Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/CD249A638DDF26FCCA4E323B7A36B7EA28290D4313369036F42DB54976722E49/0/323830303a36383a31643a3a2f34382d3438203d3e203232373234.roa
File:                     323830303a36383a31643a3a2f34382d3438203d3e203232373234.roa (raw, json)
Hash identifier:          q1U9mAWiHglYeRVGvfNQME3o3f6e8BMgQFKSAT1r1C0=
Subject key identifier:   BD:E7:27:37:A1:69:35:E6:FC:AE:E4:DA:E1:94:4C:BD:A5:41:24:4D
Certificate issuer:       /CN=12608F449BBF3F86819F95307654EF5D740A9084
Certificate serial:       56FAC4B44E070470EDBBD670044E0264F380F4A3
Authority key identifier: 12:60:8F:44:9B:BF:3F:86:81:9F:95:30:76:54:EF:5D:74:0A:90:84
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/12608F449BBF3F86819F95307654EF5D740A9084.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/CD249A638DDF26FCCA4E323B7A36B7EA28290D4313369036F42DB54976722E49/0/323830303a36383a31643a3a2f34382d3438203d3e203232373234.roa
Signing time:             Thu 25 Jun 2026 17:49:46 +0000
ROA not before:           Thu 25 Jun 2026 17:44:46 +0000
ROA not after:            Thu 24 Jun 2027 17:49:46 +0000
asID:                     22724
IP address blocks:        2800:68:1d::/48 maxlen: 48
Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/CD249A638DDF26FCCA4E323B7A36B7EA28290D4313369036F42DB54976722E49/0/12608F449BBF3F86819F95307654EF5D740A9084.crl
                          rsync://repository.lacnic.net/rpki/lacnic/CD249A638DDF26FCCA4E323B7A36B7EA28290D4313369036F42DB54976722E49/0/12608F449BBF3F86819F95307654EF5D740A9084.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/12608F449BBF3F86819F95307654EF5D740A9084.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/F25A1B7D8F7ADF94C0DEBE8FEAC1C3BCD6058678.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 06 Jul 2026 21:06:33 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            56:fa:c4:b4:4e:07:04:70:ed:bb:d6:70:04:4e:02:64:f3:80:f4:a3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=12608F449BBF3F86819F95307654EF5D740A9084
        Validity
            Not Before: Jun 25 17:44:46 2026 GMT
            Not After : Jun 24 17:49:46 2027 GMT
        Subject: CN=BDE72737A16935E6FCAEE4DAE1944CBDA541244D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:27:70:d1:d6:24:21:7a:f9:7d:f4:a4:b2:d9:
                    dc:b6:61:3e:c5:35:a9:72:9d:c1:59:a8:a2:7e:79:
                    eb:b8:29:eb:32:65:72:75:c3:a1:2b:6e:59:18:8f:
                    68:12:2d:d6:29:df:75:09:93:d3:fa:a4:b6:cc:52:
                    9a:65:a6:5c:54:9f:be:2c:61:40:f7:2f:80:c9:42:
                    a4:77:5d:5b:8a:d1:64:e0:b2:4c:19:f9:06:fd:19:
                    41:07:12:42:a6:c1:ec:29:e4:e0:1e:ef:6d:cf:bf:
                    dd:5a:3f:8d:aa:a5:13:e3:67:87:7d:bb:4c:ee:38:
                    49:c7:fb:a7:d3:3f:54:f4:62:e1:6f:3a:ee:07:6d:
                    54:52:e6:c3:bb:b6:a5:48:f5:d9:b9:35:c0:f8:19:
                    e9:23:f2:60:37:14:65:51:82:b6:41:b4:1d:29:5c:
                    39:11:f4:97:02:7f:a9:d4:d8:15:2e:bb:f6:a3:c0:
                    7d:3c:d5:b0:d9:35:bc:39:18:8e:60:af:f1:fd:86:
                    0a:0a:d2:64:e3:16:e1:51:7d:45:08:6a:21:71:38:
                    f0:5e:a7:4a:85:e7:dd:f6:ee:3b:17:ff:ac:a2:7d:
                    14:a5:48:6a:e3:9f:9d:6a:f6:11:0a:2a:01:01:3e:
                    bf:60:da:af:d2:ec:88:89:b2:ae:56:b4:c6:6c:73:
                    a9:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BD:E7:27:37:A1:69:35:E6:FC:AE:E4:DA:E1:94:4C:BD:A5:41:24:4D
            X509v3 Authority Key Identifier:
                keyid:12:60:8F:44:9B:BF:3F:86:81:9F:95:30:76:54:EF:5D:74:0A:90:84

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/CD249A638DDF26FCCA4E323B7A36B7EA28290D4313369036F42DB54976722E49/0/12608F449BBF3F86819F95307654EF5D740A9084.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/12608F449BBF3F86819F95307654EF5D740A9084.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/CD249A638DDF26FCCA4E323B7A36B7EA28290D4313369036F42DB54976722E49/0/323830303a36383a31643a3a2f34382d3438203d3e203232373234.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2800:68:1d::/48

    Signature Algorithm: sha256WithRSAEncryption
         40:76:be:be:a1:7e:49:84:99:bb:73:57:6b:a4:1e:09:83:88:
         2e:fa:3e:73:97:01:5d:01:53:e2:a7:a4:cc:2b:85:93:35:07:
         6d:b6:0f:2c:46:59:0b:4a:78:c9:84:37:07:e9:f0:18:12:ca:
         b6:6b:6b:a9:0a:28:b5:ea:b8:2f:5e:55:06:e1:90:6a:f8:7b:
         11:42:4b:b6:f6:20:70:31:27:13:18:6e:67:f1:6e:07:8b:f5:
         46:1d:93:fc:7f:c0:5d:f0:56:3e:24:f6:b9:ae:17:45:09:41:
         de:9a:f5:62:f2:e4:4a:f3:70:23:bc:fa:6b:a4:2b:1c:68:61:
         4a:f6:22:24:0e:f6:c1:36:f7:e5:bf:f6:c3:7b:19:c3:1f:ac:
         20:2b:1c:6c:ae:e2:3f:47:62:94:b8:5a:97:40:4d:2a:7d:3a:
         34:a4:dd:01:4e:43:31:44:7f:38:28:d6:d3:50:c1:7f:74:01:
         01:1a:a3:0d:fb:b6:dc:69:e0:01:1b:c2:4e:7f:f9:75:dc:52:
         95:1c:45:e0:0b:b5:13:c5:b0:3b:35:b9:00:de:ed:e3:59:6a:
         08:fb:e2:8b:12:9e:25:87:65:32:9a:17:c1:0f:6a:41:cb:6c:
         18:9f:a8:81:7d:8d:99:aa:17:1f:32:97:ae:aa:8f:f0:01:a4:
         4a:38:45:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 3 01:56:32 2026 by rpki-client