Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E7233B99D080B49C63C492372ADAEF642843A12A0D69CB14039AF943523A9088/0/323830333a636431303a3a2f33322d3438203d3e203634313338.roa
File:                     323830333a636431303a3a2f33322d3438203d3e203634313338.roa (raw, json)
Hash identifier:          7rtxZokernbR78cNJA7qME38e69pdx0IF4/HtdPevJw=
Subject key identifier:   B3:1A:1F:96:70:29:24:3B:38:02:9D:C9:CB:F6:E2:E1:1F:26:CD:D0
Certificate issuer:       /CN=F27F8EF2828CEB5B65F65287F92E566557B19FDD
Certificate serial:       1A02BC85C739AB4737BCCDF333722811F9E77458
Authority key identifier: F2:7F:8E:F2:82:8C:EB:5B:65:F6:52:87:F9:2E:56:65:57:B1:9F:DD
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F27F8EF2828CEB5B65F65287F92E566557B19FDD.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/E7233B99D080B49C63C492372ADAEF642843A12A0D69CB14039AF943523A9088/0/323830333a636431303a3a2f33322d3438203d3e203634313338.roa
Signing time:             Tue 05 Mar 2024 18:15:47 +0000
ROA not before:           Tue 05 Mar 2024 18:10:47 +0000
ROA not after:            Tue 04 Mar 2025 18:15:47 +0000
asID:                     64138
IP address blocks:        2803:cd10::/32 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/E7233B99D080B49C63C492372ADAEF642843A12A0D69CB14039AF943523A9088/0/F27F8EF2828CEB5B65F65287F92E566557B19FDD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E7233B99D080B49C63C492372ADAEF642843A12A0D69CB14039AF943523A9088/0/F27F8EF2828CEB5B65F65287F92E566557B19FDD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F27F8EF2828CEB5B65F65287F92E566557B19FDD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BCC0665ECF8A97B83E398268D92A255BAE661816.mft
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/BCC0665ECF8A97B83E398268D92A255BAE661816.cer
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.crl
                          rsync://repository.lacnic.net/rpki/lacnic/E5AA1B2C690D34DD3A42E0C0268C3218ED158E15D29FCBD0BAB66B4786D632E6/0/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.mft
                          rsync://repository.lacnic.net/rpki/lacnic/946DAE8464E7C581E9BA5787F74CBDA9DCF6F8CD.cer
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.crl
                          rsync://repository.lacnic.net/rpki/lacnic/FC8A9CB3ED184E17D30EEA1E0FA7615CE4B1AF47.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Wed 17 Jul 2024 00:52:02 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1a:02:bc:85:c7:39:ab:47:37:bc:cd:f3:33:72:28:11:f9:e7:74:58
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F27F8EF2828CEB5B65F65287F92E566557B19FDD
        Validity
            Not Before: Mar  5 18:10:47 2024 GMT
            Not After : Mar  4 18:15:47 2025 GMT
        Subject: CN=B31A1F967029243B38029DC9CBF6E2E11F26CDD0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:87:7a:47:05:ef:a6:30:1d:d2:1a:c2:59:d3:
                    db:0a:1e:c3:bc:a2:a9:0e:d4:a1:a2:08:98:3b:14:
                    d5:82:26:c8:4b:07:ab:fb:07:41:1e:0c:a6:fd:31:
                    fe:9b:d6:24:06:e4:00:dc:79:f7:d2:14:49:c1:ed:
                    8a:3f:47:e8:6b:68:48:4c:c3:e4:0c:20:9f:9d:19:
                    45:12:6d:40:20:72:3c:89:29:23:57:d0:da:f7:ea:
                    7b:79:e5:98:ee:02:93:a9:0f:a6:d3:20:20:fa:92:
                    08:d4:48:6a:d7:ff:f1:b0:22:7b:68:3e:f5:1c:4e:
                    5f:18:a9:ab:6c:58:2e:3a:7c:90:6b:34:bd:93:fa:
                    38:0c:f2:5e:93:c5:a8:34:db:e3:68:cc:7a:7e:3f:
                    b7:33:b1:08:42:3f:3d:b6:23:0c:e1:c3:b3:7f:b9:
                    22:97:67:52:84:68:b5:bf:38:b5:c9:97:a6:34:b2:
                    da:de:af:5f:7f:eb:81:ef:08:31:8a:4f:ce:10:42:
                    f5:a3:a3:8f:36:b0:d5:41:ca:69:e5:a5:c3:85:f5:
                    54:b1:3e:b2:99:59:61:a0:88:08:fb:07:db:48:53:
                    da:42:03:ce:60:fc:84:a0:74:f1:40:e4:9f:ce:97:
                    a9:94:1f:82:39:a1:25:3c:6d:9b:ee:6a:a4:46:57:
                    60:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B3:1A:1F:96:70:29:24:3B:38:02:9D:C9:CB:F6:E2:E1:1F:26:CD:D0
            X509v3 Authority Key Identifier:
                keyid:F2:7F:8E:F2:82:8C:EB:5B:65:F6:52:87:F9:2E:56:65:57:B1:9F:DD

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/E7233B99D080B49C63C492372ADAEF642843A12A0D69CB14039AF943523A9088/0/F27F8EF2828CEB5B65F65287F92E566557B19FDD.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F27F8EF2828CEB5B65F65287F92E566557B19FDD.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E7233B99D080B49C63C492372ADAEF642843A12A0D69CB14039AF943523A9088/0/323830333a636431303a3a2f33322d3438203d3e203634313338.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:cd10::/32

    Signature Algorithm: sha256WithRSAEncryption
         10:48:e2:36:db:7a:5f:79:f3:52:9d:0e:40:b4:0a:bc:7c:7d:
         2c:16:7e:29:cb:3d:2f:1b:4d:6f:a4:c3:fd:83:64:74:e7:cb:
         c9:fb:bb:32:8a:f2:8d:0e:22:47:80:8e:24:02:30:25:b4:73:
         e1:64:c8:ef:ca:80:f3:89:05:6c:47:cb:02:15:b4:d1:50:1c:
         36:5e:be:ea:a0:33:8f:a1:fa:34:16:60:f2:3a:1a:47:ef:e2:
         7f:a0:18:a4:d2:54:7f:99:32:ed:86:bb:fb:87:55:9a:2b:ee:
         3b:1e:49:c6:9f:29:d8:9b:7e:d9:1c:14:a5:fd:6f:6c:2f:8a:
         ae:fb:fd:e7:36:5d:fa:79:06:6f:a2:db:15:bb:53:83:3f:b4:
         c6:de:37:a9:1f:b9:ab:99:b4:1b:11:b3:a4:be:5d:b4:a4:b8:
         c7:64:da:30:26:24:d1:90:c5:85:8c:3a:75:6a:d6:3f:04:2d:
         f9:d7:03:15:54:2e:94:f3:9c:de:c6:24:12:a5:3f:da:86:3e:
         6c:89:c2:ae:57:fe:48:df:8a:25:22:1a:6a:78:0e:01:10:32:
         c6:11:f7:08:14:4d:96:6c:02:06:94:63:5f:25:75:f2:ff:86:
         2e:83:68:67:0f:54:41:3f:61:aa:6d:6c:73:4c:64:9c:e6:2b:
         5a:49:32:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 12 14:20:52 2024 by rpki-client on console-ams.rpki-client.org