Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9072CC7AC9935A96AECDC3B156F0BE285AC0D2F3E2B26466F87D7C39639FE7C9/0/323830333a363930303a313530303a3a2f34372d3438203d3e203532343233.roa
File:                     323830333a363930303a313530303a3a2f34372d3438203d3e203532343233.roa (raw, json)
Hash identifier:          vPy4Tyo9KvlMg2xLnsVmWXgp9JemyB0aA/rxTMkPlBo=
Subject key identifier:   F3:73:B3:58:40:68:66:2E:86:B4:52:00:08:EA:43:CD:6C:E2:1D:E4
Certificate issuer:       /CN=522A19041F7AD8D0B4F97D6DDAFC99C2590276AB
Certificate serial:       54047E1141AF72F55E7CB166C00413B54FF40A26
Authority key identifier: 52:2A:19:04:1F:7A:D8:D0:B4:F9:7D:6D:DA:FC:99:C2:59:02:76:AB
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/522A19041F7AD8D0B4F97D6DDAFC99C2590276AB.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/9072CC7AC9935A96AECDC3B156F0BE285AC0D2F3E2B26466F87D7C39639FE7C9/0/323830333a363930303a313530303a3a2f34372d3438203d3e203532343233.roa
Signing time:             Tue 04 Feb 2025 18:20:47 +0000
ROA not before:           Tue 04 Feb 2025 18:15:47 +0000
ROA not after:            Tue 03 Feb 2026 18:20:47 +0000
asID:                     52423
IP address blocks:        2803:6900:1500::/47 maxlen: 48
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            54:04:7e:11:41:af:72:f5:5e:7c:b1:66:c0:04:13:b5:4f:f4:0a:26
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=522A19041F7AD8D0B4F97D6DDAFC99C2590276AB
        Validity
            Not Before: Feb  4 18:15:47 2025 GMT
            Not After : Feb  3 18:20:47 2026 GMT
        Subject: CN=F373B3584068662E86B4520008EA43CD6CE21DE4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:88:b8:67:77:15:cc:3d:4f:9b:e7:0c:c3:7d:cf:
                    49:58:a6:c9:0e:e4:a0:7e:7f:a4:6a:d0:41:14:40:
                    a0:66:56:b2:37:96:ab:51:f4:b0:08:93:c2:10:bc:
                    dc:98:da:75:94:fc:7d:32:1b:7a:82:5a:88:2f:a0:
                    8a:3a:c1:5b:fe:0d:43:83:b0:24:f7:61:63:e0:cc:
                    d4:d5:89:15:33:f0:78:d3:73:68:18:a7:76:df:cc:
                    c7:c5:67:fd:94:0d:54:c1:7c:4f:84:7f:f5:11:e6:
                    96:b5:89:9f:08:c7:da:bd:40:7f:b4:a1:b0:36:21:
                    0c:a5:50:61:a8:a8:6f:4e:3b:a0:e1:fb:8d:28:12:
                    de:1c:2f:cc:78:28:d6:51:ca:c5:eb:43:51:f0:bb:
                    26:6a:1b:9a:34:a2:57:24:b2:31:01:d0:e9:65:67:
                    e4:da:36:35:af:8d:47:9d:2f:94:35:7a:c1:be:54:
                    92:fd:69:56:0d:3b:0b:56:22:f1:5a:b1:bc:dc:3d:
                    08:db:f7:b9:9c:0f:9d:e2:b2:16:6b:e3:60:01:9a:
                    00:31:a3:81:36:17:61:67:4a:3b:da:d1:6e:0c:2f:
                    4d:34:e1:c0:7f:fd:d8:33:63:c3:1d:2b:da:fb:3c:
                    0e:76:7e:7f:3c:68:a3:7d:c2:5c:1f:ea:70:79:12:
                    46:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F3:73:B3:58:40:68:66:2E:86:B4:52:00:08:EA:43:CD:6C:E2:1D:E4
            X509v3 Authority Key Identifier:
                keyid:52:2A:19:04:1F:7A:D8:D0:B4:F9:7D:6D:DA:FC:99:C2:59:02:76:AB

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/9072CC7AC9935A96AECDC3B156F0BE285AC0D2F3E2B26466F87D7C39639FE7C9/0/522A19041F7AD8D0B4F97D6DDAFC99C2590276AB.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/522A19041F7AD8D0B4F97D6DDAFC99C2590276AB.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9072CC7AC9935A96AECDC3B156F0BE285AC0D2F3E2B26466F87D7C39639FE7C9/0/323830333a363930303a313530303a3a2f34372d3438203d3e203532343233.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:6900:1500::/47

    Signature Algorithm: sha256WithRSAEncryption
         75:09:b8:33:89:28:4a:bd:1a:94:2d:0f:6b:82:f4:57:68:4e:
         b9:30:a7:ac:33:cd:02:0f:9c:15:6d:ff:17:d5:92:b2:66:88:
         b1:cb:59:16:a8:ac:17:fc:fc:d7:7d:7f:13:0b:c6:c4:73:1a:
         05:66:57:5a:31:46:e8:4a:e1:49:f5:3c:e3:b3:88:9a:5b:c2:
         39:11:75:2e:d5:d1:db:24:a5:bc:ac:55:42:62:8f:bb:4c:e7:
         2d:00:70:8a:63:39:04:b8:8d:d8:69:30:b6:18:3c:9b:59:08:
         5b:2e:85:90:5f:a8:31:91:94:35:42:95:be:55:53:b8:d7:05:
         7c:68:04:66:6c:49:ab:08:5c:12:8b:db:3d:0a:cd:1e:50:8a:
         86:98:d0:d7:f0:2d:c0:b7:4b:43:a9:c3:59:27:05:0e:60:4c:
         82:24:e0:84:3b:85:47:c8:0f:f5:3f:2e:9e:45:3b:e6:f3:9a:
         09:3e:03:5a:0d:cf:7d:d2:2f:9f:6f:74:0f:3c:bd:2a:86:5e:
         20:c1:17:fe:a4:71:14:3b:81:78:b9:86:bc:e9:ca:44:e7:e9:
         7e:9d:e4:ea:37:8c:0b:b9:d4:65:54:a8:62:11:c7:e7:d6:e5:
         67:96:2d:ea:2b:9f:3b:01:d2:6c:48:46:0d:db:aa:f6:cb:4d:
         42:c9:70:5c
-----BEGIN CERTIFICATE-----
MIIFyTCCBLGgAwIBAgIUVAR+EUGvcvVefLFmwAQTtU/0CiYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTIyQTE5MDQxRjdBRDhEMEI0Rjk3RDZEREFGQzk5QzI1
OTAyNzZBQjAeFw0yNTAyMDQxODE1NDdaFw0yNjAyMDMxODIwNDdaMDMxMTAvBgNV
BAMTKEYzNzNCMzU4NDA2ODY2MkU4NkI0NTIwMDA4RUE0M0NENkNFMjFERTQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCIuGd3Fcw9T5vnDMN9z0lYpskO
5KB+f6Rq0EEUQKBmVrI3lqtR9LAIk8IQvNyY2nWU/H0yG3qCWogvoIo6wVv+DUOD
sCT3YWPgzNTViRUz8HjTc2gYp3bfzMfFZ/2UDVTBfE+Ef/UR5pa1iZ8Ix9q9QH+0
obA2IQylUGGoqG9OO6Dh+40oEt4cL8x4KNZRysXrQ1HwuyZqG5o0olcksjEB0Oll
Z+TaNjWvjUedL5Q1esG+VJL9aVYNOwtWIvFasbzcPQjb97mcD53ishZr42ABmgAx
o4E2F2FnSjva0W4ML0004cB//dgzY8MdK9r7PA52fn88aKN9wlwf6nB5EkYbAgMB
AAGjggLTMIICzzAdBgNVHQ4EFgQU83OzWEBoZi6GtFIACOpDzWziHeQwHwYDVR0j
BBgwFoAUUioZBB962NC0+X1t2vyZwlkCdqswDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy85MDcyQ0M3QUM5OTM1QTk2QUVDREMzQjE1NkYwQkUyODVB
QzBEMkYzRTJCMjY0NjZGODdEN0MzOTYzOUZFN0M5LzAvNTIyQTE5MDQxRjdBRDhE
MEI0Rjk3RDZEREFGQzk5QzI1OTAyNzZBQi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC81MjJBMTkwNDFGN0FEOEQwQjRG
OTdENkREQUZDOTlDMjU5MDI3NkFCLmNlcjCBzwYIKwYBBQUHAQsEgcIwgb8wgbwG
CCsGAQUFBzALhoGvcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvOTA3MkNDN0FDOTkzNUE5NkFFQ0RDM0IxNTZGMEJFMjg1QUMwRDJGM0Uy
QjI2NDY2Rjg3RDdDMzk2MzlGRTdDOS8wLzMyMzgzMDMzM2EzNjM5MzAzMDNhMzEz
NTMwMzAzYTNhMmYzNDM3MmQzNDM4MjAzZDNlMjAzNTMyMzQzMjMzLnJvYTAYBgNV
HSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ
AwcBKANpABUAMA0GCSqGSIb3DQEBCwUAA4IBAQB1CbgziShKvRqULQ9rgvRXaE65
MKesM80CD5wVbf8X1ZKyZoixy1kWqKwX/PzXfX8TC8bEcxoFZldaMUboSuFJ9Tzj
s4iaW8I5EXUu1dHbJKW8rFVCYo+7TOctAHCKYzkEuI3YaTC2GDybWQhbLoWQX6gx
kZQ1QpW+VVO41wV8aARmbEmrCFwSi9s9Cs0eUIqGmNDX8C3At0tDqcNZJwUOYEyC
JOCEO4VHyA/1Py6eRTvm85oJPgNaDc990i+fb3QPPL0qhl4gwRf+pHEUO4F4uYa8
6cpE5+l+neTqN4wLudRlVKhiEcfn1uVnli3qK587AdJsSEYN26r2y01CyXBc
-----END CERTIFICATE-----