:6c:
                    98:af:67:48:fa:8f:d4:57:37:64:f7:8f:01:dd:85:
                    85:46:c4:6b:73:4b:2b:f4:96:0b:ba:f8:06:9e:fa:
                    8e:85:70:f0:df:e1:c8:60:9d:91:3e:70:63:f0:28:
                    4f:6c:9c:52:b0:40:e5:3c:6f:ed:a5:02:e9:2f:8f:
                    78:41:5c:df:bd:0a:a7:c7:66:d5:ab:ab:09:e5:3e:
                    49:3e:24:44:b6:74:b2:b2:75:1a:17:90:20:dc:b2:
                    3a:3a:bf:d5:e3:af:09:82:5c:36:b2:33:d1:7b:77:
                    2c:df:fa:83:d1:9a:88:ee:ba:6f:04:cf:ec:14:52:
                    28:6f:dc:8f:e5:2b:94:6c:07:76:af:ed:f9:89:a8:
                    2f:28:3d:60:21:6d:f5:7f:38:1d:51:53:38:4b:0b:
                    7c:ea:2a:e3:14:14:bf:15:b6:fb:4b:05:fb:89:a9:
                    f8:43:1b:95:86:08:79:b8:05:2b:b1:72:da:45:4b:
                    00:3f:bf:55:f9:28:b2:ec:78:fe:bc:89:29:39:24:
                    39:2f:26:b1:68:45:4f:f8:58:ef:1f:88:eb:7d:4c:
                    4d:81:d4:71:23:f7:5c:46:a5:9c:86:cf:b9:62:51:
                    a5:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B6:E7:FD:E3:D1:A9:6E:0A:43:CB:D6:5B:A1:65:38:60:AF:60:B6:15
            X509v3 Authority Key Identifier:
                keyid:16:42:3C:98:CF:25:48:83:9D:74:EF:D9:FB:73:04:F4:DA:B4:AE:75

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/81A266F8152CBB106F1FEFE167201B2DF81CE38502EB834FF9E421D83E728469/0/16423C98CF2548839D74EFD9FB7304F4DAB4AE75.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/16423C98CF2548839D74EFD9FB7304F4DAB4AE75.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/81A266F8152CBB106F1FEFE167201B2DF81CE38502EB834FF9E421D83E728469/0/323830333a613963303a3a2f33322d3438203d3e20323635383139.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:a9c0::/32

    Signature Algorithm: sha256WithRSAEncryption
         6c:8b:84:d2:f5:22:da:1f:af:4b:b6:f0:4a:a0:4a:f5:92:a2:
         a7:78:e9:35:d4:66:48:aa:0d:36:d6:04:4a:de:61:09:12:ec:
         02:e2:a0:94:8e:15:f2:69:53:61:14:62:e9:e6:31:68:23:82:
         32:d0:5d:ab:dd:f4:a1:42:43:c0:02:cf:db:b0:7d:60:63:33:
         b3:5d:50:31:ac:a2:30:bd:4f:a4:16:b4:0f:2e:cd:a3:3b:bd:
         b5:ad:59:94:02:37:a4:c7:55:14:b5:79:79:60:e9:9f:f4:59:
         2d:04:2e:0a:15:14:f4:c7:26:45:7f:8e:09:f9:b8:7f:e2:96:
         7e:7d:71:ad:dd:ad:98:13:87:3b:2a:5c:16:88:c1:e7:67:bd:
         a2:cc:93:1d:06:3d:da:dd:74:ca:93:5c:ee:d5:cd:ee:db:92:
         53:de:a4:4e:62:0d:f8:30:14:71:9f:91:33:13:0e:ff:7e:76:
         71:5e:e6:f1:6f:6c:16:af:46:28:13:70:57:22:ca:47:82:6b:
         c0:0c:63:c0:55:29:4d:f2:e1:fb:35:28:07:78:9e:9c:e9:02:
         f8:af:7d:61:3c:6a:15:0e:28:67:1a:e2:85:0c:a6:a2:21:0f:
         14:85:52:75:54:30:c0:97:a2:3e:dc:3f:16:4a:c3:8f:11:86:
         dd:09:78:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 6 00:32:01 2024 by rpki-client on console-fra.rpki-client.org