Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/64C5AC39B5DB725F76ACE257AB817AEC58D38CBA44F22B3387966B4AB9A2296D/0/34352e3138322e34312e302f32342d3234203d3e20323639373436.roa
File:                     34352e3138322e34312e302f32342d3234203d3e20323639373436.roa (raw, json)
Hash identifier:          kTjbre23bY5DbuBMMTNSMK5Z808DeRJ5eM0vV2hh/1Q=
Subject key identifier:   7C:7E:DA:D6:4F:FD:88:83:D2:19:61:3A:72:27:61:EA:4B:49:72:4A
Certificate issuer:       /CN=7E656418FBD6F519E8CA146E061CF553AFE480F1
Certificate serial:       7682C8C6FC3E3C465EB9E4C36C84684C2E0DD3B1
Authority key identifier: 7E:65:64:18:FB:D6:F5:19:E8:CA:14:6E:06:1C:F5:53:AF:E4:80:F1
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7E656418FBD6F519E8CA146E061CF553AFE480F1.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/64C5AC39B5DB725F76ACE257AB817AEC58D38CBA44F22B3387966B4AB9A2296D/0/34352e3138322e34312e302f32342d3234203d3e20323639373436.roa
Signing time:             Mon 17 Mar 2025 14:12:06 +0000
ROA not before:           Mon 17 Mar 2025 14:07:06 +0000
ROA not after:            Mon 16 Mar 2026 14:12:06 +0000
asID:                     269746
IP address blocks:        45.182.41.0/24 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            76:82:c8:c6:fc:3e:3c:46:5e:b9:e4:c3:6c:84:68:4c:2e:0d:d3:b1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7E656418FBD6F519E8CA146E061CF553AFE480F1
        Validity
            Not Before: Mar 17 14:07:06 2025 GMT
            Not After : Mar 16 14:12:06 2026 GMT
        Subject: CN=7C7EDAD64FFD8883D219613A722761EA4B49724A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:d7:7d:5c:f6:51:c3:08:70:1f:8e:e2:6a:a0:
                    a3:94:5f:9d:a5:94:ab:39:f3:ed:8e:e8:4c:4e:91:
                    b9:6b:04:df:70:28:2e:f4:b9:23:20:8e:17:fa:e7:
                    a8:c2:6a:7e:48:cd:9e:9c:28:7e:7b:fa:a3:c4:c5:
                    85:4e:75:11:59:04:a1:5b:e2:4b:0c:9e:cb:47:24:
                    01:29:45:7e:e5:8c:62:16:01:61:08:be:3b:7f:f1:
                    d1:bd:a9:9f:6c:84:6a:4f:06:38:73:ea:e1:ac:37:
                    52:1b:9a:c1:19:41:70:08:3b:34:9b:b0:e7:67:11:
                    bf:8b:8a:07:e1:92:aa:fb:55:6b:e4:ba:00:e0:93:
                    e7:be:f3:c4:1a:f1:f9:d5:aa:33:fc:62:39:01:63:
                    72:c5:71:18:99:91:58:21:ee:df:41:f1:5c:71:42:
                    4d:64:ce:a1:44:68:c3:67:48:93:27:c9:c5:0f:07:
                    0a:47:38:8c:46:a5:38:78:04:7e:28:f2:9c:cc:99:
                    3e:0f:f8:86:af:3d:f9:6e:b1:29:c0:a9:56:36:40:
                    b7:92:d4:c6:8d:6c:b8:1a:cb:27:85:09:f0:65:7b:
                    a1:fa:37:60:66:8d:12:8f:77:8b:e2:93:e6:1e:d2:
                    ac:18:17:d3:b9:41:1b:44:0d:89:35:d4:e5:52:d9:
                    82:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7C:7E:DA:D6:4F:FD:88:83:D2:19:61:3A:72:27:61:EA:4B:49:72:4A
            X509v3 Authority Key Identifier:
                keyid:7E:65:64:18:FB:D6:F5:19:E8:CA:14:6E:06:1C:F5:53:AF:E4:80:F1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/64C5AC39B5DB725F76ACE257AB817AEC58D38CBA44F22B3387966B4AB9A2296D/0/7E656418FBD6F519E8CA146E061CF553AFE480F1.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/7E656418FBD6F519E8CA146E061CF553AFE480F1.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/64C5AC39B5DB725F76ACE257AB817AEC58D38CBA44F22B3387966B4AB9A2296D/0/34352e3138322e34312e302f32342d3234203d3e20323639373436.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.182.41.0/24

    Signature Algorithm: sha256WithRSAEncryption
         03:5a:b8:69:7a:82:3b:5a:2d:e1:bc:ae:78:00:ed:34:19:1b:
         c2:44:71:bf:67:60:0d:4c:7d:9c:7f:2b:ae:2c:16:53:86:9c:
         08:04:e4:9b:96:1c:ee:b7:c3:b1:eb:ad:ac:e9:14:a1:b4:d2:
         8c:68:b9:30:f6:47:81:ec:c6:e7:fd:f9:74:f3:46:88:df:36:
         9c:49:63:17:c8:c4:5c:6c:6f:10:8a:eb:81:76:97:f1:35:1f:
         3b:88:73:1f:f8:da:5c:3b:71:7b:fb:35:fa:b8:b4:9f:63:36:
         7a:f9:6b:da:a5:46:9c:c5:bc:a1:c5:83:df:e6:22:6f:a2:61:
         70:68:8d:51:a5:97:4b:49:f9:8e:a8:07:11:91:f3:81:9e:c5:
         3a:2c:3e:0e:80:5f:25:cd:b9:a8:3b:20:c4:d3:ee:be:df:1a:
         0e:c3:14:e2:62:32:2a:88:34:ef:52:33:6c:ae:1e:f0:fc:07:
         66:46:d1:2f:63:25:92:e7:c1:c2:8d:d1:ab:18:27:7c:bb:c3:
         16:88:96:c9:6a:ac:b7:07:63:e8:79:4d:71:d5:00:9f:02:f4:
         7e:38:ba:08:e4:86:ca:77:af:57:95:a1:91:2a:42:c7:ef:a8:
         eb:0c:d3:df:5f:0a:5c:33:31:3a:a4:1d:84:18:0e:28:a0:63:
         d5:5d:71:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----