Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DE56898DC87FDB54ED5CF0F204F52F7481694B300B9AC6CB0E9687EF940CE7AE/0/323830333a356138303a3a2f33322d3332203d3e20323632393331.roa
File:                     323830333a356138303a3a2f33322d3332203d3e20323632393331.roa (raw, json)
Hash identifier:          OVOPf5KQVPa1OVBubmJzD1vdH28KQFe4yVmhmdz0h/E=
Subject key identifier:   D6:9F:7B:FC:BF:42:8F:5A:8A:CA:00:6A:7F:4A:CF:F6:2A:72:B4:18
Certificate issuer:       /CN=A78765AD08967A6A9A5165858220DC333AEEBF8D
Certificate serial:       4E174096EB7C22B5262F973DF33259A1858EFC27
Authority key identifier: A7:87:65:AD:08:96:7A:6A:9A:51:65:85:82:20:DC:33:3A:EE:BF:8D
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A78765AD08967A6A9A5165858220DC333AEEBF8D.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/DE56898DC87FDB54ED5CF0F204F52F7481694B300B9AC6CB0E9687EF940CE7AE/0/323830333a356138303a3a2f33322d3332203d3e20323632393331.roa
Signing time:             Tue 05 Mar 2024 18:20:58 +0000
ROA not before:           Tue 05 Mar 2024 18:15:58 +0000
ROA not after:            Tue 04 Mar 2025 18:20:58 +0000
asID:                     262931
IP address blocks:        2803:5a80::/32 maxlen: 32

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/DE56898DC87FDB54ED5CF0F204F52F7481694B300B9AC6CB0E9687EF940CE7AE/0/A78765AD08967A6A9A5165858220DC333AEEBF8D.crl
                          rsync://repository.lacnic.net/rpki/lacnic/DE56898DC87FDB54ED5CF0F204F52F7481694B300B9AC6CB0E9687EF940CE7AE/0/A78765AD08967A6A9A5165858220DC333AEEBF8D.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A78765AD08967A6A9A5165858220DC333AEEBF8D.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Thu 20 Jun 2024 02:08:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4e:17:40:96:eb:7c:22:b5:26:2f:97:3d:f3:32:59:a1:85:8e:fc:27
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A78765AD08967A6A9A5165858220DC333AEEBF8D
        Validity
            Not Before: Mar  5 18:15:58 2024 GMT
            Not After : Mar  4 18:20:58 2025 GMT
        Subject: CN=D69F7BFCBF428F5A8ACA006A7F4ACFF62A72B418
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:3b:93:a7:8e:a7:43:ee:ed:87:58:af:c1:24:
                    48:cd:12:f0:a3:08:d1:04:85:92:94:09:17:d0:45:
                    ea:3c:78:a4:08:9f:3e:27:4b:77:bf:26:84:17:1c:
                    b6:9a:e7:54:1b:d9:18:71:64:27:d4:94:bf:27:d6:
                    c1:f7:8f:f4:df:2c:6b:3e:19:ee:bb:15:b3:d7:8f:
                    11:ed:a2:00:9b:a0:36:cd:9a:7f:70:88:fc:21:9c:
                    30:42:00:53:1c:0d:5a:b0:a8:84:eb:66:47:f3:0b:
                    b9:59:e5:06:b9:0f:93:70:f1:61:08:82:6b:65:02:
                    4f:ce:42:c6:ee:64:17:f1:ce:76:b1:69:57:f8:be:
                    ea:5e:26:64:46:e4:c2:9d:46:02:03:46:88:bf:7c:
                    ef:dd:9e:48:8c:74:b0:9c:38:81:f8:fb:32:ee:50:
                    98:85:59:43:3b:f5:60:f9:0b:88:a1:57:e6:e2:48:
                    d4:95:a0:82:94:e8:a7:0c:bf:bd:4b:e4:9c:3b:bb:
                    ad:7c:32:36:7a:9f:51:ef:cf:4d:12:b5:c2:fb:1b:
                    e0:33:20:b2:1a:11:c1:f4:c5:83:5c:29:97:15:66:
                    de:cd:61:74:4d:62:9b:dd:b7:88:e6:91:b9:39:ba:
                    6e:67:f3:fc:07:d8:49:25:12:f1:96:c9:2f:c0:f3:
                    b3:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D6:9F:7B:FC:BF:42:8F:5A:8A:CA:00:6A:7F:4A:CF:F6:2A:72:B4:18
            X509v3 Authority Key Identifier:
                keyid:A7:87:65:AD:08:96:7A:6A:9A:51:65:85:82:20:DC:33:3A:EE:BF:8D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/DE56898DC87FDB54ED5CF0F204F52F7481694B300B9AC6CB0E9687EF940CE7AE/0/A78765AD08967A6A9A5165858220DC333AEEBF8D.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A78765AD08967A6A9A5165858220DC333AEEBF8D.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DE56898DC87FDB54ED5CF0F204F52F7481694B300B9AC6CB0E9687EF940CE7AE/0/323830333a356138303a3a2f33322d3332203d3e20323632393331.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:5a80::/32

    Signature Algorithm: sha256WithRSAEncryption
         6f:79:31:d7:4b:d6:58:d5:bf:cf:f9:87:84:a6:93:02:b3:55:
         0d:61:79:0f:78:db:e3:79:d9:23:1b:fd:05:bf:23:4e:52:74:
         5a:07:fe:b9:3d:3c:05:42:14:d4:29:18:f2:74:6d:fe:db:af:
         21:99:42:9f:e0:07:07:74:45:fb:7a:25:55:3a:49:cd:ae:1a:
         5a:6a:00:ce:ca:e9:d8:69:76:70:32:d2:d7:18:df:55:0e:12:
         ce:8a:59:a8:f9:63:15:ee:bd:d8:2b:74:33:62:a6:4d:63:1a:
         14:a1:ed:3a:db:e7:76:b1:e6:21:dc:90:2c:d4:49:74:bd:3d:
         70:51:44:4e:58:d9:43:f0:cc:fc:d8:67:80:c2:4e:da:12:c5:
         18:4a:b1:7e:cb:d9:b1:e3:9a:fd:09:93:06:6b:e9:e1:72:2f:
         e4:c1:2b:a3:d5:22:43:dc:8f:0b:f2:9d:d8:2f:3a:c5:d3:8e:
         4c:72:b3:e2:97:12:eb:5d:3e:94:4b:21:9f:3c:c3:ff:60:ed:
         b4:33:c8:0e:01:76:1c:af:c9:73:6b:c7:d7:24:71:cf:76:b1:
         b0:60:c6:8d:28:7e:e3:03:62:f5:91:cb:90:c9:46:f9:82:1b:
         55:b3:df:bc:94:47:85:c9:3a:af:08:ef:46:87:38:69:6e:6f:
         35:ca:32:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 23:12:32 2024 by rpki-client on console-ams.rpki-client.org