Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/72186e-17a3-46d1-a294-d5a78fc59d12/1/BbVxzWzSJi2_9Xeii1XVk7-M8u4.roa
File:                     BbVxzWzSJi2_9Xeii1XVk7-M8u4.roa (raw, json)
Hash identifier:          U0UIhPk6jNDzoe6AYKSk0T0TDPzZbd88+FhmPT0mPGk=
Subject key identifier:   05:B5:71:CD:6C:D2:26:2D:BF:F5:77:A2:8B:55:D5:93:BF:8C:F2:EE
Certificate issuer:       /CN=1036a63e717ab58cef66ac62b2067480696cfe9e
Certificate serial:       0183526C84E32DE5E56BC4AE76A91BB46D22
Authority key identifier: 10:36:A6:3E:71:7A:B5:8C:EF:66:AC:62:B2:06:74:80:69:6C:FE:9E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/EDamPnF6tYzvZqxisgZ0gGls_p4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/23/72186e-17a3-46d1-a294-d5a78fc59d12/1/BbVxzWzSJi2_9Xeii1XVk7-M8u4.roa
Signing time:             Sun 18 Sep 2022 21:06:27 +0000
ROA not before:           Sun 18 Sep 2022 21:06:27 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     956
IP address blocks:        195.88.212.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:83:52:6c:84:e3:2d:e5:e5:6b:c4:ae:76:a9:1b:b4:6d:22
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1036a63e717ab58cef66ac62b2067480696cfe9e
        Validity
            Not Before: Sep 18 21:06:27 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=05b571cd6cd2262dbff577a28b55d593bf8cf2ee
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:f8:b4:b1:3b:cb:d9:4f:8c:c4:0a:e0:76:73:
                    28:de:f2:4a:cc:0d:e6:91:7f:ec:d9:26:f1:25:91:
                    91:af:83:c5:c3:01:2f:d8:34:ed:3b:ff:3b:d6:10:
                    71:6c:dc:44:d7:6e:96:ed:0e:fd:7e:42:c8:f8:27:
                    97:11:17:d3:46:34:ff:6e:90:49:a2:08:33:b4:09:
                    15:98:4a:ab:a8:ef:53:c6:04:fe:b7:82:cc:c7:05:
                    46:36:81:5d:db:0c:c8:25:8d:b2:7c:83:4e:15:5b:
                    d1:92:24:30:ad:03:8c:b6:3d:81:93:a4:9f:9b:e5:
                    12:6e:42:18:62:44:4b:84:c9:a2:a2:c7:ac:c8:d7:
                    ab:a1:f6:b6:be:53:60:a3:ea:32:f5:91:ae:74:2c:
                    e1:dd:71:78:00:70:71:84:56:b0:5d:f2:e4:ad:cd:
                    51:bd:2b:ce:5d:8e:f4:76:b1:3e:05:4b:ad:5f:c5:
                    4e:f3:34:38:fc:95:1e:96:1a:7e:a5:7a:d6:56:70:
                    ce:87:47:97:1d:4c:c2:25:c7:0c:2c:3c:10:3d:ec:
                    c0:50:33:5d:31:67:9e:71:0f:bc:ad:b3:67:4f:45:
                    8d:4c:f1:f4:40:02:0c:41:06:ee:a2:54:c9:2c:49:
                    06:71:5d:be:6a:a8:86:ad:de:5b:fd:1a:44:89:be:
                    79:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                05:B5:71:CD:6C:D2:26:2D:BF:F5:77:A2:8B:55:D5:93:BF:8C:F2:EE
            X509v3 Authority Key Identifier:
                keyid:10:36:A6:3E:71:7A:B5:8C:EF:66:AC:62:B2:06:74:80:69:6C:FE:9E

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EDamPnF6tYzvZqxisgZ0gGls_p4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/72186e-17a3-46d1-a294-d5a78fc59d12/1/BbVxzWzSJi2_9Xeii1XVk7-M8u4.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/23/72186e-17a3-46d1-a294-d5a78fc59d12/1/EDamPnF6tYzvZqxisgZ0gGls_p4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  195.88.212.0/24

    Signature Algorithm: sha256WithRSAEncryption
         84:7a:66:28:48:a4:72:94:a3:6e:48:87:2b:8a:9a:c2:f0:9b:
         d1:10:db:3f:4a:b2:20:8a:ec:31:4e:76:82:67:07:92:44:10:
         80:d4:fd:4f:76:57:41:6a:ac:df:2a:1c:68:1f:26:80:75:f6:
         ef:29:0f:d6:ba:66:21:11:0a:8b:3c:88:12:91:ff:90:a9:b0:
         59:08:cc:31:87:ec:49:15:19:aa:33:b6:ad:7b:45:ec:70:b0:
         37:17:8a:7d:5a:42:61:db:75:f0:d9:84:e0:2a:86:c5:84:ae:
         b6:43:b2:e0:4b:ef:f4:17:d2:bc:03:a9:00:97:6e:0b:6a:ae:
         d6:e9:32:24:b4:22:26:c4:db:22:5a:20:95:03:61:bb:69:79:
         a3:8d:b2:e7:e5:5d:61:b3:bd:4b:8d:f7:53:84:cf:e6:5d:3d:
         2c:e1:fb:88:1e:2e:de:cb:32:c3:2d:a5:05:02:03:51:56:f6:
         d5:d2:97:42:b7:c1:ee:81:48:0e:d3:fa:9d:fb:b1:0e:d8:4c:
         ba:b6:18:db:e6:a3:0d:1a:e3:fd:c0:af:67:30:cf:98:cc:5e:
         be:f3:5c:75:2f:0e:71:8d:54:b0:45:33:61:92:7a:74:0e:eb:
         10:0d:32:cd:5a:b8:f4:bc:42:f3:4d:7b:b0:b7:4d:b2:4d:50:
         92:8a:73:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:12 2024 by rpki-client on console-ams.rpki-client.org