Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/67251DDBF206F3078E36459E6E56B30893DF94A8FBF9C05E0F2D0E47457FCD38/0/323830333a343530303a3a2f33322d3332203d3e203237363630.roa
File:                     323830333a343530303a3a2f33322d3332203d3e203237363630.roa (raw, json)
Hash identifier:          zq8wLShyR5UIjHgKamTHQG07WpHhg2HSSu/bh75SYp4=
Subject key identifier:   77:B6:70:2E:DC:F4:9B:BA:70:86:33:1C:AC:3B:D5:3A:C6:E1:1A:28
Certificate issuer:       /CN=4052A5C92CFA7072166954B78BEBA6DBD1517D9B
Certificate serial:       090BE6C4FFC3716670473EDD4145F413829D1F5C
Authority key identifier: 40:52:A5:C9:2C:FA:70:72:16:69:54:B7:8B:EB:A6:DB:D1:51:7D:9B
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4052A5C92CFA7072166954B78BEBA6DBD1517D9B.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/67251DDBF206F3078E36459E6E56B30893DF94A8FBF9C05E0F2D0E47457FCD38/0/323830333a343530303a3a2f33322d3332203d3e203237363630.roa
Signing time:             Tue 23 Jul 2024 15:50:00 +0000
ROA not before:           Tue 23 Jul 2024 15:45:00 +0000
ROA not after:            Tue 22 Jul 2025 15:50:00 +0000
asID:                     27660
IP address blocks:        2803:4500::/32 maxlen: 32
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            09:0b:e6:c4:ff:c3:71:66:70:47:3e:dd:41:45:f4:13:82:9d:1f:5c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4052A5C92CFA7072166954B78BEBA6DBD1517D9B
        Validity
            Not Before: Jul 23 15:45:00 2024 GMT
            Not After : Jul 22 15:50:00 2025 GMT
        Subject: CN=77B6702EDCF49BBA7086331CAC3BD53AC6E11A28
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e7:b4:90:5c:87:6e:5c:76:86:a9:b3:4f:ad:47:
                    15:e6:c4:f4:89:a6:aa:ed:31:17:7c:68:d9:e8:6d:
                    ff:06:e3:e8:0b:97:0a:ab:d9:ef:48:ea:16:69:c7:
                    cd:3f:78:1b:b5:54:b1:a4:e8:38:75:7d:75:31:56:
                    b1:fb:12:44:5c:00:a2:31:39:c1:ad:da:4d:5e:4f:
                    01:13:d8:5b:bc:2b:8c:7f:49:c7:7e:46:ae:68:e9:
                    c9:27:86:82:12:f4:3a:dd:00:db:8f:ef:48:c6:26:
                    3d:03:90:39:bc:5f:ad:10:56:1f:44:ce:fa:21:7c:
                    81:89:16:33:4c:1b:1f:5c:64:63:48:0c:11:11:30:
                    14:c9:cb:8b:4e:6a:11:75:64:47:08:c3:c5:78:69:
                    4d:85:42:3c:c5:cf:1c:60:e6:21:ea:01:30:1b:a0:
                    0f:f6:c9:de:87:7a:ea:b0:3c:b2:97:ca:45:f0:35:
                    0d:93:0f:bd:8e:82:9a:d4:c6:f3:d3:d2:b8:5b:42:
                    17:c5:43:f8:55:c1:d5:34:f5:cb:1b:f9:e2:ec:03:
                    57:a5:cf:9e:df:f9:c7:d8:57:0f:f5:ec:02:ad:45:
                    e1:5b:94:ca:3d:ad:00:b7:79:14:61:e5:d1:d0:08:
                    87:5f:6b:a0:ec:8f:30:60:3b:00:53:e0:74:cb:1f:
                    42:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                77:B6:70:2E:DC:F4:9B:BA:70:86:33:1C:AC:3B:D5:3A:C6:E1:1A:28
            X509v3 Authority Key Identifier:
                keyid:40:52:A5:C9:2C:FA:70:72:16:69:54:B7:8B:EB:A6:DB:D1:51:7D:9B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/67251DDBF206F3078E36459E6E56B30893DF94A8FBF9C05E0F2D0E47457FCD38/0/4052A5C92CFA7072166954B78BEBA6DBD1517D9B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/4052A5C92CFA7072166954B78BEBA6DBD1517D9B.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/67251DDBF206F3078E36459E6E56B30893DF94A8FBF9C05E0F2D0E47457FCD38/0/323830333a343530303a3a2f33322d3332203d3e203237363630.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:4500::/32

    Signature Algorithm: sha256WithRSAEncryption
         85:d5:81:9d:db:23:d6:54:17:5d:9f:24:e5:c5:db:a2:22:ef:
         e7:8c:8a:9f:58:64:ab:06:00:7c:ea:7c:72:5c:f5:96:29:f8:
         41:cc:15:f9:9b:25:8c:bf:a5:42:56:d9:29:b7:66:7e:a5:11:
         27:7f:50:bd:5e:12:3d:19:5c:7d:7d:c3:28:61:be:89:0a:e5:
         30:fb:59:4f:be:da:ac:9d:b7:c0:30:b5:64:04:63:68:cb:6e:
         d1:07:26:c0:f5:ce:aa:8a:d7:51:80:0f:98:e5:c9:17:59:97:
         6a:2b:d2:61:4b:97:45:5a:6f:47:f3:b9:78:61:69:b7:64:51:
         8c:81:9b:4e:b3:84:31:83:c7:13:15:5b:14:cd:e9:f2:15:e8:
         9c:3c:7d:88:e7:2f:03:72:49:cf:c1:a2:93:85:b1:d9:f0:6f:
         c5:a1:a8:04:46:4c:65:51:a3:94:94:b8:b3:b3:5e:b3:61:c5:
         47:dd:15:a3:d6:ba:80:10:1f:5c:6a:ec:4c:17:8f:17:38:ef:
         98:99:51:11:9f:a8:78:bb:8d:5f:e8:b4:22:5d:e0:a7:c0:dc:
         79:59:9a:19:d6:7d:cd:68:84:77:a3:6a:78:4d:2c:c1:e4:0d:
         4b:fd:cb:08:aa:e9:fa:13:51:c1:ba:75:66:79:01:a6:0a:a3:
         05:d7:c7:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----