Route Origin Authorization

$ rpki-client -vvf rpki.nap.re/repo/pongery/3/326130613a363034353a666630313a3a2f34382d3438203d3e20323030313630.roa
File:                     326130613a363034353a666630313a3a2f34382d3438203d3e20323030313630.roa (raw, json)
Hash identifier:          OAMTQSUaMIKV4yx7vgaihIu3+s1fuScxXB0dayIl/ug=
Subject key identifier:   5B:65:90:25:17:20:0D:FB:0E:61:D1:24:A5:AE:73:17:A8:9B:84:57
Certificate issuer:       /CN=14381C26711B2A305C5F9C3BC122D9A3B0269E71
Certificate serial:       60ACF31C828F62736D75E22112FBB4AF6778D7BA
Authority key identifier: 14:38:1C:26:71:1B:2A:30:5C:5F:9C:3B:C1:22:D9:A3:B0:26:9E:71
Authority info access:    rsync://rpki.komorebi.network/repo/komorebi/1/14381C26711B2A305C5F9C3BC122D9A3B0269E71.cer
Subject info access:      rsync://rpki.nap.re/repo/pongery/3/326130613a363034353a666630313a3a2f34382d3438203d3e20323030313630.roa
Signing time:             Wed 17 Jan 2024 12:14:06 +0000
ROA not before:           Wed 17 Jan 2024 12:09:06 +0000
ROA not after:            Wed 15 Jan 2025 12:14:06 +0000
asID:                     200160
IP address blocks:        2a0a:6045:ff01::/48 maxlen: 48

Validation:               Failed, unable to get certificate CRL

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            60:ac:f3:1c:82:8f:62:73:6d:75:e2:21:12:fb:b4:af:67:78:d7:ba
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=14381C26711B2A305C5F9C3BC122D9A3B0269E71
        Validity
            Not Before: Jan 17 12:09:06 2024 GMT
            Not After : Jan 15 12:14:06 2025 GMT
        Subject: CN=5B65902517200DFB0E61D124A5AE7317A89B8457
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:3f:9d:13:a9:14:e0:d8:d9:9e:60:b5:9b:72:
                    85:de:83:0f:e0:44:d0:7f:1e:92:88:e1:7d:8f:a5:
                    3b:b7:54:c3:cc:8f:58:52:98:92:d8:d8:5a:08:94:
                    14:7f:ce:8f:45:cb:0f:81:55:23:04:53:13:6f:ae:
                    9b:03:8f:d4:5b:32:96:6f:95:c1:91:56:d0:0b:47:
                    59:d7:69:99:6a:35:6a:00:91:78:6f:47:c3:94:49:
                    c4:be:e4:a0:3f:49:39:23:c9:8d:ea:e6:0b:38:5d:
                    a6:13:55:eb:38:c3:84:ec:18:0b:8c:79:8e:80:46:
                    49:36:a5:63:8b:df:49:05:1d:44:db:7a:58:66:b0:
                    8d:db:50:52:c0:a6:96:0e:aa:44:7b:cd:2d:c7:2f:
                    d3:40:4c:cb:ad:25:b6:63:c9:e9:82:77:f6:85:f0:
                    f4:8a:e3:d1:14:df:3a:c1:c8:ac:81:d1:6d:fa:9e:
                    cb:d6:91:1d:0c:eb:b8:fb:f8:0a:69:5e:5c:7d:7e:
                    89:2b:11:22:ea:a6:3b:72:79:5d:eb:f6:91:79:0a:
                    0a:b3:9d:fa:4f:9f:6a:85:b1:93:97:4a:1c:d9:e1:
                    a7:2e:c3:37:4e:c2:22:bb:fb:b4:3b:4e:a4:2a:49:
                    91:39:a5:e7:46:34:5c:98:6c:3b:58:0e:6c:cc:42:
                    72:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5B:65:90:25:17:20:0D:FB:0E:61:D1:24:A5:AE:73:17:A8:9B:84:57
            X509v3 Authority Key Identifier:
                keyid:14:38:1C:26:71:1B:2A:30:5C:5F:9C:3B:C1:22:D9:A3:B0:26:9E:71

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.nap.re/repo/pongery/3/14381C26711B2A305C5F9C3BC122D9A3B0269E71.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.komorebi.network/repo/komorebi/1/14381C26711B2A305C5F9C3BC122D9A3B0269E71.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.nap.re/repo/pongery/3/326130613a363034353a666630313a3a2f34382d3438203d3e20323030313630.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a0a:6045:ff01::/48

    Signature Algorithm: sha256WithRSAEncryption
         49:30:1e:15:c5:3e:a7:76:05:87:98:ae:27:39:33:0c:fb:16:
         68:99:8f:07:58:2c:23:42:56:b3:ff:07:20:5b:e4:d2:e7:93:
         95:85:10:05:2d:85:a1:39:6a:5e:fc:9c:41:cf:8f:a7:70:ec:
         58:4c:a6:a1:99:f7:ff:52:df:61:02:87:9c:f4:9e:54:5b:f3:
         19:c6:34:db:63:80:bc:9a:a3:2c:b5:76:64:77:9f:cf:03:f5:
         90:5d:4c:80:00:cc:99:8d:17:c8:e8:a0:b7:db:8f:c1:5f:6e:
         db:ca:68:c6:e0:a6:b9:bd:f8:e7:f9:e2:74:a0:d6:9a:e5:62:
         92:d1:23:d5:7b:9b:98:bb:5f:ad:13:f4:50:b6:7c:2f:4b:44:
         3c:3c:7a:47:0a:e3:08:d4:65:7b:63:b3:f7:10:1c:b0:8d:7b:
         7e:b6:47:da:0a:9d:91:15:8f:8b:8a:21:cc:33:47:dd:3d:33:
         d7:0c:a0:56:13:c4:2c:c4:61:40:02:e2:d4:cf:b0:08:3b:7f:
         2f:56:ec:35:78:27:dc:26:c0:31:23:5c:90:ce:33:f3:eb:75:
         60:bd:69:c5:ab:72:b6:33:0f:ec:bb:9e:81:42:ca:27:f9:1a:
         e7:9f:df:25:6a:f1:fa:77:69:5a:3f:6d:84:79:4b:25:07:4f:
         48:82:2a:99
-----BEGIN CERTIFICATE-----
MIIE6DCCA9CgAwIBAgIUYKzzHIKPYnNtdeIhEvu0r2d417owDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTQzODFDMjY3MTFCMkEzMDVDNUY5QzNCQzEyMkQ5QTNC
MDI2OUU3MTAeFw0yNDAxMTcxMjA5MDZaFw0yNTAxMTUxMjE0MDZaMDMxMTAvBgNV
BAMTKDVCNjU5MDI1MTcyMDBERkIwRTYxRDEyNEE1QUU3MzE3QTg5Qjg0NTcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5P50TqRTg2NmeYLWbcoXegw/g
RNB/HpKI4X2PpTu3VMPMj1hSmJLY2FoIlBR/zo9Fyw+BVSMEUxNvrpsDj9RbMpZv
lcGRVtALR1nXaZlqNWoAkXhvR8OUScS+5KA/STkjyY3q5gs4XaYTVes4w4TsGAuM
eY6ARkk2pWOL30kFHUTbelhmsI3bUFLAppYOqkR7zS3HL9NATMutJbZjyemCd/aF
8PSK49EU3zrByKyB0W36nsvWkR0M67j7+AppXlx9fokrESLqpjtyeV3r9pF5Cgqz
nfpPn2qFsZOXShzZ4acuwzdOwiK7+7Q7TqQqSZE5pedGNFyYbDtYDmzMQnIrAgMB
AAGjggHyMIIB7jAdBgNVHQ4EFgQUW2WQJRcgDfsOYdEkpa5zF6ibhFcwHwYDVR0j
BBgwFoAUFDgcJnEbKjBcX5w7wSLZo7AmnnEwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud
HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraS5uYXAucmUvcmVwby9wb25nZXJ5LzMv
MTQzODFDMjY3MTFCMkEzMDVDNUY5QzNCQzEyMkQ5QTNCMDI2OUU3MS5jcmwwdgYI
KwYBBQUHAQEEajBoMGYGCCsGAQUFBzAChlpyc3luYzovL3Jwa2kua29tb3JlYmku
bmV0d29yay9yZXBvL2tvbW9yZWJpLzEvMTQzODFDMjY3MTFCMkEzMDVDNUY5QzNC
QzEyMkQ5QTNCMDI2OUU3MS5jZXIwgYMGCCsGAQUFBwELBHcwdTBzBggrBgEFBQcw
C4ZncnN5bmM6Ly9ycGtpLm5hcC5yZS9yZXBvL3BvbmdlcnkvMy8zMjYxMzA2MTNh
MzYzMDM0MzUzYTY2NjYzMDMxM2EzYTJmMzQzODJkMzQzODIwM2QzZTIwMzIzMDMw
MzEzNjMwLnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEH
AQH/BBMwETAPBAIAAjAJAwcAKgpgRf8BMA0GCSqGSIb3DQEBCwUAA4IBAQBJMB4V
xT6ndgWHmK4nOTMM+xZomY8HWCwjQlaz/wcgW+TS55OVhRAFLYWhOWpe/JxBz4+n
cOxYTKahmff/Ut9hAoec9J5UW/MZxjTbY4C8mqMstXZkd5/PA/WQXUyAAMyZjRfI
6KC324/BX27bymjG4Ka5vfjn+eJ0oNaa5WKS0SPVe5uYu1+tE/RQtnwvS0Q8PHpH
CuMI1GV7Y7P3EBywjXt+tkfaCp2RFY+LiiHMM0fdPTPXDKBWE8QsxGFAAuLUz7AI
O38vVuw1eCfcJsAxI1yQzjPz63VgvWnFq3K2Mw/su56BQson+Rrnn98lavH6d2la
P22EeUslB09IgiqZ
-----END CERTIFICATE-----
Generated at Tue Jul 23 20:54:15 2024 by rpki-client on console-ams.rpki-client.org