Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/410933603B2F3DC78166B98B0AF7F3C47AE988CED561C3F2A0AA6430652553B5/0/3137302e3234372e3230362e302f32332d3233203d3e20323634383237.roa
File:                     3137302e3234372e3230362e302f32332d3233203d3e20323634383237.roa (raw, json)
Hash identifier:          JADLhjXUWIRWhhqqVj4KNEl25dJ6G963CCn6pbY1Ows=
Subject key identifier:   06:2B:CD:65:FF:7B:9F:E4:8B:C7:25:CE:54:ED:59:E2:41:CA:26:AB
Certificate issuer:       /CN=1BF2779400E0A85789A6D60B10CC1B8DEC0E7ECA
Certificate serial:       7931D3878328E727F2F163DCA329623E520B4F79
Authority key identifier: 1B:F2:77:94:00:E0:A8:57:89:A6:D6:0B:10:CC:1B:8D:EC:0E:7E:CA
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1BF2779400E0A85789A6D60B10CC1B8DEC0E7ECA.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/410933603B2F3DC78166B98B0AF7F3C47AE988CED561C3F2A0AA6430652553B5/0/3137302e3234372e3230362e302f32332d3233203d3e20323634383237.roa
Signing time:             Tue 04 Feb 2025 18:37:00 +0000
ROA not before:           Tue 04 Feb 2025 18:32:00 +0000
ROA not after:            Tue 03 Feb 2026 18:37:00 +0000
asID:                     264827
IP address blocks:        170.247.206.0/23 maxlen: 23
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            79:31:d3:87:83:28:e7:27:f2:f1:63:dc:a3:29:62:3e:52:0b:4f:79
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1BF2779400E0A85789A6D60B10CC1B8DEC0E7ECA
        Validity
            Not Before: Feb  4 18:32:00 2025 GMT
            Not After : Feb  3 18:37:00 2026 GMT
        Subject: CN=062BCD65FF7B9FE48BC725CE54ED59E241CA26AB
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:99:02:45:8c:a2:ed:98:7b:df:0c:1a:33:72:
                    30:21:d5:da:d1:5b:04:dd:30:b4:8b:21:bd:1b:2f:
                    19:93:5e:0a:bd:e9:75:26:b3:d5:e8:e6:61:47:92:
                    1a:74:12:0d:ce:df:aa:1c:71:e3:f9:88:d0:02:68:
                    07:cf:9d:b5:a0:e0:0c:a6:35:7b:7c:45:10:05:4c:
                    a3:c6:a2:39:25:a9:e7:48:c4:ad:e7:22:e6:b9:45:
                    ce:80:ad:7d:ff:a9:33:43:67:a5:a9:8c:ec:ee:eb:
                    85:a0:d8:78:2e:b1:9d:1d:1f:08:ce:42:c9:c6:c7:
                    05:67:c5:b4:dd:ec:28:22:e2:da:76:ac:02:b0:92:
                    8d:3f:39:5a:79:5c:fe:b7:1a:b9:18:cb:82:03:eb:
                    d7:96:ae:36:60:3d:9b:10:07:af:ec:be:a2:9d:53:
                    c1:9d:87:3c:f4:e4:8a:66:d9:62:9f:fd:c1:9d:40:
                    73:82:93:10:e1:35:73:31:bc:e8:a8:51:ae:67:c6:
                    88:1b:76:ed:70:39:e5:84:b2:64:4e:21:fd:5e:25:
                    72:c7:cd:40:19:5d:a9:e5:7e:a2:e5:16:a8:54:cc:
                    6e:24:16:80:e6:c1:e3:3d:29:4a:5c:79:42:9c:31:
                    94:98:a8:5e:ea:03:2e:5d:7f:b5:a3:2a:f0:a7:15:
                    20:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                06:2B:CD:65:FF:7B:9F:E4:8B:C7:25:CE:54:ED:59:E2:41:CA:26:AB
            X509v3 Authority Key Identifier:
                keyid:1B:F2:77:94:00:E0:A8:57:89:A6:D6:0B:10:CC:1B:8D:EC:0E:7E:CA

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/410933603B2F3DC78166B98B0AF7F3C47AE988CED561C3F2A0AA6430652553B5/0/1BF2779400E0A85789A6D60B10CC1B8DEC0E7ECA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/1BF2779400E0A85789A6D60B10CC1B8DEC0E7ECA.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/410933603B2F3DC78166B98B0AF7F3C47AE988CED561C3F2A0AA6430652553B5/0/3137302e3234372e3230362e302f32332d3233203d3e20323634383237.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  170.247.206.0/23

    Signature Algorithm: sha256WithRSAEncryption
         7c:65:f6:6b:ac:df:9d:4c:26:e3:f9:a4:f7:8c:ac:12:6d:be:
         25:88:8c:b7:64:2a:c7:db:5d:01:c3:e1:82:c2:9b:e5:52:b4:
         d1:dd:2b:d1:53:ae:e2:e1:b4:cd:a0:7c:33:99:ad:97:58:4e:
         3d:e4:d3:ab:42:7b:de:a8:63:ca:cc:12:6f:45:32:01:73:f9:
         0c:dc:ec:af:48:97:44:7c:8d:de:30:a6:f1:b7:ef:ba:a1:24:
         d4:82:fc:61:29:7a:29:59:5d:64:fc:1e:9a:0f:5a:dc:fc:6b:
         29:7e:20:72:e6:2c:db:bf:68:61:95:ad:d2:a5:95:e6:3f:94:
         dd:0f:b5:84:54:94:c5:dc:e5:4d:14:d3:3b:6f:0e:22:c5:65:
         b6:20:02:4d:d7:f9:dd:17:87:45:de:c7:e3:64:19:2e:2b:53:
         34:32:f3:70:89:17:1e:6b:c2:8d:e0:30:d3:9e:56:0e:62:8e:
         3d:7b:25:76:93:bf:67:5e:66:f0:33:c1:67:d5:85:e2:78:b3:
         76:40:86:b4:77:1d:0b:22:52:47:82:06:a3:18:fb:44:6e:9d:
         73:ae:0d:90:b3:68:a5:b2:9e:60:62:be:7f:74:80:49:79:da:
         ff:50:17:13:2c:ac:20:f4:f7:e1:34:e4:6c:8c:5c:24:b0:d7:
         da:f5:45:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----