Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/Wy47kyq3CWynH8xBU9tcVpMd6qc.roa
File:                     Wy47kyq3CWynH8xBU9tcVpMd6qc.roa (raw, json)
Hash identifier:          Hv/b1vRBnqMgh8adDp2yr90xgIXyzr+2qgr2bhI8yb4=
Subject key identifier:   5B:2E:3B:93:2A:B7:09:6C:A7:1F:CC:41:53:DB:5C:56:93:1D:EA:A7
Certificate issuer:       /CN=fb1157e81b7c9e43360a1cb50a31401175921808
Certificate serial:       01C068C2
Authority key identifier: FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/Wy47kyq3CWynH8xBU9tcVpMd6qc.roa
Signing time:             Thu 17 Feb 2022 15:22:41 +0000
ROA not before:           Thu 17 Feb 2022 15:22:41 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     61317
IP address blocks:        193.107.21.0/24 maxlen: 24
                          193.108.102.0/23 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 29386946 (0x1c068c2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fb1157e81b7c9e43360a1cb50a31401175921808
        Validity
            Not Before: Feb 17 15:22:41 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=5b2e3b932ab7096ca71fcc4153db5c56931deaa7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cf:e2:11:c3:aa:6d:fc:5b:5c:66:a6:a4:2d:bc:
                    7f:2b:62:e1:0b:40:62:28:96:02:ef:fd:6e:13:db:
                    8e:91:a4:ad:e5:b0:e4:9a:cc:ab:cf:0d:9d:fd:e4:
                    db:5a:e1:1a:55:6e:f0:f9:25:54:7e:8e:2b:4b:d4:
                    7e:41:19:5a:1c:8c:39:a5:53:82:74:e8:ff:94:84:
                    3b:10:4e:ce:d5:c1:95:21:07:59:a0:e7:1c:fb:29:
                    f3:ff:08:f8:27:53:9f:5f:fd:65:88:66:08:5b:f3:
                    ad:63:2e:69:33:43:96:7d:cc:51:8b:8b:46:f9:0c:
                    15:e2:90:fc:f8:7f:d2:ac:7b:d1:f2:4e:98:cc:70:
                    2a:30:2c:67:0b:f9:10:fb:b5:e5:84:48:68:e3:37:
                    3f:d1:89:aa:41:ff:43:83:fc:32:b7:9e:83:9f:05:
                    85:3c:9e:3e:6f:0e:81:58:30:9b:5c:b7:18:73:74:
                    d7:5c:76:c4:9e:21:2c:da:b3:0e:f5:7c:d9:a8:33:
                    b5:c7:ef:ec:82:17:4c:53:88:f7:5b:eb:c2:10:a5:
                    ad:36:77:16:09:e7:8b:8d:58:44:1c:25:25:d9:11:
                    b3:48:c7:c8:5f:87:e0:db:a6:57:ed:5e:cb:b6:f1:
                    3a:c7:e3:8b:1d:53:b1:1c:5a:e8:9f:f2:4b:17:d0:
                    5e:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5B:2E:3B:93:2A:B7:09:6C:A7:1F:CC:41:53:DB:5C:56:93:1D:EA:A7
            X509v3 Authority Key Identifier:
                keyid:FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/Wy47kyq3CWynH8xBU9tcVpMd6qc.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  193.107.21.0/24
                  193.108.102.0/23

    Signature Algorithm: sha256WithRSAEncryption
         c6:db:b7:d8:b8:cc:a3:87:e3:7f:bd:9f:6e:e9:31:2b:5b:ec:
         d8:eb:01:74:78:3e:27:b1:77:9b:b8:e3:16:bd:ab:7f:a9:38:
         fb:d8:21:73:12:ad:b5:de:3e:57:d6:04:53:f7:67:72:0c:69:
         64:27:1b:62:38:d8:4e:fa:d3:a8:af:e4:62:d5:e9:30:35:69:
         b1:ea:b0:a2:f1:d3:48:72:ac:97:17:03:dc:f7:3d:73:34:2d:
         d2:06:c3:6f:e1:27:7b:6c:f0:d5:23:d5:44:96:d0:38:99:05:
         a1:fd:ff:02:ea:d6:fc:56:cc:4b:80:fc:dc:63:b9:17:63:d2:
         93:c6:27:1f:31:3a:73:84:ec:59:35:d2:62:f1:ff:b1:43:7c:
         b9:84:52:53:25:f3:84:ac:47:19:7f:08:dd:dc:e6:c9:2c:04:
         85:0d:8c:58:df:a3:f3:32:8c:73:0b:ca:f4:77:61:84:cc:0c:
         d1:7e:75:a0:7f:cb:1a:ab:c7:0b:03:43:30:2c:d8:03:6b:46:
         df:e4:13:12:b8:e4:a2:4e:b9:32:ee:d3:7f:a1:a2:35:b8:ea:
         14:40:48:45:23:e6:5b:1b:e0:37:c9:a3:e6:9a:1b:bb:5c:93:
         5c:20:91:52:33:56:1f:20:06:c9:2c:b2:19:4e:84:e2:38:00:
         4d:0b:c1:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:00 2024 by rpki-client on console-fra.rpki-client.org