Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/3230312e3138322e3133322e302f32332d3234203d3e203634313036.roa
File:                     3230312e3138322e3133322e302f32332d3234203d3e203634313036.roa (raw, json)
Hash identifier:          VVzu6SOoKkeADZOYR91PpkcVro18TT02aMi9LwloAjg=
Subject key identifier:   67:7D:F2:6E:F7:D1:37:19:9B:8D:C4:17:E2:13:59:C3:57:F0:B3:B7
Certificate issuer:       /CN=481B3876880F63D5F9BA6D763D7E663E9DB369FC
Certificate serial:       7BFE84CCBADAEB8D8BDBFB483543B7D552B2D7D5
Authority key identifier: 48:1B:38:76:88:0F:63:D5:F9:BA:6D:76:3D:7E:66:3E:9D:B3:69:FC
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/3230312e3138322e3133322e302f32332d3234203d3e203634313036.roa
Signing time:             Tue 04 Feb 2025 18:35:04 +0000
ROA not before:           Tue 04 Feb 2025 18:30:04 +0000
ROA not after:            Tue 03 Feb 2026 18:35:04 +0000
asID:                     64106
IP address blocks:        201.182.132.0/23 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7b:fe:84:cc:ba:da:eb:8d:8b:db:fb:48:35:43:b7:d5:52:b2:d7:d5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=481B3876880F63D5F9BA6D763D7E663E9DB369FC
        Validity
            Not Before: Feb  4 18:30:04 2025 GMT
            Not After : Feb  3 18:35:04 2026 GMT
        Subject: CN=677DF26EF7D137199B8DC417E21359C357F0B3B7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:2c:aa:c0:61:52:eb:b9:4e:d9:0f:42:dd:70:
                    56:42:eb:e8:93:4c:ee:bf:2a:f9:d3:d8:13:85:f1:
                    2c:54:a3:04:a1:11:81:15:7e:fb:52:ba:63:01:94:
                    1f:42:bc:19:b1:8e:0e:64:1d:e4:97:1e:47:ff:83:
                    69:8b:79:4f:55:f5:53:82:83:e9:de:6b:07:d4:6d:
                    51:c6:8c:55:3c:c2:52:46:13:f7:07:7a:38:b3:16:
                    6d:f6:d7:b0:c3:30:07:b2:b0:b8:17:ae:0b:8a:ac:
                    62:36:17:20:25:da:4d:3b:92:e2:e0:bb:2f:10:cd:
                    13:02:20:8b:fa:37:9f:74:a1:bb:d9:1e:82:59:ef:
                    43:49:6d:e7:9c:11:ff:1a:f5:6a:fb:b5:5c:5c:83:
                    0e:6e:4b:9a:8c:e5:78:09:52:1a:7f:66:79:3e:20:
                    f9:34:ba:6c:87:67:82:1d:fa:ca:f9:af:a7:e0:bd:
                    47:b9:53:29:fd:85:c0:55:27:77:9d:3e:ba:03:b5:
                    be:e3:09:04:26:a5:12:88:e8:be:87:cf:12:42:95:
                    c2:29:6f:17:02:1c:ca:c3:0d:f1:4b:c4:29:a2:eb:
                    93:49:05:f4:5d:6c:a8:68:6c:f4:21:eb:7b:0d:e4:
                    c1:fa:22:bf:70:58:73:19:5d:87:33:83:9a:25:f5:
                    77:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                67:7D:F2:6E:F7:D1:37:19:9B:8D:C4:17:E2:13:59:C3:57:F0:B3:B7
            X509v3 Authority Key Identifier:
                keyid:48:1B:38:76:88:0F:63:D5:F9:BA:6D:76:3D:7E:66:3E:9D:B3:69:FC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/481B3876880F63D5F9BA6D763D7E663E9DB369FC.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1F8205A5BB97201E990D3372B7AF94155D7F1863EE2E79B447406F0540D9B002/0/3230312e3138322e3133322e302f32332d3234203d3e203634313036.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  201.182.132.0/23

    Signature Algorithm: sha256WithRSAEncryption
         d0:83:ec:7d:99:89:03:d9:44:e7:90:da:4c:5c:a5:8e:1a:c1:
         aa:46:2e:29:eb:ff:c4:12:31:82:e6:77:af:7f:2f:a9:d2:83:
         91:0d:da:9d:86:8c:92:26:c2:37:d0:61:51:ba:c9:fc:a5:fe:
         77:46:4f:fe:80:72:42:e0:e3:c7:0e:6a:5c:bc:79:2a:ea:8c:
         de:e7:3f:b4:ee:d1:40:b1:d7:78:47:95:6d:ac:39:03:21:83:
         75:82:26:bd:06:8f:26:08:a1:dd:cb:56:c5:ff:31:3b:42:7d:
         66:de:25:3e:ed:5c:6c:52:1b:6b:ee:e2:8f:cf:03:1b:cc:f7:
         e7:ae:21:e9:46:6f:27:59:11:2e:06:a1:e0:42:8d:41:95:42:
         9d:78:14:67:ee:ca:d6:1d:74:6c:7c:94:11:ed:53:0a:b0:06:
         44:ac:8f:80:51:5d:c5:5c:1d:dc:af:ee:c6:e0:e4:df:21:31:
         dc:c2:d4:e5:3e:80:43:89:1d:59:6f:5f:24:9f:fb:d4:5a:99:
         38:81:67:5d:d4:f0:8c:bd:0d:a3:5b:52:9c:c5:c2:77:ae:6e:
         91:2e:25:a5:98:82:13:cd:8f:6e:45:b4:a7:22:d5:e2:97:bb:
         6a:9a:74:eb:9a:bf:db:51:39:a0:be:9c:8b:15:75:f4:76:51:
         1a:a3:47:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----