Route Origin Authorization

$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/326131323a646434373a3430303a3a2f33392d3438203d3e20313939363831.roa
File:                     326131323a646434373a3430303a3a2f33392d3438203d3e20313939363831.roa (raw, json)
Hash identifier:          502rHxuJhqRzoV4fzebC1xDAkhA5Bqb4R1JuXylElW8=
Subject key identifier:   5B:79:EC:F8:12:34:04:A2:11:A8:79:C1:39:EC:2B:EF:67:47:C5:D7
Certificate issuer:       /CN=765B8B37E5536BE49A0BF3D60EF667B6F4C850C1
Certificate serial:       3C06F7D5E9571700293D5B00CDDFA3B7CA153D4E
Authority key identifier: 76:5B:8B:37:E5:53:6B:E4:9A:0B:F3:D6:0E:F6:67:B6:F4:C8:50:C1
Authority info access:    rsync://dev.tw/rpki/August/5/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.cer
Subject info access:      rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/326131323a646434373a3430303a3a2f33392d3438203d3e20313939363831.roa
Signing time:             Thu 20 Jun 2024 05:23:32 +0000
ROA not before:           Thu 20 Jun 2024 05:18:32 +0000
ROA not after:            Thu 19 Jun 2025 05:23:32 +0000
asID:                     199681
IP address blocks:        2a12:dd47:400::/39 maxlen: 48

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3c:06:f7:d5:e9:57:17:00:29:3d:5b:00:cd:df:a3:b7:ca:15:3d:4e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=765B8B37E5536BE49A0BF3D60EF667B6F4C850C1
        Validity
            Not Before: Jun 20 05:18:32 2024 GMT
            Not After : Jun 19 05:23:32 2025 GMT
        Subject: CN=5B79ECF8123404A211A879C139EC2BEF6747C5D7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:4f:45:72:52:af:df:95:b9:8c:95:01:79:73:
                    07:5f:31:44:5f:a0:8c:b9:d2:86:98:09:e2:b3:c2:
                    f2:dc:ac:cc:d3:38:ed:8e:f1:01:70:e2:9e:95:91:
                    98:df:22:1a:28:85:7d:c5:27:64:56:aa:22:ae:a3:
                    38:2f:0c:e0:24:59:30:17:44:b9:45:bf:56:8f:54:
                    17:bc:66:28:83:1a:4b:bc:56:6c:47:15:14:87:69:
                    ae:2e:4f:97:99:e4:ae:6b:fe:6a:31:79:fa:9e:be:
                    d7:ea:fb:a7:95:a4:09:ae:45:bf:cf:39:6b:a1:d9:
                    0f:5e:9e:09:17:45:6f:36:21:a1:ef:40:88:47:eb:
                    a9:bb:52:4d:9e:be:57:f7:08:45:0c:c8:82:5a:48:
                    be:a8:f3:26:d3:38:85:f8:7a:0e:3a:f1:a8:fb:73:
                    c8:ea:35:46:da:8f:f2:22:32:65:11:3e:b6:ca:43:
                    f0:c4:f4:e3:dc:f3:86:47:42:55:0c:38:9e:5f:09:
                    34:7e:ab:79:91:d9:cc:32:ea:36:a7:50:7b:e8:22:
                    11:3f:e3:24:98:0e:87:73:99:33:00:c7:5f:f9:1c:
                    08:11:cf:61:cb:9a:aa:8f:e8:55:1c:70:4e:0d:c9:
                    07:5e:80:42:42:ff:f2:d0:25:ee:2b:07:20:f8:62:
                    65:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5B:79:EC:F8:12:34:04:A2:11:A8:79:C1:39:EC:2B:EF:67:47:C5:D7
            X509v3 Authority Key Identifier:
                keyid:76:5B:8B:37:E5:53:6B:E4:9A:0B:F3:D6:0E:F6:67:B6:F4:C8:50:C1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.crl

            Authority Information Access:
                CA Issuers - URI:rsync://dev.tw/rpki/August/5/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/326131323a646434373a3430303a3a2f33392d3438203d3e20313939363831.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a12:dd47:400::/39

    Signature Algorithm: sha256WithRSAEncryption
         5a:a7:fe:df:be:4f:93:35:b7:00:f4:20:0f:52:2c:3b:69:65:
         3a:fa:18:10:6b:01:d4:bc:0f:b8:6c:fc:8e:c8:6d:d0:45:3c:
         71:cf:50:61:ff:db:d4:c0:26:ae:4b:0c:80:e9:80:48:02:67:
         96:71:89:38:56:f2:b5:41:d6:83:c3:1e:e8:85:88:e0:69:a7:
         5b:d1:7c:5e:12:b1:21:de:d9:07:c5:a8:10:32:15:e6:25:66:
         ac:9b:2f:b2:0b:c7:64:2a:fd:27:ac:25:0d:f4:80:da:84:7e:
         37:f5:b5:f8:0b:34:16:1d:dd:27:4d:f8:64:9b:aa:46:69:86:
         b5:39:49:6a:a0:4a:59:99:4b:d8:6f:38:9f:01:e4:93:e7:8d:
         6b:90:17:9b:b2:1c:4f:64:ba:92:d2:64:ce:f1:72:af:a2:3f:
         23:28:4f:16:55:27:a8:04:c4:e3:a1:97:2d:7c:9a:e6:a9:f0:
         0b:dd:2a:0b:0c:ce:9b:27:0e:81:eb:67:8e:7d:ef:9e:53:49:
         3d:38:08:df:aa:12:82:73:8d:f0:75:30:84:5a:c6:1a:7d:5e:
         3b:b2:75:68:58:43:de:a0:12:97:45:dd:25:60:ee:1b:e4:d1:
         92:b0:ed:aa:c2:18:73:31:c0:ba:30:37:78:82:92:cd:cb:0a:
         50:a3:03:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 11 13:55:30 2024 by rpki-client on console-fra.rpki-client.org