Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/e5fd54-be89-4de2-aace-0d65a6c1d5b2/1/r8TD9SSknth7Z6ZXzIkxFU9pi6s.roa
File:                     r8TD9SSknth7Z6ZXzIkxFU9pi6s.roa (raw, json)
Hash identifier:          ZX36ZePRqafof4TMRCc5QHuPSZQaaTHsKN1p9w9TLC0=
Subject key identifier:   AF:C4:C3:F5:24:A4:9E:D8:7B:67:A6:57:CC:89:31:15:4F:69:8B:AB
Certificate issuer:       /CN=e778acfd17c5fab4e0c60307998d464260293099
Certificate serial:       014B9B49
Authority key identifier: E7:78:AC:FD:17:C5:FA:B4:E0:C6:03:07:99:8D:46:42:60:29:30:99
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/53is_RfF-rTgxgMHmY1GQmApMJk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1b/e5fd54-be89-4de2-aace-0d65a6c1d5b2/1/r8TD9SSknth7Z6ZXzIkxFU9pi6s.roa
Signing time:             Sat 01 Jan 2022 16:10:44 +0000
ROA not before:           Sat 01 Jan 2022 16:10:44 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     41155
IP address blocks:        77.75.231.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 21732169 (0x14b9b49)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e778acfd17c5fab4e0c60307998d464260293099
        Validity
            Not Before: Jan  1 16:10:44 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=afc4c3f524a49ed87b67a657cc8931154f698bab
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:c0:19:01:e5:f4:71:4a:c8:db:11:41:af:9b:
                    ff:ad:88:25:af:8e:fb:6e:ac:b9:ef:18:1b:8b:6e:
                    ba:3a:2e:b8:83:08:c4:68:3a:29:57:5d:82:56:64:
                    0e:a8:aa:49:1f:92:79:dc:08:c0:26:b0:18:aa:a5:
                    d9:45:bd:c2:57:a9:7d:46:21:ff:47:96:b7:ea:2e:
                    5a:5d:a0:2e:12:9b:6f:b7:ce:55:f0:c7:41:8e:3b:
                    53:51:25:44:f6:c0:1a:cb:d2:35:d4:95:58:7c:a9:
                    c3:02:2d:4b:5d:fa:b9:27:12:11:9b:86:a1:db:75:
                    8f:84:1f:69:fd:d3:85:86:1f:97:c9:07:2e:61:b2:
                    e3:90:2e:ea:55:4e:75:b0:54:8c:0f:a1:31:96:0f:
                    f0:a9:de:c8:3d:f5:ae:0f:ff:f5:72:21:3a:b7:a1:
                    e0:30:33:72:8e:2b:37:a6:c4:6d:5c:c9:55:19:37:
                    e6:22:1a:20:ff:cf:ea:ba:43:79:58:af:1e:7a:1f:
                    55:00:7a:b2:49:29:3d:ca:e9:0b:fc:52:f7:8b:57:
                    f9:fe:5c:e8:ab:30:a3:f3:06:5a:cd:7a:f8:e4:1f:
                    5e:93:c1:60:6e:7d:6c:60:35:bb:c7:a2:60:4c:e3:
                    a9:72:fb:d5:9c:96:0e:cc:ae:e2:a4:ac:da:2d:f3:
                    97:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AF:C4:C3:F5:24:A4:9E:D8:7B:67:A6:57:CC:89:31:15:4F:69:8B:AB
            X509v3 Authority Key Identifier:
                keyid:E7:78:AC:FD:17:C5:FA:B4:E0:C6:03:07:99:8D:46:42:60:29:30:99

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53is_RfF-rTgxgMHmY1GQmApMJk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e5fd54-be89-4de2-aace-0d65a6c1d5b2/1/r8TD9SSknth7Z6ZXzIkxFU9pi6s.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e5fd54-be89-4de2-aace-0d65a6c1d5b2/1/53is_RfF-rTgxgMHmY1GQmApMJk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  77.75.231.0/24

    Signature Algorithm: sha256WithRSAEncryption
         7a:76:c1:7f:12:64:87:3a:df:d7:17:5e:6d:70:e9:64:bd:17:
         a7:c9:46:65:e2:b7:f1:f2:d0:1d:72:d1:b0:f1:40:1b:93:42:
         e9:7d:c9:d5:d0:15:c2:1d:8d:da:fa:90:18:a3:d3:36:64:0e:
         3d:77:ba:0e:9a:39:65:ba:03:89:5d:7e:fb:49:e5:c1:f0:5a:
         97:fe:8e:0a:92:fd:07:d6:23:3f:cf:6b:23:e3:01:fd:39:06:
         5b:ea:16:f3:fd:fc:51:e2:46:83:eb:b2:d0:f9:54:90:62:8a:
         b5:b6:13:84:be:90:c4:4e:b6:d7:2d:20:03:7b:dd:83:62:78:
         64:85:82:02:52:5e:fe:ff:4d:43:a6:b0:df:c9:56:87:fb:ce:
         45:7d:25:f3:be:8d:d3:05:f5:81:f3:51:8f:e6:45:23:1e:12:
         48:08:a6:4d:28:84:f0:91:87:ee:bc:74:f7:04:34:f5:65:db:
         37:eb:c3:2f:5e:44:4a:19:27:6f:f6:eb:dd:49:78:d7:47:08:
         c9:76:0e:72:0f:7c:20:a1:e1:c7:7f:f7:00:75:34:c7:bc:cd:
         e7:50:f2:8a:28:67:b8:17:d7:81:34:42:d1:45:7a:50:ba:59:
         a4:c4:79:58:1e:0b:c7:5d:87:2e:32:7a:cc:fc:c2:0d:ba:5c:
         51:2b:df:aa
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAUubSTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
Nzc4YWNmZDE3YzVmYWI0ZTBjNjAzMDc5OThkNDY0MjYwMjkzMDk5MB4XDTIyMDEw
MTE2MTA0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWZjNGMzZjUyNGE0
OWVkODdiNjdhNjU3Y2M4OTMxMTU0ZjY5OGJhYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL7AGQHl9HFKyNsRQa+b/62IJa+O+26sue8YG4tuujouuIMI
xGg6KVddglZkDqiqSR+SedwIwCawGKql2UW9wlepfUYh/0eWt+ouWl2gLhKbb7fO
VfDHQY47U1ElRPbAGsvSNdSVWHypwwItS136uScSEZuGodt1j4Qfaf3ThYYfl8kH
LmGy45Au6lVOdbBUjA+hMZYP8KneyD31rg//9XIhOreh4DAzco4rN6bEbVzJVRk3
5iIaIP/P6rpDeVivHnofVQB6skkpPcrpC/xS94tX+f5c6Kswo/MGWs16+OQfXpPB
YG59bGA1u8eiYEzjqXL71ZyWDsyu4qSs2i3zly0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSvxMP1JKSe2HtnplfMiTEVT2mLqzAfBgNVHSMEGDAWgBTneKz9F8X6tODG
AweZjUZCYCkwmTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzUzaXNfUmZGLXJUZ3hnTUhtWTFHUW1BcE1Kay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMWIvZTVmZDU0LWJlODktNGRlMi1hYWNlLTBkNjVhNmMxZDViMi8x
L3I4VEQ5U1NrbnRoN1o2Wlh6SWt4RlU5cGk2cy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWIv
ZTVmZDU0LWJlODktNGRlMi1hYWNlLTBkNjVhNmMxZDViMi8xLzUzaXNfUmZGLXJU
Z3hnTUhtWTFHUW1BcE1Kay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAE1L5zANBgkqhkiG9w0BAQsFAAOC
AQEAenbBfxJkhzrf1xdebXDpZL0Xp8lGZeK38fLQHXLRsPFAG5NC6X3J1dAVwh2N
2vqQGKPTNmQOPXe6Dpo5ZboDiV1++0nlwfBal/6OCpL9B9YjP89rI+MB/TkGW+oW
8/38UeJGg+uy0PlUkGKKtbYThL6QxE621y0gA3vdg2J4ZIWCAlJe/v9NQ6aw38lW
h/vORX0l876N0wX1gfNRj+ZFIx4SSAimTSiE8JGH7rx09wQ09WXbN+vDL15EShkn
b/br3Ul410cIyXYOcg98IKHhx3/3AHU0x7zN51DyiihnuBfXgTRC0UV6ULpZpMR5
WB4Lx12HLjJ6zPzCDbpcUSvfqg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:27 2024 by rpki-client on console-fra.rpki-client.org