Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/dd0f90eb-e468-4666-a280-df1771f78cf9/20297e452fd2935443abbbf9adb0b95816c8723b.roa
File:                     20297e452fd2935443abbbf9adb0b95816c8723b.roa (download)
Hash identifier:          0OMnw9oM1V4tjotikUy4ANVpOIAz+Aw8HqUqIhLPOS0=
Subject key identifier:   A1:DA:17:9F:BC:45:47:12:81:D5:AA:CD:4D:35:C9:A3:E3:99:52:CB
Certificate issuer:       /CN=cda627952372991f835267505e212d55f4374cef
Certificate serial:       13FF37
Authority key identifier: 20:7D:B3:FF:9C:9E:95:99:C6:BD:51:BF:9A:8F:26:DF:84:DC:2C:26
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/cda627952372991f835267505e212d55f4374cef.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/dd0f90eb-e468-4666-a280-df1771f78cf9/20297e452fd2935443abbbf9adb0b95816c8723b.roa
ROA valid until:          Dec 29 03:00:00 2023 GMT
asID:                     398712
IP address blocks:
    1: 2803:c880::/32 maxlen: 32

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1310519 (0x13ff37)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=cda627952372991f835267505e212d55f4374cef
        Validity
            Not Before: Dec 29 03:00:00 2021 GMT
            Not After : Dec 29 03:00:00 2023 GMT
        Subject: CN=20297e452fd2935443abbbf9adb0b95816c8723b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8b:73:46:dc:b9:f2:5f:0f:a0:a1:bf:53:8b:80:
                    1f:11:fc:28:ff:19:9d:f0:29:c3:60:9d:1c:ba:cb:
                    37:8b:9a:52:65:61:e4:fb:ad:7e:6e:08:d3:1e:66:
                    0e:76:63:24:47:61:df:5b:f0:e7:6e:72:b2:f3:58:
                    f0:d7:fb:fd:37:b6:fe:47:d5:bd:2c:51:8e:06:c8:
                    91:ea:fb:84:be:90:a4:11:19:30:52:03:9f:1f:b4:
                    cd:42:2c:ef:7d:3f:0c:17:3f:20:cd:85:b3:7a:dc:
                    2e:e7:a7:fe:a3:da:9f:7a:7b:93:65:77:09:24:c6:
                    24:65:9c:91:e0:c2:aa:62:fa:98:57:75:00:66:89:
                    72:15:54:79:44:3e:6b:c5:2d:f5:ef:82:0a:c4:ef:
                    23:3e:f2:06:50:76:03:95:bd:a2:9b:11:61:f7:86:
                    53:eb:e9:f2:82:74:3a:70:f2:a7:c1:4e:05:36:dd:
                    7f:46:45:6d:0d:63:1a:65:14:13:d5:e6:0c:ad:bd:
                    05:c4:5d:ed:cc:73:d1:a9:dd:de:fa:c5:12:8b:0e:
                    c4:01:19:47:de:37:a7:85:87:ff:ff:9b:9a:ee:4d:
                    0e:5e:94:0a:25:b1:7c:df:6b:09:da:2e:24:2b:85:
                    75:cd:c8:ee:21:3a:5b:52:e7:30:ad:4b:66:0f:29:
                    67:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                A1:DA:17:9F:BC:45:47:12:81:D5:AA:CD:4D:35:C9:A3:E3:99:52:CB
            X509v3 Authority Key Identifier: 
                keyid:20:7D:B3:FF:9C:9E:95:99:C6:BD:51:BF:9A:8F:26:DF:84:DC:2C:26

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/cda627952372991f835267505e212d55f4374cef.cer

            Subject Information Access: 
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/dd0f90eb-e468-4666-a280-df1771f78cf9/20297e452fd2935443abbbf9adb0b95816c8723b.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/dd0f90eb-e468-4666-a280-df1771f78cf9/cda627952372991f835267505e212d55f4374cef.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:c880::/32

    Signature Algorithm: sha256WithRSAEncryption
         99:11:1c:bd:f1:b0:3a:51:80:95:27:21:ae:22:d3:65:af:5f:
         71:60:f5:af:12:e4:be:99:1f:4b:41:4c:24:a0:3d:eb:e8:b5:
         38:79:c8:18:bd:44:9c:81:17:00:cd:eb:61:fe:ca:70:85:35:
         5b:c3:34:04:24:3a:66:2a:a6:26:d1:2f:10:a2:28:d3:b6:29:
         5d:eb:71:5a:fa:b0:51:85:52:7d:4d:2d:8c:c7:d5:71:72:44:
         96:be:07:d1:a6:93:59:3d:f1:fb:4f:28:80:bb:0d:3b:ac:96:
         c1:0d:01:c4:f7:d6:9f:1d:8a:20:52:77:b7:44:ee:ef:0f:52:
         b7:21:74:4c:c9:17:8d:10:48:8b:2f:03:9b:89:70:d3:28:7b:
         03:a9:f5:66:fd:6b:df:91:07:27:8f:68:88:d7:92:fc:39:74:
         1a:75:a7:90:ea:76:c1:d4:c3:72:91:27:f7:86:7e:83:10:b4:
         18:0c:02:31:f1:d7:df:85:10:9e:7e:13:13:9d:94:d9:d4:67:
         f2:ea:ae:7a:20:a2:c9:17:91:da:0b:a3:39:9e:33:8f:c8:32:
         7f:38:4f:1f:9e:0a:53:9a:c9:c8:6f:93:27:7f:da:89:cd:76:
         eb:f7:35:3f:d9:71:bc:f3:16:d1:27:03:b6:f7:8e:bb:86:af:
         35:a4:27:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 7 17:56:19 2022 by rpki-client.