Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D16AB8CBEB4CB52CDA2A5B208DC3CC7D88479D4727435293B7D3900CDA2D698A/0/3136342e37372e3231392e302f32342d3234203d3e2036343731.roa
File:                     3136342e37372e3231392e302f32342d3234203d3e2036343731.roa (raw, json)
Hash identifier:          CPInug4Az7oJ3cmhqOwm61KV5nA6CeH2xsJQnnYaaxA=
Subject key identifier:   0B:DA:70:55:B4:3F:4F:3E:6F:13:D9:16:0B:5C:13:9F:2A:7A:A9:0B
Certificate issuer:       /CN=2652C1433114197317FCA49E051F361760D69E0E
Certificate serial:       6CF4940F5F4C656DCC27DF8514D2F9AC878D537F
Authority key identifier: 26:52:C1:43:31:14:19:73:17:FC:A4:9E:05:1F:36:17:60:D6:9E:0E
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2652C1433114197317FCA49E051F361760D69E0E.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/D16AB8CBEB4CB52CDA2A5B208DC3CC7D88479D4727435293B7D3900CDA2D698A/0/3136342e37372e3231392e302f32342d3234203d3e2036343731.roa
Signing time:             Tue 04 Feb 2025 20:00:42 +0000
ROA not before:           Tue 04 Feb 2025 19:55:42 +0000
ROA not after:            Tue 03 Feb 2026 20:00:42 +0000
asID:                     6471
IP address blocks:        164.77.219.0/24 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6c:f4:94:0f:5f:4c:65:6d:cc:27:df:85:14:d2:f9:ac:87:8d:53:7f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2652C1433114197317FCA49E051F361760D69E0E
        Validity
            Not Before: Feb  4 19:55:42 2025 GMT
            Not After : Feb  3 20:00:42 2026 GMT
        Subject: CN=0BDA7055B43F4F3E6F13D9160B5C139F2A7AA90B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:c3:44:6c:5c:35:76:aa:41:1c:34:91:31:5d:
                    9d:5e:be:57:86:a1:2f:4a:80:17:46:1e:af:81:e8:
                    b6:62:63:5d:71:1d:5d:54:32:a4:72:61:68:e5:6b:
                    7b:1a:b3:32:7b:47:cb:88:2a:61:6a:6c:99:1f:0d:
                    80:67:ea:3a:e2:6c:8e:e9:2a:d8:b0:1e:ae:30:73:
                    1c:d6:a8:f7:3b:25:c3:f9:96:5c:a5:4a:0d:16:af:
                    3b:46:2d:e0:7f:86:94:3d:69:9c:2c:af:05:e1:f5:
                    9d:f5:d4:b7:d8:6f:c1:5c:3f:ba:5e:94:20:86:99:
                    2f:bb:48:7b:48:57:00:8a:f0:45:fe:d4:f8:46:74:
                    9c:46:aa:c1:4e:3d:91:b5:d9:60:72:07:2d:db:d8:
                    bd:16:6d:b4:1a:bc:ab:af:36:86:8a:fe:c5:4f:c7:
                    d8:0b:de:d3:a9:aa:8f:78:7d:18:d2:13:fd:cd:29:
                    4a:d7:0e:cb:53:ef:4c:04:41:af:87:eb:1b:55:9e:
                    6d:e4:07:98:bd:ce:5a:dd:09:7b:6f:59:21:7e:dd:
                    c3:54:80:e5:92:e1:df:a8:cb:d2:cd:4a:2d:2f:da:
                    ef:09:da:46:42:49:b4:07:53:ec:6d:2c:ce:77:32:
                    d3:15:da:97:89:d3:1d:e4:9c:da:83:77:aa:60:cc:
                    a1:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:DA:70:55:B4:3F:4F:3E:6F:13:D9:16:0B:5C:13:9F:2A:7A:A9:0B
            X509v3 Authority Key Identifier:
                keyid:26:52:C1:43:31:14:19:73:17:FC:A4:9E:05:1F:36:17:60:D6:9E:0E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/D16AB8CBEB4CB52CDA2A5B208DC3CC7D88479D4727435293B7D3900CDA2D698A/0/2652C1433114197317FCA49E051F361760D69E0E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2652C1433114197317FCA49E051F361760D69E0E.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D16AB8CBEB4CB52CDA2A5B208DC3CC7D88479D4727435293B7D3900CDA2D698A/0/3136342e37372e3231392e302f32342d3234203d3e2036343731.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  164.77.219.0/24

    Signature Algorithm: sha256WithRSAEncryption
         5e:16:af:63:71:df:7b:85:dd:ff:73:63:89:90:2a:27:33:e0:
         5d:55:24:cd:d6:4d:94:7f:21:4e:04:4d:a3:36:a5:c3:5b:33:
         de:d2:96:24:56:fc:43:c9:8d:cc:ac:b0:bb:e0:72:73:89:df:
         27:96:d1:94:7d:3f:dc:c4:f1:fb:e5:76:0c:86:82:92:81:04:
         4a:bb:38:62:57:2c:c3:50:b9:dd:b2:b8:b1:51:9b:a4:90:99:
         94:76:1f:7b:43:81:18:bd:56:9b:16:13:9a:cf:3a:24:5e:d1:
         fc:b8:74:54:ff:32:b2:0e:ae:59:f5:95:b8:43:4a:29:cb:e0:
         d1:ae:d8:28:76:d4:a9:61:e5:c7:d6:b6:00:b5:06:bc:d3:f6:
         72:e8:07:b0:47:58:9c:1c:d5:65:0c:56:34:d7:8c:91:bb:31:
         e6:c7:68:20:43:07:72:75:89:00:61:6a:59:0e:88:a2:26:b9:
         a1:8e:8d:7b:da:0e:06:a7:67:02:1c:84:43:86:41:04:53:23:
         58:df:6a:1a:6e:95:62:38:e9:3c:80:c9:46:bd:cb:f0:16:04:
         25:2d:e4:4d:e1:47:32:66:6b:70:57:4f:26:ff:82:7d:ce:72:
         3a:28:7a:6c:07:d9:6a:36:44:18:1b:73:99:a6:54:08:71:b9:
         fc:32:67:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----