Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9F0DB3ACCC55AB276038B37DA2F836F4772891B164D27A13D7E11000960B33FD/0/3138312e3233322e3136302e302f32322d3234203d3e20323732303634.roa
File:                     3138312e3233322e3136302e302f32322d3234203d3e20323732303634.roa (raw, json)
Hash identifier:          s1cOhevQvTG6NVC5bVGVyEJER6u6G08GJ9meyh9iYsA=
Subject key identifier:   8D:F6:CE:3E:49:E5:9E:BE:50:B7:67:39:4C:E6:32:C5:A1:24:35:37
Certificate issuer:       /CN=98375F77F0F93F2A707052E2273D5F5F579A325C
Certificate serial:       4E7618EED61BA276B7F29B5E695C652D91331AC3
Authority key identifier: 98:37:5F:77:F0:F9:3F:2A:70:70:52:E2:27:3D:5F:5F:57:9A:32:5C
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/98375F77F0F93F2A707052E2273D5F5F579A325C.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/9F0DB3ACCC55AB276038B37DA2F836F4772891B164D27A13D7E11000960B33FD/0/3138312e3233322e3136302e302f32322d3234203d3e20323732303634.roa
Signing time:             Tue 04 Feb 2025 20:06:01 +0000
ROA not before:           Tue 04 Feb 2025 20:01:01 +0000
ROA not after:            Tue 03 Feb 2026 20:06:01 +0000
asID:                     272064
IP address blocks:        181.232.160.0/22 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4e:76:18:ee:d6:1b:a2:76:b7:f2:9b:5e:69:5c:65:2d:91:33:1a:c3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=98375F77F0F93F2A707052E2273D5F5F579A325C
        Validity
            Not Before: Feb  4 20:01:01 2025 GMT
            Not After : Feb  3 20:06:01 2026 GMT
        Subject: CN=8DF6CE3E49E59EBE50B767394CE632C5A1243537
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:aa:4e:88:8c:8c:3c:7c:07:0a:c0:6f:2e:89:
                    8a:46:ef:03:e2:9c:93:d3:0f:6b:e1:17:5e:64:9c:
                    0d:99:0b:3e:9a:3f:ae:b5:b8:14:7b:08:66:49:07:
                    6b:22:56:65:0d:1c:d1:93:97:9e:5c:02:5d:10:f2:
                    46:93:cc:34:42:f7:aa:bc:2d:6c:f0:48:77:ee:a9:
                    bc:ac:ef:ec:78:0e:58:76:46:bd:af:8e:17:31:d7:
                    8f:a4:3c:26:57:0f:be:34:79:1e:8d:b1:33:ec:12:
                    21:b3:e2:8e:6f:a9:67:16:9e:38:1d:9a:cc:10:42:
                    0e:24:63:8e:fa:44:20:9a:d3:45:7e:99:33:ac:cc:
                    5f:bf:c8:0e:91:6a:3d:d5:c9:c6:8a:b1:e4:35:db:
                    bd:62:35:90:e0:c7:b8:a1:7c:26:0f:26:c6:0c:18:
                    03:34:9d:5e:4b:15:f2:a4:ed:43:d8:1c:d6:2a:54:
                    82:ec:a5:c8:2b:33:c1:86:d7:c2:8b:44:7d:7c:67:
                    1c:9e:ba:19:6e:a5:e9:3c:32:2d:5e:24:f9:f5:da:
                    a9:06:05:0a:5c:23:99:c3:af:35:69:9b:55:e2:2f:
                    fc:46:a0:c4:ed:b7:df:5f:eb:03:05:cb:13:58:d4:
                    5e:1e:76:62:e7:6c:08:61:f5:c6:42:36:57:cd:b6:
                    de:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8D:F6:CE:3E:49:E5:9E:BE:50:B7:67:39:4C:E6:32:C5:A1:24:35:37
            X509v3 Authority Key Identifier:
                keyid:98:37:5F:77:F0:F9:3F:2A:70:70:52:E2:27:3D:5F:5F:57:9A:32:5C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/9F0DB3ACCC55AB276038B37DA2F836F4772891B164D27A13D7E11000960B33FD/0/98375F77F0F93F2A707052E2273D5F5F579A325C.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/98375F77F0F93F2A707052E2273D5F5F579A325C.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9F0DB3ACCC55AB276038B37DA2F836F4772891B164D27A13D7E11000960B33FD/0/3138312e3233322e3136302e302f32322d3234203d3e20323732303634.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  181.232.160.0/22

    Signature Algorithm: sha256WithRSAEncryption
         43:e6:28:cc:70:96:ef:76:a7:6d:15:af:fe:5e:85:38:11:13:
         66:f3:f8:e9:cf:81:8c:7f:3d:47:00:33:42:db:03:a5:73:84:
         a6:0f:a5:26:19:c1:db:1c:02:ce:73:00:3d:5c:91:46:22:29:
         1e:14:f7:15:4a:39:dd:8e:fb:9e:3e:75:f1:d8:97:0d:35:c5:
         fd:a7:de:4b:30:cc:35:b6:49:24:1d:38:9c:07:e5:2f:c6:0f:
         7e:12:35:05:96:e9:92:1c:8e:8d:d1:73:d9:01:c9:03:e1:1d:
         6e:a2:aa:59:17:3b:63:a3:f1:dc:c5:39:92:8b:f2:9b:c3:fd:
         47:0d:92:ad:33:fb:26:12:52:e0:a9:88:5f:cd:89:a8:af:5c:
         4b:4e:7d:06:4f:c3:1d:1e:87:37:68:17:00:ae:7d:14:06:a7:
         08:d4:c4:99:9b:d4:5c:2e:be:d4:c8:97:34:dd:79:f6:76:3a:
         e8:14:3d:39:ad:e3:4b:56:02:ea:65:db:a7:de:ab:c7:7c:7b:
         41:d0:81:3c:d2:a2:0f:c7:93:a4:93:60:74:ed:89:21:45:bc:
         32:da:08:43:19:a2:58:4b:f9:8a:01:52:a8:96:da:07:52:47:
         ca:aa:6f:c1:df:90:3b:6d:26:fa:2d:08:cb:93:3a:17:73:99:
         03:ce:c0:bf
-----BEGIN CERTIFICATE-----
MIIFwjCCBKqgAwIBAgIUTnYY7tYbona38pteaVxlLZEzGsMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTgzNzVGNzdGMEY5M0YyQTcwNzA1MkUyMjczRDVGNUY1
NzlBMzI1QzAeFw0yNTAyMDQyMDAxMDFaFw0yNjAyMDMyMDA2MDFaMDMxMTAvBgNV
BAMTKDhERjZDRTNFNDlFNTlFQkU1MEI3NjczOTRDRTYzMkM1QTEyNDM1MzcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkqk6IjIw8fAcKwG8uiYpG7wPi
nJPTD2vhF15knA2ZCz6aP661uBR7CGZJB2siVmUNHNGTl55cAl0Q8kaTzDRC96q8
LWzwSHfuqbys7+x4Dlh2Rr2vjhcx14+kPCZXD740eR6NsTPsEiGz4o5vqWcWnjgd
mswQQg4kY476RCCa00V+mTOszF+/yA6Raj3VycaKseQ1271iNZDgx7ihfCYPJsYM
GAM0nV5LFfKk7UPYHNYqVILspcgrM8GG18KLRH18Zxyeuhlupek8Mi1eJPn12qkG
BQpcI5nDrzVpm1XiL/xGoMTtt99f6wMFyxNY1F4edmLnbAhh9cZCNlfNtt7LAgMB
AAGjggLMMIICyDAdBgNVHQ4EFgQUjfbOPknlnr5Qt2c5TOYyxaEkNTcwHwYDVR0j
BBgwFoAUmDdfd/D5PypwcFLiJz1fX1eaMlwwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy85RjBEQjNBQ0NDNTVBQjI3NjAzOEIzN0RBMkY4MzZGNDc3
Mjg5MUIxNjREMjdBMTNEN0UxMTAwMDk2MEIzM0ZELzAvOTgzNzVGNzdGMEY5M0Yy
QTcwNzA1MkUyMjczRDVGNUY1NzlBMzI1Qy5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85ODM3NUY3N0YwRjkzRjJBNzA3
MDUyRTIyNzNENUY1RjU3OUEzMjVDLmNlcjCBywYIKwYBBQUHAQsEgb4wgbswgbgG
CCsGAQUFBzALhoGrcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvOUYwREIzQUNDQzU1QUIyNzYwMzhCMzdEQTJGODM2RjQ3NzI4OTFCMTY0
RDI3QTEzRDdFMTEwMDA5NjBCMzNGRC8wLzMxMzgzMTJlMzIzMzMyMmUzMTM2MzAy
ZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzMjM3MzIzMDM2MzQucm9hMBgGA1UdIAEB
/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK1
6KAwDQYJKoZIhvcNAQELBQADggEBAEPmKMxwlu92p20Vr/5ehTgRE2bz+OnPgYx/
PUcAM0LbA6VzhKYPpSYZwdscAs5zAD1ckUYiKR4U9xVKOd2O+54+dfHYlw01xf2n
3kswzDW2SSQdOJwH5S/GD34SNQWW6ZIcjo3Rc9kByQPhHW6iqlkXO2Oj8dzFOZKL
8pvD/UcNkq0z+yYSUuCpiF/NiaivXEtOfQZPwx0ehzdoFwCufRQGpwjUxJmb1Fwu
vtTIlzTdefZ2OugUPTmt40tWAupl26feq8d8e0HQgTzSog/Hk6STYHTtiSFFvDLa
CEMZolhL+YoBUqiW2gdSR8qqb8HfkDttJvotCMuTOhdzmQPOwL8=
-----END CERTIFICATE-----