Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/d8ee2b7a-1355-4275-b17a-145ebc9e04a1/73c3bcab54040bc7f565b5c5e793432e0fe8421d.roa
File:                     73c3bcab54040bc7f565b5c5e793432e0fe8421d.roa (raw, json)
Hash identifier:          3a0Hm/m0pZjt3D8kod8hekgdL6nol0ZYe9EdnR+2zlY=
Subject key identifier:   3C:FF:B2:5A:13:30:34:34:48:88:B4:4D:41:1F:F4:51:00:2D:97:AF
Certificate issuer:       /CN=11869f7f22154a34c19132d7b218f55be9d05f96
Certificate serial:       25982D
Authority key identifier: 6A:3F:15:9D:D7:B8:C2:FE:A1:93:BF:3E:A3:B7:7A:70:90:EA:6E:0C
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/11869f7f22154a34c19132d7b218f55be9d05f96.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/d8ee2b7a-1355-4275-b17a-145ebc9e04a1/73c3bcab54040bc7f565b5c5e793432e0fe8421d.roa
Signing time:             Fri 27 Oct 2023 07:30:01 +0000
ROA not before:           Fri 27 Oct 2023 07:30:01 +0000
ROA not after:            Sun 26 Oct 2025 07:30:01 +0000
asID:                     264836
IP address blocks:        2803:c2c0::/48 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/d8ee2b7a-1355-4275-b17a-145ebc9e04a1/11869f7f22154a34c19132d7b218f55be9d05f96.crl
                          rsync://repository.lacnic.net/rpki/lacnic/d8ee2b7a-1355-4275-b17a-145ebc9e04a1/11869f7f22154a34c19132d7b218f55be9d05f96.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/11869f7f22154a34c19132d7b218f55be9d05f96.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 25 Feb 2024 20:21:29 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2463789 (0x25982d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=11869f7f22154a34c19132d7b218f55be9d05f96
        Validity
            Not Before: Oct 27 07:30:01 2023 GMT
            Not After : Oct 26 07:30:01 2025 GMT
        Subject: CN=73c3bcab54040bc7f565b5c5e793432e0fe8421d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8f:5e:fd:d4:55:1e:c3:5e:55:1e:82:41:7e:24:
                    6a:ce:b9:28:f0:8b:db:82:79:9f:17:7a:77:74:96:
                    36:82:77:2e:b0:9a:63:e5:0a:26:f7:3a:41:bd:99:
                    4a:f4:b7:c9:ff:e6:e1:57:71:f7:32:79:73:7d:bb:
                    47:c6:58:13:10:88:fe:7f:11:6a:63:27:6a:b4:ca:
                    e7:b1:a9:b4:e7:4c:a5:d0:a3:e9:26:ed:84:0e:db:
                    55:c6:7c:ab:1c:d7:9b:bb:2e:53:da:77:e4:61:fe:
                    bf:47:8d:79:e7:36:38:8b:08:59:f0:c1:1e:ea:97:
                    eb:23:03:35:a1:66:9a:36:dc:17:0d:8f:3f:d0:9d:
                    e3:77:dd:51:18:f9:39:1f:a6:91:50:74:a9:72:b2:
                    8d:46:b8:ac:2e:05:82:46:8e:f7:ff:6c:c4:e6:fa:
                    e5:c7:e0:4e:6e:1e:74:93:4b:1b:6b:ba:35:34:5a:
                    43:f4:12:d6:35:4e:e0:9d:4b:94:16:57:e4:26:44:
                    82:ea:7e:99:cd:ce:a1:67:bc:13:06:11:c6:f5:ee:
                    fe:8c:dc:f9:5f:a8:5e:f2:87:be:3c:75:de:cc:02:
                    60:8f:46:08:75:33:f1:82:95:a9:10:e0:ac:dd:80:
                    b2:a6:bd:ce:32:45:14:8a:88:57:70:b8:70:7d:35:
                    06:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3C:FF:B2:5A:13:30:34:34:48:88:B4:4D:41:1F:F4:51:00:2D:97:AF
            X509v3 Authority Key Identifier:
                keyid:6A:3F:15:9D:D7:B8:C2:FE:A1:93:BF:3E:A3:B7:7A:70:90:EA:6E:0C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/11869f7f22154a34c19132d7b218f55be9d05f96.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/d8ee2b7a-1355-4275-b17a-145ebc9e04a1/73c3bcab54040bc7f565b5c5e793432e0fe8421d.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/d8ee2b7a-1355-4275-b17a-145ebc9e04a1/11869f7f22154a34c19132d7b218f55be9d05f96.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:c2c0::/48

    Signature Algorithm: sha256WithRSAEncryption
         37:ac:34:c1:fd:8c:c6:5f:96:ea:3b:2a:c2:41:b7:83:44:cf:
         be:ff:39:2f:2c:19:ad:69:cc:3f:3d:e5:1a:df:62:01:90:3d:
         99:8d:3b:40:ed:a1:2e:fd:62:46:18:12:61:9a:05:fb:eb:81:
         95:9d:28:06:b8:af:58:34:d7:c4:dc:35:0e:ac:2e:b0:93:a8:
         b4:a3:47:00:9a:96:75:38:09:f3:6f:8b:af:cd:7f:e9:db:fd:
         d9:c1:59:0b:83:15:e7:bb:59:7c:dc:30:fc:58:02:93:02:8a:
         de:08:06:92:bf:72:ea:97:25:9d:63:3b:9e:9e:08:67:19:3a:
         7b:6b:e8:24:0b:7a:fc:5a:98:44:9b:a0:4e:fa:0e:c7:c6:19:
         55:06:6c:0b:3a:6e:2a:b5:3a:7e:47:a6:f8:a2:53:20:e4:ba:
         28:31:30:d7:42:b3:b8:41:2b:ff:03:04:ec:70:2e:78:b1:51:
         93:a6:72:fd:ed:03:8e:ed:c0:f0:5c:fe:f0:a3:3c:a4:19:97:
         db:32:26:3f:eb:39:ad:d2:12:92:a8:b1:04:dd:37:c0:7e:0a:
         d3:22:58:e5:98:73:cd:be:68:07:4f:87:1d:1d:03:bb:aa:a2:
         de:44:6a:e9:9d:21:ab:f9:59:5b:97:92:6a:3c:e3:f7:a0:7e:
         44:78:18:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 23 00:19:13 2024 by rpki-client on console-fra.rpki-client.org