Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/a81b5dee-5dfe-43ea-80bf-5c3ff1ae3c55/2da76aabe83a681bc6c0a7ba4e5c7b0ed581be7f.roa
File:                     2da76aabe83a681bc6c0a7ba4e5c7b0ed581be7f.roa (raw, json)
Hash identifier:          EccIgTEGcHgSsoTNhVwb7DDOE/0shckVe0KgzCv0GQg=
Subject key identifier:   55:20:42:53:47:85:BE:8F:2D:CA:69:01:D6:A9:00:84:5A:94:3A:CF
Certificate issuer:       /CN=694b3d580e07f84edc87befe8b29d4e23ac87258
Certificate serial:       1F6209
Authority key identifier: 18:B1:57:82:A8:45:F8:32:C1:B4:30:C0:84:DC:A4:AF:2C:6C:E0:5A
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/694b3d580e07f84edc87befe8b29d4e23ac87258.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/a81b5dee-5dfe-43ea-80bf-5c3ff1ae3c55/2da76aabe83a681bc6c0a7ba4e5c7b0ed581be7f.roa
Signing time:             Tue 30 May 2023 04:13:43 +0000
ROA not before:           Mon 29 May 2023 04:13:42 +0000
ROA not after:            Fri 30 May 2025 04:13:42 +0000
asID:                     23470
IP address blocks:        45.170.244.0/22 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2056713 (0x1f6209)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=694b3d580e07f84edc87befe8b29d4e23ac87258
        Validity
            Not Before: May 29 04:13:42 2023 GMT
            Not After : May 30 04:13:42 2025 GMT
        Subject: CN=2da76aabe83a681bc6c0a7ba4e5c7b0ed581be7f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:82:85:65:4a:65:89:1e:e0:bc:09:91:ba:33:4e:
                    f1:31:1a:5b:90:08:cb:03:af:9f:60:ce:29:63:dc:
                    b1:18:75:24:dc:81:95:d3:54:43:93:e2:25:13:9d:
                    9e:60:e8:b2:23:b3:29:31:f1:57:02:97:3f:e6:7c:
                    da:4e:35:ed:f4:79:be:93:45:05:d5:e9:8b:d3:c4:
                    f9:e4:d2:aa:71:c6:53:33:91:98:27:40:b6:43:2b:
                    c7:25:7e:da:0d:4d:0b:c5:15:de:3a:78:f6:80:76:
                    7e:78:5a:68:47:42:79:8d:99:a3:fc:a9:f6:d9:59:
                    04:46:2f:3e:fe:16:8b:4d:a6:f2:05:2c:5a:d3:33:
                    87:81:4b:1e:fa:70:07:8f:d6:99:fd:fc:ed:3e:0c:
                    b9:21:0e:97:95:1b:d3:8c:d5:05:a5:a2:5f:10:8e:
                    5f:5b:f1:6c:5d:b1:69:1a:74:7c:94:9b:9c:63:44:
                    2e:73:78:55:e5:70:a1:bd:04:71:46:ae:28:94:f1:
                    95:45:02:25:94:ca:6a:5c:48:79:fb:ad:79:88:9b:
                    b1:ba:8c:3e:46:ba:37:75:df:d2:11:14:60:b3:6e:
                    37:e8:3e:9a:fe:ce:d3:c8:c9:9b:33:53:06:22:8e:
                    69:51:54:a3:15:d2:25:09:de:e8:f2:84:78:da:e5:
                    e8:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:20:42:53:47:85:BE:8F:2D:CA:69:01:D6:A9:00:84:5A:94:3A:CF
            X509v3 Authority Key Identifier:
                keyid:18:B1:57:82:A8:45:F8:32:C1:B4:30:C0:84:DC:A4:AF:2C:6C:E0:5A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/694b3d580e07f84edc87befe8b29d4e23ac87258.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/a81b5dee-5dfe-43ea-80bf-5c3ff1ae3c55/2da76aabe83a681bc6c0a7ba4e5c7b0ed581be7f.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/a81b5dee-5dfe-43ea-80bf-5c3ff1ae3c55/694b3d580e07f84edc87befe8b29d4e23ac87258.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.170.244.0/22

    Signature Algorithm: sha256WithRSAEncryption
         85:6d:d5:8c:12:e7:06:4e:88:b8:46:1d:62:18:c9:09:ab:73:
         9f:08:20:fb:d3:a0:40:d3:00:09:a0:72:66:14:41:e2:2c:f3:
         39:b6:8e:47:fd:a9:2e:3b:e2:45:da:aa:8c:84:25:b3:9d:b7:
         4b:c9:5e:ca:11:ae:5c:5a:a9:90:86:98:f0:26:39:c2:f5:99:
         0c:b8:d0:c5:ad:ce:75:f5:29:89:d7:96:56:c6:a5:e4:6c:3c:
         3f:5e:42:1c:23:da:eb:dc:95:a8:47:8d:bb:b8:3a:ba:97:3a:
         1a:4f:5f:34:ad:e7:34:74:c9:70:d0:31:4e:5d:ad:cd:3a:80:
         7f:c7:a7:2b:c9:23:40:fe:d1:b4:ce:b6:8c:f5:6a:61:05:e0:
         ac:d2:e7:b3:19:88:18:7c:0d:5d:f8:76:18:3e:45:f9:f7:8e:
         58:81:16:33:94:cb:99:3d:ba:ec:30:ea:35:5b:ee:e6:25:fd:
         c2:de:73:cf:ce:f3:61:95:0c:bb:68:4a:4c:2b:35:54:9c:2a:
         d1:f2:4a:df:0a:6a:bc:0c:c5:f3:c9:bb:66:d5:e0:a8:66:cb:
         e9:62:a1:7b:70:bb:c4:80:9d:39:a9:98:ae:ae:0a:fa:b0:a7:
         36:d6:a7:47:53:69:05:77:ff:2e:82:e8:cc:87:2a:04:62:32:
         ce:63:1d:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:21 2024 by rpki-client on console-ams.rpki-client.org