Route Origin Authorization

$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/326131323a646434373a3830303a3a2f33382d3438203d3e20323131373539.roa
File:                     326131323a646434373a3830303a3a2f33382d3438203d3e20323131373539.roa (raw, json)
Hash identifier:          9NdbA4w4uLs07taFv4lco8lDFCrE3xnrehL284iDCws=
Subject key identifier:   21:7E:20:AF:1E:58:54:CD:56:64:23:77:EE:72:22:D6:13:02:D8:B2
Certificate issuer:       /CN=765B8B37E5536BE49A0BF3D60EF667B6F4C850C1
Certificate serial:       26A1AF40D60D7FC6C6F0726D9E031A26FE083E8F
Authority key identifier: 76:5B:8B:37:E5:53:6B:E4:9A:0B:F3:D6:0E:F6:67:B6:F4:C8:50:C1
Authority info access:    rsync://dev.tw/rpki/August/5/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.cer
Subject info access:      rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/326131323a646434373a3830303a3a2f33382d3438203d3e20323131373539.roa
Signing time:             Thu 20 Jun 2024 05:23:23 +0000
ROA not before:           Thu 20 Jun 2024 05:18:23 +0000
ROA not after:            Thu 19 Jun 2025 05:23:23 +0000
asID:                     211759
IP address blocks:        2a12:dd47:800::/38 maxlen: 48

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            26:a1:af:40:d6:0d:7f:c6:c6:f0:72:6d:9e:03:1a:26:fe:08:3e:8f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=765B8B37E5536BE49A0BF3D60EF667B6F4C850C1
        Validity
            Not Before: Jun 20 05:18:23 2024 GMT
            Not After : Jun 19 05:23:23 2025 GMT
        Subject: CN=217E20AF1E5854CD56642377EE7222D61302D8B2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:c7:c8:d9:c1:3f:80:fb:2a:22:f7:ca:cf:2d:
                    c5:aa:71:05:fd:1c:3f:22:d7:65:25:8c:e6:ab:67:
                    48:7f:c5:02:b1:ea:dd:bb:0d:52:cd:e7:00:7c:15:
                    b1:05:d1:0a:7e:b2:fe:db:b7:16:91:33:2d:94:37:
                    5a:a2:e1:df:f1:24:91:aa:3f:41:55:c4:22:cb:44:
                    d9:c8:8c:5d:ee:d3:87:85:95:ec:63:60:f2:ea:f3:
                    ef:72:b2:48:be:4a:b0:2a:b1:ee:6d:78:95:a6:ec:
                    0f:44:79:50:5f:48:49:0d:c1:ec:e3:04:2a:e4:a9:
                    d2:fc:46:e8:b7:3c:c0:9c:55:1f:9a:ba:83:c0:c5:
                    dd:e3:23:fa:ec:dd:39:06:d4:e2:83:9d:fa:41:c9:
                    b7:bc:f8:7c:f9:ea:38:91:d3:62:01:aa:4b:53:8c:
                    7c:a1:f5:8f:bb:e6:ff:06:a5:67:ff:6f:ae:4a:15:
                    3e:6c:95:2d:59:e0:2a:4c:56:c1:b4:13:51:70:a6:
                    28:d7:51:84:c7:ad:5b:b5:e8:b0:b0:5e:16:aa:27:
                    43:35:88:5a:d3:60:a3:f5:13:6d:53:67:00:32:65:
                    78:24:8c:45:24:2c:7e:eb:f9:93:45:99:e4:af:c6:
                    8a:3b:50:eb:de:93:84:68:08:f3:9d:d1:e4:d9:e9:
                    82:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                21:7E:20:AF:1E:58:54:CD:56:64:23:77:EE:72:22:D6:13:02:D8:B2
            X509v3 Authority Key Identifier:
                keyid:76:5B:8B:37:E5:53:6B:E4:9A:0B:F3:D6:0E:F6:67:B6:F4:C8:50:C1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.crl

            Authority Information Access:
                CA Issuers - URI:rsync://dev.tw/rpki/August/5/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/326131323a646434373a3830303a3a2f33382d3438203d3e20323131373539.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a12:dd47:800::/38

    Signature Algorithm: sha256WithRSAEncryption
         07:9e:e7:14:bc:e9:a7:63:e7:3c:40:7f:ae:9c:aa:ef:fd:df:
         c6:8c:e6:94:79:a5:46:12:0d:74:b3:38:26:07:23:3c:fe:f3:
         17:9a:30:2f:db:d1:de:c0:e8:ff:1d:d3:8d:06:95:19:46:c3:
         7b:ff:4b:2d:23:c4:e3:82:eb:30:08:24:0f:96:00:7e:15:76:
         53:92:77:8f:c6:76:fa:5e:00:c5:64:1d:cd:a8:73:ac:c1:e3:
         ea:e8:67:b9:eb:30:94:5c:3a:06:c0:f3:c3:f1:89:dd:2f:81:
         cf:d8:36:68:bf:3b:e9:4f:d6:64:8f:ae:d7:be:a1:5c:2b:68:
         9f:eb:93:3a:74:7b:27:20:ca:b4:da:52:db:14:71:f0:c8:30:
         16:5f:2d:cf:e5:f4:42:92:3f:07:fd:54:4c:45:24:10:87:4d:
         c2:31:fd:6f:e3:04:65:e1:24:70:e3:84:fa:11:8a:18:52:c8:
         32:86:9a:6e:89:bc:cf:f9:24:ee:75:52:b5:fd:d4:9d:a3:b8:
         eb:ea:cf:ea:bc:4b:0c:93:5b:ba:45:f6:bb:26:8b:87:10:96:
         1d:1e:00:b0:ec:70:0c:13:c4:65:05:c2:73:24:58:82:d9:bb:
         64:82:95:db:0d:d7:7d:71:5a:62:b8:e2:0d:6c:f7:cc:80:ee:
         99:c7:62:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 11 13:55:30 2024 by rpki-client on console-fra.rpki-client.org