Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/c4f344bc-06f0-4076-931f-370001daf55a/7d61b3a479f17a5ffd15ab0e4b8bdb442d80f75d.roa
File:                     7d61b3a479f17a5ffd15ab0e4b8bdb442d80f75d.roa (raw, json)
Hash identifier:          doYOSj3TS1BivVg9rFKgB0jqqUXrZ1qJ7kMHwxBZLl8=
Subject key identifier:   07:CB:4C:14:34:65:FD:5D:4E:3C:7F:8E:24:88:21:48:F1:36:98:7A
Certificate issuer:       /CN=da60e9454efc7066cdabe926b4536ab55963f835
Certificate serial:       0814A0
Authority key identifier: C7:16:43:AF:33:4A:69:38:DD:12:F9:CB:6D:C0:D7:EC:6B:61:BA:38
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/da60e9454efc7066cdabe926b4536ab55963f835.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/c4f344bc-06f0-4076-931f-370001daf55a/7d61b3a479f17a5ffd15ab0e4b8bdb442d80f75d.roa
Signing time:             Wed 24 Mar 2021 14:35:28 +0000
ROA not before:           Wed 24 Mar 2021 14:35:28 +0000
ROA not after:            Tue 24 Mar 2026 14:35:28 +0000
asID:                     27817
IP address blocks:        2801:1bc::/44 maxlen: 44

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/c4f344bc-06f0-4076-931f-370001daf55a/da60e9454efc7066cdabe926b4536ab55963f835.crl
                          rsync://repository.lacnic.net/rpki/lacnic/c4f344bc-06f0-4076-931f-370001daf55a/da60e9454efc7066cdabe926b4536ab55963f835.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/da60e9454efc7066cdabe926b4536ab55963f835.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 01 Apr 2024 05:58:53 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 529568 (0x814a0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=da60e9454efc7066cdabe926b4536ab55963f835
        Validity
            Not Before: Mar 24 14:35:28 2021 GMT
            Not After : Mar 24 14:35:28 2026 GMT
        Subject: CN=7d61b3a479f17a5ffd15ab0e4b8bdb442d80f75d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:89:fc:b4:96:de:ee:28:64:a2:19:eb:54:c2:95:
                    00:ab:0a:c5:2d:df:9b:40:f3:96:3a:b8:aa:6f:7d:
                    02:4c:7e:1e:80:88:30:fe:ae:9d:bf:26:1e:53:52:
                    8a:59:65:7a:a4:93:55:20:1f:83:2d:26:15:bb:58:
                    dc:82:6b:7a:dd:c3:29:84:c3:a8:f5:e7:ab:9d:fb:
                    71:1d:43:36:70:6f:35:15:31:a9:9e:29:78:db:23:
                    71:01:f0:95:ac:19:b7:25:25:45:a0:df:bc:a4:85:
                    db:4c:1f:db:af:6a:55:4e:59:d2:bf:75:f0:93:70:
                    ae:49:d1:f3:39:c6:7e:07:84:c6:33:20:e7:41:14:
                    f4:ab:c9:65:62:ea:21:d1:98:4c:ad:98:93:74:70:
                    12:fa:4c:a6:71:df:60:a1:b4:44:a5:f0:34:4e:21:
                    16:1e:4a:20:f8:8d:69:31:64:9f:41:2d:cd:31:bc:
                    5c:a4:89:e7:7c:35:58:41:42:a3:13:25:4b:11:93:
                    d0:f8:99:c5:13:fb:51:ba:81:2d:a5:8c:65:8c:c1:
                    a9:ed:7c:11:8f:34:b5:f3:26:84:3d:f1:5c:ae:68:
                    5b:01:c7:a1:f6:a7:3c:23:4e:d2:d8:81:bc:40:4c:
                    28:bc:b1:76:ef:95:c7:e2:04:a1:5f:ce:f9:ac:49:
                    9e:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                07:CB:4C:14:34:65:FD:5D:4E:3C:7F:8E:24:88:21:48:F1:36:98:7A
            X509v3 Authority Key Identifier:
                keyid:C7:16:43:AF:33:4A:69:38:DD:12:F9:CB:6D:C0:D7:EC:6B:61:BA:38

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/da60e9454efc7066cdabe926b4536ab55963f835.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/c4f344bc-06f0-4076-931f-370001daf55a/7d61b3a479f17a5ffd15ab0e4b8bdb442d80f75d.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/c4f344bc-06f0-4076-931f-370001daf55a/da60e9454efc7066cdabe926b4536ab55963f835.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2801:1bc::/44

    Signature Algorithm: sha256WithRSAEncryption
         21:4f:3a:d0:7b:4f:9d:58:55:e2:83:05:6f:8e:b1:2b:c1:13:
         a4:36:f5:25:f9:70:d4:61:76:39:7d:94:88:1d:d2:03:93:84:
         a3:57:82:21:0d:05:29:4e:df:a3:71:db:c6:76:77:2d:3b:e7:
         56:ee:2d:f3:41:c1:13:53:10:5a:fd:03:d1:9d:39:82:19:80:
         74:d7:0f:7d:2d:e6:7e:ed:52:45:9b:84:dc:bc:95:a8:15:e2:
         84:f2:c5:2a:db:d0:7d:fa:20:87:0c:52:f6:a1:ec:a8:63:ab:
         84:3a:90:8e:e6:27:e3:55:d8:84:29:73:ac:d6:2c:db:73:29:
         2e:56:62:db:a8:5a:2c:29:96:e1:86:e7:f3:45:5d:30:a5:b8:
         34:d7:b3:62:31:c5:75:85:1e:61:ad:ef:11:fb:79:c4:da:93:
         6a:b5:10:22:aa:67:d3:61:97:71:90:43:7f:50:c6:97:e5:df:
         07:78:b4:74:12:48:73:cf:bc:e9:23:1d:b1:70:98:f1:b5:03:
         65:b4:cb:5d:8f:2b:c5:3e:2e:8e:61:35:fd:a2:4b:6f:69:2b:
         32:6a:c1:4c:7e:5b:bd:2e:96:05:b4:59:50:17:f2:1e:93:21:
         fe:7f:b8:e4:20:82:aa:2f:a1:8e:85:19:fb:06:a0:5e:a7:1b:
         a8:32:f3:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 05:45:46 2024 by rpki-client on console-ams.rpki-client.org