Route Origin Authorization

$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/326131323a646434373a383363303a3a2f34342d3438203d3e20323039363532.roa
File:                     326131323a646434373a383363303a3a2f34342d3438203d3e20323039363532.roa (raw, json)
Hash identifier:          bi6kzVrj12dLxNthLn8mQTyPz7qX5fIyJyM1oo6MIaE=
Subject key identifier:   8D:35:33:2C:2E:55:57:93:C5:FA:36:AD:A6:14:99:50:51:A2:F5:02
Certificate issuer:       /CN=765B8B37E5536BE49A0BF3D60EF667B6F4C850C1
Certificate serial:       26837FEA85A3E2FF72C46D42849DC8B9E1DE0DF0
Authority key identifier: 76:5B:8B:37:E5:53:6B:E4:9A:0B:F3:D6:0E:F6:67:B6:F4:C8:50:C1
Authority info access:    rsync://dev.tw/rpki/August/5/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.cer
Subject info access:      rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/326131323a646434373a383363303a3a2f34342d3438203d3e20323039363532.roa
Signing time:             Thu 20 Jun 2024 05:23:24 +0000
ROA not before:           Thu 20 Jun 2024 05:18:24 +0000
ROA not after:            Thu 19 Jun 2025 05:23:24 +0000
asID:                     209652
IP address blocks:        2a12:dd47:83c0::/44 maxlen: 48

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            26:83:7f:ea:85:a3:e2:ff:72:c4:6d:42:84:9d:c8:b9:e1:de:0d:f0
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=765B8B37E5536BE49A0BF3D60EF667B6F4C850C1
        Validity
            Not Before: Jun 20 05:18:24 2024 GMT
            Not After : Jun 19 05:23:24 2025 GMT
        Subject: CN=8D35332C2E555793C5FA36ADA614995051A2F502
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9b:f2:1a:88:20:7c:fb:d9:6e:26:95:e7:9b:04:
                    d5:ae:25:cb:4e:3c:da:c9:9e:d9:40:ab:bd:29:a4:
                    99:0a:27:59:bc:7c:7a:db:dc:00:cd:e2:07:70:d5:
                    ef:6d:2f:52:1f:d7:e9:db:bb:5f:82:a8:ea:75:85:
                    64:35:c9:a1:4b:cb:00:0c:b1:90:7d:32:f0:4c:e5:
                    d4:ac:e1:c3:0e:3d:7b:26:c3:04:64:15:6b:be:49:
                    a0:c2:65:95:ea:da:4a:e4:8b:6f:fc:c3:51:b2:08:
                    c0:88:3b:48:53:04:d6:06:2a:90:95:57:56:f6:9b:
                    98:41:74:8e:cf:96:2a:df:f3:35:70:56:f2:7b:22:
                    82:04:3d:b0:76:83:81:2c:6b:f7:ed:86:7c:f2:0b:
                    e7:6c:3f:77:ad:c7:6e:75:eb:99:f9:fa:ea:4c:f2:
                    01:f7:d3:23:0b:cf:e4:2a:b5:5d:06:af:b9:e7:03:
                    00:69:4e:92:bb:50:54:f8:20:8b:86:7a:ca:a0:7a:
                    b1:09:72:04:29:5f:9d:6f:83:30:b7:2d:94:9a:e6:
                    d7:2e:79:0f:bd:a9:17:e1:fd:6d:80:cf:19:17:c2:
                    31:42:69:69:0e:d3:d7:af:26:b7:44:4c:5e:e7:22:
                    a3:99:62:b6:27:df:4e:eb:d7:3a:aa:4b:5d:46:ec:
                    74:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8D:35:33:2C:2E:55:57:93:C5:FA:36:AD:A6:14:99:50:51:A2:F5:02
            X509v3 Authority Key Identifier:
                keyid:76:5B:8B:37:E5:53:6B:E4:9A:0B:F3:D6:0E:F6:67:B6:F4:C8:50:C1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.crl

            Authority Information Access:
                CA Issuers - URI:rsync://dev.tw/rpki/August/5/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/326131323a646434373a383363303a3a2f34342d3438203d3e20323039363532.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a12:dd47:83c0::/44

    Signature Algorithm: sha256WithRSAEncryption
         78:86:c8:63:7d:37:ac:af:99:79:e9:00:56:34:8e:94:81:51:
         a7:e3:61:44:f5:14:4c:b9:32:6d:cd:90:15:b9:c1:fb:0d:c1:
         f7:38:7d:b5:30:9d:f0:c3:f0:5a:a0:1b:d7:36:98:d1:78:c4:
         9e:e9:a4:ba:f5:8f:c0:43:7e:50:72:1b:44:ec:e3:e5:0e:bf:
         e4:eb:4f:62:8c:e2:dd:dd:c6:13:6f:47:a5:5a:81:ff:1e:e1:
         db:ff:a2:d2:d6:c7:19:de:2d:36:8c:90:5d:9b:c8:0e:83:29:
         81:5e:9d:e5:20:79:05:68:1e:23:9b:71:1d:81:ee:6b:32:c1:
         08:3d:34:4a:cf:a6:6b:02:fc:b1:3e:a8:a3:13:6b:f4:2f:1b:
         51:45:b7:aa:1f:8d:65:ae:cb:3e:22:a9:6a:6a:b5:49:ff:de:
         3e:ea:91:db:fa:22:8d:9a:ea:ec:62:d8:c3:57:eb:b3:e9:25:
         13:db:b9:ed:47:3d:36:2b:4c:c0:18:2a:d1:89:8f:7f:08:3d:
         41:23:47:2a:6f:36:56:95:f7:98:bd:fd:58:82:b6:8d:5f:2b:
         c7:26:fd:13:f0:7e:b6:c3:6c:ee:c5:ee:ad:d0:60:a1:ab:90:
         94:dc:77:1f:63:87:a7:f1:2a:58:e3:6b:4d:a6:ce:59:e0:5a:
         22:49:a8:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 11 13:55:30 2024 by rpki-client on console-fra.rpki-client.org