Route Origin Authorization

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666663383a3a2f34382d3438203d3e20323136303535.roa
File:                     326131313a663263303a666663383a3a2f34382d3438203d3e20323136303535.roa (raw, json)
Hash identifier:          lw4wrUKDnc9MrzE58FMInTYCC/a4+ewQWnFhyPJtB+4=
Subject key identifier:   07:D2:17:B6:5B:4C:09:12:9D:55:7E:5F:ED:37:D6:47:CC:3E:DF:4F
Certificate issuer:       /CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
Certificate serial:       5DAE0201384CBAF240074A42399068F0C8EEB1D3
Authority key identifier: 11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666663383a3a2f34382d3438203d3e20323136303535.roa
Signing time:             Thu 02 Nov 2023 00:28:41 +0000
ROA not before:           Thu 02 Nov 2023 00:23:41 +0000
ROA not after:            Thu 31 Oct 2024 00:28:41 +0000
asID:                     216055
IP address blocks:        2a11:f2c0:ffc8::/48 maxlen: 48

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            5d:ae:02:01:38:4c:ba:f2:40:07:4a:42:39:90:68:f0:c8:ee:b1:d3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=11ad49c47e2d0e40cfc9b36a2bd2c514e2a6267b
        Validity
            Not Before: Nov  2 00:23:41 2023 GMT
            Not After : Oct 31 00:28:41 2024 GMT
        Subject: CN=07D217B65B4C09129D557E5FED37D647CC3EDF4F
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:67:04:55:59:71:e8:22:86:eb:7b:d7:e6:f8:
                    d2:cf:54:87:80:b2:94:5b:12:dd:89:54:aa:8f:5d:
                    78:0d:6f:6c:5a:76:19:76:11:a9:3f:6b:5b:13:ca:
                    42:81:4a:0d:9e:db:9c:ba:05:1a:cf:e5:f1:bb:61:
                    48:bb:2d:b8:76:96:9e:27:e0:81:c5:9f:34:52:e0:
                    1c:08:4b:ca:01:49:fc:f0:92:2c:92:53:43:3e:44:
                    fe:83:04:6d:24:1b:fa:c1:36:68:94:c2:bf:87:74:
                    f1:87:29:03:ed:3a:f3:4d:f1:5c:f9:29:2c:ed:2f:
                    6a:50:d6:eb:8d:7a:8b:33:32:91:32:f9:71:78:ca:
                    5c:02:dd:86:ab:90:12:3d:e0:d1:6f:52:3d:ef:65:
                    2f:98:35:bd:22:a7:d9:1e:cf:15:89:7c:9f:f6:a3:
                    af:6e:cb:de:6d:0f:d6:2b:a9:f7:8c:fc:60:0a:3d:
                    15:38:b4:8a:48:21:3f:3c:9a:d1:f5:c7:ef:85:86:
                    2a:36:80:e2:f4:d6:51:6c:45:3c:b4:0f:9e:d0:4b:
                    9f:37:82:ec:54:cf:f6:10:02:88:f6:1d:b3:a5:8b:
                    89:f1:ff:45:e7:11:70:ab:b1:b4:8f:59:6f:51:55:
                    4d:88:60:b5:99:c1:1d:c8:f0:49:d3:13:17:50:ab:
                    0b:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                07:D2:17:B6:5B:4C:09:12:9D:55:7E:5F:ED:37:D6:47:CC:3E:DF:4F
            X509v3 Authority Key Identifier:
                keyid:11:AD:49:C4:7E:2D:0E:40:CF:C9:B3:6A:2B:D2:C5:14:E2:A6:26:7B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/11AD49C47E2D0E40CFC9B36A2BD2C514E2A6267B.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ea1JxH4tDkDPybNqK9LFFOKmJns.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7b575ea7-786f-4b2d-a455-79d7fc43ecee/7/326131313a663263303a666663383a3a2f34382d3438203d3e20323136303535.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a11:f2c0:ffc8::/48

    Signature Algorithm: sha256WithRSAEncryption
         2c:04:02:58:8d:9c:2e:50:e6:0d:aa:7e:ba:a9:df:47:39:93:
         5c:70:37:80:3c:85:91:f4:01:97:fa:49:5e:c7:48:2b:dc:71:
         2a:a1:31:4c:13:3f:25:5f:c2:e9:ac:36:c4:d5:71:46:77:5b:
         8e:a4:4d:fa:39:17:db:5b:21:34:f2:92:c3:99:8c:b1:ca:72:
         a3:e9:a2:3d:85:ee:5d:f9:e0:fd:e1:63:a4:d6:f0:b7:bd:08:
         8a:00:4f:4e:e3:56:c9:57:e9:12:3c:c0:85:ab:64:cf:49:d9:
         ed:b5:cf:fc:8a:88:55:1b:c3:d7:30:e4:8e:b9:cf:d8:4e:79:
         fc:bf:2f:e7:35:1c:3b:2c:f8:14:c6:02:05:c0:08:33:a4:21:
         9c:80:07:34:65:5a:cc:68:8c:21:60:9b:40:d8:03:cb:58:4a:
         89:31:aa:8a:47:4c:64:f1:97:fa:b1:f2:08:33:3a:10:ea:62:
         3c:52:71:30:7f:63:c6:89:f0:d5:6d:bc:90:b9:9a:a0:19:09:
         cd:cd:68:8d:7a:ec:c0:01:81:d0:39:9b:9a:b2:c1:0f:27:fc:
         53:84:2e:24:bf:8c:5c:28:c2:00:b9:4e:26:6c:7c:fd:a5:29:
         75:66:e2:fb:ac:3f:27:d7:62:f6:e1:bd:e2:c8:2c:51:2d:06:
         11:84:0b:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 18:29:29 2024 by rpki-client on console-ams.rpki-client.org