Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/6773f2c7-a58e-4c5a-847a-f78cf4ace1f9/c088e41a65eae8fedc3cfb67149aa287d8ab2047.roa
File:                     c088e41a65eae8fedc3cfb67149aa287d8ab2047.roa (raw, json)
Hash identifier:          Rlv99UhIThvYiSU4xGSqmPOyZUwJ0Tvh+3uylNl+8Jg=
Subject key identifier:   60:BD:BE:C9:89:C6:F4:38:00:E6:96:9B:FC:E4:A1:35:96:C6:FA:2A
Certificate issuer:       /CN=e3ee958557d9fde5dde89b420e2e9fd8b429156e
Certificate serial:       0C0634
Authority key identifier: B3:DE:AC:50:CD:BB:0A:A5:54:35:16:4D:90:F7:9C:8D:2B:28:EF:B5
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e3ee958557d9fde5dde89b420e2e9fd8b429156e.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/6773f2c7-a58e-4c5a-847a-f78cf4ace1f9/c088e41a65eae8fedc3cfb67149aa287d8ab2047.roa
Signing time:             Wed 24 Mar 2021 14:38:19 +0000
ROA not before:           Wed 24 Mar 2021 14:38:19 +0000
ROA not after:            Tue 24 Mar 2026 14:38:19 +0000
asID:                     267853
IP address blocks:        190.211.176.0/20 maxlen: 20

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 788020 (0xc0634)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e3ee958557d9fde5dde89b420e2e9fd8b429156e
        Validity
            Not Before: Mar 24 14:38:19 2021 GMT
            Not After : Mar 24 14:38:19 2026 GMT
        Subject: CN=c088e41a65eae8fedc3cfb67149aa287d8ab2047
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:ba:fa:31:50:e1:34:2d:b6:46:6a:6f:4a:96:
                    90:96:82:b9:29:6a:96:38:cb:2b:a1:76:2c:ff:32:
                    d7:e0:4c:05:1a:cf:0a:41:37:6e:1c:be:ed:c1:73:
                    04:0a:5f:61:71:62:2c:8a:de:14:c5:29:b0:73:8b:
                    5d:dc:b8:f7:e8:8b:a4:8e:8d:ef:c3:51:1d:40:aa:
                    60:7e:9d:31:4b:87:72:3a:df:76:89:34:1e:7f:94:
                    ca:af:c5:2d:14:00:63:33:3c:21:9f:61:22:16:2b:
                    52:c9:39:fa:cf:2c:21:d5:14:da:b8:bd:c3:e4:21:
                    64:c1:47:51:33:22:6d:c2:4b:23:c3:f7:0b:30:e1:
                    d2:14:c6:aa:d1:b8:a7:08:22:9b:31:e0:04:a5:21:
                    e4:f8:97:0c:fd:e3:f6:a8:e5:48:e2:86:a6:6b:ab:
                    00:8b:ae:f6:17:df:1e:84:dd:bd:6c:26:4b:91:1a:
                    28:bb:9e:52:08:17:ac:cb:30:df:bf:cf:b1:b0:9f:
                    ad:5c:ea:0e:fb:8a:e7:24:d7:94:03:3d:fe:62:04:
                    5f:f5:4b:39:53:43:7e:0e:03:0d:c2:37:8b:73:4d:
                    d5:e2:b9:89:b4:e0:b8:31:09:ce:ca:db:1c:81:bf:
                    b3:3d:87:d9:96:2e:54:3b:c0:8e:c9:f5:de:49:12:
                    c9:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:BD:BE:C9:89:C6:F4:38:00:E6:96:9B:FC:E4:A1:35:96:C6:FA:2A
            X509v3 Authority Key Identifier:
                keyid:B3:DE:AC:50:CD:BB:0A:A5:54:35:16:4D:90:F7:9C:8D:2B:28:EF:B5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/e3ee958557d9fde5dde89b420e2e9fd8b429156e.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/6773f2c7-a58e-4c5a-847a-f78cf4ace1f9/c088e41a65eae8fedc3cfb67149aa287d8ab2047.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/6773f2c7-a58e-4c5a-847a-f78cf4ace1f9/e3ee958557d9fde5dde89b420e2e9fd8b429156e.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.211.176.0/20

    Signature Algorithm: sha256WithRSAEncryption
         34:b9:21:0b:aa:55:9a:b7:ec:00:a9:b4:c6:f3:06:17:25:06:
         d8:40:3d:bc:2e:55:67:2e:7b:93:1f:6d:39:a1:46:29:56:2d:
         3d:95:91:fb:03:90:0c:15:2e:42:2d:02:43:0d:64:7b:00:a2:
         0c:1b:bb:cc:4a:91:2e:f0:76:0b:81:69:51:9e:ab:25:a5:b1:
         89:cf:8a:79:2c:8f:be:3c:27:a5:1b:6f:d1:fc:f7:a6:86:2e:
         65:a5:04:0f:82:d2:0b:94:35:0a:60:a0:0a:18:ea:78:c8:12:
         93:8d:39:a4:1c:bb:40:55:98:c6:83:44:62:db:9d:2a:98:0a:
         eb:ac:8e:7d:5a:c1:17:52:75:c6:e7:d3:36:bc:c4:68:b5:c7:
         3c:af:16:3a:66:38:0e:7a:eb:1e:a1:9b:dd:23:ff:68:27:c0:
         55:25:16:ad:57:9e:69:41:6f:92:f6:35:aa:8c:90:34:55:7d:
         77:89:0a:35:59:3b:70:fa:90:ea:25:24:c0:ff:4d:2d:01:e7:
         60:34:bb:c3:54:7f:e4:f3:40:fb:f2:f8:35:21:d4:53:5f:8d:
         04:0f:c7:e1:7e:c0:c6:3c:c4:2f:03:96:30:59:7f:22:7c:5b:
         5d:23:36:20:14:c0:19:1d:ea:6f:92:73:82:61:ef:8f:e6:3c:
         7a:02:57:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:49 2024 by rpki-client on console-fra.rpki-client.org