Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3136382e3139372e34382e302f32342d3234203d3e203237383233.roa
File:                     3136382e3139372e34382e302f32342d3234203d3e203237383233.roa (raw, json)
Hash identifier:          UfhVeD1c9aoST5fKxGawFCKrcHYAZvskIVG5POE/Jk4=
Subject key identifier:   04:50:D7:54:7E:89:17:66:BB:8D:71:18:2E:40:D5:BC:35:FA:E7:AD
Certificate issuer:       /CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80
Certificate serial:       50792C2718454C5D21D39C6AE063EE2B0FD59A84
Authority key identifier: A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3136382e3139372e34382e302f32342d3234203d3e203237383233.roa
Signing time:             Tue 04 Feb 2025 18:08:17 +0000
ROA not before:           Tue 04 Feb 2025 18:03:17 +0000
ROA not after:            Tue 03 Feb 2026 18:08:17 +0000
asID:                     27823
IP address blocks:        168.197.48.0/24 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            50:79:2c:27:18:45:4c:5d:21:d3:9c:6a:e0:63:ee:2b:0f:d5:9a:84
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80
        Validity
            Not Before: Feb  4 18:03:17 2025 GMT
            Not After : Feb  3 18:08:17 2026 GMT
        Subject: CN=0450D7547E891766BB8D71182E40D5BC35FAE7AD
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:c4:56:0c:6a:6e:12:af:26:ff:f0:40:36:a1:
                    06:19:cd:df:c6:fc:1d:f8:13:33:6d:69:a6:52:c4:
                    1a:e1:f0:91:38:66:5e:36:e2:8a:b4:5a:f5:d5:74:
                    47:a1:ab:69:70:ba:3c:6a:07:e0:79:8c:c3:86:0d:
                    6b:06:d5:d3:25:24:a2:15:ba:aa:57:d8:01:d0:0d:
                    94:38:8a:b1:5c:9f:2c:d2:c3:36:5c:70:31:b8:fd:
                    19:74:f8:50:07:fd:a5:90:d1:dd:a3:7a:17:c3:d2:
                    0d:ee:77:79:6f:38:06:16:e4:fa:61:f7:32:a9:b1:
                    0f:14:a2:0b:3e:96:48:a2:ea:1d:29:8a:6f:28:71:
                    c8:a7:ca:35:64:de:8f:e5:db:4a:73:b1:59:e9:5a:
                    9d:cf:d6:01:37:8f:31:98:62:86:4b:e9:dd:2d:9c:
                    f3:8f:9a:63:1a:57:79:54:c6:f7:9f:de:a2:83:ce:
                    f6:6f:42:5c:b8:cc:f1:75:31:36:e3:7d:95:e9:08:
                    02:ee:bf:f7:73:b4:53:8e:7c:60:c8:0a:b8:32:e1:
                    4a:ba:2d:4c:44:c5:8a:5f:d4:fd:c2:f0:3f:42:52:
                    70:0e:11:0e:9f:33:5a:28:c0:a7:f0:fd:34:a2:12:
                    24:49:95:7b:30:12:1b:ff:23:55:63:98:ef:9b:56:
                    52:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                04:50:D7:54:7E:89:17:66:BB:8D:71:18:2E:40:D5:BC:35:FA:E7:AD
            X509v3 Authority Key Identifier:
                keyid:A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3136382e3139372e34382e302f32342d3234203d3e203237383233.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  168.197.48.0/24

    Signature Algorithm: sha256WithRSAEncryption
         88:0d:e9:fe:60:0a:f6:54:95:6f:f9:ab:7a:ce:18:e9:ce:7c:
         93:d8:32:ec:75:96:c8:4f:b5:4d:c6:12:92:6a:4a:5b:c1:f3:
         53:23:c5:c4:4b:64:ec:13:9f:a1:6f:73:7d:b4:01:90:54:55:
         03:ea:57:c5:fd:16:de:d5:e3:fa:96:8e:a3:21:70:2c:40:fb:
         0b:74:31:37:99:94:c4:eb:eb:bc:a3:c7:d3:9f:a2:78:8b:a9:
         fa:04:19:8f:2d:ee:94:d5:97:8b:f7:65:af:7b:4f:94:76:1e:
         ca:73:43:90:22:af:58:10:bc:e9:51:71:ac:38:e5:81:62:6e:
         c7:c9:a4:13:08:9d:f8:1a:1a:25:d8:85:84:d6:b4:e5:ba:76:
         3a:e6:39:20:11:d5:d3:65:db:c7:60:a0:dd:65:4c:11:a4:b9:
         ca:09:64:1b:17:a8:02:5c:04:f4:e9:3d:86:18:36:8a:fe:c5:
         34:33:40:47:52:b7:bf:86:a6:54:f5:b7:84:c7:cb:cc:a0:4b:
         4a:d0:38:af:70:69:2b:40:9f:76:b5:24:84:41:49:23:49:6b:
         be:19:98:b1:3f:80:36:9b:8d:eb:da:c0:e4:8b:ba:d6:d6:dc:
         26:47:4f:49:7c:98:7d:c8:23:a8:f1:91:b6:a7:cc:6f:bf:b7:
         55:05:7d:b8
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUUHksJxhFTF0h05xq4GPuKw/VmoQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQTVDMzFEQ0E0MDYyRkJBOEZGNDE3NUM1MThFRjIyNDZD
RjU3MEQ4MDAeFw0yNTAyMDQxODAzMTdaFw0yNjAyMDMxODA4MTdaMDMxMTAvBgNV
BAMTKDA0NTBENzU0N0U4OTE3NjZCQjhENzExODJFNDBENUJDMzVGQUU3QUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6xFYMam4Sryb/8EA2oQYZzd/G
/B34EzNtaaZSxBrh8JE4Zl424oq0WvXVdEehq2lwujxqB+B5jMOGDWsG1dMlJKIV
uqpX2AHQDZQ4irFcnyzSwzZccDG4/Rl0+FAH/aWQ0d2jehfD0g3ud3lvOAYW5Pph
9zKpsQ8Uogs+lkii6h0pim8occinyjVk3o/l20pzsVnpWp3P1gE3jzGYYoZL6d0t
nPOPmmMaV3lUxvef3qKDzvZvQly4zPF1MTbjfZXpCALuv/dztFOOfGDICrgy4Uq6
LUxExYpf1P3C8D9CUnAOEQ6fM1oowKfw/TSiEiRJlXswEhv/I1VjmO+bVlJtAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUBFDXVH6JF2a7jXEYLkDVvDX6560wHwYDVR0j
BBgwFoAUpcMdykBi+6j/QXXFGO8iRs9XDYAwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8xNkIxQjU3QjE5Qjc0M0MxRTBCNjdEQzUwMjBFNzY5RkY2
OTdENUQ4RkU2NzY0NTQ0M0MwMTcwQTU5QTYyOEY0LzAvQTVDMzFEQ0E0MDYyRkJB
OEZGNDE3NUM1MThFRjIyNDZDRjU3MEQ4MC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9BNUMzMURDQTQwNjJGQkE4RkY0
MTc1QzUxOEVGMjI0NkNGNTcwRDgwLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMTZCMUI1N0IxOUI3NDNDMUUwQjY3REM1MDIwRTc2OUZGNjk3RDVEOEZF
Njc2NDU0NDNDMDE3MEE1OUE2MjhGNC8wLzMxMzYzODJlMzEzOTM3MmUzNDM4MmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNzM4MzIzMy5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKjFMDAN
BgkqhkiG9w0BAQsFAAOCAQEAiA3p/mAK9lSVb/mres4Y6c58k9gy7HWWyE+1TcYS
kmpKW8HzUyPFxEtk7BOfoW9zfbQBkFRVA+pXxf0W3tXj+paOoyFwLED7C3QxN5mU
xOvrvKPH05+ieIup+gQZjy3ulNWXi/dlr3tPlHYeynNDkCKvWBC86VFxrDjlgWJu
x8mkEwid+BoaJdiFhNa05bp2OuY5IBHV02Xbx2Cg3WVMEaS5yglkGxeoAlwE9Ok9
hhg2iv7FNDNAR1K3v4amVPW3hMfLzKBLStA4r3BpK0CfdrUkhEFJI0lrvhmYsT+A
NpuN69rA5Iu61tbcJkdPSXyYfcgjqPGRtqfMb7+3VQV9uA==
-----END CERTIFICATE-----
Generated at Mon Apr 7 17:47:41 2025 by rpki-client