Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/013283B85612962EFA3112B215C387D357E4ADAFCC3010433D2989061C5ED8D6/0/3230302e3131302e3132322e302f32332d3234203d3e203237383134.roa
File:                     3230302e3131302e3132322e302f32332d3234203d3e203237383134.roa (raw, json)
Hash identifier:          gHle6IL1jEfvHrjMOFwGbV/VrFYSa+KiiSaZQI0GLVo=
Subject key identifier:   05:B8:41:21:CC:29:F8:06:2A:E6:50:37:F2:E3:EB:3E:29:52:55:14
Certificate issuer:       /CN=2076A484174B4E5486A0E31CF7F9DC998D0AFD2B
Certificate serial:       013F9B26270DC370C2D3CE4D082569BB84FCE937
Authority key identifier: 20:76:A4:84:17:4B:4E:54:86:A0:E3:1C:F7:F9:DC:99:8D:0A:FD:2B
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2076A484174B4E5486A0E31CF7F9DC998D0AFD2B.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/013283B85612962EFA3112B215C387D357E4ADAFCC3010433D2989061C5ED8D6/0/3230302e3131302e3132322e302f32332d3234203d3e203237383134.roa
Signing time:             Tue 04 Feb 2025 20:08:51 +0000
ROA not before:           Tue 04 Feb 2025 20:03:51 +0000
ROA not after:            Tue 03 Feb 2026 20:08:51 +0000
asID:                     27814
IP address blocks:        200.110.122.0/23 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:3f:9b:26:27:0d:c3:70:c2:d3:ce:4d:08:25:69:bb:84:fc:e9:37
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2076A484174B4E5486A0E31CF7F9DC998D0AFD2B
        Validity
            Not Before: Feb  4 20:03:51 2025 GMT
            Not After : Feb  3 20:08:51 2026 GMT
        Subject: CN=05B84121CC29F8062AE65037F2E3EB3E29525514
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:aa:00:5b:34:6b:ac:d8:29:fc:8c:0d:c8:f9:ac:
                    de:f6:24:4c:51:23:d5:b7:e3:dc:d3:d1:17:c1:df:
                    ac:2e:26:42:96:db:e5:ab:bf:a2:4f:07:79:8e:4b:
                    94:57:25:46:c3:d0:de:ed:51:74:46:61:2b:d0:d9:
                    e0:9f:54:94:81:c8:1f:32:72:3e:27:3b:e2:1f:a0:
                    1a:77:2d:8d:d2:9b:12:9b:3d:a0:f3:ba:98:9d:a9:
                    e8:63:a4:fb:c9:ce:65:77:ad:d4:0f:ac:0a:3f:af:
                    b9:e4:75:fb:35:a8:50:56:64:48:33:c1:db:00:e4:
                    bb:97:bc:20:63:99:75:c7:04:5d:21:2e:c0:1b:a2:
                    a4:a0:e8:37:f0:3b:f0:97:2b:bf:f1:95:fd:b3:dc:
                    49:b8:48:4e:ca:a9:ea:27:b0:24:1d:89:0b:17:fd:
                    5a:77:3c:ad:ce:14:79:39:92:7a:c3:a2:5d:2a:d5:
                    35:5b:08:09:be:85:2b:48:50:c5:23:24:7a:45:2b:
                    a2:4f:38:ca:c4:e9:a8:78:3e:29:ac:e9:19:69:bb:
                    03:74:2e:ca:04:94:da:55:6e:d4:62:55:77:f8:1b:
                    d8:3f:8b:11:fc:7b:c1:97:36:44:44:e2:18:08:cf:
                    99:6e:ec:c2:28:62:db:a4:9d:00:73:0b:57:52:41:
                    2b:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                05:B8:41:21:CC:29:F8:06:2A:E6:50:37:F2:E3:EB:3E:29:52:55:14
            X509v3 Authority Key Identifier:
                keyid:20:76:A4:84:17:4B:4E:54:86:A0:E3:1C:F7:F9:DC:99:8D:0A:FD:2B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/013283B85612962EFA3112B215C387D357E4ADAFCC3010433D2989061C5ED8D6/0/2076A484174B4E5486A0E31CF7F9DC998D0AFD2B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2076A484174B4E5486A0E31CF7F9DC998D0AFD2B.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/013283B85612962EFA3112B215C387D357E4ADAFCC3010433D2989061C5ED8D6/0/3230302e3131302e3132322e302f32332d3234203d3e203237383134.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.110.122.0/23

    Signature Algorithm: sha256WithRSAEncryption
         56:71:d1:34:c2:9a:e9:a4:59:1b:e9:84:24:aa:1d:d4:a1:fd:
         26:92:9c:d9:af:e2:53:59:d9:df:c4:a3:a1:24:83:87:f7:3a:
         d9:75:87:7e:80:19:ed:9e:20:8d:18:59:5a:4e:3e:47:17:d7:
         9f:ec:87:89:19:02:3f:5e:4a:e9:47:79:b2:0f:2a:f3:9d:55:
         27:c6:c0:25:01:f5:d4:2c:64:10:e2:82:43:86:ad:81:b0:a7:
         be:07:bc:e9:96:04:d6:2f:8b:a5:d4:d3:b9:58:7d:59:ce:71:
         64:82:c2:b0:86:a7:c9:8c:34:b8:df:fc:b5:4c:90:1a:a5:e2:
         a0:26:5e:72:a9:ee:74:26:52:8b:5b:c9:5a:76:27:4b:55:8e:
         25:80:cd:bc:4d:07:86:9d:29:78:44:af:de:07:37:ac:b9:35:
         28:ce:0b:d0:94:64:4e:81:2e:56:55:1e:aa:75:2b:c4:f2:e0:
         ec:1a:ad:16:09:bb:0c:9c:a2:53:83:c4:9a:59:c1:df:88:56:
         4d:62:63:57:ae:71:f7:4a:a7:eb:1c:34:9b:ed:45:97:88:0d:
         c7:7b:b5:ca:50:6c:43:80:f3:31:4c:d2:57:e8:dd:35:a0:b8:
         21:fa:0a:7c:ae:bd:09:64:e1:58:1a:ed:a6:af:ae:5b:c4:38:
         cb:be:20:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----