Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5BE90835EE5FA3AF39F6468B8E451CB4E4F437144B81A78845F50E7088CFA651/0/323830333a613461303a3a2f33322d3438203d3e203237383433.roa
File:                     323830333a613461303a3a2f33322d3438203d3e203237383433.roa (raw, json)
Hash identifier:          31SXNWhi/a/rK3tRaqRTKSfdu17Iw15Lj7L3KfTcUjQ=
Subject key identifier:   25:C0:C2:A2:0C:C4:D2:F8:CD:46:70:ED:A2:43:B7:15:06:F5:9F:DC
Certificate issuer:       /CN=3C30F7343AF8215CECF14CD58294776827CF414E
Certificate serial:       059E24FBF70EA236CED696B77D1D33E4358B7E76
Authority key identifier: 3C:30:F7:34:3A:F8:21:5C:EC:F1:4C:D5:82:94:77:68:27:CF:41:4E
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3C30F7343AF8215CECF14CD58294776827CF414E.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/5BE90835EE5FA3AF39F6468B8E451CB4E4F437144B81A78845F50E7088CFA651/0/323830333a613461303a3a2f33322d3438203d3e203237383433.roa
Signing time:             Tue 05 Mar 2024 18:03:33 +0000
ROA not before:           Tue 05 Mar 2024 17:58:33 +0000
ROA not after:            Tue 04 Mar 2025 18:03:33 +0000
asID:                     27843
IP address blocks:        2803:a4a0::/32 maxlen: 48

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            05:9e:24:fb:f7:0e:a2:36:ce:d6:96:b7:7d:1d:33:e4:35:8b:7e:76
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3C30F7343AF8215CECF14CD58294776827CF414E
        Validity
            Not Before: Mar  5 17:58:33 2024 GMT
            Not After : Mar  4 18:03:33 2025 GMT
        Subject: CN=25C0C2A20CC4D2F8CD4670EDA243B71506F59FDC
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:40:77:4c:1d:0e:75:5c:f7:c6:5b:30:a8:c5:
                    9f:15:2a:31:9b:52:15:bd:69:e7:fc:ae:57:72:42:
                    51:d2:06:b0:cd:0b:bf:dd:e1:fb:ff:e4:37:10:1b:
                    f8:5f:d0:22:27:82:fc:09:8b:7a:f7:4e:bc:99:65:
                    8c:fa:78:b0:2a:19:76:8e:03:c8:b9:9d:77:20:13:
                    af:95:63:7f:cc:50:3c:b2:29:9a:f8:89:30:d1:ee:
                    ac:22:26:95:cf:ef:f0:5b:e0:5d:50:a0:32:44:9d:
                    8a:33:62:6c:bd:27:7a:cc:58:79:d7:d6:5e:9b:0c:
                    36:8b:1c:9c:c5:e3:5b:0c:15:1b:d1:87:b1:ef:68:
                    f4:22:36:2e:df:dc:cf:e5:45:1f:c1:83:16:1d:2e:
                    57:fc:d7:0f:f2:4b:01:ea:c4:f1:82:02:f0:8a:7d:
                    2e:20:2b:d8:47:a3:59:15:cb:d1:8e:f0:17:93:5f:
                    ab:75:ff:37:ba:e5:6d:22:4b:58:4f:04:af:85:7e:
                    59:1e:cd:20:15:a8:42:31:e2:3e:da:16:7a:46:53:
                    cb:42:36:a9:15:f5:6b:e4:5f:31:4c:34:65:80:f6:
                    1e:2e:e5:72:a8:36:70:4f:15:63:ce:e3:90:05:70:
                    cb:4b:fb:e8:a7:dd:90:e7:8c:b3:31:64:f3:19:d9:
                    db:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                25:C0:C2:A2:0C:C4:D2:F8:CD:46:70:ED:A2:43:B7:15:06:F5:9F:DC
            X509v3 Authority Key Identifier:
                keyid:3C:30:F7:34:3A:F8:21:5C:EC:F1:4C:D5:82:94:77:68:27:CF:41:4E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/5BE90835EE5FA3AF39F6468B8E451CB4E4F437144B81A78845F50E7088CFA651/0/3C30F7343AF8215CECF14CD58294776827CF414E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/3C30F7343AF8215CECF14CD58294776827CF414E.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5BE90835EE5FA3AF39F6468B8E451CB4E4F437144B81A78845F50E7088CFA651/0/323830333a613461303a3a2f33322d3438203d3e203237383433.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:a4a0::/32

    Signature Algorithm: sha256WithRSAEncryption
         cd:78:3d:92:6d:8c:74:b4:c4:69:0c:3f:ac:4e:31:cf:52:c3:
         07:fa:a3:1a:47:f9:b1:0a:cf:ce:b8:a7:43:a6:ab:11:99:3e:
         91:7c:b2:40:a0:b1:dd:f7:f9:41:ce:b8:58:ce:5b:e5:4a:3b:
         36:f6:5a:1e:98:8e:fe:0b:35:38:e1:42:48:71:5a:19:47:c4:
         29:ed:2a:58:30:47:96:ae:b4:16:af:7e:0a:07:c9:47:cd:dd:
         e3:60:32:32:02:de:eb:df:98:37:19:be:34:56:b0:ef:2f:3a:
         a3:c0:4c:bc:aa:f2:4b:dd:e5:98:5b:c0:18:a6:a3:e4:0b:ac:
         20:4e:98:04:cc:77:19:f7:0a:f6:d9:87:ba:13:7f:a8:72:85:
         f4:3f:db:54:ae:2e:57:49:a9:cb:7c:65:52:cc:f0:00:35:a8:
         6a:75:01:3e:67:c2:1e:6c:eb:9b:ca:e5:7a:74:c9:c8:de:d4:
         7b:93:61:bc:fe:bd:11:40:a8:bd:7f:af:f4:3c:1e:d7:f1:93:
         ad:84:b9:79:25:cf:b6:b5:64:58:37:0c:86:fd:ae:13:1c:b5:
         48:f1:f5:19:cb:cc:af:22:ba:de:9c:dd:b6:be:4a:dc:29:4d:
         4c:e9:cf:5b:00:aa:c7:42:49:e7:71:d6:38:b6:ad:e1:de:7c:
         44:b6:f1:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 12 19:19:18 2024 by rpki-client on console-fra.rpki-client.org