Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/977d3d35-bbec-4cad-a0c5-0607a29e1f0f/a9d322a4c6f15d8a746a54cb577ff8b8dac72a6b.roa
File:                     a9d322a4c6f15d8a746a54cb577ff8b8dac72a6b.roa (raw, json)
Hash identifier:          t2XQlsAlUneg4baImDz8HZnzevScWF391rMqAaXw6dE=
Subject key identifier:   20:28:1F:3E:D0:96:B1:15:CC:36:FD:0C:79:0A:8F:1D:DC:EF:9F:16
Certificate issuer:       /CN=5d32623b33e04fadc1af80fccf6d12aabbcfbfa5
Certificate serial:       1B0C08
Authority key identifier: 7E:3D:3D:84:5A:21:26:7B:9C:7E:F6:54:A8:53:05:ED:86:7E:E9:1B
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5d32623b33e04fadc1af80fccf6d12aabbcfbfa5.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/977d3d35-bbec-4cad-a0c5-0607a29e1f0f/a9d322a4c6f15d8a746a54cb577ff8b8dac72a6b.roa
Signing time:             Tue 22 Nov 2022 07:30:00 +0000
ROA not before:           Mon 21 Nov 2022 07:30:00 +0000
ROA not after:            Wed 20 Nov 2024 07:30:00 +0000
asID:                     269862
IP address blocks:        138.99.178.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1772552 (0x1b0c08)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5d32623b33e04fadc1af80fccf6d12aabbcfbfa5
        Validity
            Not Before: Nov 21 07:30:00 2022 GMT
            Not After : Nov 20 07:30:00 2024 GMT
        Subject: CN=a9d322a4c6f15d8a746a54cb577ff8b8dac72a6b
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:91:fc:d1:47:98:b7:33:8b:2a:e1:df:9a:a7:03:
                    52:61:b1:72:6e:e0:33:71:e9:c2:c8:a7:8a:16:b4:
                    db:ba:d1:04:1b:25:4e:d9:70:23:ef:14:5e:53:b3:
                    dc:62:60:de:f7:75:b5:70:f8:b9:35:f5:f8:c2:c2:
                    ef:36:26:5e:46:2f:44:65:8d:57:7c:ca:6e:a7:b7:
                    a5:28:a3:57:9a:4e:e9:ff:8f:ee:31:74:77:09:dc:
                    4a:50:e3:2b:3a:6e:97:df:a3:3e:f5:7b:cb:a4:4c:
                    49:ef:84:71:9f:21:d9:0c:8d:18:e0:18:7a:91:41:
                    0a:d9:27:5d:49:37:f4:65:28:08:1f:bd:ff:04:04:
                    db:e7:b8:70:ce:3a:19:13:74:68:e5:6e:4a:92:e5:
                    7d:00:45:72:fc:73:c4:97:2d:78:5e:a9:5e:da:f4:
                    9a:ec:8a:fd:38:77:cc:86:e5:ce:48:cc:b1:c7:13:
                    b1:99:90:99:5b:54:3d:dd:93:ce:b6:0d:eb:5f:77:
                    d6:c5:8a:ca:31:24:58:a7:bf:c9:db:7b:26:98:7b:
                    69:a7:00:12:75:70:b3:ae:ba:92:87:18:4f:a7:e6:
                    ce:50:b8:db:02:58:b7:16:1b:79:3d:3d:e2:a9:52:
                    75:84:77:21:a8:3c:67:4a:17:94:ac:d5:d9:32:a2:
                    66:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                20:28:1F:3E:D0:96:B1:15:CC:36:FD:0C:79:0A:8F:1D:DC:EF:9F:16
            X509v3 Authority Key Identifier:
                keyid:7E:3D:3D:84:5A:21:26:7B:9C:7E:F6:54:A8:53:05:ED:86:7E:E9:1B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5d32623b33e04fadc1af80fccf6d12aabbcfbfa5.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/977d3d35-bbec-4cad-a0c5-0607a29e1f0f/a9d322a4c6f15d8a746a54cb577ff8b8dac72a6b.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/977d3d35-bbec-4cad-a0c5-0607a29e1f0f/5d32623b33e04fadc1af80fccf6d12aabbcfbfa5.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  138.99.178.0/24

    Signature Algorithm: sha256WithRSAEncryption
         7d:fe:36:a2:01:9a:6c:17:75:a7:55:91:05:22:f2:d6:ec:c3:
         45:80:a2:11:72:5f:63:cd:86:46:fa:20:67:b7:76:05:49:1a:
         6f:01:6e:97:d6:61:15:84:04:6e:fb:63:5b:16:bd:f1:be:28:
         7e:e3:a7:0b:ba:eb:44:4b:ae:c3:61:b1:a6:94:c7:90:65:3d:
         46:d2:4b:1d:c6:c3:ea:de:c5:df:3b:67:6e:d8:15:64:cc:2c:
         6c:c3:22:be:c2:34:9f:23:81:ab:1e:f5:7f:c8:74:b9:9b:01:
         c2:cb:de:46:d7:ed:89:c1:42:1f:6c:1f:95:97:13:b4:70:1c:
         d8:26:87:bd:db:8a:36:c6:f5:c6:f3:86:3d:87:0c:5b:80:38:
         03:9d:c9:9c:90:df:21:4d:d1:c2:92:cd:c6:e2:2c:af:d7:cf:
         d9:64:ae:53:c9:14:a7:5b:69:a5:e8:a0:8d:70:c8:25:3e:6c:
         1d:9d:8a:f2:e1:bd:64:cb:18:bf:7b:07:7e:f0:c9:f0:56:95:
         6f:04:46:ab:c8:9e:e2:af:96:d8:dd:17:d7:8a:51:9a:e3:bc:
         fd:24:4b:0e:d6:07:d9:4c:73:eb:59:f9:f0:f0:45:c9:e7:42:
         f5:fd:6f:cd:d9:e1:f8:95:36:54:67:e7:32:da:86:f5:f5:cf:
         af:48:fc:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:57 2024 by rpki-client on console-fra.rpki-client.org