Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/3177105F79EA035DDDB82F17F4CD322FC96430CB37B1E0909795B4338874F634/0/3230302e31342e35302e302f32342d3234203d3e203237373235.roa
File:                     3230302e31342e35302e302f32342d3234203d3e203237373235.roa (raw, json)
Hash identifier:          jlbWQS5ME+j4h/KwVMRQS4WINX7D3wiOC9tQlpyApx8=
Subject key identifier:   92:56:4F:7B:05:FC:BE:ED:03:20:15:3C:C1:F7:58:1A:91:FC:52:31
Certificate issuer:       /CN=0853D584282A848F37AB7DF143D8977A037C0B75
Certificate serial:       3AEBBD8DA9AD568C2BA132617DD8467B44635B19
Authority key identifier: 08:53:D5:84:28:2A:84:8F:37:AB:7D:F1:43:D8:97:7A:03:7C:0B:75
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0853D584282A848F37AB7DF143D8977A037C0B75.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/3177105F79EA035DDDB82F17F4CD322FC96430CB37B1E0909795B4338874F634/0/3230302e31342e35302e302f32342d3234203d3e203237373235.roa
Signing time:             Tue 04 Feb 2025 18:03:39 +0000
ROA not before:           Tue 04 Feb 2025 17:58:39 +0000
ROA not after:            Tue 03 Feb 2026 18:03:39 +0000
asID:                     27725
IP address blocks:        200.14.50.0/24 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3a:eb:bd:8d:a9:ad:56:8c:2b:a1:32:61:7d:d8:46:7b:44:63:5b:19
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0853D584282A848F37AB7DF143D8977A037C0B75
        Validity
            Not Before: Feb  4 17:58:39 2025 GMT
            Not After : Feb  3 18:03:39 2026 GMT
        Subject: CN=92564F7B05FCBEED0320153CC1F7581A91FC5231
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:20:e7:20:c2:32:9a:2c:79:7a:29:77:7c:30:
                    35:7f:6f:ca:d9:61:c9:98:4e:f8:b7:89:1b:30:39:
                    67:24:51:db:ab:dc:db:ab:47:79:ab:c5:fb:7a:be:
                    54:81:cf:bc:90:c7:34:97:ea:8c:e5:8a:b2:c2:76:
                    51:ef:11:2e:a5:41:56:7c:ea:3b:ed:8f:f2:c6:e7:
                    6b:46:17:b2:d4:2a:c9:83:58:96:16:79:89:ab:de:
                    75:32:38:68:fd:a4:70:c0:2a:04:d2:08:7c:42:cb:
                    52:58:7a:98:cd:d4:fe:a1:29:ea:26:fe:bd:c6:d6:
                    3a:ef:c7:c5:2a:72:de:90:13:22:0e:ba:ef:a6:25:
                    0f:3b:99:0a:6a:43:f3:87:a5:b3:37:e6:4b:b3:06:
                    a7:15:7c:57:c4:74:ce:55:3a:27:6a:87:f3:68:14:
                    41:ea:15:cd:dc:57:77:7a:7a:43:d0:54:6a:64:d9:
                    9a:b8:24:76:a0:6f:1c:a4:1b:c8:d6:99:37:3f:ad:
                    11:ee:8d:fc:86:b5:5e:2f:db:a3:aa:4c:dd:6c:0f:
                    69:29:58:01:e6:84:63:d1:e5:e1:51:c3:cc:9e:70:
                    31:9f:0d:07:1f:ff:9d:a3:f6:f8:6f:1c:59:1b:39:
                    d4:f3:7b:0c:59:f9:02:06:59:e3:b5:c6:d3:af:cc:
                    70:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                92:56:4F:7B:05:FC:BE:ED:03:20:15:3C:C1:F7:58:1A:91:FC:52:31
            X509v3 Authority Key Identifier:
                keyid:08:53:D5:84:28:2A:84:8F:37:AB:7D:F1:43:D8:97:7A:03:7C:0B:75

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/3177105F79EA035DDDB82F17F4CD322FC96430CB37B1E0909795B4338874F634/0/0853D584282A848F37AB7DF143D8977A037C0B75.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0853D584282A848F37AB7DF143D8977A037C0B75.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/3177105F79EA035DDDB82F17F4CD322FC96430CB37B1E0909795B4338874F634/0/3230302e31342e35302e302f32342d3234203d3e203237373235.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.14.50.0/24

    Signature Algorithm: sha256WithRSAEncryption
         c0:07:b5:33:5a:6e:b9:08:88:e2:96:fd:4b:2d:9e:54:e5:70:
         ed:37:20:b4:58:33:ce:4b:dc:8a:6f:48:34:f9:af:57:8e:d9:
         af:f2:b6:19:ef:20:96:08:e6:4b:e2:39:91:ca:e2:d2:b7:34:
         1d:0d:8a:0e:30:d7:5c:aa:80:da:f0:5a:0f:1f:9e:ff:a1:0b:
         3c:3d:62:b2:7b:d6:37:9e:b2:5a:7f:7e:f3:4d:57:8c:0f:f8:
         1e:93:68:13:48:02:88:24:86:cc:61:55:1d:0a:7f:37:1c:33:
         c3:57:3e:3b:38:92:c6:f2:83:47:c7:54:03:c3:15:ea:d5:bb:
         da:01:9c:00:78:f0:ae:f1:fb:c9:91:5a:68:09:9c:f9:75:c5:
         b9:91:d6:5a:b5:e7:24:dc:b0:b9:48:3e:64:05:12:34:a4:79:
         53:17:86:39:34:36:27:04:f8:eb:84:a1:7a:d7:c9:d3:d0:45:
         7c:73:3f:6d:4a:67:99:4b:cb:5b:82:0d:5e:5c:fc:73:f7:b9:
         d3:58:42:3c:d2:5e:c2:11:78:d3:10:82:93:e5:f7:54:55:ff:
         c8:39:71:7e:c8:57:85:7e:7c:2f:37:ab:42:4f:79:c6:7c:0b:
         0a:7b:e5:df:fa:60:be:15:49:2f:a3:fe:27:49:19:96:f0:cc:
         f5:d3:86:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----