Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D51E710FF13F37B1CA129726FAFCC6032A15D2141234C847B7D13ECB1A95A1D5/0/323830333a363939303a3a2f33322d3438203d3e20323732393531.roa
File:                     323830333a363939303a3a2f33322d3438203d3e20323732393531.roa (raw, json)
Hash identifier:          cxj8Tn2mImj7OkYy8iyNgOA72c0zD+L4T3JbZh67ncc=
Subject key identifier:   93:B8:C5:75:53:54:65:9A:78:3D:94:BE:8D:A1:E7:1A:E0:62:19:F1
Certificate issuer:       /CN=1B5472FEF5D7D950AB298EDD41DEB0D22CA7FE25
Certificate serial:       741BC85803BE13514F3DD0C500A5D0070C29653F
Authority key identifier: 1B:54:72:FE:F5:D7:D9:50:AB:29:8E:DD:41:DE:B0:D2:2C:A7:FE:25
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1B5472FEF5D7D950AB298EDD41DEB0D22CA7FE25.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/D51E710FF13F37B1CA129726FAFCC6032A15D2141234C847B7D13ECB1A95A1D5/0/323830333a363939303a3a2f33322d3438203d3e20323732393531.roa
Signing time:             Fri 22 Mar 2024 17:15:00 +0000
ROA not before:           Fri 22 Mar 2024 17:10:00 +0000
ROA not after:            Fri 21 Mar 2025 17:15:00 +0000
asID:                     272951
IP address blocks:        2803:6990::/32 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/D51E710FF13F37B1CA129726FAFCC6032A15D2141234C847B7D13ECB1A95A1D5/0/1B5472FEF5D7D950AB298EDD41DEB0D22CA7FE25.crl
                          rsync://repository.lacnic.net/rpki/lacnic/D51E710FF13F37B1CA129726FAFCC6032A15D2141234C847B7D13ECB1A95A1D5/0/1B5472FEF5D7D950AB298EDD41DEB0D22CA7FE25.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1B5472FEF5D7D950AB298EDD41DEB0D22CA7FE25.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Fri 21 Jun 2024 08:25:54 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            74:1b:c8:58:03:be:13:51:4f:3d:d0:c5:00:a5:d0:07:0c:29:65:3f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1B5472FEF5D7D950AB298EDD41DEB0D22CA7FE25
        Validity
            Not Before: Mar 22 17:10:00 2024 GMT
            Not After : Mar 21 17:15:00 2025 GMT
        Subject: CN=93B8C5755354659A783D94BE8DA1E71AE06219F1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ae:4e:1a:7b:f6:dd:a6:43:bb:f9:f0:e2:58:2f:
                    b1:a1:2d:82:5b:ac:1c:52:5b:e5:a0:a5:13:4b:50:
                    42:22:f0:41:34:47:59:a2:2a:aa:d9:9b:8b:70:26:
                    c8:9b:2a:59:67:e8:14:95:07:0d:68:57:ba:aa:50:
                    ed:82:44:79:e5:79:52:3b:7c:f7:ef:cf:cd:a4:57:
                    6b:f4:d5:84:54:49:15:cc:45:15:d1:00:38:cf:1b:
                    a3:be:c2:5b:a1:a6:78:30:e8:e8:cb:2f:cc:73:ee:
                    71:20:5e:d4:c4:bb:df:a3:9c:e1:ee:28:78:47:15:
                    9a:58:1b:55:2e:ca:b3:35:e0:f9:03:ff:c1:b3:08:
                    1b:3b:9b:c0:0d:65:f9:5e:f2:2d:3a:be:1d:ce:62:
                    eb:6c:8d:9b:32:b3:84:40:47:c5:a2:80:22:5d:ab:
                    cc:73:39:f3:70:2a:1b:8b:87:1b:04:9c:d5:45:ef:
                    39:42:c0:69:c8:d6:6b:22:46:c5:14:1c:d0:55:95:
                    bf:5b:90:cc:66:07:dc:72:f5:73:1c:84:12:8c:61:
                    be:af:57:5f:d1:76:cd:7f:f3:54:aa:9d:5e:ee:37:
                    6c:df:05:72:03:bf:74:b6:06:7a:53:d7:b3:19:fc:
                    58:84:09:42:87:6b:62:b7:30:e3:a0:a7:01:3f:c2:
                    34:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:B8:C5:75:53:54:65:9A:78:3D:94:BE:8D:A1:E7:1A:E0:62:19:F1
            X509v3 Authority Key Identifier:
                keyid:1B:54:72:FE:F5:D7:D9:50:AB:29:8E:DD:41:DE:B0:D2:2C:A7:FE:25

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/D51E710FF13F37B1CA129726FAFCC6032A15D2141234C847B7D13ECB1A95A1D5/0/1B5472FEF5D7D950AB298EDD41DEB0D22CA7FE25.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1B5472FEF5D7D950AB298EDD41DEB0D22CA7FE25.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D51E710FF13F37B1CA129726FAFCC6032A15D2141234C847B7D13ECB1A95A1D5/0/323830333a363939303a3a2f33322d3438203d3e20323732393531.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:6990::/32

    Signature Algorithm: sha256WithRSAEncryption
         80:48:5f:2e:7e:1d:02:3d:1b:4f:af:0f:85:73:c3:16:ac:87:
         22:41:8c:f9:b8:d5:f2:22:d9:0c:69:0c:11:4f:93:5c:0c:78:
         4f:33:b2:29:e6:45:23:db:32:8b:d5:9b:fc:47:4e:5f:4d:3f:
         3f:71:4c:58:06:c2:14:ee:76:f0:85:0a:d1:9b:a3:e4:94:c9:
         3e:1b:3b:55:bb:ee:23:e8:cf:2e:9a:d2:4e:c7:3f:f3:08:b1:
         0a:3e:70:12:60:80:7d:24:8c:ef:63:df:04:7a:e3:f6:16:72:
         c7:f4:9d:29:38:cb:db:27:ec:94:4d:2a:bb:46:82:4c:94:40:
         ad:c9:e8:ce:cd:08:03:6c:4f:ab:84:2c:bd:51:4e:32:18:1e:
         07:af:28:5f:6e:aa:aa:6a:05:24:aa:0c:97:ee:e2:85:ea:62:
         16:57:ed:bc:91:2a:c1:8e:15:98:b6:67:92:a2:b3:9b:d7:e3:
         25:43:13:84:3e:fd:86:28:61:73:dd:d9:a3:9c:e9:2e:94:4b:
         05:90:24:01:f8:2b:f5:ec:39:12:8c:2b:bb:48:ee:cf:b4:2e:
         dc:56:b1:2d:06:46:ed:de:5e:39:c1:2b:34:d7:8d:e4:48:29:
         23:92:51:2a:6a:6b:52:97:13:53:d5:d8:ee:bb:ad:1d:d5:07:
         d7:01:77:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 17 08:41:05 2024 by rpki-client on console-ams.rpki-client.org