Route Origin Authorization

$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/326131323a646434373a383830303a3a2f33392d3339203d3e20323033393133.roa
File:                     326131323a646434373a383830303a3a2f33392d3339203d3e20323033393133.roa (raw, json)
Hash identifier:          UWmGbnXsLLt88QAvszShZGJ/ZC+3FMkqLQAHYRVi9/U=
Subject key identifier:   CB:52:70:5E:1C:71:49:8E:E6:0E:95:25:1D:BF:0D:03:E2:E7:AC:05
Certificate issuer:       /CN=765B8B37E5536BE49A0BF3D60EF667B6F4C850C1
Certificate serial:       5393C60DE4F47C3A396B63D42EA1FB29479169C3
Authority key identifier: 76:5B:8B:37:E5:53:6B:E4:9A:0B:F3:D6:0E:F6:67:B6:F4:C8:50:C1
Authority info access:    rsync://dev.tw/rpki/August/5/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.cer
Subject info access:      rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/326131323a646434373a383830303a3a2f33392d3339203d3e20323033393133.roa
Signing time:             Thu 20 Jun 2024 05:23:25 +0000
ROA not before:           Thu 20 Jun 2024 05:18:25 +0000
ROA not after:            Thu 19 Jun 2025 05:23:25 +0000
asID:                     203913
IP address blocks:        2a12:dd47:8800::/39 maxlen: 39

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            53:93:c6:0d:e4:f4:7c:3a:39:6b:63:d4:2e:a1:fb:29:47:91:69:c3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=765B8B37E5536BE49A0BF3D60EF667B6F4C850C1
        Validity
            Not Before: Jun 20 05:18:25 2024 GMT
            Not After : Jun 19 05:23:25 2025 GMT
        Subject: CN=CB52705E1C71498EE60E95251DBF0D03E2E7AC05
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:f8:db:6b:d5:ca:c4:12:8f:32:01:17:b2:b3:
                    34:4a:de:0e:6c:e6:99:44:33:b6:35:44:9e:11:f3:
                    e4:28:71:f4:3d:8e:ee:d9:97:f5:68:fc:78:98:6a:
                    87:72:32:30:50:a1:5c:7d:c2:a8:11:39:b5:8e:91:
                    86:e7:99:45:f1:a3:c1:50:98:45:6c:b4:de:ce:55:
                    37:6f:68:6f:45:0d:bf:80:cb:b2:3d:ab:bb:01:3b:
                    dc:95:5e:30:bd:ad:7f:0d:06:4b:c5:92:d1:85:a6:
                    a0:a5:b7:a5:1a:dc:96:32:95:d4:5f:73:1b:ba:37:
                    a8:c7:43:3b:2d:37:1f:fa:51:aa:c7:cf:bf:f5:6d:
                    f2:1f:8d:84:97:3f:eb:a5:7a:1f:a4:e6:4c:24:e3:
                    5c:1a:d8:5d:02:72:ca:b2:44:46:7b:80:53:4c:59:
                    64:e8:5d:d3:ad:9c:2b:91:fd:06:fc:ea:9e:3c:a5:
                    fd:5b:19:8c:36:d5:cc:b1:ce:88:f8:95:45:30:78:
                    44:99:04:19:14:6f:00:32:19:86:7e:b1:c2:4a:c2:
                    3e:89:bc:f9:1e:e2:fe:ef:11:19:e4:2c:6f:ae:19:
                    b9:03:f6:3b:77:1c:29:b3:20:cc:e7:ac:f7:04:f9:
                    e1:5a:ca:9c:0c:2e:01:3a:23:63:9f:b9:bf:f1:08:
                    ee:1b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CB:52:70:5E:1C:71:49:8E:E6:0E:95:25:1D:BF:0D:03:E2:E7:AC:05
            X509v3 Authority Key Identifier:
                keyid:76:5B:8B:37:E5:53:6B:E4:9A:0B:F3:D6:0E:F6:67:B6:F4:C8:50:C1

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.crl

            Authority Information Access:
                CA Issuers - URI:rsync://dev.tw/rpki/August/5/765B8B37E5536BE49A0BF3D60EF667B6F4C850C1.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf8fdeec0c019033dbdecc4fa4/1/326131323a646434373a383830303a3a2f33392d3339203d3e20323033393133.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a12:dd47:8800::/39

    Signature Algorithm: sha256WithRSAEncryption
         4c:87:58:2d:9f:35:00:19:00:a5:02:23:49:b6:85:47:d4:bf:
         26:22:ee:d1:f0:fe:51:df:ef:4a:d6:6d:5c:62:5a:fd:77:7a:
         08:42:82:8b:85:8d:96:6c:1e:71:2a:89:51:43:11:0a:bc:51:
         5c:85:25:4f:b1:54:be:f0:db:27:71:46:42:8c:32:e2:e1:85:
         84:ca:a0:b7:3b:dc:54:da:b4:78:d2:b6:39:1c:ce:54:83:13:
         38:a8:14:41:81:47:df:5c:81:e4:45:56:87:07:39:6f:03:8f:
         d2:a0:2f:aa:ab:9b:b7:96:d5:37:39:4e:2b:48:d0:fb:1f:b4:
         90:5c:e0:b5:70:19:d3:9a:19:ca:31:5b:b0:d6:60:fe:65:80:
         5e:4d:55:5d:63:1e:37:51:3e:cf:d0:b4:d8:39:3f:0c:32:56:
         82:60:b7:04:80:bf:00:70:64:32:b8:26:00:2a:25:67:ba:52:
         16:84:f8:dd:43:70:e6:be:a6:e2:e3:68:c5:3c:73:5a:8c:1d:
         98:f5:c5:b7:0d:f1:04:4d:4d:3a:89:b1:17:c3:f6:df:ba:46:
         de:e5:4f:fe:9f:e7:f0:bf:af:98:30:73:e6:d3:a2:a4:27:79:
         f3:71:ae:f0:e2:05:29:c8:74:ad:f9:7f:6f:b9:6e:28:a5:9b:
         09:98:79:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 11 13:55:30 2024 by rpki-client on console-fra.rpki-client.org