Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/c69b47ad-ec13-43a2-942f-440814cce3b2/111e3136894126e1b793ff2b4ce8302e99f4f7c2.roa
File:                     111e3136894126e1b793ff2b4ce8302e99f4f7c2.roa (raw, json)
Hash identifier:          S8D/EeUcnP1hk9zAUyDXMoWzdvuhjP1xWpWf6R2m9Cg=
Subject key identifier:   C5:62:60:0B:CA:F6:C5:B0:59:C3:50:CD:4E:CF:26:97:0E:8F:FA:9F
Certificate issuer:       /CN=4de74a75ea4e5b0519dd505dc0655dddc3ec7bba
Certificate serial:       68D1
Authority key identifier: F3:44:B9:00:05:CC:73:6D:A5:FC:7C:D3:2C:45:CB:CC:F2:1E:4F:39
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4de74a75ea4e5b0519dd505dc0655dddc3ec7bba.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/c69b47ad-ec13-43a2-942f-440814cce3b2/111e3136894126e1b793ff2b4ce8302e99f4f7c2.roa
Signing time:             Wed 29 Mar 2023 20:57:48 +0000
ROA not before:           Sun 12 Mar 2023 17:17:00 +0000
ROA not after:            Fri 14 Mar 2025 17:17:00 +0000
asID:                     272075
IP address blocks:        2803:2b10::/32 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/c69b47ad-ec13-43a2-942f-440814cce3b2/4de74a75ea4e5b0519dd505dc0655dddc3ec7bba.crl
                          rsync://repository.lacnic.net/rpki/lacnic/c69b47ad-ec13-43a2-942f-440814cce3b2/4de74a75ea4e5b0519dd505dc0655dddc3ec7bba.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4de74a75ea4e5b0519dd505dc0655dddc3ec7bba.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Mon 26 Feb 2024 13:59:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 26833 (0x68d1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4de74a75ea4e5b0519dd505dc0655dddc3ec7bba
        Validity
            Not Before: Mar 12 17:17:00 2023 GMT
            Not After : Mar 14 17:17:00 2025 GMT
        Subject: CN=111e3136894126e1b793ff2b4ce8302e99f4f7c2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:84:2e:44:30:47:0f:4d:bb:e9:6f:67:0c:25:5e:
                    2d:f3:dc:e7:87:85:39:b5:11:7f:2e:ef:e5:fc:34:
                    94:f4:8a:d6:ce:66:1b:3f:ae:a4:ea:11:b4:4f:5b:
                    67:a6:91:23:62:8b:ff:6b:9b:60:38:28:14:cb:14:
                    38:52:f5:b0:81:83:d7:75:0b:f4:7b:9b:df:0c:b9:
                    15:db:4c:b3:cc:80:31:94:1c:91:f0:b1:02:fe:8b:
                    89:66:5c:62:f2:4b:8e:bb:5b:33:4d:3c:8f:fe:d9:
                    30:28:8c:5e:50:04:e4:e8:56:69:1f:11:35:f5:44:
                    68:91:b5:17:12:12:d6:0e:99:4a:43:d8:4d:08:40:
                    cf:30:b9:ea:cb:a0:cc:73:96:81:2b:df:24:d3:c8:
                    51:d8:c9:2a:86:21:c6:37:8e:27:4a:76:80:3c:94:
                    d6:95:58:d7:50:0a:1d:8a:0f:87:04:a4:07:a5:fe:
                    87:27:fd:ec:88:d4:20:04:30:52:9b:1b:32:ce:83:
                    5e:ac:d3:ea:39:8a:00:2f:4f:1d:8f:23:e4:20:d1:
                    81:c6:fd:8e:eb:9f:f1:ea:63:e2:d2:94:0f:ac:a4:
                    22:e2:5c:3c:de:55:4d:9a:dd:bc:79:65:9c:cf:53:
                    bd:f4:5e:53:cc:06:20:df:c7:bc:07:10:be:42:d5:
                    c0:23
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C5:62:60:0B:CA:F6:C5:B0:59:C3:50:CD:4E:CF:26:97:0E:8F:FA:9F
            X509v3 Authority Key Identifier:
                keyid:F3:44:B9:00:05:CC:73:6D:A5:FC:7C:D3:2C:45:CB:CC:F2:1E:4F:39

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4de74a75ea4e5b0519dd505dc0655dddc3ec7bba.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/c69b47ad-ec13-43a2-942f-440814cce3b2/111e3136894126e1b793ff2b4ce8302e99f4f7c2.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/c69b47ad-ec13-43a2-942f-440814cce3b2/4de74a75ea4e5b0519dd505dc0655dddc3ec7bba.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:2b10::/32

    Signature Algorithm: sha256WithRSAEncryption
         7f:fb:2a:d1:b8:45:3e:39:13:89:a0:eb:95:0d:d6:65:1d:b5:
         1f:04:1f:51:b1:42:54:41:96:07:6c:89:55:33:60:ac:e3:8b:
         75:cb:b1:27:dd:56:b0:9a:23:64:ef:22:d3:eb:e0:46:8a:a8:
         b4:f3:cf:5d:57:ea:a3:ad:94:da:f0:68:71:15:dc:4a:79:2a:
         56:c5:65:38:e4:d6:18:48:bb:a4:68:85:f6:78:9c:66:60:b1:
         9d:f9:a6:31:46:6f:73:25:5d:ad:5e:6a:6a:87:66:35:66:27:
         db:52:73:c7:a3:05:7a:82:75:7b:f9:0a:84:66:f9:04:3b:f1:
         b9:39:19:a0:00:e4:1c:66:aa:c3:dc:1b:fb:6d:11:ca:1a:83:
         e9:b7:3c:81:21:6c:53:0c:c3:7e:0f:5f:3e:7e:38:aa:c2:39:
         1b:18:ff:47:7b:7b:2e:8f:65:ad:bf:b7:f1:68:b0:6a:67:53:
         de:78:63:89:49:77:8a:3e:7e:28:6d:a2:9f:e8:ee:0a:f4:4c:
         0f:82:99:51:9a:2b:0d:38:8e:a3:61:c8:40:62:e7:f6:60:aa:
         e1:eb:cf:05:01:61:9f:71:7b:c9:9b:5a:6e:e7:ed:2c:91:f2:
         3c:84:93:58:1d:01:55:94:c5:08:3c:ac:be:d5:a1:79:21:6a:
         e9:91:7f:0f
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgICaNEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNGRl
NzRhNzVlYTRlNWIwNTE5ZGQ1MDVkYzA2NTVkZGRjM2VjN2JiYTAeFw0yMzAzMTIx
NzE3MDBaFw0yNTAzMTQxNzE3MDBaMDMxMTAvBgNVBAMTKDExMWUzMTM2ODk0MTI2
ZTFiNzkzZmYyYjRjZTgzMDJlOTlmNGY3YzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCELkQwRw9Nu+lvZwwlXi3z3OeHhTm1EX8u7+X8NJT0itbOZhs/
rqTqEbRPW2emkSNii/9rm2A4KBTLFDhS9bCBg9d1C/R7m98MuRXbTLPMgDGUHJHw
sQL+i4lmXGLyS467WzNNPI/+2TAojF5QBOToVmkfETX1RGiRtRcSEtYOmUpD2E0I
QM8wuerLoMxzloEr3yTTyFHYySqGIcY3jidKdoA8lNaVWNdQCh2KD4cEpAel/ocn
/eyI1CAEMFKbGzLOg16s0+o5igAvTx2PI+Qg0YHG/Y7rn/HqY+LSlA+spCLiXDze
VU2a3bx5ZZzPU730XlPMBiDfx7wHEL5C1cAjAgMBAAGjggJcMIICWDAdBgNVHQ4E
FgQUxWJgC8r2xbBZw1DNTs8mlw6P+p8wHwYDVR0jBBgwFoAU80S5AAXMc22l/HzT
LEXLzPIeTzkwDgYDVR0PAQH/BAQDAgeAMIGaBggrBgEFBQcBAQSBjTCBijCBhwYI
KwYBBQUHMAKGe3JzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jwa2kvbGFj
bmljLzQ4ZjA4M2JiLWY2MDMtNDg5My05OTkwLTAyODRjMDRjZWI4NS80ZGU3NGE3
NWVhNGU1YjA1MTlkZDUwNWRjMDY1NWRkZGMzZWM3YmJhLmNlcjCBmgYIKwYBBQUH
AQsEgY0wgYowgYcGCCsGAQUFBzALhntyc3luYzovL3JlcG9zaXRvcnkubGFjbmlj
Lm5ldC9ycGtpL2xhY25pYy9jNjliNDdhZC1lYzEzLTQzYTItOTQyZi00NDA4MTRj
Y2UzYjIvMTExZTMxMzY4OTQxMjZlMWI3OTNmZjJiNGNlODMwMmU5OWY0ZjdjMi5y
b2EwgY8GA1UdHwSBhzCBhDCBgaB/oH2Ge3JzeW5jOi8vcmVwb3NpdG9yeS5sYWNu
aWMubmV0L3Jwa2kvbGFjbmljL2M2OWI0N2FkLWVjMTMtNDNhMi05NDJmLTQ0MDgx
NGNjZTNiMi80ZGU3NGE3NWVhNGU1YjA1MTlkZDUwNWRjMDY1NWRkZGMzZWM3YmJh
LmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEw
DzANBAIAAjAHAwUAKAMrEDANBgkqhkiG9w0BAQsFAAOCAQEAf/sq0bhFPjkTiaDr
lQ3WZR21HwQfUbFCVEGWB2yJVTNgrOOLdcuxJ91WsJojZO8i0+vgRoqotPPPXVfq
o62U2vBocRXcSnkqVsVlOOTWGEi7pGiF9nicZmCxnfmmMUZvcyVdrV5qaodmNWYn
21Jzx6MFeoJ1e/kKhGb5BDvxuTkZoADkHGaqw9wb+20RyhqD6bc8gSFsUwzDfg9f
Pn44qsI5Gxj/R3t7Lo9lrb+38WiwamdT3nhjiUl3ij5+KG2in+juCvRMD4KZUZor
DTiOo2HIQGLn9mCq4evPBQFhn3F7yZtabuftLJHyPISTWB0BVZTFCDysvtWheSFq
6ZF/Dw==
-----END CERTIFICATE-----
Generated at Fri Feb 23 14:20:55 2024 by rpki-client on console-fra.rpki-client.org