Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D0AA0A66C1C02D2F0667BDF6DAFDD67C2A813FEFBED6D0F463951A042884077C/0/34352e3137392e3136362e302f32342d3234203d3e20323639373330.roa
File:                     34352e3137392e3136362e302f32342d3234203d3e20323639373330.roa (raw, json)
Hash identifier:          moghk35gsEslB2qIx1wD374RlgKWvfUFN+3YQW/NrZk=
Subject key identifier:   5C:4B:43:5E:6D:04:D1:74:8A:C6:E9:E2:B3:26:EA:54:AA:EA:FA:52
Certificate issuer:       /CN=E5929BB59C0C723C97245BF0DCF866772F479B73
Certificate serial:       3D8A521027B5D99C6EAD9C8F69FD62F88138635E
Authority key identifier: E5:92:9B:B5:9C:0C:72:3C:97:24:5B:F0:DC:F8:66:77:2F:47:9B:73
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E5929BB59C0C723C97245BF0DCF866772F479B73.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/D0AA0A66C1C02D2F0667BDF6DAFDD67C2A813FEFBED6D0F463951A042884077C/0/34352e3137392e3136362e302f32342d3234203d3e20323639373330.roa
Signing time:             Thu 21 Nov 2024 21:35:00 +0000
ROA not before:           Thu 21 Nov 2024 21:30:00 +0000
ROA not after:            Thu 20 Nov 2025 21:35:00 +0000
asID:                     269730
IP address blocks:        45.179.166.0/24 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3d:8a:52:10:27:b5:d9:9c:6e:ad:9c:8f:69:fd:62:f8:81:38:63:5e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=E5929BB59C0C723C97245BF0DCF866772F479B73
        Validity
            Not Before: Nov 21 21:30:00 2024 GMT
            Not After : Nov 20 21:35:00 2025 GMT
        Subject: CN=5C4B435E6D04D1748AC6E9E2B326EA54AAEAFA52
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:b4:02:54:50:d3:40:63:4d:6d:7b:41:90:fa:
                    87:51:43:86:37:55:6f:a1:65:af:47:8e:cb:9b:86:
                    07:33:5f:fe:79:1f:d8:78:96:62:1c:bb:35:1b:5b:
                    13:01:d4:9f:2a:6f:98:ce:e2:37:97:07:98:75:77:
                    0a:60:0d:85:9d:f5:7f:67:8e:a9:dd:a1:f9:c0:28:
                    47:12:c2:9b:3b:2c:08:10:cd:9c:40:47:3e:53:82:
                    8d:c5:48:f1:72:77:dd:90:13:db:72:9d:d1:80:a0:
                    e0:27:36:6e:17:fd:6e:3d:75:36:c7:7f:38:e2:88:
                    b1:6e:91:53:b0:c4:6f:1a:40:53:5d:75:d3:d0:4e:
                    ef:a2:83:1c:e5:53:31:97:e2:af:15:07:ff:b5:4d:
                    29:9f:89:5b:6e:af:45:d6:44:c6:17:b5:5d:c2:7c:
                    28:a3:71:4a:f4:e2:c7:c5:cc:a1:84:d8:8a:7a:79:
                    f1:96:3b:6e:42:20:50:91:9e:99:bc:1c:66:50:60:
                    36:ac:d7:02:ea:15:ee:f9:2b:15:ab:de:c6:09:84:
                    3e:11:37:ca:85:08:29:59:e1:b2:fe:ee:b5:92:34:
                    a6:0b:10:a2:da:b8:5d:02:2c:9d:b5:6c:6d:d4:bc:
                    83:87:6a:f2:7c:cf:86:cf:40:3b:be:46:64:3e:37:
                    16:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5C:4B:43:5E:6D:04:D1:74:8A:C6:E9:E2:B3:26:EA:54:AA:EA:FA:52
            X509v3 Authority Key Identifier:
                keyid:E5:92:9B:B5:9C:0C:72:3C:97:24:5B:F0:DC:F8:66:77:2F:47:9B:73

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/D0AA0A66C1C02D2F0667BDF6DAFDD67C2A813FEFBED6D0F463951A042884077C/0/E5929BB59C0C723C97245BF0DCF866772F479B73.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E5929BB59C0C723C97245BF0DCF866772F479B73.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D0AA0A66C1C02D2F0667BDF6DAFDD67C2A813FEFBED6D0F463951A042884077C/0/34352e3137392e3136362e302f32342d3234203d3e20323639373330.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.179.166.0/24

    Signature Algorithm: sha256WithRSAEncryption
         a9:ed:31:0a:cb:22:f0:9e:ec:6b:20:ef:c2:29:c9:e6:02:9b:
         14:75:64:b5:69:32:a1:4c:de:1b:d6:f2:90:9a:dd:7d:18:ec:
         14:56:9d:56:79:5d:c3:41:5d:74:ed:e5:05:2a:ba:94:de:24:
         c7:46:8a:df:c1:c5:91:fc:d8:0d:1f:50:6e:2b:e4:c5:bc:e2:
         3a:ee:b8:aa:ed:a3:d2:bb:b9:af:c1:c2:41:08:38:21:fe:bb:
         01:34:8f:6f:a9:4e:21:68:4a:e3:14:ed:0c:94:8e:43:0b:57:
         c8:90:d2:c7:f3:78:1b:aa:52:d2:69:51:95:cd:b1:c1:8e:15:
         d0:2d:d3:71:2e:3d:24:93:ff:b8:b5:b2:29:95:9d:ab:20:04:
         a4:74:1a:49:3e:10:22:a9:61:8a:f0:1a:81:10:05:b1:db:c5:
         7d:b0:44:9d:1e:85:85:cd:16:34:44:ab:a0:50:5f:4f:17:92:
         39:26:67:b9:e7:e5:80:b2:40:18:d4:68:1e:24:2e:8f:5f:da:
         71:5c:77:e4:a3:35:64:3e:aa:4b:7a:ce:7d:30:1b:42:ad:9d:
         4c:7b:b6:00:c3:50:40:73:20:7c:1a:3e:b3:b6:81:64:6e:8f:
         e1:46:4b:d6:06:a9:d4:25:08:c5:fb:66:82:bc:d8:89:36:b3:
         22:4b:20:04
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUPYpSECe12ZxurZyPaf1i+IE4Y14wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRTU5MjlCQjU5QzBDNzIzQzk3MjQ1QkYwRENGODY2Nzcy
RjQ3OUI3MzAeFw0yNDExMjEyMTMwMDBaFw0yNTExMjAyMTM1MDBaMDMxMTAvBgNV
BAMTKDVDNEI0MzVFNkQwNEQxNzQ4QUM2RTlFMkIzMjZFQTU0QUFFQUZBNTIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPtAJUUNNAY01te0GQ+odRQ4Y3
VW+hZa9HjsubhgczX/55H9h4lmIcuzUbWxMB1J8qb5jO4jeXB5h1dwpgDYWd9X9n
jqndofnAKEcSwps7LAgQzZxARz5Tgo3FSPFyd92QE9tyndGAoOAnNm4X/W49dTbH
fzjiiLFukVOwxG8aQFNdddPQTu+igxzlUzGX4q8VB/+1TSmfiVtur0XWRMYXtV3C
fCijcUr04sfFzKGE2Ip6efGWO25CIFCRnpm8HGZQYDas1wLqFe75KxWr3sYJhD4R
N8qFCClZ4bL+7rWSNKYLEKLauF0CLJ21bG3UvIOHavJ8z4bPQDu+RmQ+NxbRAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUXEtDXm0E0XSKxunisybqVKrq+lIwHwYDVR0j
BBgwFoAU5ZKbtZwMcjyXJFvw3Phmdy9Hm3MwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9EMEFBMEE2NkMxQzAyRDJGMDY2N0JERjZEQUZERDY3QzJB
ODEzRkVGQkVENkQwRjQ2Mzk1MUEwNDI4ODQwNzdDLzAvRTU5MjlCQjU5QzBDNzIz
Qzk3MjQ1QkYwRENGODY2NzcyRjQ3OUI3My5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9FNTkyOUJCNTlDMEM3MjNDOTcy
NDVCRjBEQ0Y4NjY3NzJGNDc5QjczLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRDBBQTBBNjZDMUMwMkQyRjA2NjdCREY2REFGREQ2N0MyQTgxM0ZFRkJF
RDZEMEY0NjM5NTFBMDQyODg0MDc3Qy8wLzM0MzUyZTMxMzczOTJlMzEzNjM2MmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNjM5MzczMzMwLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALbOm
MA0GCSqGSIb3DQEBCwUAA4IBAQCp7TEKyyLwnuxrIO/CKcnmApsUdWS1aTKhTN4b
1vKQmt19GOwUVp1WeV3DQV107eUFKrqU3iTHRorfwcWR/NgNH1BuK+TFvOI67riq
7aPSu7mvwcJBCDgh/rsBNI9vqU4haErjFO0MlI5DC1fIkNLH83gbqlLSaVGVzbHB
jhXQLdNxLj0kk/+4tbIplZ2rIASkdBpJPhAiqWGK8BqBEAWx28V9sESdHoWFzRY0
RKugUF9PF5I5Jme55+WAskAY1GgeJC6PX9pxXHfkozVkPqpLes59MBtCrZ1Me7YA
w1BAcyB8Gj6ztoFkbo/hRkvWBqnUJQjF+2aCvNiJNrMiSyAE
-----END CERTIFICATE-----