Route Origin Authorization

$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/b71230ce-a950-4a0b-b8cd-0f4cd8eb3219/51db2118719677a7ff7c9870bfe0f29f11d732fa.roa
File:                     51db2118719677a7ff7c9870bfe0f29f11d732fa.roa (raw, json)
Hash identifier:          tAO+7w+NXGfZOE+qme1z/sUY2eqxvopCtibKraYFbpA=
Subject key identifier:   15:78:44:31:06:96:EA:CA:4A:74:20:45:C8:D0:2B:9C:34:CF:BD:BE
Certificate issuer:       /CN=d407c72537519f11553c7ee9eb83baa042334380
Certificate serial:       176454
Authority key identifier: 44:BD:8F:E3:EF:F8:DC:07:25:9C:DF:BE:27:D0:8C:8B:E5:E5:47:DB
Authority info access:    rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d407c72537519f11553c7ee9eb83baa042334380.cer
Subject info access:      rsync://repository.lacnic.net/rpki/lacnic/b71230ce-a950-4a0b-b8cd-0f4cd8eb3219/51db2118719677a7ff7c9870bfe0f29f11d732fa.roa
Signing time:             Sun 11 Feb 2024 12:56:46 +0000
ROA not before:           Sun 11 Feb 2024 12:56:46 +0000
ROA not after:            Wed 11 Feb 2026 12:56:46 +0000
asID:                     396982
IP address blocks:        200.26.191.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1533012 (0x176454)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d407c72537519f11553c7ee9eb83baa042334380
        Validity
            Not Before: Feb 11 12:56:46 2024 GMT
            Not After : Feb 11 12:56:46 2026 GMT
        Subject: CN=51db2118719677a7ff7c9870bfe0f29f11d732fa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8f:88:dd:ce:4f:03:b9:67:12:7d:ac:97:55:1d:
                    6e:9d:9a:ea:d2:ba:7e:2e:b2:f0:ad:27:09:9f:bc:
                    6a:a7:01:85:92:45:5e:54:99:e2:c6:78:8c:6f:7a:
                    33:63:23:36:50:8b:5f:87:dc:27:07:f3:be:7c:b8:
                    72:ce:c8:96:5e:ff:17:cb:34:fe:4b:f9:6a:06:0d:
                    9d:dd:a1:bf:23:dd:a6:5d:aa:59:6a:38:30:b6:c3:
                    3f:e7:ad:43:9a:e2:fb:17:ed:4f:d6:cf:ed:c7:68:
                    3e:d3:4b:d0:dd:84:2a:2c:08:18:51:cd:e9:80:97:
                    36:b1:ad:31:58:19:03:40:79:cf:2e:61:b3:a7:e7:
                    cd:88:5f:41:11:d3:5e:42:1a:1d:f2:db:f3:a0:0c:
                    b9:59:0e:59:c3:1a:58:51:d7:65:8a:18:3b:ca:14:
                    64:a0:3b:5a:9a:75:8c:b4:a1:fc:91:33:3a:c7:df:
                    bc:d7:aa:01:cd:1a:48:19:21:3a:11:8c:d6:b2:2b:
                    f8:64:b3:29:53:38:bb:5f:5c:c2:4e:e5:95:a6:39:
                    c8:b9:33:bb:04:29:44:ff:fb:78:b1:d0:14:b9:e2:
                    86:5b:da:ee:da:3b:33:2d:1d:96:91:65:51:ff:66:
                    09:a9:55:2a:8a:1a:28:c7:ec:eb:83:90:37:d3:64:
                    9d:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                15:78:44:31:06:96:EA:CA:4A:74:20:45:C8:D0:2B:9C:34:CF:BD:BE
            X509v3 Authority Key Identifier:
                keyid:44:BD:8F:E3:EF:F8:DC:07:25:9C:DF:BE:27:D0:8C:8B:E5:E5:47:DB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d407c72537519f11553c7ee9eb83baa042334380.cer

            Subject Information Access:
                Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/b71230ce-a950-4a0b-b8cd-0f4cd8eb3219/51db2118719677a7ff7c9870bfe0f29f11d732fa.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repository.lacnic.net/rpki/lacnic/b71230ce-a950-4a0b-b8cd-0f4cd8eb3219/d407c72537519f11553c7ee9eb83baa042334380.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  200.26.191.0/24

    Signature Algorithm: sha256WithRSAEncryption
         2f:73:38:40:08:71:d3:9a:da:38:43:62:9a:5d:01:eb:57:5f:
         53:c2:a5:44:36:69:bb:c0:6b:f9:2b:d0:95:b0:1d:57:f6:f1:
         c0:99:c5:27:d1:c1:a1:d1:d7:a9:2d:6c:12:99:12:d9:9a:9b:
         c0:0b:a3:02:9b:47:70:e4:a0:2e:96:92:7d:3b:ac:b3:af:93:
         69:71:a0:a4:24:11:13:e1:7f:f8:53:7f:10:5c:a1:65:18:8c:
         84:f0:05:5d:8d:76:47:c5:7a:75:8c:4e:fb:55:ff:2b:6e:a4:
         e0:7b:dc:24:f2:26:b9:f7:86:67:b4:3d:45:23:c8:12:66:6d:
         57:45:40:01:3b:e6:b8:9d:f0:37:6f:22:d8:75:b1:36:04:c4:
         5f:04:b0:2b:71:28:eb:be:ed:e6:ce:a9:fa:cb:37:c5:76:63:
         20:9f:67:d4:71:46:f3:8a:5f:f1:21:22:5f:87:23:00:91:43:
         7e:17:e9:cf:26:45:a9:51:91:b9:76:cd:df:8e:26:40:15:c4:
         98:ed:09:03:90:d5:76:2c:80:5c:26:63:83:cb:66:ac:5a:41:
         a4:8c:b6:5a:26:2b:19:c8:e4:9b:ea:a1:45:6f:3d:04:70:a6:
         c3:e7:49:b0:ac:29:53:48:2f:99:9d:77:35:41:3f:6d:83:a9:
         37:94:c1:b2
-----BEGIN CERTIFICATE-----
MIIFQDCCBCigAwIBAgIDF2RUMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGQ0
MDdjNzI1Mzc1MTlmMTE1NTNjN2VlOWViODNiYWEwNDIzMzQzODAwHhcNMjQwMjEx
MTI1NjQ2WhcNMjYwMjExMTI1NjQ2WjAzMTEwLwYDVQQDEyg1MWRiMjExODcxOTY3
N2E3ZmY3Yzk4NzBiZmUwZjI5ZjExZDczMmZhMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAj4jdzk8DuWcSfayXVR1unZrq0rp+LrLwrScJn7xqpwGFkkVe
VJnixniMb3ozYyM2UItfh9wnB/O+fLhyzsiWXv8XyzT+S/lqBg2d3aG/I92mXapZ
ajgwtsM/561DmuL7F+1P1s/tx2g+00vQ3YQqLAgYUc3pgJc2sa0xWBkDQHnPLmGz
p+fNiF9BEdNeQhod8tvzoAy5WQ5ZwxpYUddlihg7yhRkoDtamnWMtKH8kTM6x9+8
16oBzRpIGSE6EYzWsiv4ZLMpUzi7X1zCTuWVpjnIuTO7BClE//t4sdAUueKGW9ru
2jszLR2WkWVR/2YJqVUqihoox+zrg5A302Sd0QIDAQABo4ICWzCCAlcwHQYDVR0O
BBYEFBV4RDEGlurKSnQgRcjQK5w0z72+MB8GA1UdIwQYMBaAFES9j+Pv+NwHJZzf
vifQjIvl5UfbMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvZDQwN2M3
MjUzNzUxOWYxMTU1M2M3ZWU5ZWI4M2JhYTA0MjMzNDM4MC5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvYjcxMjMwY2UtYTk1MC00YTBiLWI4Y2QtMGY0Y2Q4
ZWIzMjE5LzUxZGIyMTE4NzE5Njc3YTdmZjdjOTg3MGJmZTBmMjlmMTFkNzMyZmEu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9iNzEyMzBjZS1hOTUwLTRhMGItYjhjZC0wZjRj
ZDhlYjMyMTkvZDQwN2M3MjUzNzUxOWYxMTU1M2M3ZWU5ZWI4M2JhYTA0MjMzNDM4
MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQ
MA4wDAQCAAEwBgMEAMgavzANBgkqhkiG9w0BAQsFAAOCAQEAL3M4QAhx05raOENi
ml0B61dfU8KlRDZpu8Br+SvQlbAdV/bxwJnFJ9HBodHXqS1sEpkS2ZqbwAujAptH
cOSgLpaSfTuss6+TaXGgpCQRE+F/+FN/EFyhZRiMhPAFXY12R8V6dYxO+1X/K26k
4HvcJPImufeGZ7Q9RSPIEmZtV0VAATvmuJ3wN28i2HWxNgTEXwSwK3Eo677t5s6p
+ss3xXZjIJ9n1HFG84pf8SEiX4cjAJFDfhfpzyZFqVGRuXbN344mQBXEmO0JA5DV
diyAXCZjg8tmrFpBpIy2WiYrGcjkm+qhRW89BHCmw+dJsKwpU0gvmZ13NUE/bYOp
N5TBsg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:02 2024 by rpki-client on console-fra.rpki-client.org