Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/634B84ED36D397D1CCBE14F083953930C8C20974F2FE863AADEDD8F5134694C1/0/323830333a366530303a3a2f33322d3332203d3e203532333938.roa
File:                     323830333a366530303a3a2f33322d3332203d3e203532333938.roa (raw, json)
Hash identifier:          8+pLhTtucbPGjE/ZAJMuRkKO1cEi7cq46coKUHzpu0o=
Subject key identifier:   3D:6E:C1:B2:6B:F3:07:22:DE:12:92:CB:7E:84:15:42:0C:3E:57:B2
Certificate issuer:       /CN=319D62645871D3B24C33AF24E8F1C30794A59476
Certificate serial:       590BB3C0DBDA98199C665D108338C945C90A7BF5
Authority key identifier: 31:9D:62:64:58:71:D3:B2:4C:33:AF:24:E8:F1:C3:07:94:A5:94:76
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/319D62645871D3B24C33AF24E8F1C30794A59476.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/634B84ED36D397D1CCBE14F083953930C8C20974F2FE863AADEDD8F5134694C1/0/323830333a366530303a3a2f33322d3332203d3e203532333938.roa
Signing time:             Tue 04 Feb 2025 18:06:59 +0000
ROA not before:           Tue 04 Feb 2025 18:01:59 +0000
ROA not after:            Tue 03 Feb 2026 18:06:59 +0000
asID:                     52398
IP address blocks:        2803:6e00::/32 maxlen: 32
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            59:0b:b3:c0:db:da:98:19:9c:66:5d:10:83:38:c9:45:c9:0a:7b:f5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=319D62645871D3B24C33AF24E8F1C30794A59476
        Validity
            Not Before: Feb  4 18:01:59 2025 GMT
            Not After : Feb  3 18:06:59 2026 GMT
        Subject: CN=3D6EC1B26BF30722DE1292CB7E8415420C3E57B2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:56:da:3f:80:db:d5:1d:b2:84:86:d7:d3:6b:
                    4b:ae:e1:86:df:4b:41:64:a5:6a:04:7e:0b:d8:9b:
                    34:56:b7:af:a6:26:51:3e:b2:b5:75:e8:f2:6d:f9:
                    09:c2:03:e3:6d:55:e6:36:18:ff:84:6e:42:47:49:
                    7c:fd:f8:7b:b8:d8:6f:e3:19:7b:84:87:28:91:19:
                    81:4a:0d:87:4c:fe:7a:83:12:e3:01:56:3d:2c:23:
                    a1:18:09:65:51:8c:26:ed:ab:07:2b:95:4d:9c:28:
                    5d:04:0c:7d:45:e5:79:8d:ee:76:d5:3e:df:0f:21:
                    67:e4:8b:3f:6b:d7:b6:4e:c5:18:73:62:bf:69:fa:
                    e2:df:b5:84:95:26:d4:12:64:82:53:8f:cc:52:ca:
                    38:c5:80:b1:10:ff:47:e6:b8:07:ba:d8:c8:01:42:
                    43:a8:0a:61:64:2c:fb:61:32:57:6b:d1:34:ff:6a:
                    d6:72:44:c8:8f:93:e5:3e:b0:e2:41:ea:ae:90:89:
                    08:1f:1b:89:99:a2:e1:a0:a4:bf:ae:cc:6a:5d:4e:
                    d4:30:c5:ec:5c:08:30:b0:2e:cc:df:56:7b:e7:e1:
                    21:81:ca:cc:55:60:64:d0:8a:0e:65:41:b2:1a:6e:
                    38:d3:06:0a:92:a5:f4:39:d5:b6:46:99:9d:b8:94:
                    2d:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3D:6E:C1:B2:6B:F3:07:22:DE:12:92:CB:7E:84:15:42:0C:3E:57:B2
            X509v3 Authority Key Identifier:
                keyid:31:9D:62:64:58:71:D3:B2:4C:33:AF:24:E8:F1:C3:07:94:A5:94:76

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/634B84ED36D397D1CCBE14F083953930C8C20974F2FE863AADEDD8F5134694C1/0/319D62645871D3B24C33AF24E8F1C30794A59476.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/319D62645871D3B24C33AF24E8F1C30794A59476.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/634B84ED36D397D1CCBE14F083953930C8C20974F2FE863AADEDD8F5134694C1/0/323830333a366530303a3a2f33322d3332203d3e203532333938.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:6e00::/32

    Signature Algorithm: sha256WithRSAEncryption
         3e:d0:ac:50:39:08:23:22:43:dc:65:b3:91:30:ea:5d:cf:e5:
         63:bf:73:0e:f0:5f:f2:5a:e9:52:ca:e8:72:e0:9d:01:c8:b6:
         ac:de:93:22:9f:4c:67:07:2b:4a:2f:64:5a:ac:61:7a:29:de:
         62:d9:f2:8b:bc:88:fa:25:26:ff:40:7b:7d:a8:eb:ac:d0:4d:
         6b:e8:4f:a3:b2:2c:e7:6d:27:50:08:11:b4:04:a0:28:3b:90:
         39:05:88:60:78:50:21:60:97:48:9f:10:4c:79:48:90:58:0c:
         5a:21:f4:30:e9:d2:14:09:41:0f:fb:de:39:5a:32:00:f4:c1:
         26:14:ae:99:75:90:a3:36:16:96:6a:03:b7:08:a4:e4:22:8f:
         3c:f9:84:7d:60:9e:11:8f:69:11:8a:39:f5:45:4b:ba:f5:74:
         e2:4b:62:98:c5:dc:05:7f:cd:54:23:07:d7:fe:c6:62:9a:af:
         90:29:7d:10:56:26:7a:59:3a:ee:13:ff:fa:22:66:0e:fa:f6:
         c6:f3:ac:4f:a4:1c:a9:c6:b7:e6:89:47:3a:4c:c5:21:64:08:
         79:a7:a0:51:fe:c8:21:e2:4a:24:a2:af:6e:25:7c:81:92:ae:
         09:aa:02:29:c2:e7:07:51:c8:2f:a0:30:73:dc:c3:db:1c:f5:
         3a:9c:e6:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----