Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/8975A8E22939ACA11DB669FC4BC2E59589BDE902E3FFFE35918663C47C82D07F/0/3230302e3131342e37392e302f32342d3234203d3e203630373235.roa
File:                     3230302e3131342e37392e302f32342d3234203d3e203630373235.roa (raw, json)
Hash identifier:          mlsjy/Q6t8qF+SJqFLJIMeixGBh2ZJLCRXi+aK95HVo=
Subject key identifier:   78:9E:02:BF:D6:33:C4:64:60:DF:B9:09:3B:E2:A0:78:97:AB:67:FA
Certificate issuer:       /CN=0279384C8430F0388D9E8E777F0896ADCD6029E8
Certificate serial:       1297403E3C0DDF025DA962FCC7E839B07F1F5BBB
Authority key identifier: 02:79:38:4C:84:30:F0:38:8D:9E:8E:77:7F:08:96:AD:CD:60:29:E8
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0279384C8430F0388D9E8E777F0896ADCD6029E8.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/8975A8E22939ACA11DB669FC4BC2E59589BDE902E3FFFE35918663C47C82D07F/0/3230302e3131342e37392e302f32342d3234203d3e203630373235.roa
Signing time:             Tue 04 Feb 2025 20:06:26 +0000
ROA not before:           Tue 04 Feb 2025 20:01:26 +0000
ROA not after:            Tue 03 Feb 2026 20:06:26 +0000
asID:                     60725
IP address blocks:        200.114.79.0/24 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            12:97:40:3e:3c:0d:df:02:5d:a9:62:fc:c7:e8:39:b0:7f:1f:5b:bb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0279384C8430F0388D9E8E777F0896ADCD6029E8
        Validity
            Not Before: Feb  4 20:01:26 2025 GMT
            Not After : Feb  3 20:06:26 2026 GMT
        Subject: CN=789E02BFD633C46460DFB9093BE2A07897AB67FA
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:d9:1b:aa:d9:35:e4:27:41:8b:7d:12:de:22:
                    f8:8c:b1:be:15:83:3c:b2:f6:c8:b5:6a:ee:f9:0b:
                    6a:72:2f:ef:4f:1e:d2:4e:85:98:62:c4:31:5c:c3:
                    36:f6:86:ab:4d:59:62:2a:ab:99:66:2e:e1:9e:81:
                    b3:b4:a0:2a:95:57:e7:0e:68:05:f2:c3:54:56:a6:
                    f5:26:0e:a3:81:e6:9b:7a:90:ac:5c:71:6e:02:bc:
                    6a:94:32:b9:54:69:d4:02:e0:28:ff:5a:5e:c1:7c:
                    54:82:8c:d6:96:98:d8:22:ae:d3:bb:3f:37:67:87:
                    d4:22:76:94:36:a5:0f:de:55:37:6f:0a:e6:44:2a:
                    6e:c4:78:bb:8a:7a:1d:96:7a:db:4f:7e:1b:9e:87:
                    37:ff:92:20:4c:96:24:00:57:0c:63:c2:dd:8d:fa:
                    c9:92:58:62:7b:c3:4b:4a:40:0b:8a:34:2c:60:87:
                    a5:57:3c:fd:af:bf:ab:26:57:86:1c:95:50:50:4e:
                    bf:10:5d:1e:50:63:02:de:d3:9a:da:7e:93:b2:81:
                    a8:3a:78:0b:25:a4:ce:21:c6:86:58:84:48:61:fd:
                    95:f4:44:ce:69:00:33:bc:fc:44:8a:97:07:1e:ca:
                    f2:36:0d:2a:cb:f5:a4:f3:61:3c:a0:60:4d:2e:75:
                    c6:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                78:9E:02:BF:D6:33:C4:64:60:DF:B9:09:3B:E2:A0:78:97:AB:67:FA
            X509v3 Authority Key Identifier:
                keyid:02:79:38:4C:84:30:F0:38:8D:9E:8E:77:7F:08:96:AD:CD:60:29:E8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/8975A8E22939ACA11DB669FC4BC2E59589BDE902E3FFFE35918663C47C82D07F/0/0279384C8430F0388D9E8E777F0896ADCD6029E8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/0279384C8430F0388D9E8E777F0896ADCD6029E8.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/8975A8E22939ACA11DB669FC4BC2E59589BDE902E3FFFE35918663C47C82D07F/0/3230302e3131342e37392e302f32342d3234203d3e203630373235.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.114.79.0/24

    Signature Algorithm: sha256WithRSAEncryption
         6f:d4:16:10:d7:5a:4d:13:78:45:1b:17:92:a2:05:d1:42:2d:
         48:91:6c:2e:ce:29:42:21:fe:8f:24:62:40:bc:52:b8:61:e4:
         d7:b7:c5:19:95:69:10:d6:43:8d:55:db:27:5f:1d:56:59:e2:
         50:36:ab:af:23:1e:6e:d2:d2:b2:96:93:ed:b4:8b:6a:93:aa:
         29:c5:07:67:92:59:c1:0b:df:21:46:79:e1:06:48:da:13:41:
         c7:ce:99:ff:90:02:d5:e7:31:24:c6:25:b6:32:3d:7d:f1:9a:
         14:e9:ac:49:d0:49:a6:73:0d:75:bd:35:b0:55:06:13:d9:99:
         3e:84:ba:32:3f:78:92:50:be:b2:ac:ef:5d:8a:a7:c4:d3:cd:
         bc:f8:02:b2:b3:cf:78:ad:bc:31:1d:87:e1:86:d5:cd:9f:bb:
         75:19:19:2f:78:dc:75:0e:84:86:91:9a:43:5d:67:ca:b8:f1:
         5b:c8:04:d8:15:63:74:4f:dc:0b:35:ff:f6:cc:65:c8:8a:7e:
         cb:02:29:81:4a:d6:e0:7b:04:0c:db:80:1a:46:c0:17:28:1b:
         f4:e3:8b:be:e1:a8:5c:50:57:60:46:44:fd:2e:79:08:48:4f:
         63:b3:6e:a2:ba:08:8d:26:ee:3c:63:37:37:9c:68:30:3f:c6:
         20:7f:eb:56
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUEpdAPjwN3wJdqWL8x+g5sH8fW7swDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDI3OTM4NEM4NDMwRjAzODhEOUU4RTc3N0YwODk2QURD
RDYwMjlFODAeFw0yNTAyMDQyMDAxMjZaFw0yNjAyMDMyMDA2MjZaMDMxMTAvBgNV
BAMTKDc4OUUwMkJGRDYzM0M0NjQ2MERGQjkwOTNCRTJBMDc4OTdBQjY3RkEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD2Ruq2TXkJ0GLfRLeIviMsb4V
gzyy9si1au75C2pyL+9PHtJOhZhixDFcwzb2hqtNWWIqq5lmLuGegbO0oCqVV+cO
aAXyw1RWpvUmDqOB5pt6kKxccW4CvGqUMrlUadQC4Cj/Wl7BfFSCjNaWmNgirtO7
Pzdnh9QidpQ2pQ/eVTdvCuZEKm7EeLuKeh2WettPfhuehzf/kiBMliQAVwxjwt2N
+smSWGJ7w0tKQAuKNCxgh6VXPP2vv6smV4YclVBQTr8QXR5QYwLe05rafpOygag6
eAslpM4hxoZYhEhh/ZX0RM5pADO8/ESKlwceyvI2DSrL9aTzYTygYE0udcZNAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUeJ4Cv9YzxGRg37kJO+KgeJerZ/owHwYDVR0j
BBgwFoAUAnk4TIQw8DiNno53fwiWrc1gKegwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy84OTc1QThFMjI5MzlBQ0ExMURCNjY5RkM0QkMyRTU5NTg5
QkRFOTAyRTNGRkZFMzU5MTg2NjNDNDdDODJEMDdGLzAvMDI3OTM4NEM4NDMwRjAz
ODhEOUU4RTc3N0YwODk2QURDRDYwMjlFOC5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC8wMjc5Mzg0Qzg0MzBGMDM4OEQ5
RThFNzc3RjA4OTZBRENENjAyOUU4LmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvODk3NUE4RTIyOTM5QUNBMTFEQjY2OUZDNEJDMkU1OTU4OUJERTkwMkUz
RkZGRTM1OTE4NjYzQzQ3QzgyRDA3Ri8wLzMyMzAzMDJlMzEzMTM0MmUzNzM5MmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzYzMDM3MzIzNS5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMhyTzAN
BgkqhkiG9w0BAQsFAAOCAQEAb9QWENdaTRN4RRsXkqIF0UItSJFsLs4pQiH+jyRi
QLxSuGHk17fFGZVpENZDjVXbJ18dVlniUDarryMebtLSspaT7bSLapOqKcUHZ5JZ
wQvfIUZ54QZI2hNBx86Z/5AC1ecxJMYltjI9ffGaFOmsSdBJpnMNdb01sFUGE9mZ
PoS6Mj94klC+sqzvXYqnxNPNvPgCsrPPeK28MR2H4YbVzZ+7dRkZL3jcdQ6EhpGa
Q11nyrjxW8gE2BVjdE/cCzX/9sxlyIp+ywIpgUrW4HsEDNuAGkbAFygb9OOLvuGo
XFBXYEZE/S55CEhPY7NuoroIjSbuPGM3N5xoMD/GIH/rVg==
-----END CERTIFICATE-----