Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/f19c3cd8-f4d9-48c4-9e08-1161720c49b1/683d0a6adbec43bf9fd69af055fc079fcccef11e.roa
File:                     683d0a6adbec43bf9fd69af055fc079fcccef11e.roa (raw, json)
Hash identifier:          E4X7Kwr61A+4IJXKu4cTz50gNBE6MZD3QRTxuXLJB7g=
Subject key identifier:   66:BA:17:F2:94:27:EB:EE:7D:C1:97:67:B1:43:0F:98:B9:81:99:AE
Certificate issuer:       /CN=5bd3725f942ee985da6354fa9323d3af10c9d2b8
Certificate serial:       027680
Authority key identifier: F0:72:A0:23:66:33:CF:69:3B:A5:02:AF:B4:5C:37:43:5C:49:A1:C4
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5bd3725f942ee985da6354fa9323d3af10c9d2b8.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/f19c3cd8-f4d9-48c4-9e08-1161720c49b1/683d0a6adbec43bf9fd69af055fc079fcccef11e.roa
Signing time:             Tue 03 May 2022 21:22:59 +0000
ROA not before:           Tue 03 May 2022 03:00:00 +0000
ROA not after:            Fri 03 May 2024 03:00:00 +0000
asID:                     14080
IP address blocks:        2801:19:1800::/48 maxlen: 48

Validation:               OK
Signature path:           rsync://repository.lacnic.net/rpki/lacnic/f19c3cd8-f4d9-48c4-9e08-1161720c49b1/5bd3725f942ee985da6354fa9323d3af10c9d2b8.crl
                          rsync://repository.lacnic.net/rpki/lacnic/f19c3cd8-f4d9-48c4-9e08-1161720c49b1/5bd3725f942ee985da6354fa9323d3af10c9d2b8.mft
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5bd3725f942ee985da6354fa9323d3af10c9d2b8.cer
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.crl
                          rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.mft
                          rsync://repository.lacnic.net/rpki/lacnic/ff14e9055d5afaa37fbe20f4a26bd13c8f18d79a.cer
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.crl
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.mft
                          rsync://repository.lacnic.net/rpki/lacnic/rta-lacnic-rpki.cer
Signature path expires:   Sun 31 Mar 2024 19:38:03 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 161408 (0x27680)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5bd3725f942ee985da6354fa9323d3af10c9d2b8
        Validity
            Not Before: May  3 03:00:00 2022 GMT
            Not After : May  3 03:00:00 2024 GMT
        Subject: CN=683d0a6adbec43bf9fd69af055fc079fcccef11e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:90:83:5a:91:25:93:3e:55:14:22:eb:40:f1:ab:
                    c6:96:42:2e:45:c8:84:49:34:ce:fe:1c:1b:3a:8c:
                    14:70:0b:75:c9:0d:b9:75:af:a5:f5:93:de:5d:ff:
                    e6:a0:51:52:ee:14:c2:ba:69:bb:63:4b:8b:eb:d4:
                    a8:f4:d6:5d:66:d1:e3:30:2a:60:69:dd:f6:59:58:
                    2c:aa:93:28:7b:69:7d:ba:2a:ab:d6:9a:a8:f5:1f:
                    ec:6a:15:c1:1e:df:ad:dc:27:e4:83:ac:14:54:48:
                    6f:6a:b5:b5:67:92:f5:05:9f:c5:26:b6:b2:11:a2:
                    dc:21:10:e6:b3:a8:60:92:88:15:9e:a2:15:33:9b:
                    2b:16:e9:e3:bd:e7:95:da:24:70:0d:26:8b:b4:2f:
                    0e:1d:cc:34:31:24:75:77:b5:b3:e3:e9:39:da:28:
                    9a:31:30:b4:83:73:14:2a:ec:66:f7:fd:1c:55:bf:
                    6e:d8:53:ab:0d:14:f6:16:28:1e:62:64:67:c0:4b:
                    38:91:15:04:7c:04:38:7f:c3:d4:31:91:70:d4:d8:
                    82:8c:d2:75:f5:36:0b:c6:2d:84:f4:50:7d:dc:a6:
                    2b:20:0f:d1:91:dd:a6:ac:76:a8:ce:33:39:89:ef:
                    0e:db:de:55:0b:87:61:8e:ac:2d:6b:8b:c7:1c:5f:
                    d7:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                66:BA:17:F2:94:27:EB:EE:7D:C1:97:67:B1:43:0F:98:B9:81:99:AE
            X509v3 Authority Key Identifier:
                keyid:F0:72:A0:23:66:33:CF:69:3B:A5:02:AF:B4:5C:37:43:5C:49:A1:C4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5bd3725f942ee985da6354fa9323d3af10c9d2b8.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/f19c3cd8-f4d9-48c4-9e08-1161720c49b1/683d0a6adbec43bf9fd69af055fc079fcccef11e.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/f19c3cd8-f4d9-48c4-9e08-1161720c49b1/5bd3725f942ee985da6354fa9323d3af10c9d2b8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2801:19:1800::/48

    Signature Algorithm: sha256WithRSAEncryption
         50:85:c0:ce:6a:c9:b9:0b:ac:c2:e3:94:b0:2b:7d:97:78:88:
         ff:ec:d6:06:22:25:64:ee:d2:22:42:f9:40:30:03:15:54:8d:
         6f:72:49:d3:55:01:38:47:57:a1:38:9f:2e:a7:dc:ea:93:87:
         1a:0f:14:fd:9a:9e:d9:ba:b5:91:15:7b:dc:e6:5d:b0:12:12:
         c9:54:95:55:95:cf:74:e8:3e:e2:3b:57:49:6b:57:e0:f2:c0:
         c7:29:f5:03:c8:7a:e4:1c:91:aa:15:6d:ca:20:ff:f8:56:7f:
         2c:07:1f:a4:69:dc:70:6a:89:3e:f3:b6:cd:93:04:f3:c3:ae:
         ae:cd:8d:89:fa:c2:59:b0:73:e2:e2:75:eb:18:86:f5:54:36:
         8f:b0:fc:2a:82:db:56:39:b4:d3:da:f6:fa:20:6c:52:46:f0:
         3e:38:3e:51:ff:a6:ca:c9:e0:52:bc:31:ad:c0:f6:f5:33:86:
         27:79:35:12:27:5b:08:65:1b:5f:b6:14:65:dd:b0:cc:18:a7:
         6d:31:07:94:e6:5d:9a:d8:58:ec:f2:bc:40:6f:d9:ab:3b:e1:
         60:2f:fa:4d:80:2e:e8:39:b0:51:86:98:b8:47:d5:90:eb:0e:
         03:3a:d7:b9:f3:b4:56:31:a9:b4:93:1b:04:17:67:64:49:60:
         e7:c4:3a:db
-----BEGIN CERTIFICATE-----
MIIFQzCCBCugAwIBAgIDAnaAMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDVi
ZDM3MjVmOTQyZWU5ODVkYTYzNTRmYTkzMjNkM2FmMTBjOWQyYjgwHhcNMjIwNTAz
MDMwMDAwWhcNMjQwNTAzMDMwMDAwWjAzMTEwLwYDVQQDEyg2ODNkMGE2YWRiZWM0
M2JmOWZkNjlhZjA1NWZjMDc5ZmNjY2VmMTFlMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAkINakSWTPlUUIutA8avGlkIuRciESTTO/hwbOowUcAt1yQ25
da+l9ZPeXf/moFFS7hTCumm7Y0uL69So9NZdZtHjMCpgad32WVgsqpMoe2l9uiqr
1pqo9R/sahXBHt+t3Cfkg6wUVEhvarW1Z5L1BZ/FJrayEaLcIRDms6hgkogVnqIV
M5srFunjveeV2iRwDSaLtC8OHcw0MSR1d7Wz4+k52iiaMTC0g3MUKuxm9/0cVb9u
2FOrDRT2FigeYmRnwEs4kRUEfAQ4f8PUMZFw1NiCjNJ19TYLxi2E9FB93KYrIA/R
kd2mrHaozjM5ie8O295VC4dhjqwta4vHHF/XCwIDAQABo4ICXjCCAlowHQYDVR0O
BBYEFGa6F/KUJ+vufcGXZ7FDD5i5gZmuMB8GA1UdIwQYMBaAFPByoCNmM89pO6UC
r7RcN0NcSaHEMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvNWJkMzcy
NWY5NDJlZTk4NWRhNjM1NGZhOTMyM2QzYWYxMGM5ZDJiOC5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvZjE5YzNjZDgtZjRkOS00OGM0LTllMDgtMTE2MTcy
MGM0OWIxLzY4M2QwYTZhZGJlYzQzYmY5ZmQ2OWFmMDU1ZmMwNzlmY2NjZWYxMWUu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9mMTljM2NkOC1mNGQ5LTQ4YzQtOWUwOC0xMTYx
NzIwYzQ5YjEvNWJkMzcyNWY5NDJlZTk4NWRhNjM1NGZhOTMyM2QzYWYxMGM5ZDJi
OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQT
MBEwDwQCAAIwCQMHACgBABkYADANBgkqhkiG9w0BAQsFAAOCAQEAUIXAzmrJuQus
wuOUsCt9l3iI/+zWBiIlZO7SIkL5QDADFVSNb3JJ01UBOEdXoTifLqfc6pOHGg8U
/Zqe2bq1kRV73OZdsBISyVSVVZXPdOg+4jtXSWtX4PLAxyn1A8h65ByRqhVtyiD/
+FZ/LAcfpGnccGqJPvO2zZME88Ours2NifrCWbBz4uJ16xiG9VQ2j7D8KoLbVjm0
09r2+iBsUkbwPjg+Uf+mysngUrwxrcD29TOGJ3k1EidbCGUbX7YUZd2wzBinbTEH
lOZdmthY7PK8QG/ZqzvhYC/6TYAu6DmwUYaYuEfVkOsOAzrXufO0VjGptJMbBBdn
ZElg58Q62w==
-----END CERTIFICATE-----
Generated at Thu Mar 28 23:59:08 2024 by rpki-client on console-fra.rpki-client.org