Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3136382e3138312e3138352e302f32342d3234203d3e203237383233.roa
File:                     3136382e3138312e3138352e302f32342d3234203d3e203237383233.roa (raw, json)
Hash identifier:          GGJJA2V3PaRN/+vchRryD/olyX17wSoh+xo+wMePY70=
Subject key identifier:   E1:73:ED:0B:82:DE:44:3D:C2:15:2E:A7:AC:2C:9D:E9:B9:4F:B8:92
Certificate issuer:       /CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80
Certificate serial:       7B589D7C2574506406406D85A68C51D388D05764
Authority key identifier: A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3136382e3138312e3138352e302f32342d3234203d3e203237383233.roa
Signing time:             Tue 04 Feb 2025 18:08:14 +0000
ROA not before:           Tue 04 Feb 2025 18:03:14 +0000
ROA not after:            Tue 03 Feb 2026 18:08:14 +0000
asID:                     27823
IP address blocks:        168.181.185.0/24 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7b:58:9d:7c:25:74:50:64:06:40:6d:85:a6:8c:51:d3:88:d0:57:64
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80
        Validity
            Not Before: Feb  4 18:03:14 2025 GMT
            Not After : Feb  3 18:08:14 2026 GMT
        Subject: CN=E173ED0B82DE443DC2152EA7AC2C9DE9B94FB892
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:b4:e5:25:b4:ae:c7:ee:c5:94:89:f7:19:f8:
                    bd:96:40:ec:60:00:12:92:74:fe:8b:dd:b5:ec:7a:
                    0f:6b:5c:e6:5b:1c:9f:34:ec:b4:11:9f:ee:0f:b6:
                    cd:a4:7a:06:6f:e8:38:df:43:65:29:ee:09:ae:a3:
                    10:ab:f4:ff:b7:b9:4d:e4:94:2d:5e:92:85:c6:2c:
                    b9:d7:9c:3c:6f:a4:77:40:a8:4e:85:96:6c:99:3f:
                    f9:21:55:69:fb:8a:d7:07:c0:4a:ef:2b:17:2b:da:
                    89:85:82:1b:4e:74:14:3a:79:3a:c0:98:4b:20:51:
                    bf:0d:93:11:cc:54:b8:37:91:47:88:3b:cd:85:d0:
                    a7:50:04:d8:0e:6f:51:c5:45:7b:16:c4:43:b4:e2:
                    1a:a9:d2:22:7f:66:bd:00:8d:60:40:4e:b7:0f:b9:
                    b7:6f:2c:04:aa:aa:d7:88:cf:71:3d:50:37:bb:4d:
                    09:00:17:ef:9e:c3:fb:ed:70:12:d2:88:28:b5:e0:
                    51:a9:5a:61:37:8c:59:06:91:ea:51:07:75:67:cc:
                    2c:f1:c3:8a:59:7b:14:33:cf:e5:dc:5b:95:64:a2:
                    d9:93:29:5d:33:97:25:cf:fb:ec:42:6f:29:34:4d:
                    f5:a5:79:1a:41:50:b4:78:cb:01:b8:09:b2:58:0c:
                    25:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E1:73:ED:0B:82:DE:44:3D:C2:15:2E:A7:AC:2C:9D:E9:B9:4F:B8:92
            X509v3 Authority Key Identifier:
                keyid:A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3136382e3138312e3138352e302f32342d3234203d3e203237383233.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  168.181.185.0/24

    Signature Algorithm: sha256WithRSAEncryption
         6a:f5:33:48:f1:56:c1:0b:ba:1b:cf:09:06:91:16:eb:f6:6f:
         f4:93:5e:5b:cf:2f:97:62:1e:7e:06:5e:db:22:79:d5:4b:53:
         4e:bf:23:64:8f:a1:78:61:27:a6:37:7e:64:ec:cc:9a:1e:a5:
         ee:76:a9:2d:37:21:f8:99:98:33:fb:b7:7f:00:cd:89:7c:db:
         6e:42:14:29:49:62:0b:52:64:fe:ff:0e:5a:ef:9c:a3:2b:0e:
         aa:19:43:ce:a3:5f:fe:78:cd:81:30:58:09:9a:e6:dc:97:7a:
         ec:49:8e:3e:59:df:9d:f7:e6:38:e3:54:8b:88:73:ee:38:95:
         de:38:ec:13:23:0b:fb:88:9f:05:60:c1:aa:d8:93:c2:05:6c:
         7b:0e:a3:56:4b:4f:9e:11:1a:7f:73:57:62:05:d0:90:03:74:
         8f:55:0a:72:bf:e9:6c:40:ae:bc:9d:ed:4e:93:64:6a:97:c9:
         92:9e:3b:85:2a:22:3a:ef:36:ca:6f:8e:89:88:82:bf:cf:13:
         74:27:cf:4e:c0:a9:07:a3:b6:21:f2:84:59:57:07:de:9b:5e:
         61:e9:87:af:36:71:0f:16:84:09:08:5d:09:91:31:34:5f:d5:
         d5:4c:fc:60:44:6b:00:cd:3f:34:87:76:4c:e1:07:dd:0a:30:
         78:d9:a7:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:48:12 2025 by rpki-client