Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3137392e34332e3131322e302f32302d3234203d3e203237383233.roa
File:                     3137392e34332e3131322e302f32302d3234203d3e203237383233.roa (raw, json)
Hash identifier:          76Gl7Q5sjICVCydKCtubd8rNk31nvGlEdvqXbtP5b7Y=
Subject key identifier:   E2:30:BF:B6:04:24:0B:D8:39:2E:C4:C2:C3:0B:A0:E0:69:B2:41:30
Certificate issuer:       /CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80
Certificate serial:       407119B54567B74575355DFEA779CE34DE5F9D57
Authority key identifier: A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3137392e34332e3131322e302f32302d3234203d3e203237383233.roa
Signing time:             Tue 04 Feb 2025 18:08:20 +0000
ROA not before:           Tue 04 Feb 2025 18:03:20 +0000
ROA not after:            Tue 03 Feb 2026 18:08:20 +0000
asID:                     27823
IP address blocks:        179.43.112.0/20 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            40:71:19:b5:45:67:b7:45:75:35:5d:fe:a7:79:ce:34:de:5f:9d:57
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A5C31DCA4062FBA8FF4175C518EF2246CF570D80
        Validity
            Not Before: Feb  4 18:03:20 2025 GMT
            Not After : Feb  3 18:08:20 2026 GMT
        Subject: CN=E230BFB604240BD8392EC4C2C30BA0E069B24130
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:52:cf:5c:ab:ad:ad:96:d9:cf:2a:29:a8:51:
                    b9:f8:99:e6:f0:55:46:7a:ae:59:dd:2c:f0:90:1e:
                    5f:35:ee:9b:a8:21:1b:eb:30:a8:ca:2b:cd:a8:a3:
                    1f:b9:cc:51:a2:4f:98:9f:0e:b4:ab:51:b3:a1:f3:
                    38:43:d9:a5:0c:12:a1:59:3a:d8:7a:65:a8:f6:be:
                    d0:87:bd:33:3a:5b:35:4a:ca:93:9a:1c:71:33:02:
                    c5:62:f3:48:2c:52:fa:ff:89:d6:fe:ca:3a:18:37:
                    e5:34:3a:87:be:27:7a:65:74:1b:28:55:63:ab:c3:
                    8e:c1:9e:14:e2:a9:aa:a6:c1:e9:2c:72:31:7f:e4:
                    2a:03:f5:af:8d:8a:e4:71:d8:86:e3:03:f0:3a:44:
                    33:a9:b6:72:a0:f3:60:6c:8f:65:23:48:fe:ad:da:
                    6a:b7:ff:41:76:5a:c1:70:87:8e:39:c0:d7:5f:f0:
                    73:9a:2a:b8:e3:fb:b6:69:28:5f:13:23:bb:14:7e:
                    01:b7:52:e9:1d:ee:ad:19:78:2e:64:ae:a4:fa:22:
                    dd:d1:4d:9b:41:cd:57:3b:27:6b:65:6d:e3:fa:22:
                    4a:f7:8a:c5:a4:a9:9a:4a:9a:64:10:88:ae:27:81:
                    39:ef:75:3a:f5:1d:11:19:57:f3:d2:a0:34:54:ba:
                    aa:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E2:30:BF:B6:04:24:0B:D8:39:2E:C4:C2:C3:0B:A0:E0:69:B2:41:30
            X509v3 Authority Key Identifier:
                keyid:A5:C3:1D:CA:40:62:FB:A8:FF:41:75:C5:18:EF:22:46:CF:57:0D:80

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/A5C31DCA4062FBA8FF4175C518EF2246CF570D80.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/16B1B57B19B743C1E0B67DC5020E769FF697D5D8FE67645443C0170A59A628F4/0/3137392e34332e3131322e302f32302d3234203d3e203237383233.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  179.43.112.0/20

    Signature Algorithm: sha256WithRSAEncryption
         0e:fc:82:1b:21:8f:57:56:c8:80:01:c5:4e:20:76:d8:98:7d:
         e4:51:df:1f:de:67:fb:10:66:59:8c:26:ec:3b:9f:ef:81:60:
         af:ce:04:4b:38:3a:67:f3:29:97:27:81:35:1e:e2:7d:8a:e3:
         d8:6c:19:b9:1b:57:20:df:3f:f4:86:ca:b6:4e:ad:f2:6f:a2:
         ce:cf:b1:ea:25:b8:83:10:db:09:04:48:e3:1f:7c:74:b5:69:
         e2:e7:bc:a8:80:5f:48:08:93:4e:24:6f:54:79:c2:49:0a:e4:
         f2:82:6e:b4:b5:49:ec:34:50:3f:6d:de:03:d6:82:ff:c5:7e:
         93:78:9f:bb:9b:0f:8e:af:00:97:66:24:15:42:47:6f:c7:16:
         74:a8:b0:dc:88:9d:8c:5d:9a:d8:96:7a:61:32:e6:3e:38:c1:
         e5:fd:99:50:b7:07:2b:01:7f:d5:06:a5:ee:f8:55:93:cb:39:
         e0:eb:dc:29:c5:69:a4:b4:69:cc:c3:2b:e3:0b:d3:c4:0b:58:
         3d:6b:ef:0f:24:b5:65:cc:bf:38:93:46:19:a7:bb:75:89:87:
         e2:28:6d:4e:ad:e1:37:6b:b0:fd:80:e9:2f:e6:ee:51:a4:83:
         1d:e9:43:3b:37:29:77:14:a1:0a:5c:da:cb:cf:14:6d:6c:05:
         34:a1:da:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 17:47:34 2025 by rpki-client