Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/532b2097-ea08-4780-b94f-03c338b5aa57/83356cf2dc41e783a6f2b36c52876e195414f50c.roa
File:                     83356cf2dc41e783a6f2b36c52876e195414f50c.roa (raw, json)
Hash identifier:          hZpbwrYpvWLu3tyikiWf529WcivtB06TPXeX+5DviOc=
Subject key identifier:   76:AD:FC:C9:BF:07:1C:3A:EE:CC:E2:71:FE:C1:EF:EE:79:2C:30:06
Certificate issuer:       /CN=c974409d0c2a70c921dd685e863e9f00cb1e262a
Certificate serial:       2E41AC
Authority key identifier: FB:8E:FC:68:56:00:AB:63:EA:02:4F:A3:0D:1F:15:D5:B5:B0:C1:B1
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c974409d0c2a70c921dd685e863e9f00cb1e262a.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/532b2097-ea08-4780-b94f-03c338b5aa57/83356cf2dc41e783a6f2b36c52876e195414f50c.roa
Signing time:             Thu 07 Dec 2023 13:01:00 +0000
ROA not before:           Thu 07 Dec 2023 13:00:46 +0000
ROA not after:            Thu 07 Dec 2028 13:00:46 +0000
asID:                     262229
IP address blocks:        181.111.168.0/24 maxlen: 24
                          181.111.171.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3031468 (0x2e41ac)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c974409d0c2a70c921dd685e863e9f00cb1e262a
        Validity
            Not Before: Dec  7 13:00:46 2023 GMT
            Not After : Dec  7 13:00:46 2028 GMT
        Subject: CN=83356cf2dc41e783a6f2b36c52876e195414f50c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8f:64:3f:ff:24:68:c5:fc:a2:9c:3f:d0:37:b9:
                    6a:a3:96:d7:d8:49:49:42:bd:f0:9c:77:15:70:65:
                    fe:65:f5:48:7f:0a:fb:15:9f:cf:06:dd:f7:56:42:
                    a6:35:76:1d:31:4b:c3:e8:e4:2e:ad:95:ee:a6:5d:
                    ad:0c:b3:19:3b:66:48:74:33:5c:a2:a9:72:3d:4d:
                    84:8e:3a:c4:ec:49:05:f2:12:4d:62:1e:e8:42:6d:
                    ae:4d:48:be:80:98:1d:dc:4e:e4:d7:b7:54:76:b7:
                    aa:e5:62:42:7e:29:71:91:b0:4a:7f:c1:aa:14:d8:
                    32:44:bf:69:42:a0:8d:1a:9c:45:5d:23:a3:49:46:
                    75:5d:26:c7:8c:e8:ee:8a:c2:48:96:4c:d0:fd:4a:
                    8b:8d:11:84:17:6a:0d:8e:80:56:75:b0:23:e5:b8:
                    94:11:3f:a0:33:1e:ee:ab:1d:7a:c0:ec:ec:47:f7:
                    d9:48:d4:ca:66:4b:82:9f:35:aa:e0:16:19:c7:ae:
                    96:54:68:ee:d2:34:b2:7d:b8:6d:c1:4b:52:fe:4a:
                    d7:f9:e0:af:1c:f6:43:d0:b7:00:76:01:c9:d6:ac:
                    68:29:1a:1c:7f:50:e1:5e:af:f9:b3:fb:03:fa:90:
                    9f:04:a3:7d:1b:6a:ad:76:fe:5f:fa:b7:de:24:72:
                    41:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                76:AD:FC:C9:BF:07:1C:3A:EE:CC:E2:71:FE:C1:EF:EE:79:2C:30:06
            X509v3 Authority Key Identifier:
                keyid:FB:8E:FC:68:56:00:AB:63:EA:02:4F:A3:0D:1F:15:D5:B5:B0:C1:B1

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c974409d0c2a70c921dd685e863e9f00cb1e262a.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/532b2097-ea08-4780-b94f-03c338b5aa57/83356cf2dc41e783a6f2b36c52876e195414f50c.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/532b2097-ea08-4780-b94f-03c338b5aa57/c974409d0c2a70c921dd685e863e9f00cb1e262a.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  181.111.168.0/24
                  181.111.171.0/24

    Signature Algorithm: sha256WithRSAEncryption
         17:1a:d6:38:2e:84:df:79:5f:4e:d3:37:b2:26:ea:52:a2:dc:
         76:35:d8:51:10:eb:55:2e:68:73:93:74:6a:50:f4:72:6d:1a:
         fe:3e:b1:fe:5e:e4:54:1f:da:f4:37:01:d5:71:ae:ec:23:df:
         7f:61:83:e1:8a:e9:37:d1:f3:c4:08:b9:17:f9:5c:82:cb:f8:
         3c:48:0b:8d:dd:1f:5b:97:72:f4:3b:0c:64:c4:e3:3b:41:af:
         9d:5f:78:50:ed:88:ea:34:3a:ad:c0:3c:ce:66:cd:56:54:38:
         7d:dc:c7:8f:e4:fd:d8:60:53:82:44:9b:c1:3c:df:74:63:5e:
         73:e0:c5:fe:11:22:72:2c:73:b0:2b:bb:de:ca:38:52:b2:17:
         3a:70:75:8b:24:94:92:66:6a:ca:77:66:cd:20:50:d9:c7:92:
         c8:14:50:30:39:c6:6f:5a:b8:d8:72:33:2a:9c:05:d9:70:aa:
         67:ee:54:61:70:ec:33:9f:16:4f:86:c7:77:22:dc:48:2f:aa:
         b9:26:93:4e:b2:88:69:5d:55:54:48:f6:57:89:e2:0e:6f:e4:
         d7:16:23:98:5c:e1:42:f0:42:49:5d:8e:07:84:7f:42:fd:b9:
         20:5b:78:02:be:b8:c4:ca:17:76:a8:b1:86:64:e6:fb:1a:15:
         6a:90:16:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:42 2024 by rpki-client on console-ams.rpki-client.org