Route Origin Authorization

$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/326131323a646434373a3730303a3a2f34302d3438203d3e20313938393534.roa
File:                     326131323a646434373a3730303a3a2f34302d3438203d3e20313938393534.roa (raw, json)
Hash identifier:          1qMWkeZI0iYvNg82c7muPwANtEG+k7Ojd8M5YS+a05w=
Subject key identifier:   FA:44:B2:E6:53:50:56:C1:D6:FA:EA:59:2B:23:47:41:9A:BF:2C:BA
Certificate issuer:       /CN=765B8B37E5536BE49A0BF3D60EF667B6F4C850C1
Certificate serial:       3BBBCEBBB4E7A5EFD686C5B9545855E5D69BD3D9
Authority key identifier: 76:5B:8B:37:E5:53:6B:E4:9A:0B:F3:D6:0E:F6:67:B6:F4:C8:50:C1
Authority info access:    rsync://dev.tw/rpki/August/5/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.cer
Subject info access:      rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/326131323a646434373a3730303a3a2f34302d3438203d3e20313938393534.roa
Signing time:             Thu 20 Jun 2024 05:23:22 +0000
ROA not before:           Thu 20 Jun 2024 05:18:22 +0000
ROA not after:            Thu 19 Jun 2025 05:23:22 +0000
asID:                     198954
IP address blocks:        2a12:dd47:700::/40 maxlen: 48

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3b:bb:ce:bb:b4:e7:a5:ef:d6:86:c5:b9:54:58:55:e5:d6:9b:d3:d9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=765B8B37E5536BE49A0BF3D60EF667B6F4C850C1
        Validity
            Not Before: Jun 20 05:18:22 2024 GMT
            Not After : Jun 19 05:23:22 2025 GMT
        Subject: CN=FA44B2E6535056C1D6FAEA592B2347419ABF2CBA
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:79:10:b6:e5:ff:f3:fb:84:9c:90:4c:46:34:
                    02:96:03:58:21:a0:84:10:b7:7c:19:7a:52:5d:b7:
                    d8:bf:ee:2d:ed:19:2c:26:bf:3b:c7:4e:fe:30:53:
                    62:64:8b:9c:66:92:71:64:14:7c:cb:fa:f3:40:48:
                    e3:42:29:df:8b:cb:d9:6f:6f:c5:1d:16:8b:8a:27:
                    94:2e:f4:4e:01:21:38:93:f3:89:43:42:c4:1e:3b:
                    58:51:06:5e:90:06:17:09:0a:e4:17:49:46:8d:d9:
                    d2:92:30:09:b7:4e:c4:3a:57:de:e5:63:9a:2c:d2:
                    e5:ad:d0:61:d4:6f:6d:bd:a0:14:b9:c6:27:5c:da:
                    f9:ef:5e:0c:ab:16:48:5a:50:dc:6b:92:de:d7:91:
                    8e:cd:31:e0:1b:48:fc:59:3a:32:9a:f0:62:aa:8c:
                    b3:db:60:fe:7b:08:36:ee:01:5a:f4:e1:b6:59:c8:
                    f5:c8:82:14:3a:10:6e:ac:38:a3:1c:8f:a7:1d:44:
                    64:2d:04:fb:11:2f:db:43:05:1a:f6:a3:7a:9b:bb:
                    92:16:50:43:ba:b6:6d:d4:57:a4:12:9c:78:e2:91:
                    19:4c:25:1a:ac:ae:4d:c5:be:10:8c:c3:4e:12:07:
                    16:01:f8:e4:43:0a:4f:70:fa:c4:7b:b9:3c:58:d9:
                    5c:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FA:44:B2:E6:53:50:56:C1:D6:FA:EA:59:2B:23:47:41:9A:BF:2C:BA
            X509v3 Authority Key Identifier:
                keyid:76:5B:8B:37:E5:53:6B:E4:9A:0B:F3:D6:0E:F6:67:B6:F4:C8:50:C1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.crl

            Authority Information Access:
                CA Issuers - URI:rsync://dev.tw/rpki/August/5/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/326131323a646434373a3730303a3a2f34302d3438203d3e20313938393534.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a12:dd47:700::/40

    Signature Algorithm: sha256WithRSAEncryption
         a5:04:c6:db:5f:ac:4c:4e:e6:f1:cb:cf:ff:a1:70:d7:7b:11:
         c2:2b:ce:a3:2a:62:b3:21:d8:92:b9:ed:d5:e0:b3:ba:a3:48:
         d2:23:88:ce:e2:fc:40:6e:33:19:af:52:f9:40:43:2c:d7:8e:
         6b:a2:7e:8b:ef:a5:5b:ca:ab:59:69:08:e3:9c:f2:01:79:1c:
         b0:0c:93:25:ea:a0:33:a1:be:69:2d:dd:bd:9e:4a:33:39:ff:
         4d:c1:10:d5:f3:39:a9:82:fe:6a:95:bd:12:10:b7:37:50:c9:
         2c:0c:e2:06:85:8e:9b:16:f6:b4:c8:73:38:c1:ad:f3:92:f2:
         4a:c1:f2:af:99:4c:75:8b:ad:76:de:39:38:c7:38:3a:63:72:
         7c:30:c4:01:20:73:e3:6c:39:dd:69:c3:b6:f4:eb:a9:c8:10:
         17:d6:d8:a6:31:e8:bb:85:4b:83:c1:88:bf:28:b2:12:2b:df:
         7b:13:1a:3f:57:b1:8e:cb:15:4e:df:43:a1:e7:6a:d3:32:69:
         5f:75:11:51:dd:12:78:9c:1a:93:e4:0e:fe:73:09:ba:f8:5e:
         ea:e0:15:a1:55:9f:3a:a4:bf:85:a3:d1:07:f6:48:32:24:5b:
         59:4b:8c:a8:58:a8:4d:0b:14:9d:8e:0d:d8:0b:30:ab:d7:78:
         9a:3d:ef:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 11 13:55:30 2024 by rpki-client on console-fra.rpki-client.org