Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/00e4e95fa38878f1bd38d42d0a1a5ce95a79ae60.roa
File:                     00e4e95fa38878f1bd38d42d0a1a5ce95a79ae60.roa (raw, json)
Hash identifier:          UDm0OyJQzaYTEdTANK5spmkSDXtB8vtUAJ6FyftS2K8=
Subject key identifier:   15:90:E4:10:B2:71:A0:8E:B2:D0:7D:25:84:1A:99:71:BB:2A:3E:F9
Certificate issuer:       /CN=657d9dd95ecfd67113ddcd4cff4ced5d8177cf65
Certificate serial:       6865
Authority key identifier: 58:8B:D2:7A:78:D9:8D:63:93:83:95:E9:E1:80:7D:75:C6:13:D1:1D
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/657d9dd95ecfd67113ddcd4cff4ced5d8177cf65.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/00e4e95fa38878f1bd38d42d0a1a5ce95a79ae60.roa
Signing time:             Tue 18 Jan 2022 18:54:29 +0000
ROA not before:           Tue 18 Jan 2022 03:00:00 +0000
ROA not after:            Thu 18 Jan 2024 03:00:00 +0000
asID:                     22927
IP address blocks:        2800:380::/32 maxlen: 48
                          2802:8000::/24 maxlen: 48

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 26725 (0x6865)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=657d9dd95ecfd67113ddcd4cff4ced5d8177cf65
        Validity
            Not Before: Jan 18 03:00:00 2022 GMT
            Not After : Jan 18 03:00:00 2024 GMT
        Subject: CN=00e4e95fa38878f1bd38d42d0a1a5ce95a79ae60
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:28:a8:32:e1:50:f4:89:b1:ec:5c:ca:6f:70:
                    1a:02:74:54:d4:80:ac:91:4b:33:8e:47:86:a2:e0:
                    f0:98:a3:61:0f:56:b0:d5:e1:01:c5:10:90:3a:97:
                    06:ba:7c:8b:b8:aa:7f:cb:c0:e8:df:cc:fc:0e:00:
                    bc:3a:6a:f7:b9:ff:6f:29:92:9c:2b:7f:87:54:7d:
                    37:4b:0e:06:08:72:0f:37:a9:55:cf:ef:42:ac:b7:
                    db:53:52:4c:8b:8e:8d:cb:c7:eb:eb:5c:7f:00:1d:
                    4c:98:82:03:de:eb:93:e4:31:e7:e7:87:a7:2f:cd:
                    28:8f:bf:9f:fe:8e:90:1c:31:c1:66:8f:5b:0c:73:
                    da:1d:3d:9f:91:1b:8f:8d:24:dc:02:24:6b:78:87:
                    7d:cf:2a:0b:94:51:4f:d7:ca:fb:9c:a9:0d:3e:ae:
                    a0:bf:1e:36:e2:b2:31:83:35:92:2e:67:f4:f0:2f:
                    b4:54:2c:5b:8d:21:69:0f:9c:6d:fb:7b:0b:5f:a3:
                    06:15:eb:ca:a3:b1:2d:84:70:5e:9e:43:a1:24:1b:
                    ee:1a:e1:a6:b3:7d:c9:0a:b9:47:af:bb:f1:e8:79:
                    fc:fa:f5:b7:e2:aa:55:31:b7:0b:8b:22:50:f3:a4:
                    79:74:c9:cc:c3:85:10:96:dc:0b:48:cd:a1:69:d8:
                    01:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                15:90:E4:10:B2:71:A0:8E:B2:D0:7D:25:84:1A:99:71:BB:2A:3E:F9
            X509v3 Authority Key Identifier:
                keyid:58:8B:D2:7A:78:D9:8D:63:93:83:95:E9:E1:80:7D:75:C6:13:D1:1D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/657d9dd95ecfd67113ddcd4cff4ced5d8177cf65.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/00e4e95fa38878f1bd38d42d0a1a5ce95a79ae60.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/657d9dd95ecfd67113ddcd4cff4ced5d8177cf65.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2800:380::/32
                  2802:8000::/24

    Signature Algorithm: sha256WithRSAEncryption
         59:a1:1f:4d:80:58:a8:e9:8c:b0:0d:7a:f2:e8:55:4a:8a:55:
         be:ac:f9:be:c7:47:0a:30:ca:a1:64:1a:9d:d0:b6:f9:ae:30:
         87:df:10:ef:f4:83:2b:39:82:56:4f:fd:5a:36:11:ad:d1:d7:
         19:00:09:c9:e0:38:cd:30:4b:8c:4f:6d:c1:07:e2:e1:89:e4:
         6b:d5:ae:fa:1b:74:f3:04:0f:ed:ca:8c:ab:40:e1:65:4f:8c:
         3e:30:c4:ac:96:77:f5:9e:50:bb:7e:c5:28:e1:fe:b2:48:61:
         f4:ca:61:a5:2e:e1:51:19:ff:3e:d6:95:35:1d:0b:fa:35:d7:
         14:d7:c9:92:99:ad:fd:bd:e3:f9:b4:f8:43:44:85:b6:42:10:
         f8:f7:88:71:ee:72:61:56:68:9c:da:f9:90:35:cb:07:e8:df:
         07:ac:84:6f:c3:c5:7e:44:bd:5c:37:62:01:8c:0b:85:a4:33:
         e4:b1:56:20:5f:08:69:32:34:cf:40:bf:c2:dc:21:7b:cf:08:
         d8:d2:27:32:94:d4:5a:eb:75:d4:20:ba:7b:3a:41:86:91:d2:
         ac:8a:7a:50:e5:80:9e:47:3c:91:3d:4c:e7:d4:fe:e3:b4:56:
         05:ad:9b:b9:d4:8d:3b:f3:ef:11:f9:61:ca:20:83:de:9f:84:
         7c:a1:86:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 24 16:27:38 2023 by rpki-client on console-ams.rpki-client.org