Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/AA65778EA2BA3F645381CFB03A90993513067039B2404F9272E8401B13C62151/0/3230302e302e36332e302f32342d3234203d3e20313938393439.roa
File:                     3230302e302e36332e302f32342d3234203d3e20313938393439.roa (raw, json)
Hash identifier:          0dOramd3Rhcju+FgsWSnJYaDsTuftzRy6LoeEbGLkI0=
Subject key identifier:   12:B4:3C:AF:CE:17:93:8F:7A:7A:A7:CF:12:F8:B7:DF:0C:AE:C6:BE
Certificate issuer:       /CN=63DAFE7C6D072AD758B2EAA7C654C528C8DD256B
Certificate serial:       600AD79C8E18A36F17CACF2DA421D2A9054645F8
Authority key identifier: 63:DA:FE:7C:6D:07:2A:D7:58:B2:EA:A7:C6:54:C5:28:C8:DD:25:6B
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/63DAFE7C6D072AD758B2EAA7C654C528C8DD256B.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/AA65778EA2BA3F645381CFB03A90993513067039B2404F9272E8401B13C62151/0/3230302e302e36332e302f32342d3234203d3e20313938393439.roa
Signing time:             Tue 04 Feb 2025 18:53:49 +0000
ROA not before:           Tue 04 Feb 2025 18:48:49 +0000
ROA not after:            Tue 03 Feb 2026 18:53:49 +0000
asID:                     198949
IP address blocks:        200.0.63.0/24 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            60:0a:d7:9c:8e:18:a3:6f:17:ca:cf:2d:a4:21:d2:a9:05:46:45:f8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=63DAFE7C6D072AD758B2EAA7C654C528C8DD256B
        Validity
            Not Before: Feb  4 18:48:49 2025 GMT
            Not After : Feb  3 18:53:49 2026 GMT
        Subject: CN=12B43CAFCE17938F7A7AA7CF12F8B7DF0CAEC6BE
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:8b:c2:54:5f:61:df:d4:bf:9c:bf:45:ae:b2:
                    f5:99:d0:df:ec:4b:02:72:4e:97:55:72:d1:ea:e9:
                    83:78:cc:54:e0:2b:4f:ed:63:f0:a8:4a:63:64:cb:
                    b5:c7:eb:0e:26:85:5e:2e:d9:6d:60:97:f0:e5:0d:
                    7b:08:18:59:48:c0:31:ad:a7:f1:61:fb:bd:07:93:
                    4a:dd:3b:7d:8d:a4:6c:08:5a:9a:18:a5:5a:d9:6b:
                    01:43:72:46:c1:db:9f:8a:84:77:4e:18:ff:f2:fa:
                    db:aa:d6:b9:b6:34:10:03:13:f9:ee:93:a7:ac:10:
                    40:df:24:d8:f4:98:f7:37:40:a5:2a:72:4e:9a:7c:
                    42:cb:d8:32:b7:d6:67:b1:9e:a1:ce:2d:37:77:00:
                    19:a4:3c:17:cc:90:b1:6d:b4:4a:ea:61:29:ee:14:
                    48:49:48:dc:ef:99:34:8c:a1:e8:5d:47:f6:ca:fc:
                    07:6f:bf:a7:6d:e4:ce:3b:18:4d:47:39:88:8d:a6:
                    5d:9d:2e:1e:38:ca:13:d6:ff:0f:4c:68:8b:8c:5d:
                    31:9d:14:64:45:72:4a:c6:f1:60:0b:07:02:0b:21:
                    4e:de:d8:1d:a2:3f:52:46:2c:02:bd:2e:d9:b1:bd:
                    9e:cb:53:ec:ea:a2:ab:ae:7d:cc:5c:4a:56:86:a0:
                    c5:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                12:B4:3C:AF:CE:17:93:8F:7A:7A:A7:CF:12:F8:B7:DF:0C:AE:C6:BE
            X509v3 Authority Key Identifier:
                keyid:63:DA:FE:7C:6D:07:2A:D7:58:B2:EA:A7:C6:54:C5:28:C8:DD:25:6B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/AA65778EA2BA3F645381CFB03A90993513067039B2404F9272E8401B13C62151/0/63DAFE7C6D072AD758B2EAA7C654C528C8DD256B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/63DAFE7C6D072AD758B2EAA7C654C528C8DD256B.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/AA65778EA2BA3F645381CFB03A90993513067039B2404F9272E8401B13C62151/0/3230302e302e36332e302f32342d3234203d3e20313938393439.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.0.63.0/24

    Signature Algorithm: sha256WithRSAEncryption
         73:71:02:ff:f3:6b:20:7a:8e:9e:f3:95:3d:89:31:e1:50:c1:
         b4:e9:4d:96:57:97:b5:01:45:3b:33:96:db:6b:66:0a:51:fa:
         2d:09:23:45:92:91:da:d3:5a:a9:fc:8b:56:11:64:c1:e5:d8:
         4e:7e:a6:1e:a6:2b:26:52:f6:e3:66:d5:2b:d5:71:bb:83:e9:
         43:87:eb:9f:5d:60:59:bc:63:bd:e8:fa:65:75:fc:88:8d:30:
         22:38:bb:18:93:3c:93:f2:af:71:38:a1:c3:74:00:2f:0b:74:
         25:23:24:cd:5b:75:fd:b2:bd:dc:fe:32:da:53:4f:40:8b:28:
         ce:be:10:5d:59:34:80:9d:30:a6:7a:4a:5f:6d:7c:26:90:a7:
         55:4e:55:d2:f1:40:87:9b:70:77:74:96:a8:e7:c1:2a:80:17:
         0a:60:00:96:ab:32:a0:af:d2:85:17:94:ef:f9:97:3c:4a:f7:
         9f:6f:3e:29:f2:9c:5a:ed:1a:f5:8b:eb:0f:b7:15:4f:85:68:
         9a:2f:4e:60:8e:cf:54:a4:68:40:3f:8b:b9:06:6e:7c:18:e8:
         49:77:78:37:58:46:7a:7c:0d:36:8a:49:ad:6a:ba:e5:b7:50:
         97:a2:95:93:ce:5b:dc:98:e6:7c:75:73:13:42:c1:1b:e8:6b:
         c3:dd:a5:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----