Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5213295AB6217F99D6293CDB335864FE36F61C446E98C5E0E50298371708EE2C/0/34352e3139312e3234342e302f32342d3234203d3e20323633323138.roa
File:                     34352e3139312e3234342e302f32342d3234203d3e20323633323138.roa (raw, json)
Hash identifier:          iS2tV3bYPReUyUFLAF0JjeNXtQjObXD580jf6Ewy3Tw=
Subject key identifier:   93:EB:DF:B4:98:E8:ED:67:91:6F:10:85:17:56:53:F9:12:8C:11:39
Certificate issuer:       /CN=B7590EAE50B1547B0859265299E0B232EBB12D54
Certificate serial:       120AFAE05F2A86F1D6F7A532ED94194AFE1F211A
Authority key identifier: B7:59:0E:AE:50:B1:54:7B:08:59:26:52:99:E0:B2:32:EB:B1:2D:54
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B7590EAE50B1547B0859265299E0B232EBB12D54.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/5213295AB6217F99D6293CDB335864FE36F61C446E98C5E0E50298371708EE2C/0/34352e3139312e3234342e302f32342d3234203d3e20323633323138.roa
Signing time:             Tue 04 Feb 2025 18:54:23 +0000
ROA not before:           Tue 04 Feb 2025 18:49:23 +0000
ROA not after:            Tue 03 Feb 2026 18:54:23 +0000
asID:                     263218
IP address blocks:        45.191.244.0/24 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            12:0a:fa:e0:5f:2a:86:f1:d6:f7:a5:32:ed:94:19:4a:fe:1f:21:1a
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=B7590EAE50B1547B0859265299E0B232EBB12D54
        Validity
            Not Before: Feb  4 18:49:23 2025 GMT
            Not After : Feb  3 18:54:23 2026 GMT
        Subject: CN=93EBDFB498E8ED67916F1085175653F9128C1139
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:51:77:90:e5:e7:73:55:d0:37:6f:a9:5c:f9:
                    ec:7f:0b:e9:ec:ea:d9:cc:0b:f4:18:7a:e0:33:13:
                    bb:19:9b:c1:96:71:cd:f9:ad:ab:51:74:d5:67:09:
                    74:11:d9:b6:1e:7f:0c:7f:44:a2:9c:28:fd:28:57:
                    7f:bd:b6:7c:1a:9c:5c:d6:bb:a1:59:53:03:12:c1:
                    fd:6a:85:aa:db:be:00:db:48:bf:33:98:c2:6d:40:
                    0d:17:a2:ec:50:e2:ac:fc:f1:60:eb:2e:54:57:99:
                    55:1a:ba:98:7c:6f:24:eb:d1:8e:9e:a1:c0:e0:0f:
                    2c:af:85:9f:d9:42:67:39:14:b8:ce:e6:70:d1:cb:
                    b3:58:77:3b:0f:f8:ec:a6:3e:a9:9a:cb:30:10:fd:
                    d6:f5:2f:72:3d:47:42:82:3c:99:6b:71:95:32:f7:
                    d0:eb:43:57:68:3c:f7:0c:83:62:be:58:ac:88:83:
                    92:29:a7:62:d0:f8:66:15:c4:f4:fb:cf:66:85:a1:
                    dd:fc:e9:3b:0d:88:23:bd:67:ca:5e:cd:5d:b1:1a:
                    25:cf:6e:9f:56:e8:82:30:38:10:f8:39:54:86:52:
                    58:8f:09:a9:57:db:b2:25:7c:3d:4a:1c:89:3f:43:
                    45:be:48:71:3e:4f:d3:fd:bf:e7:a4:36:fc:7e:d4:
                    46:9b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:EB:DF:B4:98:E8:ED:67:91:6F:10:85:17:56:53:F9:12:8C:11:39
            X509v3 Authority Key Identifier:
                keyid:B7:59:0E:AE:50:B1:54:7B:08:59:26:52:99:E0:B2:32:EB:B1:2D:54

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/5213295AB6217F99D6293CDB335864FE36F61C446E98C5E0E50298371708EE2C/0/B7590EAE50B1547B0859265299E0B232EBB12D54.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/B7590EAE50B1547B0859265299E0B232EBB12D54.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5213295AB6217F99D6293CDB335864FE36F61C446E98C5E0E50298371708EE2C/0/34352e3139312e3234342e302f32342d3234203d3e20323633323138.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.191.244.0/24

    Signature Algorithm: sha256WithRSAEncryption
         46:24:af:f6:af:b9:7f:79:30:ba:a9:f9:14:6c:94:89:36:e7:
         2d:ef:eb:2f:ea:25:50:20:c2:28:f8:cb:eb:b8:25:61:37:07:
         67:8b:cb:24:48:3c:80:6f:9a:40:ae:a1:5f:7a:eb:0a:46:64:
         06:93:fa:88:3d:c3:20:67:97:d0:f3:31:3e:ae:8a:30:3e:b9:
         af:b5:20:70:10:d2:f0:7c:27:9e:69:91:26:4c:42:82:2b:4c:
         46:f1:47:cd:8b:eb:27:07:c7:c2:3d:a0:10:3a:41:20:31:84:
         c6:c0:af:ed:94:f2:55:96:c1:64:e9:79:04:51:31:d9:47:bc:
         0d:e2:48:9c:3f:47:07:8d:24:50:fa:75:96:36:cd:2a:f8:cd:
         1b:58:2e:4b:76:94:93:ea:7f:7f:59:13:ea:d0:1e:50:40:41:
         2d:d8:b7:25:e2:64:cd:db:a4:e7:3b:11:d9:72:bf:c3:7f:1b:
         10:75:80:83:16:31:e3:38:57:34:3c:b5:62:60:07:f7:8d:34:
         cf:0a:95:fc:fd:06:94:15:55:77:5b:aa:36:bf:60:bf:88:c9:
         32:a3:5a:c8:43:87:da:06:52:fa:96:2b:26:ae:b0:42:db:98:
         35:d4:d1:79:78:df:85:86:24:c6:93:9a:8e:98:47:9f:3f:37:
         00:ff:a1:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----