Route Origin Authorization

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666330303a3a2f34302d3438203d3e20323032303736.roa
File:                     326131313a663263303a666330303a3a2f34302d3438203d3e20323032303736.roa (raw, json)
Hash identifier:          Ieja5JMQ6eR/tcN4x9+ViPKuZ03ZYW+Q5a6sXz7hCkA=
Subject key identifier:   5E:36:A2:8C:3D:9A:4E:8A:09:95:93:EF:C2:DE:48:64:C3:0C:8A:13
Certificate issuer:       /CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Certificate serial:       4AD5E3562E0C18B7D5FFAC8B68F8D2D4FE07808E
Authority key identifier: 11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666330303a3a2f34302d3438203d3e20323032303736.roa
Signing time:             Mon 15 Apr 2024 17:09:53 +0000
ROA not before:           Mon 15 Apr 2024 17:04:53 +0000
ROA not after:            Mon 14 Apr 2025 17:09:53 +0000
asID:                     202076
IP address blocks:        2a11:f2c0:fc00::/40 maxlen: 48

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            4a:d5:e3:56:2e:0c:18:b7:d5:ff:ac:8b:68:f8:d2:d4:fe:07:80:8e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
        Validity
            Not Before: Apr 15 17:04:53 2024 GMT
            Not After : Apr 14 17:09:53 2025 GMT
        Subject: CN=5E36A28C3D9A4E8A099593EFC2DE4864C30C8A13
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:0d:b6:3f:2a:32:42:73:4c:16:9c:e5:f6:cd:
                    5e:f4:2a:ae:44:47:ee:07:3d:31:aa:10:85:d1:40:
                    02:2d:4b:8f:31:01:f5:2f:c5:b0:cc:a5:27:6d:95:
                    46:a1:98:55:6b:bf:02:ea:30:87:d4:67:58:e5:c7:
                    c5:fe:5a:84:6d:e9:b2:84:6b:44:67:2e:6f:27:fa:
                    02:b3:8c:5c:d7:5d:df:fe:df:18:fc:80:8d:22:20:
                    e5:72:a0:6a:30:d3:46:ea:a0:5f:7f:0e:1d:11:98:
                    df:91:76:0e:24:b1:85:cd:28:37:2c:a2:68:7b:79:
                    6d:b8:e5:c4:1f:96:6b:bb:e6:14:4f:11:1e:c8:23:
                    22:d1:12:d1:53:07:db:24:d8:bb:c4:2c:e2:ab:ce:
                    cc:3e:c6:c3:75:bc:5c:42:65:47:eb:5b:bd:17:52:
                    7e:20:ef:16:11:3c:d2:4e:d9:b1:7d:00:54:5f:f9:
                    e6:70:05:9f:a0:f5:57:e6:37:bd:4e:b9:76:08:c1:
                    f9:3b:95:02:48:e2:e6:17:1a:f1:a8:88:fc:77:30:
                    24:d9:fa:6e:28:12:5c:7c:49:5b:44:16:79:a2:e0:
                    52:2c:8c:59:92:88:95:de:7d:90:2b:0e:b8:fd:eb:
                    8d:63:d2:14:3b:5b:2d:39:ef:bf:d9:c4:85:4d:ce:
                    3f:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5E:36:A2:8C:3D:9A:4E:8A:09:95:93:EF:C2:DE:48:64:C3:0C:8A:13
            X509v3 Authority Key Identifier:
                keyid:11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666330303a3a2f34302d3438203d3e20323032303736.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a11:f2c0:fc00::/40

    Signature Algorithm: sha256WithRSAEncryption
         5b:41:d5:39:1c:2d:f6:9b:55:63:98:da:c0:80:f7:4b:6d:5a:
         bb:4b:e7:71:5e:9e:e2:b0:e2:55:63:d6:07:59:4e:81:e7:42:
         c0:01:b0:ae:b1:76:d6:7d:3f:46:67:f6:24:17:88:01:a2:53:
         f3:a5:29:c1:08:0d:a2:a2:10:3d:de:70:67:60:0b:f9:8f:15:
         a8:d4:f7:69:4a:be:8b:55:ae:15:aa:c1:f5:b6:65:a9:1f:1e:
         a6:3a:d8:0b:30:74:4d:00:71:f1:c8:fd:83:7d:13:7b:12:ac:
         80:7a:b1:a6:43:d6:26:4d:93:ec:c9:b8:2d:86:05:af:dd:db:
         b8:4c:1a:f9:f4:88:c8:9b:1e:8a:56:07:50:69:dd:83:6a:b9:
         f4:86:c3:19:7b:ec:fa:62:55:38:4a:32:dc:5b:b2:66:e5:fb:
         4d:09:a6:be:5e:16:93:f5:39:8d:5a:45:26:81:91:d5:b7:69:
         f3:44:9a:c7:00:e7:34:a6:4d:e4:b2:aa:55:8d:76:b7:73:bf:
         8e:fa:a2:f6:ec:eb:09:97:24:d1:18:8e:13:ed:13:40:a1:19:
         cd:72:79:7d:ef:02:18:cb:81:97:29:14:49:e0:70:48:28:f2:
         a8:95:99:03:c3:17:ed:23:f8:3e:30:c8:14:09:06:21:f2:90:
         7b:4d:d6:06
-----BEGIN CERTIFICATE-----
MIIFPzCCBCegAwIBAgIUStXjVi4MGLfV/6yLaPjS1P4HgI4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMTFhZDQ5YzQ3ZTJkMGU0MGNmYzliMzZhMmJkMmM1MTRl
MmE2MjY3YjAeFw0yNDA0MTUxNzA0NTNaFw0yNTA0MTQxNzA5NTNaMDMxMTAvBgNV
BAMTKDVFMzZBMjhDM0Q5QTRFOEEwOTk1OTNFRkMyREU0ODY0QzMwQzhBMTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoDbY/KjJCc0wWnOX2zV70Kq5E
R+4HPTGqEIXRQAItS48xAfUvxbDMpSdtlUahmFVrvwLqMIfUZ1jlx8X+WoRt6bKE
a0RnLm8n+gKzjFzXXd/+3xj8gI0iIOVyoGow00bqoF9/Dh0RmN+Rdg4ksYXNKDcs
omh7eW245cQflmu75hRPER7IIyLREtFTB9sk2LvELOKrzsw+xsN1vFxCZUfrW70X
Un4g7xYRPNJO2bF9AFRf+eZwBZ+g9VfmN71OuXYIwfk7lQJI4uYXGvGoiPx3MCTZ
+m4oElx8SVtEFnmi4FIsjFmSiJXefZArDrj9641j0hQ7Wy0577/ZxIVNzj//AgMB
AAGjggJJMIICRTAdBgNVHQ4EFgQUXjaijD2aTooJlZPvwt5IZMMMihMwHwYDVR0j
BBgwFoAUEa1JxH4tDkDPybNqK9LFFOKmJnswDgYDVR0PAQH/BAQDAgeAMIGVBgNV
HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvN2I1NzVlYTctNzg2Zi00YjJkLWE0NTUtNzlkN2ZjNDNl
Y2VlLzcvMTFBRDQ5QzQ3RTJEMEU0MENGQzlCMzZBMkJEMkM1MTRFMkE2MjY3Qi5j
cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw
ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0VhMUp4SDR0RGtEUHliTnFLOUxGRk9L
bUpucy5jZXIwgbcGCCsGAQUFBwELBIGqMIGnMIGkBggrBgEFBQcwC4aBl3JzeW5j
Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvN2I1NzVlYTct
Nzg2Zi00YjJkLWE0NTUtNzlkN2ZjNDNlY2VlLzcvMzI2MTMxMzEzYTY2MzI2MzMw
M2E2NjYzMzAzMDNhM2EyZjM0MzAyZDM0MzgyMDNkM2UyMDMyMzAzMjMwMzczNi5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAw
DgQCAAIwCAMGACoR8sD8MA0GCSqGSIb3DQEBCwUAA4IBAQBbQdU5HC32m1VjmNrA
gPdLbVq7S+dxXp7isOJVY9YHWU6B50LAAbCusXbWfT9GZ/YkF4gBolPzpSnBCA2i
ohA93nBnYAv5jxWo1PdpSr6LVa4VqsH1tmWpHx6mOtgLMHRNAHHxyP2DfRN7EqyA
erGmQ9YmTZPsybgthgWv3du4TBr59IjImx6KVgdQad2Darn0hsMZe+z6YlU4SjLc
W7Jm5ftNCaa+XhaT9TmNWkUmgZHVt2nzRJrHAOc0pk3ksqpVjXa3c7+O+qL27OsJ
lyTRGI4T7RNAoRnNcnl97wIYy4GXKRRJ4HBIKPKolZkDwxftI/g+MMgUCQYh8pB7
TdYG
-----END CERTIFICATE-----
Generated at Sun Jun 30 18:29:29 2024 by rpki-client on console-ams.rpki-client.org