Route Origin Authorization

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/326130623a346530343a623030623a3a2f34382d3438203d3e20323135373531.roa
File:                     326130623a346530343a623030623a3a2f34382d3438203d3e20323135373531.roa (raw, json)
Hash identifier:          zAq8ds8BdjJQ5LxGQtB7S9WAls6KvLtSnOlbPiSZNhA=
Subject key identifier:   8D:82:2C:13:EE:EB:7F:80:7E:23:D0:B8:4E:71:7E:59:8E:4B:97:1A
Certificate issuer:       /CN=fc59950e49df88985ab0727278320c684d2074be
Certificate serial:       43EA5099FF11274743D4FD8E2DA047FAEBC1CB0E
Authority key identifier: FC:59:95:0E:49:DF:88:98:5A:B0:72:72:78:32:0C:68:4D:20:74:BE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/_FmVDknfiJhasHJyeDIMaE0gdL4.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/326130623a346530343a623030623a3a2f34382d3438203d3e20323135373531.roa
Signing time:             Sat 27 Apr 2024 15:41:51 +0000
ROA not before:           Sat 27 Apr 2024 15:36:51 +0000
ROA not after:            Sat 26 Apr 2025 15:41:51 +0000
asID:                     215751
IP address blocks:        2a0b:4e04:b00b::/48 maxlen: 48

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            43:ea:50:99:ff:11:27:47:43:d4:fd:8e:2d:a0:47:fa:eb:c1:cb:0e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fc59950e49df88985ab0727278320c684d2074be
        Validity
            Not Before: Apr 27 15:36:51 2024 GMT
            Not After : Apr 26 15:41:51 2025 GMT
        Subject: CN=8D822C13EEEB7F807E23D0B84E717E598E4B971A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:ee:7f:06:32:49:46:17:18:11:b8:7b:4e:a1:
                    e3:be:08:4a:2e:93:33:68:aa:d9:3c:a2:2b:e2:6a:
                    92:98:e8:13:97:23:9c:32:81:91:24:ad:99:d2:2f:
                    26:42:e2:36:24:a0:bd:f8:3f:7c:52:04:60:f5:be:
                    1a:f5:80:59:f0:af:31:f8:27:33:7d:e9:90:a9:65:
                    71:e7:d6:c9:1e:06:a9:c5:d6:17:87:04:b6:b0:8d:
                    5e:4f:e6:58:88:f7:4e:8c:d7:71:ec:d5:b2:26:6d:
                    5f:f7:f0:c2:13:67:87:9c:0d:11:4a:8a:17:a1:ae:
                    1c:01:22:ea:8a:43:5d:ea:70:d0:4f:45:09:08:c1:
                    a6:86:81:8f:b6:46:72:f0:19:d2:ee:3f:b9:dd:1a:
                    71:12:3f:e1:7f:4e:fe:f9:da:77:e1:0d:4b:57:93:
                    18:38:bc:83:2f:74:68:aa:87:f7:d3:84:be:52:6b:
                    5a:ec:97:26:e0:d2:22:b0:ca:73:99:28:3b:55:cc:
                    4b:9a:68:4e:06:23:76:df:12:64:77:07:d5:be:7a:
                    3b:a2:80:75:d3:26:69:03:aa:c0:0d:e7:92:f7:6a:
                    11:cb:2e:a6:01:b7:3b:85:95:8d:17:22:6c:66:0e:
                    ea:5b:19:51:7f:de:43:15:f4:f2:6b:ce:02:29:92:
                    f6:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8D:82:2C:13:EE:EB:7F:80:7E:23:D0:B8:4E:71:7E:59:8E:4B:97:1A
            X509v3 Authority Key Identifier:
                keyid:FC:59:95:0E:49:DF:88:98:5A:B0:72:72:78:32:0C:68:4D:20:74:BE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/FC59950E49DF88985AB0727278320C684D2074BE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_FmVDknfiJhasHJyeDIMaE0gdL4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/326130623a346530343a623030623a3a2f34382d3438203d3e20323135373531.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a0b:4e04:b00b::/48

    Signature Algorithm: sha256WithRSAEncryption
         2d:96:29:b1:25:8b:0f:ba:66:ea:26:1c:83:58:c6:3f:da:e4:
         ce:03:13:d8:f2:1f:26:ec:fb:e9:9e:c5:98:db:a1:b9:fe:10:
         be:e9:2b:eb:89:91:00:e0:61:4b:7b:08:0d:10:90:6d:8f:de:
         e3:60:77:34:ac:de:ae:b1:59:d5:86:15:ca:ae:9c:34:50:6f:
         ba:76:a5:79:89:5c:69:cc:2f:dc:24:37:32:e6:70:89:bf:5c:
         82:11:39:c7:1d:07:05:0f:73:0a:e1:cf:c5:78:52:a1:b4:f8:
         ae:0b:bd:aa:81:ba:0b:9b:ea:20:6e:e2:86:3d:c1:42:d6:80:
         c2:e8:30:1b:e0:94:f5:9c:db:5b:8b:e1:c0:69:9b:7e:c5:27:
         be:79:c0:1e:9b:85:90:c8:77:c8:d7:eb:9f:54:61:55:d0:92:
         32:42:57:16:12:6a:46:48:cf:cd:af:02:f6:0c:32:e7:8f:07:
         d0:bb:54:21:6b:9f:82:db:b8:cc:d9:92:80:b5:1b:d7:9e:00:
         41:2d:55:55:bc:50:8a:10:96:9c:ac:18:28:62:18:11:38:7a:
         01:6a:4a:63:7c:b2:bf:1b:0f:e5:ee:1e:96:fc:d8:63:66:b3:
         4c:fc:1c:82:85:eb:1b:9d:f6:0e:6d:4a:f3:57:19:fc:d8:b0:
         45:3e:32:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 11 06:21:28 2024 by rpki-client on console-ams.rpki-client.org