Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/58F85986DA8CDF7ECB900C687ED2D78B60D557263C06CEF787BE89EE732DFA96/0/323830333a343138303a3a2f33322d3430203d3e20323633323338.roa
File:                     323830333a343138303a3a2f33322d3430203d3e20323633323338.roa (raw, json)
Hash identifier:          eIf7iiIOXIm+RH4jGAYiUfXVvZfsllaEH4kA3vtIVGA=
Subject key identifier:   61:43:17:52:8C:BE:D6:C4:7B:DA:90:CE:83:F9:64:6A:71:72:C3:3D
Certificate issuer:       /CN=59733F5876DFD9F28DCAA69B8752B844D0C39173
Certificate serial:       12090E5CAFDBEE1089CA3E005CDE734E8D65AFA3
Authority key identifier: 59:73:3F:58:76:DF:D9:F2:8D:CA:A6:9B:87:52:B8:44:D0:C3:91:73
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/59733F5876DFD9F28DCAA69B8752B844D0C39173.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/58F85986DA8CDF7ECB900C687ED2D78B60D557263C06CEF787BE89EE732DFA96/0/323830333a343138303a3a2f33322d3430203d3e20323633323338.roa
Signing time:             Tue 04 Feb 2025 18:25:12 +0000
ROA not before:           Tue 04 Feb 2025 18:20:12 +0000
ROA not after:            Tue 03 Feb 2026 18:25:12 +0000
asID:                     263238
IP address blocks:        2803:4180::/32 maxlen: 40
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            12:09:0e:5c:af:db:ee:10:89:ca:3e:00:5c:de:73:4e:8d:65:af:a3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=59733F5876DFD9F28DCAA69B8752B844D0C39173
        Validity
            Not Before: Feb  4 18:20:12 2025 GMT
            Not After : Feb  3 18:25:12 2026 GMT
        Subject: CN=614317528CBED6C47BDA90CE83F9646A7172C33D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:24:55:8b:07:e8:2b:f5:c4:47:e8:b7:bf:0a:
                    ca:5c:0b:78:97:f8:b9:f9:7a:24:81:ef:b0:80:97:
                    fa:e0:22:ce:1d:7c:88:b3:4e:ee:37:33:ee:4c:f5:
                    af:d3:6a:7c:a4:62:a6:18:54:e7:6d:2f:b8:ae:fc:
                    37:d9:e5:30:fa:50:7c:7c:9a:f9:0f:32:09:e1:ee:
                    2d:52:bf:02:f1:ba:6f:c3:3b:dd:a8:16:db:74:a7:
                    c9:c4:df:74:6c:39:cc:94:9a:dd:05:1d:ec:a6:5e:
                    fc:7c:f1:3f:2e:cf:b6:d5:50:0e:5b:68:a1:67:46:
                    63:57:e2:23:7b:9c:b6:80:ad:39:6c:06:e3:68:3e:
                    bc:e1:a2:d6:40:37:bc:4d:2c:9f:73:73:57:a2:d5:
                    81:be:8d:7f:41:83:da:d2:bf:e8:0a:e7:c9:12:b2:
                    b7:05:3e:de:c0:18:cb:e8:a1:f2:57:2f:b2:81:9a:
                    3e:2b:13:c7:39:35:46:76:3f:ad:9d:4d:a3:49:2d:
                    2d:8f:c8:b4:1d:3b:c9:cf:8e:b6:08:55:c0:b9:34:
                    74:1a:31:4c:99:1f:71:bc:64:2b:71:38:1a:5a:0c:
                    8a:a0:16:58:32:c8:bf:fa:af:be:a9:f8:5d:ec:82:
                    a7:d0:37:4a:98:76:d2:bb:36:c5:7f:3f:5c:81:41:
                    f6:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:43:17:52:8C:BE:D6:C4:7B:DA:90:CE:83:F9:64:6A:71:72:C3:3D
            X509v3 Authority Key Identifier:
                keyid:59:73:3F:58:76:DF:D9:F2:8D:CA:A6:9B:87:52:B8:44:D0:C3:91:73

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/58F85986DA8CDF7ECB900C687ED2D78B60D557263C06CEF787BE89EE732DFA96/0/59733F5876DFD9F28DCAA69B8752B844D0C39173.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/59733F5876DFD9F28DCAA69B8752B844D0C39173.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/58F85986DA8CDF7ECB900C687ED2D78B60D557263C06CEF787BE89EE732DFA96/0/323830333a343138303a3a2f33322d3430203d3e20323633323338.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:4180::/32

    Signature Algorithm: sha256WithRSAEncryption
         20:f3:56:f6:ff:40:d1:7f:b5:3f:48:9c:ec:97:fa:cd:68:a0:
         0d:e9:38:17:61:0f:14:5e:d4:50:2b:06:41:09:86:32:b3:d6:
         e0:75:31:79:00:1f:8a:ee:0c:7e:63:4f:16:70:7d:27:f9:b2:
         a0:86:aa:cf:6e:68:9f:1f:30:d5:7b:e3:e6:e1:69:a2:3c:0a:
         e2:dd:fc:6e:31:1b:5f:d1:bf:6c:a8:47:15:5b:12:75:20:e3:
         7e:b2:de:11:00:19:fb:7c:1a:ff:97:4d:4e:a6:05:73:fe:b9:
         0d:bc:04:9f:c6:98:5d:98:b8:fc:4b:34:99:7d:ff:22:e8:43:
         b8:21:ae:67:01:4b:64:b7:f9:e2:2e:63:9d:ac:d1:02:ce:08:
         d1:58:39:50:36:83:05:29:56:0d:d4:89:3e:ae:9e:96:1f:cf:
         9e:9c:d5:47:91:eb:5e:c6:84:7f:82:03:aa:65:d7:a8:38:10:
         c9:93:b8:5c:42:af:36:f9:ff:e0:13:29:c5:79:eb:7f:fe:47:
         c0:57:63:5b:48:70:a5:6c:b2:18:e2:ad:1b:ff:67:85:97:f6:
         17:ce:52:e5:32:76:94:4f:9b:55:3a:e3:2a:02:9f:95:70:9a:
         6a:e4:dd:ef:34:7e:bc:ec:eb:e8:d1:ad:6a:e4:fb:01:e4:fc:
         ff:75:29:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----