Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/ee5acfc9-e56e-464d-8621-b53e63ad0c5e/faf2e4869fa5b21ab4fa74d565a35e92c01f4b0e.roa
File:                     faf2e4869fa5b21ab4fa74d565a35e92c01f4b0e.roa (raw, json)
Hash identifier:          BAkCa6075iIaAFDxe9XeoEFxR0FAe1TiSQ/yrypdoZY=
Subject key identifier:   AE:DD:01:27:13:73:B3:C1:69:9C:E6:12:BA:71:B0:9F:8F:AC:7E:69
Certificate issuer:       /CN=e6713d1a769f8d56ff7a6a1f360adfa08db3e3ba
Certificate serial:       06540D
Authority key identifier: F3:DC:12:CD:8D:C8:69:8E:B0:89:77:42:7B:6C:08:56:F3:A5:27:F8
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e6713d1a769f8d56ff7a6a1f360adfa08db3e3ba.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/ee5acfc9-e56e-464d-8621-b53e63ad0c5e/faf2e4869fa5b21ab4fa74d565a35e92c01f4b0e.roa
Signing time:             Mon 24 Apr 2023 18:05:16 +0000
ROA not before:           Sun 23 Apr 2023 18:05:16 +0000
ROA not after:            Thu 24 Apr 2025 18:05:16 +0000
asID:                     272806
IP address blocks:        2801:1a:5800::/48 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/ee5acfc9-e56e-464d-8621-b53e63ad0c5e/e6713d1a769f8d56ff7a6a1f360adfa08db3e3ba.crl
                          rsync://repository.lacnic.net/rpki/lacnic/ee5acfc9-e56e-464d-8621-b53e63ad0c5e/e6713d1a769f8d56ff7a6a1f360adfa08db3e3ba.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e6713d1a769f8d56ff7a6a1f360adfa08db3e3ba.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Wed 28 Feb 2024 07:55:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 414733 (0x6540d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e6713d1a769f8d56ff7a6a1f360adfa08db3e3ba
        Validity
            Not Before: Apr 23 18:05:16 2023 GMT
            Not After : Apr 24 18:05:16 2025 GMT
        Subject: CN=faf2e4869fa5b21ab4fa74d565a35e92c01f4b0e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:16:aa:2b:86:7f:03:32:17:eb:72:b8:2b:ef:
                    a9:fc:fd:39:98:c9:ee:b3:c3:aa:2d:56:33:a8:39:
                    30:2e:7c:32:56:92:ad:69:f6:bc:64:59:d0:08:a4:
                    23:9d:34:04:59:84:d9:c9:cc:7f:97:d7:99:50:ac:
                    54:c9:65:f2:4c:49:6b:f9:f3:75:fd:c3:ae:92:65:
                    d6:ae:dc:5a:d3:9f:62:51:57:10:a9:e1:05:0d:dd:
                    ed:0f:a2:86:9e:7e:32:ee:4d:a5:51:8a:85:05:30:
                    5b:94:71:e3:83:97:a9:3d:e1:8c:6b:4a:00:c7:cb:
                    89:0d:bc:c4:94:f9:35:0c:8d:30:c4:f1:21:89:72:
                    87:0b:1f:68:8c:0a:6c:36:ab:d3:04:cf:7e:06:4d:
                    16:d5:df:ec:a5:57:ad:b9:bb:5c:e5:e4:36:b6:02:
                    2d:a9:b7:e7:90:fa:37:45:cd:96:57:da:4c:e2:9d:
                    27:8d:a4:10:0d:72:93:58:9e:17:4c:c8:f5:61:d5:
                    fe:76:5f:bf:98:28:ab:be:6d:50:d7:00:c2:bf:37:
                    fb:91:ca:f8:9a:4d:e7:14:55:72:50:b9:a6:54:03:
                    95:c7:c8:93:87:6b:0d:47:fe:40:26:7b:95:18:07:
                    29:d8:73:66:4c:75:c6:2c:e7:c6:7f:59:0e:5d:2b:
                    cf:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AE:DD:01:27:13:73:B3:C1:69:9C:E6:12:BA:71:B0:9F:8F:AC:7E:69
            X509v3 Authority Key Identifier:
                keyid:F3:DC:12:CD:8D:C8:69:8E:B0:89:77:42:7B:6C:08:56:F3:A5:27:F8

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e6713d1a769f8d56ff7a6a1f360adfa08db3e3ba.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/ee5acfc9-e56e-464d-8621-b53e63ad0c5e/faf2e4869fa5b21ab4fa74d565a35e92c01f4b0e.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/ee5acfc9-e56e-464d-8621-b53e63ad0c5e/e6713d1a769f8d56ff7a6a1f360adfa08db3e3ba.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2801:1a:5800::/48

    Signature Algorithm: sha256WithRSAEncryption
         66:04:54:08:64:ee:52:1e:54:70:39:52:70:78:e6:37:77:d1:
         f7:c1:2d:5f:50:ba:17:00:36:8c:b4:7c:9c:32:09:26:57:4f:
         12:5e:50:8f:64:27:30:60:42:91:0b:69:85:3b:2f:fd:e8:71:
         89:9d:74:92:75:c0:c6:c3:ad:55:5c:a7:c6:52:de:b1:09:34:
         64:18:df:af:25:4b:b0:52:7e:ea:9f:cb:8d:f8:e1:3b:05:3b:
         de:b2:b7:a5:28:48:ac:df:86:c5:65:ce:d3:11:b5:6b:d5:55:
         e5:54:ec:56:10:6c:d3:ce:9d:8c:78:da:a5:9b:c1:80:28:0d:
         12:52:6e:f3:70:93:e5:01:b3:18:8d:1c:81:ff:5c:2e:4d:ae:
         19:3f:db:c3:af:bb:50:33:12:73:a2:56:7a:f7:c1:25:e2:e1:
         58:24:c2:e8:50:15:d2:62:7f:b1:ad:29:e6:b2:f3:4c:66:a8:
         ae:50:98:b5:d2:c6:48:85:79:67:15:fb:2f:1d:ef:51:c0:0c:
         fa:d6:e8:91:3c:2d:af:9d:46:2d:03:da:88:1c:87:4b:da:96:
         18:96:1d:20:9a:a7:58:de:66:d3:00:5c:c8:4d:a5:60:69:45:
         6f:8d:fc:0f:35:45:3c:fd:29:81:15:67:13:45:9c:88:5a:f6:
         00:2d:07:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 25 08:17:51 2024 by rpki-client on console-ams.rpki-client.org