Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C0A28BB08EB38D9F687A91BA519566D394D0B227EF344A3DB6064CD624F9D0BA/0/323830333a363038303a3a2f32392d3332203d3e203332393334.roa
File:                     323830333a363038303a3a2f32392d3332203d3e203332393334.roa (raw, json)
Hash identifier:          0adS5ffcy0j3KjwAWIXxoZMjdH24jqK0wgT5CY2xmak=
Subject key identifier:   90:7A:00:AD:70:E4:A2:83:96:BF:B3:53:67:8E:A9:0D:F3:8D:48:D6
Certificate issuer:       /CN=57EE4335FF7D52DB64468C8FA6B4173A9E2635AA
Certificate serial:       14D8E2549E327C6F582AB21F2FEEF5197EC1CF1A
Authority key identifier: 57:EE:43:35:FF:7D:52:DB:64:46:8C:8F:A6:B4:17:3A:9E:26:35:AA
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/57EE4335FF7D52DB64468C8FA6B4173A9E2635AA.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/C0A28BB08EB38D9F687A91BA519566D394D0B227EF344A3DB6064CD624F9D0BA/0/323830333a363038303a3a2f32392d3332203d3e203332393334.roa
Signing time:             Tue 05 Mar 2024 17:46:06 +0000
ROA not before:           Tue 05 Mar 2024 17:41:06 +0000
ROA not after:            Tue 04 Mar 2025 17:46:06 +0000
asID:                     32934
IP address blocks:        2803:6080::/29 maxlen: 32

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/C0A28BB08EB38D9F687A91BA519566D394D0B227EF344A3DB6064CD624F9D0BA/0/57EE4335FF7D52DB64468C8FA6B4173A9E2635AA.crl
                          rsync://repository.lacnic.net/rpki/lacnic/C0A28BB08EB38D9F687A91BA519566D394D0B227EF344A3DB6064CD624F9D0BA/0/57EE4335FF7D52DB64468C8FA6B4173A9E2635AA.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/57EE4335FF7D52DB64468C8FA6B4173A9E2635AA.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 21 Jul 2024 04:10:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            14:d8:e2:54:9e:32:7c:6f:58:2a:b2:1f:2f:ee:f5:19:7e:c1:cf:1a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=57EE4335FF7D52DB64468C8FA6B4173A9E2635AA
        Validity
            Not Before: Mar  5 17:41:06 2024 GMT
            Not After : Mar  4 17:46:06 2025 GMT
        Subject: CN=907A00AD70E4A28396BFB353678EA90DF38D48D6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:4a:a1:1f:cc:c8:1e:93:69:a9:69:5c:68:09:
                    59:f1:47:d4:e8:ef:3a:8e:b3:c1:ae:ab:b5:4d:92:
                    c8:10:bb:2b:7f:0c:01:07:24:3b:f1:58:40:c5:a5:
                    6a:63:af:4f:1a:ea:60:5f:47:14:20:db:41:8d:3e:
                    84:57:43:76:8e:d6:83:8a:7f:18:fc:02:e5:e0:a9:
                    6e:44:39:bf:6a:88:d4:f7:de:fd:a0:cc:1a:a0:b4:
                    21:27:9b:8f:cf:d9:59:16:e0:97:34:da:ba:47:4f:
                    f4:7a:5a:06:57:bc:21:8f:89:45:66:e6:ed:12:ac:
                    06:46:56:61:6a:a3:24:5e:5c:38:1f:62:b8:30:fb:
                    ec:e8:81:8a:20:0e:60:f2:6d:de:13:9b:5e:9b:c8:
                    e6:76:60:43:32:3e:27:e1:11:a3:c7:d7:63:6a:66:
                    cf:8e:6f:be:f4:65:ab:02:52:e2:15:eb:c0:b4:08:
                    12:d3:e9:57:69:fc:e9:63:49:f4:90:08:60:91:76:
                    f7:e2:db:d0:00:e0:e3:ee:62:ea:8f:96:ce:27:74:
                    4a:ec:93:fc:38:1c:81:cc:70:90:4f:e0:ad:76:3f:
                    b5:c3:af:24:f5:38:bc:25:2d:f7:78:a9:e5:74:42:
                    e2:df:23:1a:f9:5a:35:9e:b6:ec:2c:78:91:36:03:
                    ea:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                90:7A:00:AD:70:E4:A2:83:96:BF:B3:53:67:8E:A9:0D:F3:8D:48:D6
            X509v3 Authority Key Identifier:
                keyid:57:EE:43:35:FF:7D:52:DB:64:46:8C:8F:A6:B4:17:3A:9E:26:35:AA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/C0A28BB08EB38D9F687A91BA519566D394D0B227EF344A3DB6064CD624F9D0BA/0/57EE4335FF7D52DB64468C8FA6B4173A9E2635AA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/57EE4335FF7D52DB64468C8FA6B4173A9E2635AA.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C0A28BB08EB38D9F687A91BA519566D394D0B227EF344A3DB6064CD624F9D0BA/0/323830333a363038303a3a2f32392d3332203d3e203332393334.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:6080::/29

    Signature Algorithm: sha256WithRSAEncryption
         9b:da:98:78:69:7d:55:67:58:29:dd:5f:c5:cd:c4:8c:e9:8e:
         1e:1c:cc:15:fe:f4:85:00:ef:be:94:58:2c:47:54:55:ac:f2:
         17:e0:db:1f:62:ea:f8:5b:e8:00:5e:c7:53:33:59:7e:8e:4a:
         5e:56:54:ea:c2:3d:09:61:96:13:7a:e6:33:41:a7:70:58:08:
         4f:16:07:18:95:72:6e:b1:3d:8f:1d:da:52:79:c2:1f:d9:77:
         df:d7:25:d3:87:13:be:bc:48:5c:3d:a2:5d:9b:78:a6:f0:0d:
         5d:23:4c:83:e4:7c:5d:fb:bb:12:8c:7f:ca:d0:91:48:6f:89:
         9c:a2:3b:5b:8c:59:7a:36:9f:db:51:b4:f6:b6:87:45:c0:4a:
         39:96:cd:e9:ce:a7:ad:6a:30:84:47:c0:03:6a:d7:c3:42:a9:
         19:97:98:c3:96:13:ba:e9:4d:39:be:90:77:a1:e9:67:8a:b9:
         2a:d7:4c:e0:58:72:ea:c7:1a:df:bc:d7:8a:be:fd:9c:69:ad:
         45:e6:b2:9d:3a:ec:30:9f:cc:27:88:33:81:10:35:f3:57:eb:
         62:f1:92:cf:4b:df:58:35:68:25:c0:57:18:ca:2f:93:bc:ff:
         11:f0:63:a6:f0:35:01:b9:da:04:2c:69:f8:6d:88:01:70:90:
         f4:2f:7e:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 17 18:13:10 2024 by rpki-client on console-fra.rpki-client.org