Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/76A483C840B59D5A386CC35FE891774F07C940C2A473A0C808FF79E9D673AC01/0/3230302e38312e3137362e302f32312d3233203d3e203130363137.roa
File:                     3230302e38312e3137362e302f32312d3233203d3e203130363137.roa (raw, json)
Hash identifier:          U/HCZvR3Cgd5SLXFoDY8yU9fSI8j/Vz/ZurgiJzszfc=
Subject key identifier:   8D:C7:54:D0:E8:22:4B:99:DA:54:4A:AA:ED:B4:88:7A:B4:6A:27:FC
Certificate issuer:       /CN=16D6DAFBF5511C53569330FFFD2E9E564974D14D
Certificate serial:       558FE79598CA7492F56B49D5773DC3237D9B7BAF
Authority key identifier: 16:D6:DA:FB:F5:51:1C:53:56:93:30:FF:FD:2E:9E:56:49:74:D1:4D
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/16D6DAFBF5511C53569330FFFD2E9E564974D14D.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/76A483C840B59D5A386CC35FE891774F07C940C2A473A0C808FF79E9D673AC01/0/3230302e38312e3137362e302f32312d3233203d3e203130363137.roa
Signing time:             Tue 04 Feb 2025 18:48:45 +0000
ROA not before:           Tue 04 Feb 2025 18:43:45 +0000
ROA not after:            Tue 03 Feb 2026 18:48:45 +0000
asID:                     10617
IP address blocks:        200.81.176.0/21 maxlen: 23
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            55:8f:e7:95:98:ca:74:92:f5:6b:49:d5:77:3d:c3:23:7d:9b:7b:af
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=16D6DAFBF5511C53569330FFFD2E9E564974D14D
        Validity
            Not Before: Feb  4 18:43:45 2025 GMT
            Not After : Feb  3 18:48:45 2026 GMT
        Subject: CN=8DC754D0E8224B99DA544AAAEDB4887AB46A27FC
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:84:1b:d5:50:2a:13:03:c3:fc:1f:e9:9a:a3:
                    60:92:32:46:aa:bc:a7:ac:01:66:68:2c:0b:22:38:
                    95:70:51:9c:40:a2:d6:4b:fb:f9:86:58:23:f9:3f:
                    ec:85:45:64:48:13:af:bb:4f:27:e3:f4:06:a1:8c:
                    d1:48:ba:c9:83:d7:bc:7c:b9:d8:bf:3f:21:b7:15:
                    71:91:47:eb:c1:46:56:ae:88:e7:59:10:96:49:fc:
                    ed:08:37:34:3a:4a:5e:48:de:96:f2:7d:ee:a5:05:
                    bd:32:ec:43:2d:a5:64:18:fb:bd:25:4e:b3:b8:e7:
                    5f:f2:e9:8e:f6:ea:c8:51:b0:21:2a:7a:02:61:6e:
                    36:e9:d8:72:4f:1d:0c:3c:95:43:b7:4a:7f:b9:c1:
                    16:99:66:36:8c:b0:04:c5:ea:e8:7c:17:c6:a9:3a:
                    95:59:80:3b:ea:74:5b:6b:4e:2d:3b:2a:39:d2:77:
                    e2:c4:d6:1e:7d:49:0a:a5:cf:70:af:0d:47:fa:3b:
                    b7:76:4a:9b:e1:30:43:08:ea:ec:4e:f9:e3:67:91:
                    b4:2e:c6:5f:83:09:8d:df:f1:f3:ee:48:80:c9:56:
                    18:67:73:d5:0a:1f:6a:af:f1:91:d1:22:5b:24:69:
                    0c:b3:11:de:13:c6:45:32:d8:32:0c:11:13:7d:48:
                    ba:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8D:C7:54:D0:E8:22:4B:99:DA:54:4A:AA:ED:B4:88:7A:B4:6A:27:FC
            X509v3 Authority Key Identifier:
                keyid:16:D6:DA:FB:F5:51:1C:53:56:93:30:FF:FD:2E:9E:56:49:74:D1:4D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/76A483C840B59D5A386CC35FE891774F07C940C2A473A0C808FF79E9D673AC01/0/16D6DAFBF5511C53569330FFFD2E9E564974D14D.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/16D6DAFBF5511C53569330FFFD2E9E564974D14D.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/76A483C840B59D5A386CC35FE891774F07C940C2A473A0C808FF79E9D673AC01/0/3230302e38312e3137362e302f32312d3233203d3e203130363137.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.81.176.0/21

    Signature Algorithm: sha256WithRSAEncryption
         30:fa:90:df:f1:71:65:aa:91:c0:03:9f:16:9e:e2:42:1e:e0:
         e9:e8:01:30:96:7c:08:fa:07:4c:92:44:9b:74:ef:f7:82:58:
         30:21:b2:49:4d:e6:2a:38:5f:42:19:60:d1:03:05:7e:91:0a:
         05:53:9b:12:2a:cf:81:17:2f:d7:dc:f5:03:6f:0b:d9:fd:a7:
         c3:a5:82:90:ad:76:b4:06:12:35:49:71:3b:c7:65:db:eb:be:
         b8:6d:08:cb:81:1e:11:40:4a:09:49:a3:3f:b9:9e:fc:75:d3:
         ec:00:d7:93:10:2b:68:d1:9b:c0:4b:f9:d8:3f:95:ee:ca:d1:
         df:8e:ef:c8:da:4f:fd:7b:b4:66:7c:ea:d4:10:09:5f:11:f4:
         64:91:76:bd:0b:d3:bd:d3:bb:56:fb:9f:ee:45:cd:cd:ec:62:
         89:5d:27:32:0e:bf:18:3d:4a:31:13:58:50:18:5d:e1:5d:8c:
         3a:82:3c:09:67:88:6c:57:a0:f4:ec:14:2d:35:b7:2f:89:60:
         f3:35:0d:a9:42:1b:72:7c:ec:9b:f7:b4:39:d8:60:33:f5:6c:
         20:cb:e9:2d:f9:fd:dd:79:36:88:f8:86:09:1b:4b:d6:65:39:
         93:ba:60:74:d5:e2:8c:05:3d:93:33:8a:05:aa:02:d6:dc:31:
         ba:6a:1d:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 13 19:36:15 2025 by rpki-client