Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/DF71DA80B542C583081AEBBB46A5FB11E44BFA3A1558EE5752389C9D7165A89D/0/323830333a343332303a3a2f33322d3332203d3e20323636373334.roa
File:                     323830333a343332303a3a2f33322d3332203d3e20323636373334.roa (raw, json)
Hash identifier:          93gELLk3wLApXq4JV0HCBW3c2SZKiPoeGbd79cQWrLo=
Subject key identifier:   22:98:34:28:9D:44:43:26:09:3C:A2:EB:DE:DA:DE:DB:C6:47:11:9C
Certificate issuer:       /CN=17635987A6691105242D437D62AE03F09EC477A5
Certificate serial:       2B337B080831D34753DB2892E4D88EBE68BD3282
Authority key identifier: 17:63:59:87:A6:69:11:05:24:2D:43:7D:62:AE:03:F0:9E:C4:77:A5
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/17635987A6691105242D437D62AE03F09EC477A5.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/DF71DA80B542C583081AEBBB46A5FB11E44BFA3A1558EE5752389C9D7165A89D/0/323830333a343332303a3a2f33322d3332203d3e20323636373334.roa
Signing time:             Tue 05 Mar 2024 18:14:33 +0000
ROA not before:           Tue 05 Mar 2024 18:09:33 +0000
ROA not after:            Tue 04 Mar 2025 18:14:33 +0000
asID:                     266734
IP address blocks:        2803:4320::/32 maxlen: 32

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/DF71DA80B542C583081AEBBB46A5FB11E44BFA3A1558EE5752389C9D7165A89D/0/17635987A6691105242D437D62AE03F09EC477A5.crl
                          rsync://repository.lacnic.net/rpki/lacnic/DF71DA80B542C583081AEBBB46A5FB11E44BFA3A1558EE5752389C9D7165A89D/0/17635987A6691105242D437D62AE03F09EC477A5.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/17635987A6691105242D437D62AE03F09EC477A5.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sat 23 Nov 2024 22:22:51 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2b:33:7b:08:08:31:d3:47:53:db:28:92:e4:d8:8e:be:68:bd:32:82
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=17635987A6691105242D437D62AE03F09EC477A5
        Validity
            Not Before: Mar  5 18:09:33 2024 GMT
            Not After : Mar  4 18:14:33 2025 GMT
        Subject: CN=229834289D444326093CA2EBDEDADEDBC647119C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8b:c9:34:8b:c9:81:ab:94:39:b8:99:49:ee:13:
                    d7:41:15:fc:1b:be:01:13:22:23:dc:a9:ed:0d:8e:
                    2c:cc:2d:f2:45:8b:3b:dc:36:d6:f4:50:b3:f3:b9:
                    a4:15:72:01:35:e1:00:42:0b:c9:4a:49:2d:2c:5c:
                    3a:5a:e1:80:c6:94:d1:22:64:cd:86:19:6a:3b:da:
                    2b:fd:d7:29:ac:84:0d:dd:87:d2:44:40:c4:fc:fb:
                    2b:cd:a1:f5:52:db:46:2f:55:5d:62:b0:7c:63:3c:
                    f7:ec:9b:32:c6:b4:96:83:34:9b:43:40:b7:4a:d1:
                    df:d5:4b:94:16:be:0c:65:5c:10:7b:a5:41:45:df:
                    54:67:ee:18:d7:df:9d:06:f8:95:49:f3:46:23:c2:
                    bd:62:9a:3d:7c:6f:25:1b:1b:6e:46:44:52:c1:b1:
                    e9:35:e0:2e:66:1a:99:22:ac:63:41:a4:43:fd:b7:
                    16:01:aa:f6:d1:78:7e:ec:45:60:e5:33:97:8d:f3:
                    5b:6d:a5:66:80:0f:cb:8c:56:bf:de:5a:a8:3b:f5:
                    37:70:86:a7:ac:c4:2d:dc:54:89:87:1c:5a:81:eb:
                    03:76:d2:2a:29:2c:19:3d:bf:cf:9f:aa:4d:bb:e2:
                    f3:4d:51:74:33:a4:5c:d9:50:ea:80:d2:40:f4:14:
                    96:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                22:98:34:28:9D:44:43:26:09:3C:A2:EB:DE:DA:DE:DB:C6:47:11:9C
            X509v3 Authority Key Identifier:
                keyid:17:63:59:87:A6:69:11:05:24:2D:43:7D:62:AE:03:F0:9E:C4:77:A5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/DF71DA80B542C583081AEBBB46A5FB11E44BFA3A1558EE5752389C9D7165A89D/0/17635987A6691105242D437D62AE03F09EC477A5.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/17635987A6691105242D437D62AE03F09EC477A5.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/DF71DA80B542C583081AEBBB46A5FB11E44BFA3A1558EE5752389C9D7165A89D/0/323830333a343332303a3a2f33322d3332203d3e20323636373334.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:4320::/32

    Signature Algorithm: sha256WithRSAEncryption
         5e:cd:77:4e:31:8e:d6:03:c5:56:38:8a:0f:db:06:9b:12:38:
         22:e5:b4:5e:b7:f4:41:04:27:85:d8:25:6d:86:10:52:26:0c:
         ed:53:a0:97:0b:8b:65:ce:c4:cd:89:ab:a0:55:a9:cc:98:eb:
         99:a3:34:8d:3f:ca:8f:41:bb:90:39:e6:d5:40:26:dd:01:e9:
         47:1f:62:76:cf:97:ee:36:d1:92:92:d9:dd:b5:28:bc:c4:0d:
         a4:92:ba:d0:ed:39:eb:08:69:7e:1d:76:c5:97:cf:e6:66:bc:
         2c:66:ae:16:cb:da:51:aa:53:e1:0d:af:f5:f1:7d:14:4c:ef:
         bd:e8:a1:55:c7:51:f7:e9:4c:68:c1:e8:e1:ba:9c:36:0f:e5:
         92:83:c3:63:79:e2:a1:50:e1:ec:2e:d3:f5:fe:a5:b5:73:bc:
         24:fd:0c:32:65:3e:dc:67:b3:3b:bd:c1:47:cc:17:b6:fd:07:
         21:a4:1a:f6:74:8e:0d:a7:a4:2b:3d:df:d6:a5:6f:ae:1f:37:
         8f:58:59:0e:e5:ec:64:8c:84:2f:43:58:9c:01:07:47:99:76:
         e2:d0:40:da:95:a4:d0:77:37:4c:d7:96:f7:9c:7f:e9:62:e1:
         be:b6:5e:fc:6d:ca:ac:6c:bc:ad:98:f1:0c:cc:26:8d:1d:26:
         be:05:c3:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 20:04:33 2024 by rpki-client on console-fra.rpki-client.org