Route Origin Authorization

$ rpki-client -vvf rpki.co/repo/Cube/3/326130363a613030353a323036303a3a2f34332d3438203d3e2030.roa
File:                     326130363a613030353a323036303a3a2f34332d3438203d3e2030.roa (raw, json)
Hash identifier:          0C4fFhNpy5owCxRJWlGw5OtBD7tlW1Ld5MOt9TK4xWI=
Subject key identifier:   5E:3A:3D:D2:2B:B1:86:31:73:74:06:06:30:27:EA:23:D7:E4:A2:8C
Certificate issuer:       /CN=B73753BFBCF7FA7B4FF58FE0218CA5E585434399
Certificate serial:       2BA85BF6E04EFD341629BA035645CB1ED85AB52E
Authority key identifier: B7:37:53:BF:BC:F7:FA:7B:4F:F5:8F:E0:21:8C:A5:E5:85:43:43:99
Authority info access:    rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B73753BFBCF7FA7B4FF58FE0218CA5E585434399.cer
Subject info access:      rsync://rpki.co/repo/Cube/3/326130363a613030353a323036303a3a2f34332d3438203d3e2030.roa
Signing time:             Wed 06 Dec 2023 03:28:13 +0000
ROA not before:           Wed 06 Dec 2023 03:23:13 +0000
ROA not after:            Wed 04 Dec 2024 03:28:13 +0000
asID:                     0
IP address blocks:        2a06:a005:2060::/43 maxlen: 48

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2b:a8:5b:f6:e0:4e:fd:34:16:29:ba:03:56:45:cb:1e:d8:5a:b5:2e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=B73753BFBCF7FA7B4FF58FE0218CA5E585434399
        Validity
            Not Before: Dec  6 03:23:13 2023 GMT
            Not After : Dec  4 03:28:13 2024 GMT
        Subject: CN=5E3A3DD22BB18631737406063027EA23D7E4A28C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:73:67:c5:43:a8:a6:a2:12:df:d5:48:9d:68:
                    39:0b:f2:de:1b:d1:89:01:9c:0e:da:9c:db:39:67:
                    17:92:85:88:7c:80:8e:b1:9b:61:ec:8b:d5:72:fd:
                    a3:90:d6:fb:1e:3b:88:a5:09:7e:ff:42:7d:e5:f0:
                    a2:a9:bc:95:db:40:77:91:35:8a:fb:32:fd:f3:94:
                    22:29:0d:95:1c:13:b6:ac:29:2f:e2:d7:a3:05:00:
                    96:35:09:75:dc:c3:a6:36:3c:c1:e0:f7:8e:fd:a5:
                    5d:2f:1a:1b:2c:7a:f6:77:2a:f3:25:2e:16:01:ed:
                    09:95:dc:2c:5c:4a:a1:2a:a9:33:2e:40:9e:11:0b:
                    e6:30:40:d9:31:3c:b2:bc:db:06:02:62:82:0e:d9:
                    f7:1a:51:14:90:2f:d8:76:4f:9d:c6:4c:1e:b2:9b:
                    7b:e4:20:6d:4e:bc:1b:27:9d:96:32:86:83:26:a3:
                    42:57:86:a9:78:5a:c3:57:09:3b:2a:5c:d5:24:05:
                    22:fd:d5:93:e9:7a:17:c4:ec:82:dd:a8:73:91:77:
                    02:ba:75:67:83:cd:12:b2:e0:c0:a7:18:5c:9b:6a:
                    41:fe:c9:a1:71:01:34:82:d0:ca:d0:5a:1e:87:b5:
                    75:ed:8c:9e:c4:0a:4a:2e:6e:73:d3:d1:c7:3e:9d:
                    f1:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5E:3A:3D:D2:2B:B1:86:31:73:74:06:06:30:27:EA:23:D7:E4:A2:8C
            X509v3 Authority Key Identifier:
                keyid:B7:37:53:BF:BC:F7:FA:7B:4F:F5:8F:E0:21:8C:A5:E5:85:43:43:99

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.co/repo/Cube/3/B73753BFBCF7FA7B4FF58FE0218CA5E585434399.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/B73753BFBCF7FA7B4FF58FE0218CA5E585434399.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.co/repo/Cube/3/326130363a613030353a323036303a3a2f34332d3438203d3e2030.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a06:a005:2060::/43

    Signature Algorithm: sha256WithRSAEncryption
         c4:0e:61:88:11:b5:ef:6a:da:90:92:c8:d6:f8:ca:20:cb:87:
         dd:3f:d5:4b:5b:63:84:b3:12:e2:42:d7:62:a5:44:f9:31:66:
         8d:eb:30:ef:cd:27:44:dc:33:9a:7b:b6:b2:86:ad:2d:1e:cb:
         c3:9f:62:25:d1:f9:33:47:6c:0a:54:f3:1c:16:8e:63:a3:88:
         b1:5d:20:62:8b:65:c0:a2:7e:17:84:59:fb:a0:c1:56:07:5b:
         38:92:15:10:f7:da:f8:5e:42:a3:e2:4f:95:0b:ca:af:5d:e4:
         55:31:dd:30:9e:e1:44:64:69:33:17:28:f7:fd:85:45:88:ea:
         69:07:02:e4:19:ef:c6:13:38:cf:35:25:ed:28:ce:12:0d:ab:
         0b:42:92:74:f2:cf:61:f0:7f:fe:cf:01:96:e9:8d:4b:a0:4c:
         a8:71:95:74:df:29:e6:de:78:01:ef:e4:f9:48:72:1f:74:3c:
         38:fc:60:5d:bb:9c:5e:82:e8:03:b0:75:a9:20:34:e2:d0:a0:
         69:38:8f:ab:e8:ed:b5:e8:07:7a:0c:d4:82:7e:ac:a8:95:bf:
         a1:f5:a4:3e:ad:18:66:8f:46:19:62:57:56:20:a0:c0:2a:d0:
         a6:5f:48:3c:c6:b9:e7:a9:3b:b3:36:cb:b5:59:ba:15:ac:26:
         7f:82:51:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 26 23:22:36 2024 by rpki-client on console-fra.rpki-client.org