Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/c1b4e7-c4b8-4ef0-b405-f5add9d6efe0/1/nUybjJZp-7CHYouNY-Marw3Xwwk.roa
File:                     nUybjJZp-7CHYouNY-Marw3Xwwk.roa (raw, json)
Hash identifier:          vkirrfL0bPLdfAMV5QzuwD891MMYNl7Qdq+pgQgw14I=
Subject key identifier:   9D:4C:9B:8C:96:69:FB:B0:87:62:8B:8D:63:E3:1A:AF:0D:D7:C3:09
Certificate issuer:       /CN=0ee51a1dd6c876c3824caca83ae4d09baa730b87
Certificate serial:       E9BC
Authority key identifier: 0E:E5:1A:1D:D6:C8:76:C3:82:4C:AC:A8:3A:E4:D0:9B:AA:73:0B:87
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/DuUaHdbIdsOCTKyoOuTQm6pzC4c.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/34/c1b4e7-c4b8-4ef0-b405-f5add9d6efe0/1/nUybjJZp-7CHYouNY-Marw3Xwwk.roa
Signing time:             Thu 27 Jan 2022 09:36:26 +0000
ROA not before:           Thu 27 Jan 2022 09:36:26 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     212667
IP address blocks:        62.68.85.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 59836 (0xe9bc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0ee51a1dd6c876c3824caca83ae4d09baa730b87
        Validity
            Not Before: Jan 27 09:36:26 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=9d4c9b8c9669fbb087628b8d63e31aaf0dd7c309
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:6e:59:a3:23:43:0b:95:fa:5a:fd:ed:c0:ac:
                    6d:f8:bc:b5:34:14:de:b4:5e:03:44:e4:4c:95:b1:
                    01:7d:ab:7f:c5:37:a3:7e:3b:56:0a:9d:54:10:5b:
                    59:ed:68:27:c4:89:06:fb:3c:cd:fc:c8:79:3a:a0:
                    22:ad:94:08:78:b0:47:60:bc:1f:b2:f5:35:0d:b6:
                    26:45:36:52:f5:1f:27:c9:e3:45:fd:ed:ec:11:8c:
                    57:a1:69:16:bf:78:f0:93:20:d5:ac:11:91:45:7c:
                    97:63:81:89:f6:b0:38:a0:c4:d7:12:50:8b:78:14:
                    5e:c9:3d:81:8c:54:80:29:81:58:e3:c0:0a:10:01:
                    22:79:17:74:83:5f:d4:34:89:64:bf:c9:09:89:fb:
                    11:7c:3b:98:98:0d:1d:a8:93:7e:61:ad:74:ce:02:
                    c3:2c:85:d5:2f:a6:8e:6b:e6:dc:93:ae:ba:d2:42:
                    51:7f:55:f3:b7:8f:7a:3a:d2:d4:1d:1b:45:0e:40:
                    46:86:a5:32:e9:72:b6:24:14:56:7e:95:94:15:f9:
                    7c:36:61:09:d3:32:34:e7:82:88:e9:91:a9:30:d9:
                    74:2b:bb:e0:eb:0e:72:76:ef:f6:59:ff:6d:c1:a9:
                    ba:ca:54:40:47:96:29:d1:41:a6:a0:93:9a:01:3a:
                    d0:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9D:4C:9B:8C:96:69:FB:B0:87:62:8B:8D:63:E3:1A:AF:0D:D7:C3:09
            X509v3 Authority Key Identifier:
                keyid:0E:E5:1A:1D:D6:C8:76:C3:82:4C:AC:A8:3A:E4:D0:9B:AA:73:0B:87

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DuUaHdbIdsOCTKyoOuTQm6pzC4c.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/c1b4e7-c4b8-4ef0-b405-f5add9d6efe0/1/nUybjJZp-7CHYouNY-Marw3Xwwk.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/34/c1b4e7-c4b8-4ef0-b405-f5add9d6efe0/1/DuUaHdbIdsOCTKyoOuTQm6pzC4c.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  62.68.85.0/24

    Signature Algorithm: sha256WithRSAEncryption
         61:72:b0:b6:47:de:76:a9:e9:58:d1:0b:4c:4d:f6:aa:88:df:
         3e:4d:4c:76:22:9d:35:b3:2d:2c:c9:82:22:3b:95:b3:57:16:
         01:8c:7a:50:77:6e:0e:57:65:57:15:68:ea:e5:fb:71:91:5b:
         4d:97:78:03:d3:c8:e1:e5:a2:23:0f:1d:25:8d:75:00:5c:10:
         cd:e8:ac:27:98:7f:99:dc:d5:cf:85:57:74:b4:a0:d5:bf:3e:
         d8:7f:f4:af:b4:df:75:4f:de:4d:22:cd:6a:fe:98:3f:a4:ec:
         22:19:fe:d3:07:9a:04:17:d3:be:a7:7c:95:93:2b:7d:1e:d7:
         cb:1e:b6:90:15:b2:5c:ca:e0:5d:89:e8:95:96:4c:72:ee:c7:
         c5:d8:07:f8:c5:42:98:67:b6:64:37:ec:4b:59:e0:dd:d1:d9:
         cb:a5:b8:e7:9b:a7:59:4d:b0:9d:dc:b5:1f:74:b8:42:a7:58:
         62:9b:00:9a:97:42:9f:ef:b3:a5:a8:12:08:3c:2f:48:83:bb:
         ed:70:50:d2:1e:8c:b1:d9:55:c4:6a:6c:1e:7b:ed:b8:96:d8:
         0c:ac:9a:f9:49:f8:4e:b2:72:59:37:f5:f3:11:a3:96:b0:0d:
         54:d3:04:ce:c7:6a:79:90:25:4d:1e:54:08:4a:81:9c:47:b1:
         67:2b:69:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:01 2024 by rpki-client on console-fra.rpki-client.org