Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/ee7b9cff-16d6-4523-9471-27bb6de17334/b08bbf38070433a3bbf8d45959a0bba11fff4ef7.roa
File:                     b08bbf38070433a3bbf8d45959a0bba11fff4ef7.roa (raw, json)
Hash identifier:          J9MRqCZ03Nc9NgbQuOvIsFFbm3idQMVJSvR58oxUyu0=
Subject key identifier:   65:C0:65:90:21:ED:C0:52:FA:C8:AC:E3:1D:E2:B9:5B:10:81:C6:9A
Certificate issuer:       /CN=f59c4429352acd803514cb578e20f9d87861e0f1
Certificate serial:       016392
Authority key identifier: 46:B3:FE:6F:6A:DA:7F:9D:F2:FD:51:35:3D:26:44:77:FF:45:C9:17
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f59c4429352acd803514cb578e20f9d87861e0f1.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/ee7b9cff-16d6-4523-9471-27bb6de17334/b08bbf38070433a3bbf8d45959a0bba11fff4ef7.roa
Signing time:             Fri 16 Jun 2023 17:03:51 +0000
ROA not before:           Thu 15 Jun 2023 17:03:51 +0000
ROA not after:            Mon 16 Jun 2025 17:03:51 +0000
asID:                     270159
IP address blocks:        2806:3e6::/32 maxlen: 64

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/ee7b9cff-16d6-4523-9471-27bb6de17334/f59c4429352acd803514cb578e20f9d87861e0f1.crl
                          rsync://repository.lacnic.net/rpki/lacnic/ee7b9cff-16d6-4523-9471-27bb6de17334/f59c4429352acd803514cb578e20f9d87861e0f1.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f59c4429352acd803514cb578e20f9d87861e0f1.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Tue 05 Mar 2024 03:03:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 91026 (0x16392)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f59c4429352acd803514cb578e20f9d87861e0f1
        Validity
            Not Before: Jun 15 17:03:51 2023 GMT
            Not After : Jun 16 17:03:51 2025 GMT
        Subject: CN=b08bbf38070433a3bbf8d45959a0bba11fff4ef7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8d:78:97:dc:ba:46:8e:c6:59:d2:54:2f:27:35:
                    1f:35:7e:d2:6c:5c:d9:60:53:df:60:d3:2d:ee:fe:
                    8d:7b:fb:67:19:56:a2:6f:55:45:64:4d:a3:d7:13:
                    4a:67:25:ee:a9:5b:c7:12:68:67:79:5b:04:14:2d:
                    03:19:c3:82:36:88:48:b4:95:11:22:5a:ad:c9:0a:
                    ce:c8:7a:21:6e:e6:e9:27:c4:dd:56:e1:2d:a8:51:
                    76:6d:19:c6:4e:d7:ca:11:d3:19:fb:86:53:dd:28:
                    74:d1:8f:1f:6f:31:1c:aa:bc:b6:11:08:03:fc:81:
                    69:66:e3:c3:a7:9c:c4:74:f4:4a:39:38:aa:59:2a:
                    99:59:07:7c:db:1d:ab:d7:38:fd:5c:b6:14:e8:54:
                    c1:0a:23:9d:fc:a0:d5:29:fc:83:09:29:5e:61:ac:
                    a1:9c:d6:2b:b7:3b:bc:cf:12:57:dc:09:3b:36:35:
                    98:4f:c2:d8:ce:06:a1:ec:1c:eb:6a:18:1f:69:bb:
                    b9:6c:59:3f:38:69:02:f8:06:e2:8f:bb:d9:2b:45:
                    f7:f2:fe:7a:bf:0e:91:72:df:26:8a:2f:d3:5b:ff:
                    9e:18:85:3f:56:d4:c5:35:d0:d5:6b:e3:72:54:07:
                    18:bb:40:54:05:d6:73:a8:3f:cf:db:3d:41:50:42:
                    ab:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                65:C0:65:90:21:ED:C0:52:FA:C8:AC:E3:1D:E2:B9:5B:10:81:C6:9A
            X509v3 Authority Key Identifier:
                keyid:46:B3:FE:6F:6A:DA:7F:9D:F2:FD:51:35:3D:26:44:77:FF:45:C9:17

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/f59c4429352acd803514cb578e20f9d87861e0f1.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/ee7b9cff-16d6-4523-9471-27bb6de17334/b08bbf38070433a3bbf8d45959a0bba11fff4ef7.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/ee7b9cff-16d6-4523-9471-27bb6de17334/f59c4429352acd803514cb578e20f9d87861e0f1.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2806:3e6::/32

    Signature Algorithm: sha256WithRSAEncryption
         15:88:79:15:4f:55:d4:09:ac:29:64:32:68:43:b2:2c:b7:55:
         fd:72:28:6f:6d:47:c5:d0:ad:cf:76:7f:f6:cc:d3:3e:a5:a9:
         4e:98:3d:70:82:3b:81:45:79:a2:e2:1e:7d:c2:a4:db:c6:41:
         e4:65:65:69:ea:3a:bd:c3:70:1a:67:fb:82:3d:a0:b8:8b:0d:
         98:35:ec:19:3c:c4:61:75:c8:8c:fb:ed:7a:d3:0b:55:01:33:
         1b:6b:db:ea:19:fd:68:14:17:53:74:e2:c6:17:5b:e0:fc:40:
         1a:72:23:8c:10:8e:37:65:65:b8:49:93:1e:5c:ce:24:a4:f1:
         70:ff:a7:13:2c:61:ae:d2:70:16:23:48:f7:0f:24:4c:90:e3:
         d6:29:87:fc:4e:30:42:f0:4e:8d:ad:ba:26:c3:93:bd:2d:e6:
         9d:c4:1f:85:d8:7e:f0:a8:81:de:60:8a:69:06:33:a2:d7:91:
         52:72:e2:d4:5c:7b:b4:81:44:7a:e7:6a:b9:87:f8:4f:6b:fa:
         ce:96:b1:0a:17:5f:c9:35:48:4f:36:bc:31:86:f9:fc:38:dd:
         07:65:06:b7:98:1f:3f:50:2d:13:ad:36:5e:6c:84:51:de:0b:
         c9:9f:3a:7b:95:4d:7a:e2:de:4e:38:e2:7f:fe:94:9d:41:5d:
         b5:12:e4:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 2 03:08:00 2024 by rpki-client on console-ams.rpki-client.org