Route Origin Authorization

$ rpki-client -vvf rpki.co/repo/Cube/3/326130363a613030353a323035303a3a2f34342d3438203d3e2030.roa
File:                     326130363a613030353a323035303a3a2f34342d3438203d3e2030.roa (raw, json)
Hash identifier:          JZprHmGh44qZBAWnK/XLRT5niq1PL4r1J6/6fY672P8=
Subject key identifier:   5F:EC:BF:28:2F:1D:8E:7A:43:C6:CA:D1:D3:23:12:07:BB:AB:83:F4
Certificate issuer:       /CN=B73753BFBCF7FA7B4FF58FE0218CA5E585434399
Certificate serial:       35E08BEA81C30B2611B4F892473B24DFC4F0C700
Authority key identifier: B7:37:53:BF:BC:F7:FA:7B:4F:F5:8F:E0:21:8C:A5:E5:85:43:43:99
Authority info access:    rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B73753BFBCF7FA7B4FF58FE0218CA5E585434399.cer
Subject info access:      rsync://rpki.co/repo/Cube/3/326130363a613030353a323035303a3a2f34342d3438203d3e2030.roa
Signing time:             Sun 13 Aug 2023 17:20:43 +0000
ROA not before:           Sun 13 Aug 2023 17:15:43 +0000
ROA not after:            Sun 11 Aug 2024 17:20:43 +0000
asID:                     0
IP address blocks:        2a06:a005:2050::/44 maxlen: 48

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            35:e0:8b:ea:81:c3:0b:26:11:b4:f8:92:47:3b:24:df:c4:f0:c7:00
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=B73753BFBCF7FA7B4FF58FE0218CA5E585434399
        Validity
            Not Before: Aug 13 17:15:43 2023 GMT
            Not After : Aug 11 17:20:43 2024 GMT
        Subject: CN=5FECBF282F1D8E7A43C6CAD1D3231207BBAB83F4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:4d:9f:a5:95:27:8b:68:5c:1d:90:47:8f:a5:
                    d4:26:a2:ad:ef:66:9e:18:5c:ad:71:be:3f:1d:87:
                    fb:a6:73:4a:e6:af:7f:16:3f:0b:c0:1e:6b:be:eb:
                    7b:b4:9c:22:2b:ad:e5:93:ba:cb:c9:a2:35:66:ac:
                    c4:ab:7a:0a:08:3e:e7:6f:1c:ed:b1:3e:b4:76:4d:
                    34:6d:f3:de:5f:75:75:e2:4e:2c:b3:f7:66:32:54:
                    0d:d1:68:2c:dd:6f:ab:36:48:d3:61:6a:bf:3f:a6:
                    0f:00:e8:1f:de:22:95:61:08:a2:00:83:e9:20:1a:
                    6d:fd:9a:67:33:f7:3f:7b:5e:c3:aa:22:bc:b1:98:
                    14:6a:ae:fa:35:cb:e6:62:6e:e2:36:71:c9:fd:3b:
                    3e:72:b6:d2:a0:1f:84:a9:b5:e7:d8:77:3b:a0:2f:
                    d4:ea:3a:66:07:9b:bd:84:6e:59:0c:ca:4b:fa:84:
                    7a:e4:62:02:8d:54:c8:f7:9a:85:3b:fe:5e:db:20:
                    86:ee:b8:6f:1b:ec:f9:f0:83:15:5f:8f:89:18:fc:
                    a6:5a:27:4c:55:a6:28:c2:0c:80:b4:80:23:da:8f:
                    19:cc:f7:f6:6f:d8:e6:0e:4b:9c:ea:09:ed:2a:1e:
                    7b:f9:73:8b:fc:8f:da:a6:36:ef:d2:b5:0f:51:c3:
                    dd:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5F:EC:BF:28:2F:1D:8E:7A:43:C6:CA:D1:D3:23:12:07:BB:AB:83:F4
            X509v3 Authority Key Identifier:
                keyid:B7:37:53:BF:BC:F7:FA:7B:4F:F5:8F:E0:21:8C:A5:E5:85:43:43:99

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.co/repo/Cube/3/B73753BFBCF7FA7B4FF58FE0218CA5E585434399.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B73753BFBCF7FA7B4FF58FE0218CA5E585434399.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.co/repo/Cube/3/326130363a613030353a323035303a3a2f34342d3438203d3e2030.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a06:a005:2050::/44

    Signature Algorithm: sha256WithRSAEncryption
         bc:06:e5:51:59:5b:fb:fa:49:01:64:42:5d:a8:8e:3f:9e:0a:
         03:22:7c:51:92:99:07:10:1e:bf:cf:5c:83:e7:ae:75:7b:f7:
         2d:c9:bf:b1:d0:e7:bc:29:35:1b:e0:e1:65:5c:65:30:d0:46:
         2e:29:e1:78:ae:5f:d4:40:8a:17:5c:d6:5f:c7:77:12:55:c6:
         e1:ff:3f:c9:1c:96:4b:7a:8d:d0:7b:ac:8c:94:23:ba:bc:d2:
         89:39:3f:9a:58:03:64:a1:c8:98:f5:9f:e4:ff:91:c8:bb:4c:
         44:8c:2c:e3:75:7c:da:f0:c9:b0:24:17:3d:aa:9d:56:69:b6:
         0e:90:2a:fc:cc:d2:67:26:df:da:9e:ce:7b:37:aa:73:f7:c6:
         d3:0c:9f:0c:dc:7d:1d:9d:d1:ab:f5:e3:53:69:d7:4d:f6:31:
         5e:c1:19:10:d7:4b:1a:b3:92:79:49:a9:84:8d:69:90:92:f1:
         bc:34:75:92:4d:f6:bd:a5:e4:f6:a8:3a:2b:a9:d7:e0:a1:57:
         90:b1:8c:01:df:8c:da:9b:ad:9e:77:e1:45:27:86:3f:cc:e5:
         1c:5f:33:ad:bc:2e:ac:38:1e:8d:42:77:f7:36:e5:99:cb:b8:
         ef:2b:c3:96:ae:03:d2:df:c8:2f:84:8b:1d:86:d7:22:3d:54:
         d2:87:00:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 27 01:16:57 2024 by rpki-client on console-ams.rpki-client.org