Route Origin Authorization

$ rpki-client -vvf rsync.rpki.tianhai.link/repo/TianhaiRpki/0/326131333a313830303a31303a3a2f34382d3438203d3e2034383432.roa
File:                     326131333a313830303a31303a3a2f34382d3438203d3e2034383432.roa (raw, json)
Hash identifier:          n+dBxezcnyvbpsA1DkoKjK0otYEzrL6qtImkl7Iay2U=
Subject key identifier:   B9:CE:34:6F:D7:2E:2B:FD:0A:EE:4A:11:9B:B6:4B:4F:17:2D:8F:D4
Certificate issuer:       /CN=3cdec27384aade5ca0809fd6f16d2bca18beb659
Certificate serial:       19119CA3F39998BAB5F585B1DC15DB1C7D319747
Authority key identifier: 3C:DE:C2:73:84:AA:DE:5C:A0:80:9F:D6:F1:6D:2B:CA:18:BE:B6:59
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/PN7Cc4Sq3lyggJ_W8W0ryhi-tlk.cer
Subject info access:      rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/0/326131333a313830303a31303a3a2f34382d3438203d3e2034383432.roa
Signing time:             Tue 04 Jun 2024 19:48:02 +0000
ROA not before:           Tue 04 Jun 2024 19:43:02 +0000
ROA not after:            Tue 03 Jun 2025 19:48:02 +0000
asID:                     4842
IP address blocks:        2a13:1800:10::/48 maxlen: 48

Validation:               Failed, unable to get certificate CRL

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            19:11:9c:a3:f3:99:98:ba:b5:f5:85:b1:dc:15:db:1c:7d:31:97:47
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3cdec27384aade5ca0809fd6f16d2bca18beb659
        Validity
            Not Before: Jun  4 19:43:02 2024 GMT
            Not After : Jun  3 19:48:02 2025 GMT
        Subject: CN=B9CE346FD72E2BFD0AEE4A119BB64B4F172D8FD4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:63:90:c1:1a:0c:7b:c9:8e:9d:f6:4d:0e:64:
                    4f:5e:f7:db:54:4a:7b:56:11:9a:3a:5b:63:1f:9b:
                    8a:c6:fb:75:43:f2:7d:48:57:4e:b2:98:59:79:be:
                    8d:28:92:6c:09:54:a1:49:de:69:e6:79:b0:33:e7:
                    ae:db:39:f3:2c:a8:21:82:64:3b:15:8f:7e:57:6d:
                    1b:05:ad:a4:b6:07:23:e9:02:50:ee:59:09:1f:0f:
                    45:3a:83:1b:00:fd:fe:82:ae:7f:5d:5a:46:7a:03:
                    50:f6:40:ee:91:25:e0:d5:0a:1f:33:e5:20:d9:08:
                    b2:02:24:51:49:af:56:97:ff:53:77:9f:ce:ab:67:
                    37:22:1d:2a:8d:f9:ad:43:f3:53:a4:3c:78:de:0a:
                    19:ca:37:60:cf:2b:d9:f1:a0:6d:19:07:e7:3d:9a:
                    66:fa:eb:13:36:e1:7c:fe:95:13:c5:7e:35:db:fc:
                    14:53:7a:b0:c2:ad:b4:5c:06:fb:a6:e7:a7:0a:1e:
                    61:c4:a0:2d:09:f5:d6:85:4c:97:bc:a4:8b:20:cf:
                    03:0f:2e:43:f4:13:8d:28:5c:dd:c0:09:47:34:a9:
                    87:52:50:c7:22:90:92:62:cb:a8:97:bb:a5:97:5f:
                    d6:8e:3b:0c:43:8e:fd:14:72:1b:1d:7b:ec:f5:ea:
                    cc:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B9:CE:34:6F:D7:2E:2B:FD:0A:EE:4A:11:9B:B6:4B:4F:17:2D:8F:D4
            X509v3 Authority Key Identifier:
                keyid:3C:DE:C2:73:84:AA:DE:5C:A0:80:9F:D6:F1:6D:2B:CA:18:BE:B6:59

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/0/3CDEC27384AADE5CA0809FD6F16D2BCA18BEB659.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PN7Cc4Sq3lyggJ_W8W0ryhi-tlk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/0/326131333a313830303a31303a3a2f34382d3438203d3e2034383432.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a13:1800:10::/48

    Signature Algorithm: sha256WithRSAEncryption
         21:e1:ab:6c:fd:09:8e:71:94:3b:75:f6:e5:92:d1:41:c7:f8:
         a9:6b:5e:a8:46:f0:30:0e:c9:51:ed:b1:11:b8:9c:3a:3c:37:
         57:f3:19:73:69:5c:28:8a:a5:20:bd:1d:6d:13:5e:a7:74:d4:
         3f:f1:8b:83:fe:57:27:62:92:98:4d:22:93:36:58:2a:bf:e2:
         7b:84:8e:2c:10:b2:a3:c3:d5:13:e8:ca:5a:64:d9:71:80:8a:
         29:5c:4d:81:78:51:9a:d4:6c:18:95:9a:aa:8b:79:6d:e4:40:
         dd:57:3a:fe:fc:f5:d5:8d:d3:9c:87:aa:84:10:f4:b4:fe:1c:
         13:94:e0:f8:3e:c6:a0:fa:67:8e:5d:e6:ef:99:3e:84:dc:bc:
         a1:5e:b6:1a:c9:13:f7:32:79:1f:8d:9e:66:7c:46:d4:c8:58:
         40:60:69:c8:62:f9:54:a8:c1:97:e7:ce:80:3a:3a:5f:f9:07:
         df:40:d5:de:1d:9b:c1:83:ab:87:db:54:27:f2:ce:0d:35:ee:
         de:11:ce:f9:44:a2:fa:ca:2a:10:87:ee:d8:8c:08:de:fc:80:
         29:03:48:6a:42:48:24:4a:48:a5:09:63:d3:91:ef:cc:fe:ac:
         0a:82:c1:a0:a0:82:84:54:80:aa:e0:1c:99:a9:6c:4d:1f:12:
         ef:6f:37:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 20 05:15:01 2024 by rpki-client on console-ams.rpki-client.org