Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/D7D1071851A2EC52643626AC3F1ABC06856DAD250E042B168973C0DCA24E1F83/0/3230302e32392e3234342e302f32342d3234203d3e20323633313734.roa
File:                     3230302e32392e3234342e302f32342d3234203d3e20323633313734.roa (raw, json)
Hash identifier:          /0COts85pHdZD8Z+CNFSm/EdkfAmprTP6KXBQdm/jls=
Subject key identifier:   65:10:99:0A:F1:61:7D:F3:D0:17:76:7A:20:96:8F:FC:16:30:F4:35
Certificate issuer:       /CN=93D793A7CDD1DE38D2F45E5E408622B95ABFFF8B
Certificate serial:       10808BDAE8C7672F541F902EE87B09B226E3F83E
Authority key identifier: 93:D7:93:A7:CD:D1:DE:38:D2:F4:5E:5E:40:86:22:B9:5A:BF:FF:8B
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/93D793A7CDD1DE38D2F45E5E408622B95ABFFF8B.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/D7D1071851A2EC52643626AC3F1ABC06856DAD250E042B168973C0DCA24E1F83/0/3230302e32392e3234342e302f32342d3234203d3e20323633313734.roa
Signing time:             Tue 04 Feb 2025 18:50:00 +0000
ROA not before:           Tue 04 Feb 2025 18:45:00 +0000
ROA not after:            Tue 03 Feb 2026 18:50:00 +0000
asID:                     263174
IP address blocks:        200.29.244.0/24 maxlen: 24
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            10:80:8b:da:e8:c7:67:2f:54:1f:90:2e:e8:7b:09:b2:26:e3:f8:3e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=93D793A7CDD1DE38D2F45E5E408622B95ABFFF8B
        Validity
            Not Before: Feb  4 18:45:00 2025 GMT
            Not After : Feb  3 18:50:00 2026 GMT
        Subject: CN=6510990AF1617DF3D017767A20968FFC1630F435
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:c0:88:aa:75:09:2c:21:69:12:7b:78:62:09:
                    7e:1b:a7:ef:57:b5:8e:e2:05:ca:58:83:e5:61:28:
                    85:34:2b:52:01:f7:f6:6e:26:ba:27:7b:3d:36:e4:
                    20:9b:ee:4f:87:6c:01:65:23:c1:e8:0a:7b:6f:a9:
                    0a:1f:19:0f:d9:ee:c4:f6:3e:2e:dd:55:f4:a8:4f:
                    7a:4e:05:d7:b3:de:83:64:9f:1d:e3:50:f8:be:3f:
                    b0:e6:71:3b:01:4e:db:7e:b9:3d:c5:dc:7c:b7:15:
                    4f:e3:78:2f:a5:8a:cf:21:2c:2b:88:ac:43:65:8b:
                    68:d4:82:2d:e8:6c:e7:a2:ff:9a:7c:2f:05:ce:73:
                    92:bf:3e:79:83:65:96:56:af:26:13:ec:e6:ff:34:
                    b5:30:76:aa:fe:da:ea:f8:ac:e5:d5:44:14:48:0e:
                    b5:55:b5:47:7c:98:51:b9:f5:0f:a5:9e:9e:56:ea:
                    4d:ed:55:18:ac:cc:3f:f4:4d:b1:72:f6:e6:4a:cb:
                    47:ea:61:8c:da:03:02:3f:c0:45:0b:74:4c:6d:61:
                    ad:91:25:78:ab:fa:85:33:62:02:34:18:c0:b6:3b:
                    7d:2e:0d:e6:f9:2c:57:cc:e1:fc:e7:93:5e:b9:6f:
                    3f:61:11:35:30:73:59:ef:be:d4:e6:62:ed:c2:f3:
                    74:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                65:10:99:0A:F1:61:7D:F3:D0:17:76:7A:20:96:8F:FC:16:30:F4:35
            X509v3 Authority Key Identifier:
                keyid:93:D7:93:A7:CD:D1:DE:38:D2:F4:5E:5E:40:86:22:B9:5A:BF:FF:8B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/D7D1071851A2EC52643626AC3F1ABC06856DAD250E042B168973C0DCA24E1F83/0/93D793A7CDD1DE38D2F45E5E408622B95ABFFF8B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/93D793A7CDD1DE38D2F45E5E408622B95ABFFF8B.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/D7D1071851A2EC52643626AC3F1ABC06856DAD250E042B168973C0DCA24E1F83/0/3230302e32392e3234342e302f32342d3234203d3e20323633313734.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.29.244.0/24

    Signature Algorithm: sha256WithRSAEncryption
         8a:47:52:b1:76:01:c0:d5:9e:0d:af:d6:a3:ee:cd:0c:14:4e:
         d2:ce:40:e6:93:eb:aa:a3:aa:b8:40:38:1c:9a:ae:73:5c:2b:
         c3:cb:69:d0:e3:87:b5:a4:03:e0:b3:1e:b6:1b:89:76:99:13:
         6f:fb:e4:01:15:7c:58:61:50:fd:12:fe:6a:a2:7d:0e:b7:74:
         32:73:39:b1:f5:d1:b3:79:ff:e7:83:59:61:22:24:63:d3:a4:
         54:e5:fe:c5:f1:26:ba:8a:76:ac:f1:77:f3:e7:3c:e7:ea:e8:
         c5:93:15:2c:54:73:51:21:0d:b5:b0:9b:6c:f3:ec:e4:0e:ca:
         12:fd:c3:fa:93:9a:0f:45:2b:91:58:20:ae:6f:b5:b2:ce:6b:
         4b:78:7f:77:6f:49:af:ac:ab:7d:76:22:fe:db:0a:50:32:ae:
         96:b6:e6:5f:7e:c9:81:34:f4:a2:b9:bc:47:74:fe:45:1e:57:
         3b:92:87:42:5b:3b:03:33:36:28:db:01:31:17:67:c5:13:e6:
         55:8a:8d:86:c1:c7:fb:62:6e:09:3b:36:a6:b3:24:6b:60:ca:
         c0:28:2f:6b:37:43:b3:4f:bb:c4:af:73:f0:09:81:5d:2e:d7:
         1d:a9:08:97:f2:61:01:54:71:25:ea:89:f6:82:86:4f:55:36:
         ea:a4:f6:c7
-----BEGIN CERTIFICATE-----
MIIFwDCCBKigAwIBAgIUEICL2ujHZy9UH5Au6HsJsibj+D4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOTNENzkzQTdDREQxREUzOEQyRjQ1RTVFNDA4NjIyQjk1
QUJGRkY4QjAeFw0yNTAyMDQxODQ1MDBaFw0yNjAyMDMxODUwMDBaMDMxMTAvBgNV
BAMTKDY1MTA5OTBBRjE2MTdERjNEMDE3NzY3QTIwOTY4RkZDMTYzMEY0MzUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCywIiqdQksIWkSe3hiCX4bp+9X
tY7iBcpYg+VhKIU0K1IB9/ZuJronez025CCb7k+HbAFlI8HoCntvqQofGQ/Z7sT2
Pi7dVfSoT3pOBdez3oNknx3jUPi+P7DmcTsBTtt+uT3F3Hy3FU/jeC+lis8hLCuI
rENli2jUgi3obOei/5p8LwXOc5K/PnmDZZZWryYT7Ob/NLUwdqr+2ur4rOXVRBRI
DrVVtUd8mFG59Q+lnp5W6k3tVRiszD/0TbFy9uZKy0fqYYzaAwI/wEULdExtYa2R
JXir+oUzYgI0GMC2O30uDeb5LFfM4fznk165bz9hETUwc1nvvtTmYu3C83QnAgMB
AAGjggLKMIICxjAdBgNVHQ4EFgQUZRCZCvFhffPQF3Z6IJaP/BYw9DUwHwYDVR0j
BBgwFoAUk9eTp83R3jjS9F5eQIYiuVq//4swDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy9EN0QxMDcxODUxQTJFQzUyNjQzNjI2QUMzRjFBQkMwNjg1
NkRBRDI1MEUwNDJCMTY4OTczQzBEQ0EyNEUxRjgzLzAvOTNENzkzQTdDREQxREUz
OEQyRjQ1RTVFNDA4NjIyQjk1QUJGRkY4Qi5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC85M0Q3OTNBN0NERDFERTM4RDJG
NDVFNUU0MDg2MjJCOTVBQkZGRjhCLmNlcjCByQYIKwYBBQUHAQsEgbwwgbkwgbYG
CCsGAQUFBzALhoGpcnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvRDdEMTA3MTg1MUEyRUM1MjY0MzYyNkFDM0YxQUJDMDY4NTZEQUQyNTBF
MDQyQjE2ODk3M0MwRENBMjRFMUY4My8wLzMyMzAzMDJlMzIzOTJlMzIzNDM0MmUz
MDJmMzIzNDJkMzIzNDIwM2QzZTIwMzIzNjMzMzEzNzM0LnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAyB30
MA0GCSqGSIb3DQEBCwUAA4IBAQCKR1KxdgHA1Z4Nr9aj7s0MFE7SzkDmk+uqo6q4
QDgcmq5zXCvDy2nQ44e1pAPgsx62G4l2mRNv++QBFXxYYVD9Ev5qon0Ot3Qyczmx
9dGzef/ng1lhIiRj06RU5f7F8Sa6inas8Xfz5zzn6ujFkxUsVHNRIQ21sJts8+zk
DsoS/cP6k5oPRSuRWCCub7WyzmtLeH93b0mvrKt9diL+2wpQMq6WtuZffsmBNPSi
ubxHdP5FHlc7kodCWzsDMzYo2wExF2fFE+ZVio2Gwcf7Ym4JOzamsyRrYMrAKC9r
N0OzT7vEr3PwCYFdLtcdqQiX8mEBVHEl6on2goZPVTbqpPbH
-----END CERTIFICATE-----