Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/a62741c7-9707-48d4-9c97-b911a8b1dfd2/db84bb55aef3f9d18e5754afddb535fe5535569b.roa
File:                     db84bb55aef3f9d18e5754afddb535fe5535569b.roa (raw, json)
Hash identifier:          4F4k55vt5T/9Gq4dmEAKYNUh6xN+TN5Wi/5FKBXA9Ok=
Subject key identifier:   38:1D:69:D7:2F:76:E3:FB:5B:6D:43:B9:D9:64:BA:E7:B7:84:88:84
Certificate issuer:       /CN=71ccf671605b5e725ec595356fba462b15442130
Certificate serial:       0ECBFE
Authority key identifier: 2D:E9:45:5E:83:A4:22:32:AA:48:E7:4D:83:18:15:F8:A7:8B:5F:C1
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/71ccf671605b5e725ec595356fba462b15442130.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/a62741c7-9707-48d4-9c97-b911a8b1dfd2/db84bb55aef3f9d18e5754afddb535fe5535569b.roa
Signing time:             Wed 13 Jul 2022 18:03:39 +0000
ROA not before:           Wed 13 Jul 2022 03:00:00 +0000
ROA not after:            Tue 13 Jul 2027 03:00:00 +0000
asID:                     271813
IP address blocks:        2803:f010::/32 maxlen: 32

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/a62741c7-9707-48d4-9c97-b911a8b1dfd2/71ccf671605b5e725ec595356fba462b15442130.crl
                          rsync://repository.lacnic.net/rpki/lacnic/a62741c7-9707-48d4-9c97-b911a8b1dfd2/71ccf671605b5e725ec595356fba462b15442130.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/71ccf671605b5e725ec595356fba462b15442130.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 19:38:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 969726 (0xecbfe)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=71ccf671605b5e725ec595356fba462b15442130
        Validity
            Not Before: Jul 13 03:00:00 2022 GMT
            Not After : Jul 13 03:00:00 2027 GMT
        Subject: CN=db84bb55aef3f9d18e5754afddb535fe5535569b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:ab:f2:c9:a5:4e:a5:fd:5f:c9:85:4b:7e:a4:
                    8e:cd:9d:75:c2:27:ca:27:a4:00:02:09:b9:c7:6e:
                    ab:d5:36:70:fc:b2:1d:f6:2e:c1:35:83:95:55:a8:
                    f5:58:83:43:48:49:62:77:29:5b:06:a5:59:bf:95:
                    fc:df:37:68:ca:53:3f:df:13:31:03:64:f8:3b:6e:
                    11:8a:a7:87:bc:3d:9a:c6:b2:e4:46:e2:59:4e:1d:
                    74:4f:78:9f:05:79:f8:64:0b:bc:58:8d:c8:08:d5:
                    0d:8d:5e:ae:7e:0c:14:cc:35:9f:6c:8c:ce:85:99:
                    32:98:78:fc:ec:44:0a:f7:c3:4e:7d:24:15:bf:8c:
                    52:c1:7e:86:0d:fd:5d:d3:57:11:bf:20:bc:ee:97:
                    c6:d5:66:4d:45:ca:0a:33:1a:f0:41:cd:fc:c3:40:
                    f7:0c:34:e0:d1:40:30:64:77:5f:e3:ff:ae:07:5b:
                    67:04:23:21:a6:87:64:f4:c8:b0:b6:15:9d:7a:a6:
                    46:3a:d3:56:aa:7e:d2:5a:5b:0c:af:7c:50:0a:2a:
                    e1:f8:c6:96:b4:ab:16:44:2e:ad:20:f7:35:33:33:
                    88:7b:d4:2a:ad:b7:9f:24:51:61:b3:2a:68:c5:08:
                    c9:95:5b:d7:84:32:5b:cd:ab:2d:0d:0e:da:b1:a3:
                    e1:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                38:1D:69:D7:2F:76:E3:FB:5B:6D:43:B9:D9:64:BA:E7:B7:84:88:84
            X509v3 Authority Key Identifier:
                keyid:2D:E9:45:5E:83:A4:22:32:AA:48:E7:4D:83:18:15:F8:A7:8B:5F:C1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/71ccf671605b5e725ec595356fba462b15442130.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/a62741c7-9707-48d4-9c97-b911a8b1dfd2/db84bb55aef3f9d18e5754afddb535fe5535569b.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/a62741c7-9707-48d4-9c97-b911a8b1dfd2/71ccf671605b5e725ec595356fba462b15442130.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:f010::/32

    Signature Algorithm: sha256WithRSAEncryption
         79:d9:4b:13:90:06:51:6b:d8:6a:4b:fb:aa:0e:d4:29:e9:4e:
         8d:db:74:f6:c4:7f:13:d4:d9:25:e2:58:23:87:e9:68:e2:6f:
         1b:17:d1:be:44:b7:a5:cb:e9:3a:df:e2:67:ed:be:fa:96:59:
         32:91:cf:4d:6c:d3:da:8f:59:84:39:af:71:7a:71:a3:99:16:
         38:5d:95:54:46:27:c4:f6:0f:74:8f:10:be:c9:8c:99:44:18:
         1f:34:3f:64:72:c5:bc:06:42:70:32:3a:d8:3a:48:12:03:eb:
         9a:ef:ed:16:34:99:16:4f:1f:22:fe:56:de:27:43:0d:39:71:
         7a:b6:5c:f0:41:f3:f9:e1:66:16:1e:df:4b:91:46:fa:6c:79:
         51:9f:dd:2f:7e:bd:4d:8e:f7:25:35:a4:7e:d7:0a:2b:12:30:
         d6:ea:4b:f6:33:c1:e9:f8:c4:c8:bd:f9:08:94:ad:b9:15:c5:
         1b:f4:cc:0d:e5:89:a1:f3:07:31:64:22:b5:7a:8f:5e:4a:d3:
         1e:7c:80:b9:86:0a:96:13:3a:19:2c:81:1d:f6:10:6e:60:d3:
         8e:53:5a:98:33:68:e8:3c:ed:b1:ec:ea:25:7d:c0:e2:54:95:
         1e:e7:f4:54:06:2f:45:6f:d9:69:6e:50:1e:4b:51:ee:ea:17:
         c1:db:9b:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 04:20:46 2024 by rpki-client on console-fra.rpki-client.org