Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/F9CFB607155053E5F25901BBA00C5AF4F13BA097205B636F130E944F136009F8/0/323830333a393632303a3a2f33322d3438203d3e20323635383635.roa
File:                     323830333a393632303a3a2f33322d3438203d3e20323635383635.roa (raw, json)
Hash identifier:          49cVJBm5pw0PEdZZXGWJ55VDvSH1KzAe/Xr2hCzEm3g=
Subject key identifier:   B6:B0:EF:C6:A9:B9:BB:16:53:A7:DD:65:A8:37:D8:9E:8B:C6:81:EB
Certificate issuer:       /CN=E3B0123AE4005218C7B0755D72FB3B2F6AD49825
Certificate serial:       7EB3CC96E1EC78275F5DB596DE73D9CD5F7E670F
Authority key identifier: E3:B0:12:3A:E4:00:52:18:C7:B0:75:5D:72:FB:3B:2F:6A:D4:98:25
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E3B0123AE4005218C7B0755D72FB3B2F6AD49825.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/F9CFB607155053E5F25901BBA00C5AF4F13BA097205B636F130E944F136009F8/0/323830333a393632303a3a2f33322d3438203d3e20323635383635.roa
Signing time:             Tue 04 Feb 2025 18:48:30 +0000
ROA not before:           Tue 04 Feb 2025 18:43:30 +0000
ROA not after:            Tue 03 Feb 2026 18:48:30 +0000
asID:                     265865
IP address blocks:        2803:9620::/32 maxlen: 48
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            7e:b3:cc:96:e1:ec:78:27:5f:5d:b5:96:de:73:d9:cd:5f:7e:67:0f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=E3B0123AE4005218C7B0755D72FB3B2F6AD49825
        Validity
            Not Before: Feb  4 18:43:30 2025 GMT
            Not After : Feb  3 18:48:30 2026 GMT
        Subject: CN=B6B0EFC6A9B9BB1653A7DD65A837D89E8BC681EB
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:99:64:0a:02:f6:42:24:ca:bb:3f:40:07:e1:2b:
                    99:3e:2f:24:c5:32:b1:6d:7a:b4:57:fd:2b:0c:0a:
                    7b:a9:e1:1b:d7:e5:a7:96:a6:59:74:20:49:b9:e7:
                    6c:97:07:cf:80:26:1e:79:52:a0:ef:fc:3e:12:1b:
                    3b:51:d4:63:cf:d2:43:99:1b:e0:75:9a:a8:64:f9:
                    e3:08:81:6b:bf:c7:fe:f7:19:88:08:01:c5:37:36:
                    4e:90:57:97:92:78:2a:ce:c4:3b:21:a1:68:f8:33:
                    db:fe:aa:0d:b6:e0:ed:f4:47:16:c1:87:ca:df:0c:
                    61:a3:cc:1f:82:0a:95:4b:8d:10:5d:f6:4b:89:d8:
                    32:8e:f0:08:40:e3:cb:07:fb:3f:87:1e:8a:26:d1:
                    d0:ab:f9:60:1d:c3:c9:d9:45:d3:1d:bb:d5:ae:b7:
                    d4:7f:dc:b2:65:35:2c:1a:cd:00:56:ae:29:f7:26:
                    c2:19:d5:a4:fe:8a:2f:22:42:94:11:76:f1:a7:32:
                    73:66:e1:52:1d:7c:68:50:a4:57:02:99:df:37:69:
                    91:fe:f0:2c:6b:50:a2:b0:e2:6d:29:cf:69:71:7b:
                    6e:ce:f1:4c:3f:ae:fb:d5:d2:23:c7:c2:d0:55:4e:
                    af:a0:67:d3:f8:d7:fa:b8:1f:99:27:5b:b0:39:db:
                    a7:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B6:B0:EF:C6:A9:B9:BB:16:53:A7:DD:65:A8:37:D8:9E:8B:C6:81:EB
            X509v3 Authority Key Identifier:
                keyid:E3:B0:12:3A:E4:00:52:18:C7:B0:75:5D:72:FB:3B:2F:6A:D4:98:25

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/F9CFB607155053E5F25901BBA00C5AF4F13BA097205B636F130E944F136009F8/0/E3B0123AE4005218C7B0755D72FB3B2F6AD49825.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/E3B0123AE4005218C7B0755D72FB3B2F6AD49825.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/F9CFB607155053E5F25901BBA00C5AF4F13BA097205B636F130E944F136009F8/0/323830333a393632303a3a2f33322d3438203d3e20323635383635.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2803:9620::/32

    Signature Algorithm: sha256WithRSAEncryption
         79:f4:d5:97:93:d7:4b:6d:ff:74:a2:4d:5f:5a:de:e0:bb:8f:
         ab:b3:db:32:ba:3e:36:b9:62:40:84:fd:c5:95:35:d0:32:3b:
         10:c1:0b:e6:83:cb:b8:86:bf:cc:1e:ab:33:fd:e9:be:14:fc:
         e8:fe:f5:60:88:52:76:e4:e2:3d:3c:c1:9a:7c:a4:eb:23:8d:
         8e:42:33:d4:a1:fa:98:8b:a6:35:0c:dd:99:c2:ef:ef:21:b3:
         66:85:47:cb:61:9d:54:d5:33:bc:f3:79:39:16:cc:b9:cb:46:
         95:a2:81:bb:95:07:47:1b:2a:a5:b5:5b:53:92:84:77:b3:5a:
         4c:16:3e:34:10:e3:e8:ba:e7:6e:31:31:f1:38:c6:63:cb:53:
         b2:47:87:34:d0:3b:d7:8d:1e:95:12:5e:9b:05:b0:84:ee:39:
         1c:66:b8:cb:75:c3:a7:6a:12:e2:6e:cb:37:92:63:9b:2a:c9:
         d6:12:00:b4:a1:6d:45:c1:de:44:5d:35:a7:48:1e:93:64:50:
         60:f8:72:f9:0a:46:4a:bd:02:15:3b:34:a9:c2:14:6b:1b:c2:
         26:4c:14:f8:7d:53:de:59:7f:36:91:81:ad:8f:1f:d5:e4:68:
         9e:8c:7d:4a:eb:1a:69:a7:17:a4:6b:8e:a5:ba:33:f1:f2:02:
         b8:ef:c7:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----