Route Origin Authorization

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/326130623a346530343a663030643a3a2f34382d3438203d3e20323135373531.roa
File:                     326130623a346530343a663030643a3a2f34382d3438203d3e20323135373531.roa (raw, json)
Hash identifier:          FB80Vp+AvselVO2O7ciKthn7b69HsJaE/OrxatwU9uI=
Subject key identifier:   29:7E:AD:EC:5E:88:4C:EF:DF:DC:B9:A0:02:88:97:EF:9A:5B:5C:73
Certificate issuer:       /CN=fc59950e49df88985ab0727278320c684d2074be
Certificate serial:       050A1EF8EDB744876CFFD18EE6C3B0AD89474B64
Authority key identifier: FC:59:95:0E:49:DF:88:98:5A:B0:72:72:78:32:0C:68:4D:20:74:BE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/_FmVDknfiJhasHJyeDIMaE0gdL4.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/326130623a346530343a663030643a3a2f34382d3438203d3e20323135373531.roa
Signing time:             Sat 27 Apr 2024 15:41:51 +0000
ROA not before:           Sat 27 Apr 2024 15:36:51 +0000
ROA not after:            Sat 26 Apr 2025 15:41:51 +0000
asID:                     215751
IP address blocks:        2a0b:4e04:f00d::/48 maxlen: 48

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            05:0a:1e:f8:ed:b7:44:87:6c:ff:d1:8e:e6:c3:b0:ad:89:47:4b:64
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fc59950e49df88985ab0727278320c684d2074be
        Validity
            Not Before: Apr 27 15:36:51 2024 GMT
            Not After : Apr 26 15:41:51 2025 GMT
        Subject: CN=297EADEC5E884CEFDFDCB9A0028897EF9A5B5C73
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ee:d9:62:b9:dd:77:4d:12:7f:e9:98:d7:c6:8d:
                    5c:83:42:13:79:2d:24:f2:9d:af:2e:8a:8c:3f:ca:
                    ab:c5:dc:db:f8:46:3a:61:83:d5:69:f6:ac:5c:a6:
                    aa:0f:ff:26:01:8d:d6:13:c8:f0:31:9c:a6:fb:8f:
                    63:1a:8b:85:63:23:72:a6:7d:0c:af:18:76:cf:da:
                    ea:6c:e1:36:c7:8e:77:c9:70:a6:14:e8:87:e2:2d:
                    83:19:d1:6c:bb:9f:32:4e:73:9c:94:41:56:d6:fd:
                    9c:d9:2a:d6:f5:1a:d0:f7:35:51:55:ef:f4:87:f2:
                    96:d6:bf:c5:e8:6a:7e:6a:a6:dd:28:41:5a:ca:2a:
                    b9:3a:4e:a4:43:c2:d5:07:b0:a4:4f:eb:ac:38:7e:
                    1d:ec:e2:8f:4e:da:4b:85:b4:0b:d5:4f:5f:36:de:
                    23:c1:f7:f1:48:6f:3c:ef:df:eb:1a:47:31:2c:ca:
                    2c:35:e3:fc:87:72:1c:31:df:f2:02:e6:47:e8:d1:
                    75:ad:c1:64:9d:07:50:32:9c:ca:7d:9d:1e:78:e3:
                    28:2b:ce:ed:92:b3:58:c3:09:8e:14:66:96:62:cd:
                    8a:31:06:51:68:5c:51:46:ed:9f:ea:85:aa:33:c2:
                    f3:f1:72:e8:19:f4:65:7f:81:3f:ec:56:c1:84:cf:
                    4d:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                29:7E:AD:EC:5E:88:4C:EF:DF:DC:B9:A0:02:88:97:EF:9A:5B:5C:73
            X509v3 Authority Key Identifier:
                keyid:FC:59:95:0E:49:DF:88:98:5A:B0:72:72:78:32:0C:68:4D:20:74:BE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/FC59950E49DF88985AB0727278320C684D2074BE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_FmVDknfiJhasHJyeDIMaE0gdL4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fb30d3de-e574-4a23-a1bd-5f1fa05c53be/0/326130623a346530343a663030643a3a2f34382d3438203d3e20323135373531.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a0b:4e04:f00d::/48

    Signature Algorithm: sha256WithRSAEncryption
         0f:06:d8:04:2b:b7:e7:58:47:6f:8d:55:86:4e:09:7c:36:5f:
         13:a8:e9:7a:cf:15:f9:ec:b8:61:46:f2:88:80:78:63:c7:6a:
         75:37:4c:b8:f7:20:4c:f4:cb:64:d9:46:10:64:eb:a6:d8:69:
         77:04:b3:a0:3e:40:a9:f6:e9:66:f9:88:2f:68:d7:d8:7e:f8:
         3c:98:d4:c6:91:93:93:22:4f:f3:21:d7:9d:8f:60:7d:d2:62:
         b7:fd:cb:e0:91:28:d2:d6:83:fc:42:62:2d:67:f9:db:3a:f7:
         64:e4:98:02:af:01:fd:d0:30:42:17:5d:4a:44:9a:69:6c:a9:
         56:3d:a2:f0:f1:11:e8:32:8a:08:1b:6f:47:b3:6e:0d:f3:b8:
         74:3e:51:aa:34:22:87:d9:1f:4a:51:9c:60:13:ad:03:3d:de:
         7b:37:dc:bd:87:05:99:3e:60:ed:ff:80:96:ca:66:fd:59:22:
         71:31:5f:3b:ca:cd:ee:69:a6:9b:3f:d2:ce:cd:e0:7b:3a:85:
         c0:4f:6b:01:14:7b:d0:93:b3:4f:75:3d:2c:e6:fc:73:63:8b:
         79:ac:42:fd:a1:17:ef:94:de:78:29:b6:22:4e:df:18:96:f0:
         f9:a7:9e:75:62:64:5f:d5:fa:d6:2b:27:64:db:20:11:b8:d4:
         61:50:56:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 11 06:21:28 2024 by rpki-client on console-ams.rpki-client.org