Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/dae1bc47-422c-402f-bf0e-c30f492a22dc/bd9dc4da92e19ff8ca104c6c50c61265625bb487.roa
File:                     bd9dc4da92e19ff8ca104c6c50c61265625bb487.roa (raw, json)
Hash identifier:          hNGMZlh9p263qPTDQ/iIc3oNlN+Wtjd4OmqbCd28KAI=
Subject key identifier:   C5:68:AC:FF:A9:87:FE:62:83:22:6C:AC:20:5A:9A:79:98:8A:4E:D7
Certificate issuer:       /CN=dc0080782942a0e1f47428183d06112e6a9aa3d8
Certificate serial:       184A71
Authority key identifier: CF:BD:C1:03:6D:8F:F6:26:39:A7:35:F1:90:2A:33:4B:26:32:AD:4E
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/dc0080782942a0e1f47428183d06112e6a9aa3d8.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/dae1bc47-422c-402f-bf0e-c30f492a22dc/bd9dc4da92e19ff8ca104c6c50c61265625bb487.roa
Signing time:             Wed 29 Jun 2022 00:41:17 +0000
ROA not before:           Tue 28 Jun 2022 03:00:00 +0000
ROA not after:            Sun 28 Jun 2026 03:00:00 +0000
asID:                     265840
IP address blocks:        2803:5040::/32 maxlen: 32

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/dae1bc47-422c-402f-bf0e-c30f492a22dc/dc0080782942a0e1f47428183d06112e6a9aa3d8.crl
                          rsync://repository.lacnic.net/rpki/lacnic/dae1bc47-422c-402f-bf0e-c30f492a22dc/dc0080782942a0e1f47428183d06112e6a9aa3d8.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/dc0080782942a0e1f47428183d06112e6a9aa3d8.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 19:38:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1591921 (0x184a71)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=dc0080782942a0e1f47428183d06112e6a9aa3d8
        Validity
            Not Before: Jun 28 03:00:00 2022 GMT
            Not After : Jun 28 03:00:00 2026 GMT
        Subject: CN=bd9dc4da92e19ff8ca104c6c50c61265625bb487
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:88:6c:c5:5e:60:07:64:92:4d:cf:88:59:54:05:
                    b1:6d:ec:e7:5b:20:0c:ed:ed:15:0b:9f:e9:8e:4d:
                    6c:e8:3c:8d:68:53:ed:d5:2b:ea:47:d8:cc:15:09:
                    47:60:52:bd:ac:2b:bd:b3:16:6b:2a:b7:84:07:b8:
                    4d:e0:56:7c:00:d4:b2:a1:7f:23:7a:01:2b:b7:d1:
                    20:c9:d4:0c:09:ad:ab:a4:a4:5e:a2:92:04:1d:d7:
                    25:e0:09:ef:67:57:52:3c:cb:c0:4c:ed:68:aa:89:
                    86:57:90:3e:a1:d8:9d:96:5e:71:6d:7a:2d:b2:86:
                    8e:2a:ad:0f:bb:c4:da:ce:78:49:9b:40:a2:8b:44:
                    2e:e5:ec:c9:4d:ee:8a:3e:12:d3:95:cf:59:c7:e5:
                    0b:a3:14:c5:8a:ff:8f:ae:01:38:27:af:e6:10:99:
                    43:b4:4e:61:14:e5:2d:6e:a7:88:13:59:6d:b6:8a:
                    a1:c3:0a:19:83:cc:c2:01:4d:14:9b:3d:97:70:ad:
                    5c:a7:46:49:7e:0e:3f:2d:71:aa:2a:9d:c4:73:0a:
                    c9:93:c8:a1:fc:c9:9d:55:b9:52:76:fa:cc:33:e2:
                    f6:c3:e8:7f:c8:bb:ce:97:dc:cd:d8:01:63:55:0d:
                    31:4f:f9:28:27:7b:9a:1a:ca:b5:6f:37:9f:c8:d0:
                    e0:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C5:68:AC:FF:A9:87:FE:62:83:22:6C:AC:20:5A:9A:79:98:8A:4E:D7
            X509v3 Authority Key Identifier:
                keyid:CF:BD:C1:03:6D:8F:F6:26:39:A7:35:F1:90:2A:33:4B:26:32:AD:4E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/dc0080782942a0e1f47428183d06112e6a9aa3d8.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/dae1bc47-422c-402f-bf0e-c30f492a22dc/bd9dc4da92e19ff8ca104c6c50c61265625bb487.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/dae1bc47-422c-402f-bf0e-c30f492a22dc/dc0080782942a0e1f47428183d06112e6a9aa3d8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:5040::/32

    Signature Algorithm: sha256WithRSAEncryption
         0a:98:bc:f6:b6:c0:6f:7a:60:e1:7c:24:00:4f:b6:b8:99:0f:
         e7:ce:98:e6:b3:1a:40:d7:b3:01:ed:4b:41:4d:7d:38:c9:13:
         81:61:8b:ef:41:1b:99:05:65:c3:f3:af:d1:d3:3d:1a:0b:ac:
         64:de:7d:c3:c5:25:ac:3c:fb:fa:58:1a:3d:93:41:22:c0:88:
         fb:91:aa:6b:f9:7e:73:09:eb:e5:67:b1:a3:83:10:41:8b:a8:
         df:3a:c9:9e:83:25:c1:5e:a2:b3:fb:42:1c:ef:96:88:d2:b3:
         6b:08:98:47:c3:a3:98:ba:b2:0a:36:d4:a0:55:b5:e1:b5:f7:
         34:15:02:23:2d:01:41:74:05:64:d7:98:93:39:83:06:b8:d1:
         11:e3:21:8f:b5:55:c4:53:04:58:4a:d8:36:02:fe:5c:17:d9:
         f6:12:f2:4a:02:d1:85:33:d5:04:4c:3e:06:41:02:cc:69:a5:
         a3:fe:e1:4d:1d:78:d8:4c:7c:c7:92:f8:66:0d:d8:e6:9a:74:
         3f:f3:06:60:8f:d1:b0:84:d6:a2:da:04:2f:c4:ef:da:f9:39:
         bc:36:ec:da:ae:6a:e5:c8:51:37:95:ed:b8:a2:20:ba:c1:05:
         51:a0:5a:e0:3a:40:fd:a8:4b:f2:94:d2:f1:9c:27:14:6e:dd:
         60:18:54:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 02:14:27 2024 by rpki-client on console-ams.rpki-client.org