Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9955cf3b-ce62-43d2-ab27-1b8f295d8c50/fba49e1ccabdcbc0767cef6e82e3851091f4bce7.roa
File:                     fba49e1ccabdcbc0767cef6e82e3851091f4bce7.roa (raw, json)
Hash identifier:          lj/hw05E2hMWtMbpm//GxYwZKGj/0uM/kzhZe8zOGwM=
Subject key identifier:   97:45:0D:79:06:E7:98:3B:32:C9:35:BC:A5:A7:74:8A:CA:68:45:4F
Certificate issuer:       /CN=783d029e237a30dbc95cd789213bb47bceb4d0cf
Certificate serial:       0C7EF8
Authority key identifier: 81:DA:4B:28:03:BA:E5:6A:86:03:B5:27:64:C2:60:D2:3B:47:5B:3B
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/783d029e237a30dbc95cd789213bb47bceb4d0cf.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/9955cf3b-ce62-43d2-ab27-1b8f295d8c50/fba49e1ccabdcbc0767cef6e82e3851091f4bce7.roa
Signing time:             Tue 31 Oct 2023 20:59:32 +0000
ROA not before:           Tue 31 Oct 2023 20:59:32 +0000
ROA not after:            Fri 31 Oct 2025 20:59:32 +0000
asID:                     52320
IP address blocks:        2803:f910::/32 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/9955cf3b-ce62-43d2-ab27-1b8f295d8c50/783d029e237a30dbc95cd789213bb47bceb4d0cf.crl
                          rsync://repository.lacnic.net/rpki/lacnic/9955cf3b-ce62-43d2-ab27-1b8f295d8c50/783d029e237a30dbc95cd789213bb47bceb4d0cf.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/783d029e237a30dbc95cd789213bb47bceb4d0cf.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Tue 05 Mar 2024 04:16:49 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 818936 (0xc7ef8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=783d029e237a30dbc95cd789213bb47bceb4d0cf
        Validity
            Not Before: Oct 31 20:59:32 2023 GMT
            Not After : Oct 31 20:59:32 2025 GMT
        Subject: CN=fba49e1ccabdcbc0767cef6e82e3851091f4bce7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8a:d3:4e:dd:b6:6d:17:ca:2c:50:52:05:ec:3e:
                    38:da:f2:44:19:d0:26:d8:03:5d:87:ee:f1:90:22:
                    1f:73:31:bf:88:4d:a8:a9:5b:8b:34:ed:4a:2c:1e:
                    ca:f7:b0:ab:15:c4:d4:31:bc:e5:ee:a1:d8:ca:99:
                    a0:0e:35:29:d0:43:d4:11:b2:02:f0:68:2f:d9:72:
                    44:01:d3:12:52:b4:83:29:cf:25:3e:ff:20:60:2f:
                    b5:04:f1:d8:07:2c:f8:3a:47:51:f5:57:c7:a9:9b:
                    92:1a:06:f0:a4:0f:30:5a:96:36:0c:18:cd:ed:84:
                    71:16:19:9f:03:dc:64:b8:ad:7e:c9:68:8f:04:9e:
                    de:07:8e:84:c5:b4:95:36:56:25:8d:05:50:91:ce:
                    95:7e:34:50:80:ff:ef:7c:3a:64:40:8b:74:3a:c6:
                    23:a0:bb:fc:bb:55:45:54:12:c1:14:3c:0a:6d:7f:
                    db:cf:a2:1b:61:7d:f2:3b:9d:82:11:81:89:5a:c6:
                    36:7e:77:cc:88:72:28:39:05:10:31:76:71:69:39:
                    99:27:39:68:7f:8d:dd:60:8e:7c:cf:46:a8:12:15:
                    4d:7d:1c:a3:55:af:a2:80:da:c5:df:07:87:aa:f6:
                    90:9e:d9:f4:70:9a:b3:38:fa:4a:a8:a8:0b:a3:e8:
                    3c:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                97:45:0D:79:06:E7:98:3B:32:C9:35:BC:A5:A7:74:8A:CA:68:45:4F
            X509v3 Authority Key Identifier:
                keyid:81:DA:4B:28:03:BA:E5:6A:86:03:B5:27:64:C2:60:D2:3B:47:5B:3B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/783d029e237a30dbc95cd789213bb47bceb4d0cf.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9955cf3b-ce62-43d2-ab27-1b8f295d8c50/fba49e1ccabdcbc0767cef6e82e3851091f4bce7.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/9955cf3b-ce62-43d2-ab27-1b8f295d8c50/783d029e237a30dbc95cd789213bb47bceb4d0cf.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:f910::/32

    Signature Algorithm: sha256WithRSAEncryption
         99:ec:10:b2:31:41:02:cc:80:ab:bf:4f:29:6f:43:c3:f5:be:
         7d:32:5c:71:9c:20:e9:43:9e:09:28:f2:a8:0d:ab:69:4f:c9:
         56:b4:9a:b0:74:e9:58:9a:5a:81:f8:31:be:a9:f9:bb:b6:a4:
         ef:86:79:9f:e5:29:a5:fd:4b:8f:08:50:5b:90:03:7f:c3:3d:
         ef:84:99:db:4e:e1:4a:36:99:86:91:18:10:a2:90:75:90:69:
         86:f2:9b:26:d2:92:f3:9a:ac:66:e9:01:02:54:d2:af:2e:7d:
         0d:61:ba:67:21:b2:50:e2:97:8e:97:46:3a:6e:5f:a3:c1:a2:
         83:cf:b2:a0:a9:5a:3d:ce:a2:33:6b:b7:62:b2:d2:84:09:d8:
         65:f2:b4:5f:6d:51:d2:bb:6d:ec:43:f9:53:4a:71:01:12:01:
         0d:d4:c0:1a:e9:09:16:5d:2a:9e:b9:74:eb:f3:f6:25:4d:94:
         c0:4f:7d:9b:02:23:98:7f:c2:4e:28:79:bb:b0:cf:0b:8f:b1:
         3d:40:4c:52:3f:6b:b9:76:94:7f:87:10:b2:cd:78:58:3f:77:
         b1:fb:02:3d:8c:49:d4:ca:88:70:90:bb:91:48:57:e6:e1:9f:
         a2:dd:07:60:8d:a2:95:e3:80:f8:21:ce:9d:7e:af:8f:30:4d:
         ef:76:f9:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 2 03:29:51 2024 by rpki-client on console-fra.rpki-client.org