Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/3138312e3137342e3130342e302f32322d3234203d3e203532333632.roa
File:                     3138312e3137342e3130342e302f32322d3234203d3e203532333632.roa (raw, json)
Hash identifier:          3nw3HO8bJyPfmJRVNev/n5UdNyoGqA1x+icrXucDX2M=
Subject key identifier:   B0:19:9A:94:94:EE:18:3A:CD:C9:41:00:51:54:4E:FC:F0:FB:CB:A5
Certificate issuer:       /CN=8E1499D12067F2BEA1287B63425EA3B70FCAFFC1
Certificate serial:       64658FB9F0AE08D78E61E60EBD5E05277436F2C5
Authority key identifier: 8E:14:99:D1:20:67:F2:BE:A1:28:7B:63:42:5E:A3:B7:0F:CA:FF:C1
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/3138312e3137342e3130342e302f32322d3234203d3e203532333632.roa
Signing time:             Tue 04 Feb 2025 18:25:39 +0000
ROA not before:           Tue 04 Feb 2025 18:20:39 +0000
ROA not after:            Tue 03 Feb 2026 18:25:39 +0000
asID:                     52362
IP address blocks:        181.174.104.0/22 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            64:65:8f:b9:f0:ae:08:d7:8e:61:e6:0e:bd:5e:05:27:74:36:f2:c5
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8E1499D12067F2BEA1287B63425EA3B70FCAFFC1
        Validity
            Not Before: Feb  4 18:20:39 2025 GMT
            Not After : Feb  3 18:25:39 2026 GMT
        Subject: CN=B0199A9494EE183ACDC9410051544EFCF0FBCBA5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:ee:ac:dd:fb:8b:8d:1f:9f:bb:ea:31:f7:aa:
                    3d:9f:2b:25:1b:d1:5e:2e:87:30:15:bc:b8:6b:01:
                    78:87:45:a4:7d:53:d5:6a:74:50:84:c7:d3:4c:09:
                    8f:4b:28:9b:1e:69:0a:35:24:f8:ae:2b:cd:95:dd:
                    12:5b:12:bb:7a:35:3a:58:c9:9c:83:80:dc:73:4c:
                    cb:b2:e3:b6:a7:25:b0:a4:8f:ba:a6:29:98:12:9b:
                    0c:a9:46:43:ac:3c:b1:00:bd:e5:ee:f3:07:5d:b7:
                    b6:0a:de:54:a8:83:7c:6a:99:b8:06:b7:07:e8:72:
                    c6:42:75:2f:88:ae:35:0c:24:67:4d:6d:87:b5:99:
                    70:db:c3:18:ab:9a:a5:74:7a:49:c5:ae:3b:e5:c2:
                    d7:75:3b:4c:28:28:e4:51:e2:b7:98:2c:61:74:48:
                    d1:61:cd:9a:34:ab:79:e7:1c:e3:96:07:2a:e1:34:
                    6e:84:5c:7d:18:cd:15:3f:fe:64:7b:13:ba:b9:03:
                    02:0f:41:24:55:63:ed:09:73:43:19:82:c4:81:64:
                    ae:b0:0b:90:3b:7c:82:22:21:29:ae:57:30:bd:e8:
                    73:ec:df:72:ab:1a:c0:ba:e8:72:b0:79:90:ef:cf:
                    fe:90:b2:8d:7b:3e:c1:89:8f:5d:41:16:be:61:0e:
                    95:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B0:19:9A:94:94:EE:18:3A:CD:C9:41:00:51:54:4E:FC:F0:FB:CB:A5
            X509v3 Authority Key Identifier:
                keyid:8E:14:99:D1:20:67:F2:BE:A1:28:7B:63:42:5E:A3:B7:0F:CA:FF:C1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/8E1499D12067F2BEA1287B63425EA3B70FCAFFC1.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/757D6598483B0D1E52E22DFE67B37F03EAE18A33AECC6EC1BC364861B1B214CB/0/3138312e3137342e3130342e302f32322d3234203d3e203532333632.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  181.174.104.0/22

    Signature Algorithm: sha256WithRSAEncryption
         a9:db:3c:47:be:cd:56:44:ae:55:63:d0:43:ca:03:5b:bd:68:
         f2:90:8b:63:1b:54:38:a5:65:f5:1f:6c:3d:75:9c:f4:95:ff:
         f2:17:5d:7a:5d:99:65:f5:88:da:e8:09:24:7a:9e:f1:ad:07:
         23:65:7f:23:fd:95:66:99:fc:68:74:d6:fd:42:f3:26:f4:fd:
         85:33:45:86:3f:1f:b6:58:e7:e0:b4:fd:27:16:48:fa:19:63:
         1f:b0:d4:3d:76:cb:7a:b8:2e:99:4e:d5:72:eb:0b:8b:25:66:
         e1:d8:0d:b0:d6:76:3c:d8:f1:9c:de:3c:ca:16:44:19:bc:9e:
         bf:52:cf:32:6d:ed:a8:3d:94:51:44:df:db:d5:72:f4:1e:8f:
         74:88:ae:43:9f:dd:8d:c5:e4:21:5d:8a:18:da:09:49:e1:c0:
         d6:e4:0d:4e:2c:01:38:ba:f9:ee:be:ce:dd:77:b0:97:72:59:
         cc:09:c8:35:28:ff:42:67:53:a7:cf:87:7c:ea:70:0a:1f:55:
         85:5b:0d:e6:e4:19:10:13:e3:00:ad:ce:25:14:89:3f:ae:90:
         58:cf:70:5a:30:58:47:e6:0b:ba:68:a1:62:b6:d1:31:51:57:
         cd:bb:ab:d7:6c:9e:3d:7d:58:e4:de:52:19:87:96:02:99:83:
         50:6b:26:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----