Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/f7704706b3b91888e65f74a15f981f8b4212be74.roa
File:                     f7704706b3b91888e65f74a15f981f8b4212be74.roa (raw, json)
Hash identifier:          O9wT+vi4ZGIRYMii1c6RDhN8af0bFYmMl0NupCF6eMA=
Subject key identifier:   5F:D8:9F:E8:06:08:4E:FC:4A:2E:AD:2E:46:FC:85:10:42:FE:C4:89
Certificate issuer:       /CN=297e119ebe51a00d6560ab73fd79c51ada403f19
Certificate serial:       01C049
Authority key identifier: 07:09:37:88:ED:4A:80:C2:0C:DE:CE:10:A7:FF:BB:31:21:A2:72:9E
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/f7704706b3b91888e65f74a15f981f8b4212be74.roa
Signing time:             Wed 14 Sep 2022 16:24:03 +0000
ROA not before:           Fri 19 Aug 2022 16:20:25 +0000
ROA not after:            Mon 19 Aug 2024 16:20:25 +0000
asID:                     27823
IP address blocks:        200.58.107.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 114761 (0x1c049)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=297e119ebe51a00d6560ab73fd79c51ada403f19
        Validity
            Not Before: Aug 19 16:20:25 2022 GMT
            Not After : Aug 19 16:20:25 2024 GMT
        Subject: CN=f7704706b3b91888e65f74a15f981f8b4212be74
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:f8:54:11:6c:62:2d:92:ce:21:1e:3c:af:0c:
                    16:53:0a:08:db:bc:f0:30:13:dc:c0:7c:6d:c9:7c:
                    56:1f:dd:e4:f0:c0:5f:e0:ba:0b:c4:57:13:3a:70:
                    65:ff:da:e6:4f:39:df:2e:fd:74:90:ce:2c:f1:b4:
                    76:98:e3:aa:a0:6a:02:2d:ce:dc:c6:ad:5c:7e:ca:
                    b0:7b:87:77:25:06:67:43:ab:d0:65:cc:00:1e:67:
                    9d:c4:79:31:64:08:cb:f3:2a:72:4a:3a:9b:e8:d3:
                    86:b8:4f:86:55:3f:f8:8a:ff:ea:97:36:85:d2:62:
                    e6:83:87:30:63:f6:c5:ee:8c:e7:c7:a2:7b:18:fe:
                    c5:24:45:d7:4c:c1:bb:55:56:91:ca:58:e6:a0:f5:
                    7b:2d:53:c7:99:4e:a0:6c:62:a3:c0:52:e4:35:57:
                    7c:38:e7:48:12:91:95:2c:02:46:06:91:8b:c4:66:
                    57:ea:68:52:f9:85:bd:27:01:19:75:98:ab:66:30:
                    54:41:ae:66:f2:d2:aa:83:83:96:55:5e:9a:00:55:
                    3f:1e:6e:45:37:45:d3:a8:de:87:39:60:4a:ef:c4:
                    0d:17:66:9d:c4:c8:c1:07:64:f6:bb:d5:90:ab:e4:
                    0a:9f:1d:a1:51:91:83:7a:99:18:10:e1:5a:7a:a8:
                    ef:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5F:D8:9F:E8:06:08:4E:FC:4A:2E:AD:2E:46:FC:85:10:42:FE:C4:89
            X509v3 Authority Key Identifier:
                keyid:07:09:37:88:ED:4A:80:C2:0C:DE:CE:10:A7:FF:BB:31:21:A2:72:9E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/297e119ebe51a00d6560ab73fd79c51ada403f19.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/f7704706b3b91888e65f74a15f981f8b4212be74.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/4d8df0f0-41c4-401d-ac15-de0db40ac9cb/297e119ebe51a00d6560ab73fd79c51ada403f19.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.58.107.0/24

    Signature Algorithm: sha256WithRSAEncryption
         4a:5d:b7:9e:a0:7f:78:e2:37:c2:07:74:5d:36:c7:12:1a:57:
         ba:57:73:0b:d9:16:21:89:a9:3c:ee:d6:fc:ab:29:70:ac:b8:
         b3:e7:a2:ce:6e:7b:07:6a:b4:db:f8:0b:ce:5a:f6:88:0e:b2:
         25:8c:ff:68:90:41:e3:bb:c1:3c:d6:2b:3f:f6:55:6d:ea:6c:
         e6:02:71:9d:89:8d:26:1b:ee:39:41:be:a9:8e:20:70:e4:a2:
         45:87:7c:0c:7c:5f:d4:d6:18:cf:7f:fe:7d:f2:d4:8a:44:45:
         81:4d:1a:63:c3:02:6d:bb:44:6b:f9:1f:ae:91:dd:27:53:79:
         d0:f0:09:bd:aa:2c:bc:5a:dc:39:1c:11:b8:65:21:c3:53:67:
         e0:fa:9b:83:8a:d3:72:26:8f:45:57:eb:e7:f6:f5:1c:7b:4f:
         ef:f4:1c:42:50:b0:7c:7c:3e:c6:bd:2f:db:5c:42:11:41:a1:
         4d:c5:f8:78:86:a0:b4:9a:e2:13:ae:cf:1b:f2:2c:1b:ab:2d:
         10:e9:af:e0:a6:d9:54:20:b9:ca:7b:5d:11:41:01:0c:5e:85:
         ec:3a:15:6e:9b:8a:4b:ed:c0:e1:77:69:ae:4a:3c:a7:88:03:
         29:86:60:30:dc:28:6f:4a:5d:91:f0:73:29:26:72:a1:5a:7c:
         7c:d7:90:9a
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIDAcBJMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDI5
N2UxMTllYmU1MWEwMGQ2NTYwYWI3M2ZkNzljNTFhZGE0MDNmMTkwHhcNMjIwODE5
MTYyMDI1WhcNMjQwODE5MTYyMDI1WjAzMTEwLwYDVQQDEyhmNzcwNDcwNmIzYjkx
ODg4ZTY1Zjc0YTE1Zjk4MWY4YjQyMTJiZTc0MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAr/hUEWxiLZLOIR48rwwWUwoI27zwMBPcwHxtyXxWH93k8MBf
4LoLxFcTOnBl/9rmTznfLv10kM4s8bR2mOOqoGoCLc7cxq1cfsqwe4d3JQZnQ6vQ
ZcwAHmedxHkxZAjL8ypySjqb6NOGuE+GVT/4iv/qlzaF0mLmg4cwY/bF7oznx6J7
GP7FJEXXTMG7VVaRyljmoPV7LVPHmU6gbGKjwFLkNVd8OOdIEpGVLAJGBpGLxGZX
6mhS+YW9JwEZdZirZjBUQa5m8tKqg4OWVV6aAFU/Hm5FN0XTqN6HOWBK78QNF2ad
xMjBB2T2u9WQq+QKnx2hUZGDepkYEOFaeqjvnwIDAQABo4ICWzCCAlcwHQYDVR0O
BBYEFF/Yn+gGCE78Si6tLkb8hRBC/sSJMB8GA1UdIwQYMBaAFAcJN4jtSoDCDN7O
EKf/uzEhonKeMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvMjk3ZTEx
OWViZTUxYTAwZDY1NjBhYjczZmQ3OWM1MWFkYTQwM2YxOS5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvNGQ4ZGYwZjAtNDFjNC00MDFkLWFjMTUtZGUwZGI0
MGFjOWNiL2Y3NzA0NzA2YjNiOTE4ODhlNjVmNzRhMTVmOTgxZjhiNDIxMmJlNzQu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy80ZDhkZjBmMC00MWM0LTQwMWQtYWMxNS1kZTBk
YjQwYWM5Y2IvMjk3ZTExOWViZTUxYTAwZDY1NjBhYjczZmQ3OWM1MWFkYTQwM2Yx
OS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAMg6azANBgkqhkiG9w0BAQsFAAOCAQEASl23nqB/eOI3wgd0
XTbHEhpXuldzC9kWIYmpPO7W/KspcKy4s+eizm57B2q02/gLzlr2iA6yJYz/aJBB
47vBPNYrP/ZVbeps5gJxnYmNJhvuOUG+qY4gcOSiRYd8DHxf1NYYz3/+ffLUikRF
gU0aY8MCbbtEa/kfrpHdJ1N50PAJvaosvFrcORwRuGUhw1Nn4Pqbg4rTciaPRVfr
5/b1HHtP7/QcQlCwfHw+xr0v21xCEUGhTcX4eIagtJriE67PG/IsG6stEOmv4KbZ
VCC5yntdEUEBDF6F7DoVbpuKS+3A4Xdprko8p4gDKYZgMNwob0pdkfBzKSZyoVp8
fNeQmg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:41 2024 by rpki-client on console-ams.rpki-client.org