Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D233B807710758B592DE153A98CC3B3CE031BE2875C996CD8F7E46E3526AAF20/0/323830333a313138303a333a3a2f34382d3438203d3e20323633323432.roa
File:                     323830333a313138303a333a3a2f34382d3438203d3e20323633323432.roa (raw, json)
Hash identifier:          TMlDNyA4WFf/qhdxrsKI8hf+O8TrtxlpGarz+n7IioM=
Subject key identifier:   97:2D:5E:9B:6B:28:82:22:A4:F3:5B:5E:D7:58:CB:63:D1:09:99:E0
Certificate issuer:       /CN=F84C64765934CC9A2CE97A1150E058489F19D535
Certificate serial:       67EE4D712CC9D16ABD63F0D6DAA956D2E96E4540
Authority key identifier: F8:4C:64:76:59:34:CC:9A:2C:E9:7A:11:50:E0:58:48:9F:19:D5:35
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F84C64765934CC9A2CE97A1150E058489F19D535.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/D233B807710758B592DE153A98CC3B3CE031BE2875C996CD8F7E46E3526AAF20/0/323830333a313138303a333a3a2f34382d3438203d3e20323633323432.roa
Signing time:             Fri 10 May 2024 15:35:00 +0000
ROA not before:           Fri 10 May 2024 15:30:00 +0000
ROA not after:            Fri 09 May 2025 15:35:00 +0000
asID:                     263242
IP address blocks:        2803:1180:3::/48 maxlen: 48
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            67:ee:4d:71:2c:c9:d1:6a:bd:63:f0:d6:da:a9:56:d2:e9:6e:45:40
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F84C64765934CC9A2CE97A1150E058489F19D535
        Validity
            Not Before: May 10 15:30:00 2024 GMT
            Not After : May  9 15:35:00 2025 GMT
        Subject: CN=972D5E9B6B288222A4F35B5ED758CB63D10999E0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e8:a3:5b:e7:b8:96:40:de:14:41:7f:8d:b3:6f:
                    64:ba:50:73:69:7a:71:11:78:cc:28:14:40:d6:4b:
                    94:05:ac:54:af:4d:7d:ec:33:a3:95:aa:8e:3b:41:
                    7b:0d:8a:eb:99:9b:0f:e9:77:66:89:c2:25:aa:c0:
                    46:96:4e:67:33:89:d7:c1:7e:f5:f4:26:b1:a6:06:
                    f9:73:77:c4:24:0d:47:41:25:98:ea:49:0f:bf:b6:
                    b0:46:0f:4a:ba:e0:ec:c3:6f:31:b6:96:f0:f0:d3:
                    65:ec:8e:32:4b:3e:e6:1e:7a:4d:f1:07:99:45:69:
                    fc:ea:7a:9f:1d:2c:2c:ea:09:cf:13:01:09:c8:35:
                    0a:de:d2:76:f4:ab:07:db:35:f6:a6:6e:80:45:7e:
                    e5:67:8d:b2:db:9d:8b:58:ec:51:5b:95:2e:b7:23:
                    a3:17:d0:75:0e:df:01:36:de:82:61:cc:10:1b:18:
                    e0:1c:8c:33:a8:ba:73:f6:b1:93:d5:84:e2:87:0a:
                    8b:fa:6b:7c:13:1d:7c:d2:0b:61:13:b5:c2:87:79:
                    a5:fe:fa:ac:53:55:d1:19:81:55:1b:e9:c0:a6:f6:
                    e3:37:11:f0:f2:c2:bf:d6:a9:bc:75:c9:f6:de:ec:
                    e2:7f:1c:d4:f7:ec:af:f5:c7:4d:ce:5a:6d:b3:f8:
                    9a:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                97:2D:5E:9B:6B:28:82:22:A4:F3:5B:5E:D7:58:CB:63:D1:09:99:E0
            X509v3 Authority Key Identifier:
                keyid:F8:4C:64:76:59:34:CC:9A:2C:E9:7A:11:50:E0:58:48:9F:19:D5:35

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/D233B807710758B592DE153A98CC3B3CE031BE2875C996CD8F7E46E3526AAF20/0/F84C64765934CC9A2CE97A1150E058489F19D535.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/F84C64765934CC9A2CE97A1150E058489F19D535.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D233B807710758B592DE153A98CC3B3CE031BE2875C996CD8F7E46E3526AAF20/0/323830333a313138303a333a3a2f34382d3438203d3e20323633323432.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:1180:3::/48

    Signature Algorithm: sha256WithRSAEncryption
         b3:1d:a8:ea:ae:44:a5:1d:78:f9:1b:30:88:42:26:13:37:82:
         4e:6f:9b:68:ab:23:32:ab:55:d9:06:ea:af:af:2b:5b:d2:7a:
         94:77:17:8a:ae:ee:1a:0d:80:de:19:b6:08:5a:99:a5:9d:c9:
         5b:6c:bf:5a:58:db:57:7b:21:92:35:80:35:d2:fb:c2:5e:60:
         93:fa:92:93:8f:54:62:1d:fe:2e:a0:7a:21:da:63:ad:40:a9:
         f4:58:93:d4:e7:f9:a2:b8:bd:80:2a:47:43:26:d8:5b:53:81:
         ca:6b:12:2c:2e:d2:d4:f9:74:c1:70:c5:46:fc:cf:29:71:bc:
         f2:f8:3b:97:e0:22:ee:5b:e0:ec:3e:eb:7f:ef:2c:92:f7:e4:
         03:f5:ff:87:4a:92:17:5b:a0:e5:46:83:b2:61:50:69:81:b9:
         80:39:f0:9b:41:cc:a5:96:42:7d:ff:47:1e:6c:cf:98:d5:fd:
         18:46:6d:24:5c:ce:06:77:21:01:d2:5e:eb:c0:ef:a4:ce:34:
         8c:22:1d:74:a8:dc:7e:89:53:db:8e:34:1c:01:f2:39:69:95:
         bb:d8:1c:eb:c2:ba:c2:79:c2:b4:de:7f:26:a6:bf:3f:fc:ce:
         01:2b:15:6b:d4:58:37:70:ab:53:67:3f:b6:28:2e:91:92:62:
         44:31:2f:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----