Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/685D74E7B9DDC4DA6522992D46C0E68F8F7B62FE759C79B27F4D3958F4291EF6/0/3139302e3131322e36342e302f31382d3233203d3e203238303438.roa
File:                     3139302e3131322e36342e302f31382d3233203d3e203238303438.roa (raw, json)
Hash identifier:          ySPyLS/w10jpL9Lytl33q+jKuDWq7UnLLs7sH4kdocY=
Subject key identifier:   59:AE:0B:E0:04:0C:74:90:0F:C0:63:90:E1:92:7E:D2:D7:F1:8A:B0
Certificate issuer:       /CN=E545F04AB379D8134DE636206977A39FA5008712
Certificate serial:       18D5324CC1745EAD315CE3BF5F57DC3585D93BDB
Authority key identifier: E5:45:F0:4A:B3:79:D8:13:4D:E6:36:20:69:77:A3:9F:A5:00:87:12
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E545F04AB379D8134DE636206977A39FA5008712.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/685D74E7B9DDC4DA6522992D46C0E68F8F7B62FE759C79B27F4D3958F4291EF6/0/3139302e3131322e36342e302f31382d3233203d3e203238303438.roa
Signing time:             Tue 04 Feb 2025 19:58:16 +0000
ROA not before:           Tue 04 Feb 2025 19:53:16 +0000
ROA not after:            Tue 03 Feb 2026 19:58:16 +0000
asID:                     28048
IP address blocks:        190.112.64.0/18 maxlen: 23
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            18:d5:32:4c:c1:74:5e:ad:31:5c:e3:bf:5f:57:dc:35:85:d9:3b:db
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=E545F04AB379D8134DE636206977A39FA5008712
        Validity
            Not Before: Feb  4 19:53:16 2025 GMT
            Not After : Feb  3 19:58:16 2026 GMT
        Subject: CN=59AE0BE0040C74900FC06390E1927ED2D7F18AB0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:89:56:06:7f:84:f8:75:d2:ac:ce:ab:a6:d1:
                    a8:f4:cb:cf:3e:7c:32:95:44:4e:b5:d3:50:93:34:
                    f8:af:73:bf:3f:24:dd:a5:a9:49:bc:c4:3c:73:c0:
                    6e:53:02:b4:c3:9f:be:bf:9b:d8:bb:e7:c1:9b:7a:
                    2d:99:db:cd:61:71:93:c1:ed:26:53:a2:34:3f:71:
                    c0:69:cf:d7:20:be:f8:11:1f:81:29:03:f6:25:b4:
                    6c:78:f7:3b:43:dd:3e:9a:bb:e3:81:d6:83:93:9c:
                    d6:6c:a7:9c:3d:70:f3:8c:88:b1:4e:c3:0b:86:27:
                    05:8b:76:29:a6:a8:42:95:cc:b7:a8:bb:22:d5:a3:
                    ef:1f:e0:3d:2e:29:71:53:12:7e:0f:35:05:e5:c3:
                    97:52:de:7f:a8:75:7b:48:fd:89:df:5d:3d:e0:d4:
                    32:dc:91:8a:70:b7:e2:94:83:99:8b:8d:72:5f:41:
                    86:86:6b:54:ec:5b:70:2b:78:4c:8a:bc:af:97:0e:
                    30:56:20:81:a5:94:b7:86:5e:eb:8a:7c:6c:81:a6:
                    6e:33:d7:2a:91:ae:cd:50:1b:03:f2:44:93:69:08:
                    c6:c2:98:49:88:5f:5c:86:61:86:33:36:86:c5:bd:
                    cd:2a:65:dd:d5:20:52:ef:06:10:c7:b0:c5:85:f7:
                    fa:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                59:AE:0B:E0:04:0C:74:90:0F:C0:63:90:E1:92:7E:D2:D7:F1:8A:B0
            X509v3 Authority Key Identifier:
                keyid:E5:45:F0:4A:B3:79:D8:13:4D:E6:36:20:69:77:A3:9F:A5:00:87:12

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/685D74E7B9DDC4DA6522992D46C0E68F8F7B62FE759C79B27F4D3958F4291EF6/0/E545F04AB379D8134DE636206977A39FA5008712.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E545F04AB379D8134DE636206977A39FA5008712.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/685D74E7B9DDC4DA6522992D46C0E68F8F7B62FE759C79B27F4D3958F4291EF6/0/3139302e3131322e36342e302f31382d3233203d3e203238303438.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  190.112.64.0/18

    Signature Algorithm: sha256WithRSAEncryption
         54:dd:3a:56:d4:f9:49:e5:80:94:17:fa:78:2f:c0:59:61:5c:
         b2:92:1f:2a:35:4c:02:a7:f1:16:e3:22:8f:fc:13:ca:d5:09:
         d2:c8:bf:dc:ee:f7:8c:a6:98:4a:da:9d:5b:a4:f3:e5:ca:b1:
         43:be:e8:58:d0:15:cb:17:8b:ac:29:83:92:04:71:75:4d:ee:
         14:dc:5e:e9:77:da:fe:ce:04:7f:6b:71:95:a2:36:33:85:76:
         02:6e:f8:81:76:cc:fd:03:cc:b4:a2:b4:37:09:b0:fd:b5:37:
         0d:6b:7d:66:fc:2a:9a:fb:c1:46:fe:fe:a1:c1:cc:62:ed:87:
         5c:2c:07:1d:32:9e:ef:f1:ed:7a:6a:b2:76:71:96:7d:0a:d6:
         ba:c4:cc:b8:b8:85:74:7b:96:d2:3d:86:ee:44:51:dc:19:53:
         64:e8:d9:18:5a:79:32:46:ef:9f:65:46:06:ad:47:48:bc:7c:
         5f:2c:a4:d0:60:df:b1:9b:2f:3a:2f:00:f3:f1:50:55:97:04:
         2c:26:d7:e9:b3:f0:23:75:4b:19:79:b4:4c:0b:3e:33:f2:ae:
         da:07:6f:45:79:3a:53:e5:1a:17:88:75:df:57:83:9c:3f:bd:
         96:97:c7:81:21:78:dd:83:ee:48:2b:8d:4f:09:63:c6:60:7f:
         6f:f3:e2:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----