Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9764d977-b72f-4580-9e0e-7e7a7b74d521/01587e9a9a9702c642db030f6b58371c3657a207.roa
File:                     01587e9a9a9702c642db030f6b58371c3657a207.roa (raw, json)
Hash identifier:          3n6ANevws9cQ7MgSuDNejAL9DyOtOuv62XZOVVN9FJ0=
Subject key identifier:   8E:50:ED:5E:3D:9E:88:ED:12:14:64:1E:2C:7D:DB:25:3D:E4:24:25
Certificate issuer:       /CN=072ad058a243e3c867d14ea1739782d9765281de
Certificate serial:       0BFFE6
Authority key identifier: 56:19:28:47:8A:D1:F2:0D:1A:49:32:E5:B2:7E:CE:2E:3B:FF:7D:27
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/072ad058a243e3c867d14ea1739782d9765281de.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/9764d977-b72f-4580-9e0e-7e7a7b74d521/01587e9a9a9702c642db030f6b58371c3657a207.roa
Signing time:             Wed 24 Mar 2021 14:37:32 +0000
ROA not before:           Wed 24 Mar 2021 14:37:32 +0000
ROA not after:            Tue 24 Mar 2026 14:37:32 +0000
asID:                     52468
IP address blocks:        45.182.43.0/24 maxlen: 24
                          2803:b560::/32 maxlen: 32

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 786406 (0xbffe6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=072ad058a243e3c867d14ea1739782d9765281de
        Validity
            Not Before: Mar 24 14:37:32 2021 GMT
            Not After : Mar 24 14:37:32 2026 GMT
        Subject: CN=01587e9a9a9702c642db030f6b58371c3657a207
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:a5:6d:79:ca:5e:a0:74:17:d8:87:20:c3:d0:
                    96:9b:34:30:63:70:24:3a:75:ba:89:9a:ff:ac:6e:
                    ed:c8:da:47:0e:f8:cb:c7:1d:1f:95:45:6c:b7:be:
                    db:a0:bc:cc:fa:90:36:53:00:6b:be:79:ec:aa:37:
                    b0:cc:4a:b0:f9:70:5a:2f:3b:ea:b3:da:29:f3:f3:
                    3d:bf:db:ff:37:bd:25:2b:6c:ec:72:9c:2a:b9:bb:
                    ae:8c:58:e5:f0:ef:32:b6:cc:78:33:bb:4d:a9:4b:
                    ed:f8:7f:40:db:48:5a:10:ea:fd:54:e2:b2:7f:59:
                    ff:fa:37:b6:4a:75:ac:b3:71:90:19:13:9a:7e:97:
                    dc:51:fc:20:cc:77:f4:62:ad:cb:91:a6:b5:f5:83:
                    83:54:2e:e6:16:c7:f9:59:10:3d:ee:9b:4e:43:fc:
                    73:01:cd:3a:22:0d:a4:b1:63:ce:ce:e8:21:c1:60:
                    0a:5c:06:b7:aa:eb:10:18:dd:57:25:f9:40:9c:2a:
                    2a:d1:de:b5:8e:e5:80:c8:48:fa:bd:d8:c9:04:75:
                    63:dd:f5:b9:08:f6:35:5d:14:f0:b4:39:26:89:9c:
                    91:88:60:f1:6b:be:02:17:0b:08:a0:c0:7a:4f:94:
                    57:8d:2e:56:68:79:ca:cd:90:c2:36:70:49:c9:b9:
                    9f:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8E:50:ED:5E:3D:9E:88:ED:12:14:64:1E:2C:7D:DB:25:3D:E4:24:25
            X509v3 Authority Key Identifier:
                keyid:56:19:28:47:8A:D1:F2:0D:1A:49:32:E5:B2:7E:CE:2E:3B:FF:7D:27

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/072ad058a243e3c867d14ea1739782d9765281de.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9764d977-b72f-4580-9e0e-7e7a7b74d521/01587e9a9a9702c642db030f6b58371c3657a207.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/9764d977-b72f-4580-9e0e-7e7a7b74d521/072ad058a243e3c867d14ea1739782d9765281de.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.182.43.0/24
                IPv6:
                  2803:b560::/32

    Signature Algorithm: sha256WithRSAEncryption
         91:dd:61:67:1e:66:69:d9:fb:57:78:d2:33:57:dd:93:f8:2f:
         98:ed:98:cd:d9:e9:2e:c8:69:a0:41:45:5d:fc:9b:ff:fd:ae:
         aa:0c:d7:d8:56:a1:4d:d1:2c:6c:f2:32:d4:54:57:ad:b8:46:
         d6:65:bb:76:a0:16:ad:85:2d:96:21:7e:c3:61:79:75:c2:c3:
         ca:e9:5e:51:0a:f4:0a:ee:8d:ca:3c:9d:a7:cb:11:f8:3d:cc:
         6a:2f:db:18:e9:8e:a2:df:e8:2e:c1:7c:c8:6a:2f:54:a8:e6:
         69:ce:7b:0c:ae:ce:5d:7d:9a:6c:1f:13:0d:85:01:95:af:e7:
         0e:b3:42:fd:5a:8e:dd:ad:88:63:c3:ba:7e:61:5f:c8:32:64:
         56:c3:f1:31:0d:5b:e2:4c:b0:2e:07:45:fe:4a:07:ba:74:fd:
         b7:3c:24:0e:d0:19:e4:2b:47:46:8b:8b:cc:bf:3e:cc:60:8f:
         d8:9f:dd:41:dd:76:3d:62:56:23:63:fe:73:c9:c4:34:c4:75:
         21:b6:e0:6f:e4:6b:f2:4f:eb:51:e7:93:06:62:75:d6:d1:05:
         bd:97:74:fd:07:91:f3:fa:56:c5:bc:92:c1:1b:fa:08:b1:1f:
         c3:38:dd:15:7e:91:fc:3d:6c:c5:a0:2b:77:b0:35:2f:3b:68:
         d5:c4:44:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:16 2024 by rpki-client on console-ams.rpki-client.org