Route Origin Authorization 

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/f7e72e00-b9c8-46bf-aa99-37c022efb774/1/32332e3137362e3138342e302f32342d3234203d3e203630323233.roa
File:                     32332e3137362e3138342e302f32342d3234203d3e203630323233.roa (raw, json)
Hash identifier:          p4f1TWqf8ehJOMhFPaqOz+2fHgJ8O5p9TkrU5OnE910=
Subject key identifier:   3D:94:FA:6F:19:10:03:34:82:CD:9D:C5:E4:7A:E1:D5:4D:18:BB:93
Certificate issuer:       /CN=2b75ca250f10a6d223fa5bcb5d706f1704f864c33e1c55ed51
Certificate serial:       044620688BA96F101B1A8C217E336DA64177363C
Authority key identifier: A9:E6:44:E6:E2:C8:B2:4F:DE:A7:74:1E:75:40:08:6D:94:14:11:B8
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/04b24da1-11ab-48ad-a03f-6b7832a569c8/2b75ca250f10a6d223fa5bcb5d706f1704f864c33e1c55ed51.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/f7e72e00-b9c8-46bf-aa99-37c022efb774/1/32332e3137362e3138342e302f32342d3234203d3e203630323233.roa
Signing time:             Fri 26 Apr 2024 16:07:02 +0000
ROA not before:           Fri 26 Apr 2024 16:02:02 +0000
ROA not after:            Fri 25 Apr 2025 16:07:02 +0000
asID:                     60223
IP address blocks:        23.176.184.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            04:46:20:68:8b:a9:6f:10:1b:1a:8c:21:7e:33:6d:a6:41:77:36:3c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2b75ca250f10a6d223fa5bcb5d706f1704f864c33e1c55ed51
        Validity
            Not Before: Apr 26 16:02:02 2024 GMT
            Not After : Apr 25 16:07:02 2025 GMT
        Subject: CN=3D94FA6F1910033482CD9DC5E47AE1D54D18BB93
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:e5:12:71:0d:4e:d7:26:dc:29:bf:6a:55:b9:
                    fa:bf:9c:7a:aa:81:44:91:86:24:96:81:21:9f:07:
                    c1:8a:cf:76:11:5d:50:3d:12:2c:61:47:42:34:38:
                    1a:7c:84:36:b5:af:dc:23:05:37:a3:4d:fd:9c:55:
                    98:e6:e2:47:55:93:c2:cc:69:95:66:1c:36:f0:8a:
                    78:fb:9b:59:5b:bb:0a:63:fe:f7:f4:64:5f:d7:df:
                    4d:4a:73:d1:92:23:c3:a2:37:eb:b6:ea:50:6d:62:
                    e4:75:03:6f:d2:1b:be:f1:40:2a:79:4e:e5:2f:cd:
                    4b:80:d0:f1:9a:23:99:0a:b4:8a:0b:d8:7d:5e:a1:
                    a6:47:0b:3a:fe:94:63:da:a1:39:1a:9b:7b:82:ad:
                    a1:36:f4:7f:da:e2:be:26:92:96:b8:d2:8d:ca:c5:
                    1b:ca:3b:78:23:f2:ad:f6:5e:0c:7b:68:10:cf:5f:
                    0e:a2:e3:37:ca:f5:09:59:ba:78:c5:56:24:71:02:
                    e5:7e:6a:a0:fa:54:fb:47:98:6d:80:71:d8:50:c5:
                    15:01:cf:74:77:5d:83:78:ca:16:9a:f8:db:6d:37:
                    1a:ba:26:0b:42:6e:b4:aa:6a:86:4f:54:77:a2:83:
                    db:65:4e:68:ec:c3:ba:1f:60:19:91:4b:64:5c:78:
                    69:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3D:94:FA:6F:19:10:03:34:82:CD:9D:C5:E4:7A:E1:D5:4D:18:BB:93
            X509v3 Authority Key Identifier:
                keyid:A9:E6:44:E6:E2:C8:B2:4F:DE:A7:74:1E:75:40:08:6D:94:14:11:B8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/f7e72e00-b9c8-46bf-aa99-37c022efb774/1/A9E644E6E2C8B24FDEA7741E7540086D941411B8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/4ab7ae4d-bd7b-4b33-9a88-5b22d2a8337d/04b24da1-11ab-48ad-a03f-6b7832a569c8/2b75ca250f10a6d223fa5bcb5d706f1704f864c33e1c55ed51.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/f7e72e00-b9c8-46bf-aa99-37c022efb774/1/32332e3137362e3138342e302f32342d3234203d3e203630323233.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  23.176.184.0/24

    Signature Algorithm: sha256WithRSAEncryption
         5d:d0:e9:c3:ec:e3:fc:a8:58:4f:e0:dc:41:42:92:96:a2:c8:
         a3:f2:2f:3a:2d:e2:3d:0a:f3:c7:b1:cb:5c:21:84:15:b5:d6:
         fa:ce:b3:c5:fb:96:29:10:be:f7:f7:82:b3:18:94:e8:c4:d3:
         62:dc:a3:9f:2a:28:41:04:69:11:45:e9:c1:e4:ae:b7:70:5b:
         01:44:d1:08:90:56:30:80:a3:7c:03:6c:ab:a6:ce:5e:16:5f:
         7c:aa:07:3e:8c:dd:ea:49:08:d3:9a:a3:be:3e:3d:96:a8:cb:
         81:c5:83:4b:9b:60:fd:e3:9b:e4:03:36:36:21:05:6d:ff:ec:
         50:c0:4a:71:56:dd:e1:6f:41:33:5c:25:77:54:b9:1f:57:c8:
         d0:40:e7:07:7f:44:1a:6c:5c:f9:06:4a:1d:ce:74:86:73:1e:
         12:7f:77:44:90:2c:76:d7:ca:96:21:8a:fe:ef:31:36:5f:f2:
         1e:09:6c:56:72:09:2b:76:1b:2a:32:c0:54:2a:03:da:40:d6:
         b7:88:32:2f:d6:8d:83:bf:41:79:2e:72:eb:fb:4f:e0:2e:07:
         4c:a9:ae:33:f4:d0:f1:49:f5:8f:a2:f8:f7:1c:e5:95:e2:18:
         bd:fd:f3:f9:93:b3:44:b2:7d:86:7a:54:73:14:47:2b:ad:55:
         7a:36:49:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:08 2024 by rpki-client on console-ams.rpki-client.org