Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E13E9225FDF9382AD173E4C63A669128E68B1145A8E04CA3B14BD5D427D13FC0/0/323830333a6636303a3a2f34302d3430203d3e20323639383332.roa
File:                     323830333a6636303a3a2f34302d3430203d3e20323639383332.roa (raw, json)
Hash identifier:          hKBUdZIBSaSc+FSZO7wPhldYLi7xgR3b6mx1inIKTGQ=
Subject key identifier:   2A:CB:54:B5:41:4D:84:2A:85:BC:30:18:E2:E6:A5:61:B1:24:F1:91
Certificate issuer:       /CN=AF7A463B07CEB857877708A3350E33F01C46B579
Certificate serial:       2D195A563CBE6862E48EFDE26F52B69DBBEA2943
Authority key identifier: AF:7A:46:3B:07:CE:B8:57:87:77:08:A3:35:0E:33:F0:1C:46:B5:79
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AF7A463B07CEB857877708A3350E33F01C46B579.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/E13E9225FDF9382AD173E4C63A669128E68B1145A8E04CA3B14BD5D427D13FC0/0/323830333a6636303a3a2f34302d3430203d3e20323639383332.roa
Signing time:             Tue 05 Mar 2024 17:57:33 +0000
ROA not before:           Tue 05 Mar 2024 17:52:33 +0000
ROA not after:            Tue 04 Mar 2025 17:57:33 +0000
asID:                     269832
IP address blocks:        2803:f60::/40 maxlen: 40

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2d:19:5a:56:3c:be:68:62:e4:8e:fd:e2:6f:52:b6:9d:bb:ea:29:43
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=AF7A463B07CEB857877708A3350E33F01C46B579
        Validity
            Not Before: Mar  5 17:52:33 2024 GMT
            Not After : Mar  4 17:57:33 2025 GMT
        Subject: CN=2ACB54B5414D842A85BC3018E2E6A561B124F191
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:d7:82:52:f2:63:b3:48:9c:9a:c5:4c:5e:e8:
                    83:cf:81:b0:40:e9:11:ae:42:69:f8:a9:f3:04:dd:
                    ef:09:65:48:f4:a6:a6:69:eb:2c:e8:53:f6:b0:0a:
                    65:5a:f3:41:af:e5:17:c2:1d:49:97:f3:af:1c:c2:
                    1c:95:5a:f6:2c:59:de:4b:bd:97:00:a9:5d:80:cb:
                    b8:21:c0:ed:4a:26:df:a9:4e:66:5c:fa:0b:f3:1b:
                    a2:5c:52:c0:58:6f:df:5f:30:f8:88:eb:d1:23:a0:
                    01:ed:cc:3b:1b:a3:c9:43:cf:e9:2b:16:94:de:d8:
                    05:c9:36:ad:cd:de:68:e7:5a:2c:92:ab:61:38:22:
                    52:e9:e6:7b:de:c5:76:7a:f2:12:5d:9d:17:a7:1c:
                    c2:3f:94:78:26:11:a5:2e:11:f8:e5:36:33:e9:26:
                    98:ac:ad:e0:c3:bb:e0:ad:72:7f:d4:75:27:54:d0:
                    91:eb:df:bb:de:63:b7:c1:2d:83:db:5b:0c:25:15:
                    39:67:48:e2:f8:e2:64:ba:6a:54:17:a2:4a:b0:91:
                    a5:37:9c:93:4d:f1:71:35:00:5a:93:cc:d6:35:a5:
                    03:f9:f3:69:a8:5f:2f:65:83:c5:f8:e7:3f:18:25:
                    7d:ae:c0:11:07:53:81:24:6b:c6:97:47:34:3a:65:
                    58:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2A:CB:54:B5:41:4D:84:2A:85:BC:30:18:E2:E6:A5:61:B1:24:F1:91
            X509v3 Authority Key Identifier:
                keyid:AF:7A:46:3B:07:CE:B8:57:87:77:08:A3:35:0E:33:F0:1C:46:B5:79

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/E13E9225FDF9382AD173E4C63A669128E68B1145A8E04CA3B14BD5D427D13FC0/0/AF7A463B07CEB857877708A3350E33F01C46B579.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/AF7A463B07CEB857877708A3350E33F01C46B579.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E13E9225FDF9382AD173E4C63A669128E68B1145A8E04CA3B14BD5D427D13FC0/0/323830333a6636303a3a2f34302d3430203d3e20323639383332.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:f60::/40

    Signature Algorithm: sha256WithRSAEncryption
         34:1e:eb:a8:e3:c1:51:2c:bb:93:12:ab:0c:11:db:2d:df:34:
         b1:7c:41:9f:db:74:df:ee:bc:0d:7b:6a:b6:87:c6:94:98:f5:
         a4:a2:a7:4f:cb:6e:ad:5a:32:59:21:c6:3a:3c:9a:95:06:3c:
         e7:e7:bc:08:52:8e:5c:c8:44:cb:3f:42:f9:74:d2:bb:b7:b4:
         2f:a4:47:1b:7a:ae:9c:19:73:17:9b:ac:9d:53:7f:e6:97:3b:
         b4:6f:73:20:89:f1:a4:8e:1e:88:86:41:2f:03:a7:0a:d6:11:
         4f:2f:b3:8c:36:87:dc:93:cf:8b:31:68:84:f0:5b:b4:f6:97:
         ee:d7:8e:26:fb:84:da:89:72:35:84:e7:0c:d5:c4:bc:8c:0f:
         d7:a8:ba:79:44:6a:32:35:33:7b:1c:76:7f:99:e4:50:08:70:
         8a:5e:68:b5:f0:96:1e:4b:a2:f0:3b:13:fd:40:20:44:4d:d7:
         fb:ed:16:cc:d1:ac:1e:58:2b:33:d0:f5:8e:a8:b3:80:f1:9f:
         f5:46:0e:d0:04:6e:b9:db:58:61:9f:1f:a8:e5:1a:55:a1:3b:
         74:be:1d:9b:f9:83:98:4f:6b:44:82:ca:3c:c3:a6:77:e1:6c:
         46:2a:d7:67:bb:3d:6d:a5:9d:47:09:98:45:08:e0:12:10:68:
         5b:28:da:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 15 19:31:56 2024 by rpki-client on console-ams.rpki-client.org