Route Origin Authorization

$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/326131323a646434373a383034643a3a2f34382d3438203d3e20323130343435.roa
File:                     326131323a646434373a383034643a3a2f34382d3438203d3e20323130343435.roa (raw, json)
Hash identifier:          yiAQyl54jQdaPjOPK+GKq5yXIuGTSC/dDydg7ZbQywU=
Subject key identifier:   B4:5D:73:62:16:05:61:69:4C:23:08:2F:56:CF:3A:DD:D8:53:3F:54
Certificate issuer:       /CN=765B8B37E5536BE49A0BF3D60EF667B6F4C850C1
Certificate serial:       1350A6CFF9EEF9C2ADB9FBF553E832DE7ED6DDF4
Authority key identifier: 76:5B:8B:37:E5:53:6B:E4:9A:0B:F3:D6:0E:F6:67:B6:F4:C8:50:C1
Authority info access:    rsync://dev.tw/rpki/August/5/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.cer
Subject info access:      rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/326131323a646434373a383034643a3a2f34382d3438203d3e20323130343435.roa
Signing time:             Thu 20 Jun 2024 05:23:28 +0000
ROA not before:           Thu 20 Jun 2024 05:18:28 +0000
ROA not after:            Thu 19 Jun 2025 05:23:28 +0000
asID:                     210445
IP address blocks:        2a12:dd47:804d::/48 maxlen: 48

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            13:50:a6:cf:f9:ee:f9:c2:ad:b9:fb:f5:53:e8:32:de:7e:d6:dd:f4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=765B8B37E5536BE49A0BF3D60EF667B6F4C850C1
        Validity
            Not Before: Jun 20 05:18:28 2024 GMT
            Not After : Jun 19 05:23:28 2025 GMT
        Subject: CN=B45D7362160561694C23082F56CF3ADDD8533F54
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:fa:a3:aa:c7:f0:48:48:46:6f:74:68:bc:ad:
                    96:a1:70:f4:cc:74:31:04:40:89:f5:2d:e8:35:f6:
                    7e:54:c0:33:06:ec:f3:8b:6c:c9:46:b2:58:1a:df:
                    9b:aa:d3:ff:00:26:f2:67:cc:a7:5a:54:27:11:53:
                    df:00:96:b4:84:80:b8:9c:45:38:2c:1e:22:a2:b9:
                    a1:d7:85:3b:50:21:47:8f:45:cd:d4:31:c4:69:70:
                    31:a7:b1:16:9f:10:11:ea:ef:dd:07:3a:7d:79:6b:
                    9f:7b:54:b1:9d:5c:a4:5e:e4:35:11:9c:13:49:57:
                    05:de:31:b3:9a:94:51:fa:50:f5:da:bc:de:1d:3b:
                    78:4e:de:44:a1:c6:c7:32:84:f9:e9:14:4d:5c:bb:
                    e2:10:9d:e6:34:f3:d2:0a:d4:c1:79:6d:6a:a1:55:
                    1b:99:8c:1d:df:db:61:52:32:e6:77:cd:07:bb:71:
                    f9:ba:b5:53:42:f1:6f:26:a9:af:00:4c:74:bd:00:
                    60:e3:65:e3:9d:cb:74:93:c0:11:dc:14:b8:21:1c:
                    e0:57:8b:fe:fc:3a:9e:3f:78:fe:0e:3f:73:b8:bb:
                    a8:02:4a:98:77:e5:0f:21:7f:dc:3b:a4:c1:dc:74:
                    df:3c:9f:e4:c8:7a:01:0f:33:65:e9:e2:2b:fa:87:
                    01:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B4:5D:73:62:16:05:61:69:4C:23:08:2F:56:CF:3A:DD:D8:53:3F:54
            X509v3 Authority Key Identifier:
                keyid:76:5B:8B:37:E5:53:6B:E4:9A:0B:F3:D6:0E:F6:67:B6:F4:C8:50:C1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.crl

            Authority Information Access:
                CA Issuers - URI:rsync://dev.tw/rpki/August/5/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/326131323a646434373a383034643a3a2f34382d3438203d3e20323130343435.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a12:dd47:804d::/48

    Signature Algorithm: sha256WithRSAEncryption
         8c:51:9f:23:51:6b:6b:2b:1b:95:e7:38:95:5a:58:a1:49:0a:
         e9:ae:a9:c4:e4:0a:11:e5:15:e7:cb:3f:42:41:6f:23:f8:03:
         99:17:54:67:2f:85:b2:a0:17:66:46:94:35:f7:50:60:5e:70:
         2f:f3:0d:1b:d7:ff:ad:65:ed:7c:fe:69:d9:15:e9:9d:94:1b:
         38:b8:20:26:23:3b:64:3f:96:07:24:9c:ed:7d:6f:cb:c0:97:
         17:c2:9f:46:dd:d8:b2:d6:f1:dc:f4:b5:1d:79:eb:27:48:64:
         c3:56:16:06:4a:16:c0:8c:2f:7a:27:54:c4:ec:11:8f:a8:2d:
         af:77:0c:8d:ed:4a:d8:8a:13:1f:9b:65:eb:d5:92:61:e2:56:
         bc:d7:09:aa:f1:fe:82:74:20:3d:bf:70:fd:99:ab:c8:2d:32:
         7d:e4:92:e0:82:0e:6e:24:6e:0c:2a:78:72:4f:fd:71:29:43:
         38:28:4f:7a:aa:54:96:db:c1:f2:a8:67:87:b5:28:84:e8:1c:
         4e:02:98:eb:38:34:0f:90:f7:ce:10:e5:d5:cc:59:ab:e6:99:
         4c:5a:0c:e1:53:24:ec:96:a6:18:40:8c:74:81:90:01:e5:22:
         e9:1e:7f:71:6c:1d:f5:c2:e7:6d:f6:2c:97:c7:19:b9:bc:86:
         ba:15:fb:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 11 13:27:55 2024 by rpki-client on console-ams.rpki-client.org