Route Origin Authorization

$ rpki-client -vvf cloudie-repo.rpki.app/repo/SVENS-RPKI/0/326130613a363034303a623166343a3a2f34382d3438203d3e20323030363736.roa
File:                     326130613a363034303a623166343a3a2f34382d3438203d3e20323030363736.roa (raw, json)
Hash identifier:          Dhl/zh0qVdXVPj7qRGQc+lmgHfDjmHt2LbbnmC7NTks=
Subject key identifier:   8E:F2:F5:91:84:3A:00:9C:5C:99:0D:7E:FC:ED:BE:EC:90:51:6C:93
Certificate issuer:       /CN=3D0D05110F2F8F2322DC87EEC86671D6F3BA8684
Certificate serial:       4035EBA50551DCBCDF7303CE388DAEB98B254FB0
Authority key identifier: 3D:0D:05:11:0F:2F:8F:23:22:DC:87:EE:C8:66:71:D6:F3:BA:86:84
Authority info access:    rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/3D0D05110F2F8F2322DC87EEC86671D6F3BA8684.cer
Subject info access:      rsync://cloudie-repo.rpki.app/repo/SVENS-RPKI/0/326130613a363034303a623166343a3a2f34382d3438203d3e20323030363736.roa
Signing time:             Tue 06 Feb 2024 10:20:02 +0000
ROA not before:           Tue 06 Feb 2024 10:15:02 +0000
ROA not after:            Tue 04 Feb 2025 10:20:02 +0000
asID:                     200676
IP address blocks:        2a0a:6040:b1f4::/48 maxlen: 48

Validation:               Failed, unable to get certificate CRL

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            40:35:eb:a5:05:51:dc:bc:df:73:03:ce:38:8d:ae:b9:8b:25:4f:b0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3D0D05110F2F8F2322DC87EEC86671D6F3BA8684
        Validity
            Not Before: Feb  6 10:15:02 2024 GMT
            Not After : Feb  4 10:20:02 2025 GMT
        Subject: CN=8EF2F591843A009C5C990D7EFCEDBEEC90516C93
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:51:3a:5b:b0:bb:a1:ad:ff:6a:dd:1d:6b:79:
                    97:20:36:85:db:28:62:4a:f7:0a:47:57:66:3b:32:
                    7a:a5:99:f8:4f:ef:75:ce:8f:a4:53:21:bf:9a:55:
                    7e:a8:ec:5f:5a:26:b2:c4:9d:af:08:51:61:6a:63:
                    d5:33:89:ec:8d:2a:05:42:03:5d:f5:72:39:57:11:
                    5a:99:b8:b3:7c:63:ce:77:79:0c:85:1c:2e:9d:80:
                    41:5a:76:ee:8e:89:89:84:34:78:72:83:12:c7:29:
                    fc:68:97:02:5b:11:f9:d7:c2:79:ea:02:11:85:fc:
                    f0:65:18:41:42:9d:3b:6d:24:6f:c0:f2:df:60:bc:
                    5a:e4:92:7f:5d:f4:0a:cd:e6:5b:ee:57:0a:83:60:
                    5f:95:bc:f4:41:5b:5d:e3:19:09:9b:3f:59:c8:7b:
                    f9:54:2b:45:a1:c4:76:89:cd:c8:ac:28:c9:f4:70:
                    e5:d1:da:5e:95:10:92:83:46:d1:ec:a2:b8:de:16:
                    c5:e0:22:39:2f:8f:82:2a:10:f3:d4:f7:fb:c0:f2:
                    4b:d6:32:93:e8:7f:ea:be:a4:60:60:b3:69:c3:f4:
                    5e:62:b1:77:de:4f:e8:64:2f:89:0d:05:f8:11:a9:
                    56:bb:61:04:95:93:7c:92:f7:21:43:a4:2d:3e:34:
                    66:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8E:F2:F5:91:84:3A:00:9C:5C:99:0D:7E:FC:ED:BE:EC:90:51:6C:93
            X509v3 Authority Key Identifier:
                keyid:3D:0D:05:11:0F:2F:8F:23:22:DC:87:EE:C8:66:71:D6:F3:BA:86:84

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://cloudie-repo.rpki.app/repo/SVENS-RPKI/0/3D0D05110F2F8F2322DC87EEC86671D6F3BA8684.crl

            Authority Information Access:
                CA Issuers - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/0/3D0D05110F2F8F2322DC87EEC86671D6F3BA8684.cer

            Subject Information Access:
                Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/SVENS-RPKI/0/326130613a363034303a623166343a3a2f34382d3438203d3e20323030363736.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a0a:6040:b1f4::/48

    Signature Algorithm: sha256WithRSAEncryption
         95:39:5e:c2:82:83:a6:26:89:07:57:be:f9:32:7e:0b:2a:bf:
         0c:eb:a4:c8:a1:3f:43:af:54:c7:ae:5c:eb:98:60:14:d4:dd:
         f4:19:ff:48:2d:4b:19:b8:69:b6:bf:9b:cb:11:ba:65:29:e6:
         67:97:4d:52:b1:2d:65:e8:d6:a1:27:86:8e:9c:38:ae:db:e7:
         2c:64:f5:07:7b:e6:58:4b:e0:d9:17:d7:91:db:96:9c:4c:4d:
         f4:d0:c7:e4:e1:39:fc:d2:eb:7b:4e:fe:b2:f9:cf:93:49:83:
         45:63:3a:3b:bb:2a:c7:ac:3b:3b:e8:3b:51:f9:5f:89:ee:0f:
         04:e0:dd:dc:77:3a:10:87:49:f2:0c:fb:c6:71:72:eb:d9:5d:
         78:65:34:1c:72:19:6e:c2:bc:c0:c4:0c:d5:54:11:78:be:12:
         46:24:cc:b7:12:96:5f:b6:99:95:74:6e:02:b9:9f:64:22:f9:
         98:c9:db:ad:ce:d9:9d:a2:ec:eb:71:89:30:c1:65:e4:7d:e0:
         39:cf:bf:5f:6e:d3:84:79:de:bd:c1:e9:db:91:e4:ae:6c:52:
         8a:79:89:91:c1:91:4a:82:7d:ef:7f:db:2f:2d:d2:45:28:57:
         be:10:0b:4b:bb:30:62:a2:d2:7a:5c:a0:8c:4a:c0:47:4b:f9:
         82:c0:1f:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 11 03:34:48 2024 by rpki-client on console-ams.rpki-client.org