Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/68707f-f2a8-4f53-ba5c-31dfbbb914ed/1/7zwU8hrLr_QNpWnl3s207-kLKx0.roa
File:                     7zwU8hrLr_QNpWnl3s207-kLKx0.roa (raw, json)
Hash identifier:          SC8MNHHm3nkPtXB6n1rnQ66Mqf/NOu3wnW6Z5zNWgts=
Subject key identifier:   EF:3C:14:F2:1A:CB:AF:F4:0D:A5:69:E5:DE:CD:B4:EF:E9:0B:2B:1D
Certificate issuer:       /CN=ed77ba4f32f2426170afc9e25914c13490ff5db6
Certificate serial:       01821F8B0E9AE531019EC11F032C87586B2B
Authority key identifier: ED:77:BA:4F:32:F2:42:61:70:AF:C9:E2:59:14:C1:34:90:FF:5D:B6
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/7Xe6TzLyQmFwr8niWRTBNJD_XbY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/68/68707f-f2a8-4f53-ba5c-31dfbbb914ed/1/7zwU8hrLr_QNpWnl3s207-kLKx0.roa
Signing time:             Thu 21 Jul 2022 06:56:23 +0000
ROA not before:           Thu 21 Jul 2022 06:56:23 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     22773
IP address blocks:        195.64.124.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:82:1f:8b:0e:9a:e5:31:01:9e:c1:1f:03:2c:87:58:6b:2b
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ed77ba4f32f2426170afc9e25914c13490ff5db6
        Validity
            Not Before: Jul 21 06:56:23 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=ef3c14f21acbaff40da569e5decdb4efe90b2b1d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:a1:9a:9a:cf:a3:29:26:f2:bd:48:20:c1:10:
                    3f:48:6c:68:4a:04:fe:a0:a5:40:24:c6:3e:b9:98:
                    c7:ca:81:94:f5:ef:78:12:c5:58:bf:33:38:4c:a4:
                    a8:9c:08:80:19:83:be:5c:1c:b6:b8:6f:e4:bf:2a:
                    4b:b1:9e:53:94:21:35:11:4a:4e:75:84:69:3e:36:
                    08:69:19:a0:e4:ca:d2:5d:48:d1:6c:3d:38:6e:1d:
                    f6:44:a7:66:bd:0c:5b:b5:bd:04:ec:9e:28:f2:79:
                    8b:f0:cb:a0:56:81:5d:f0:a7:a3:fa:65:21:4c:5f:
                    1d:2b:90:59:ae:84:b8:d2:95:b5:dd:bf:2b:da:c6:
                    76:ae:06:e6:88:16:c7:95:fe:d1:ce:29:93:d8:64:
                    46:e7:f9:b7:19:b3:29:89:67:27:28:73:57:79:2c:
                    bf:71:13:2a:0f:e3:1c:2b:2b:49:84:b4:d2:60:20:
                    1f:bd:8c:a1:19:d5:44:73:86:5e:b9:4a:2e:5d:7a:
                    bf:f5:39:27:13:07:59:2c:0d:c8:77:0a:ab:35:41:
                    95:dd:bf:34:43:e2:af:1c:10:2e:c3:e3:10:bc:ab:
                    99:33:fb:41:90:7e:33:9d:b4:f3:c5:b5:e9:85:e0:
                    f3:3c:28:ec:86:b5:d9:34:30:f3:46:d7:48:c8:b2:
                    83:7d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EF:3C:14:F2:1A:CB:AF:F4:0D:A5:69:E5:DE:CD:B4:EF:E9:0B:2B:1D
            X509v3 Authority Key Identifier:
                keyid:ED:77:BA:4F:32:F2:42:61:70:AF:C9:E2:59:14:C1:34:90:FF:5D:B6

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7Xe6TzLyQmFwr8niWRTBNJD_XbY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/68707f-f2a8-4f53-ba5c-31dfbbb914ed/1/7zwU8hrLr_QNpWnl3s207-kLKx0.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/68/68707f-f2a8-4f53-ba5c-31dfbbb914ed/1/7Xe6TzLyQmFwr8niWRTBNJD_XbY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  195.64.124.0/24

    Signature Algorithm: sha256WithRSAEncryption
         6d:b0:97:90:ae:4a:92:c6:c1:76:66:8e:98:41:18:8f:71:14:
         7f:0e:13:21:48:3d:b0:39:1a:89:e2:c6:db:48:32:3f:00:ea:
         44:3e:1e:d5:8e:1e:c5:e1:44:5c:90:35:84:c4:d3:ce:19:68:
         ec:13:ea:5a:29:8c:54:27:e1:1e:6c:0f:5f:34:59:83:a5:e5:
         36:a4:c8:6b:d1:0d:43:a5:a7:87:a9:7b:77:69:24:63:f3:74:
         2b:b2:37:79:c4:50:f9:fb:bb:f0:c3:12:e6:00:c9:e1:48:21:
         87:28:b6:5b:db:fb:62:4e:38:bf:00:b0:44:65:a5:4d:e9:fe:
         bb:95:1d:fd:d5:d8:33:d6:81:57:f5:d0:6e:af:8c:25:d3:af:
         a7:4c:2b:35:07:3b:75:67:57:12:a2:9f:0c:a7:cc:83:06:3f:
         f9:19:06:36:d0:16:d4:c9:cc:f1:d8:22:5a:ec:9b:c5:f9:71:
         1d:4e:62:4d:fc:2e:f7:e6:96:d7:80:a6:44:9b:ab:84:38:96:
         88:eb:a7:a5:a9:8d:73:d9:68:2d:bb:3e:c4:4b:2d:af:32:24:
         cb:ed:d2:a2:2a:e9:d9:98:2b:5a:d6:5b:c9:10:d3:23:19:61:
         44:ab:9f:d7:4b:34:71:e2:51:33:a6:90:e7:7d:8a:cd:47:4d:
         ec:d1:6a:2b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIfiw6a5TEBnsEfAyyHWGsrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVkNzdiYTRmMzJmMjQyNjE3MGFmYzllMjU5MTRjMTM0OTBm
ZjVkYjYwHhcNMjIwNzIxMDY1NjIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZjNjMTRmMjFhY2JhZmY0MGRhNTY5ZTVkZWNkYjRlZmU5MGIyYjFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwaGams+jKSbyvUggwRA/SGxoSgT+
oKVAJMY+uZjHyoGU9e94EsVYvzM4TKSonAiAGYO+XBy2uG/kvypLsZ5TlCE1EUpO
dYRpPjYIaRmg5MrSXUjRbD04bh32RKdmvQxbtb0E7J4o8nmL8MugVoFd8Kej+mUh
TF8dK5BZroS40pW13b8r2sZ2rgbmiBbHlf7RzimT2GRG5/m3GbMpiWcnKHNXeSy/
cRMqD+McKytJhLTSYCAfvYyhGdVEc4ZeuUouXXq/9TknEwdZLA3IdwqrNUGV3b80
Q+KvHBAuw+MQvKuZM/tBkH4znbTzxbXpheDzPCjshrXZNDDzRtdIyLKDfQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFO88FPIay6/0DaVp5d7NtO/pCysdMB8GA1UdIwQY
MBaAFO13uk8y8kJhcK/J4lkUwTSQ/122MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvN1hlNlR6THlRbUZ3cjhuaVdSVEJOSkRfWGJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC82ODcwN2YtZjJhOC00ZjUzLWJhNWMt
MzFkZmJiYjkxNGVkLzEvN3p3VThockxyX1FOcFdubDNzMjA3LWtMS3gwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OC82ODcwN2YtZjJhOC00ZjUzLWJhNWMtMzFkZmJiYjkxNGVk
LzEvN1hlNlR6THlRbUZ3cjhuaVdSVEJOSkRfWGJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw0B8MA0G
CSqGSIb3DQEBCwUAA4IBAQBtsJeQrkqSxsF2Zo6YQRiPcRR/DhMhSD2wORqJ4sbb
SDI/AOpEPh7Vjh7F4URckDWExNPOGWjsE+paKYxUJ+EebA9fNFmDpeU2pMhr0Q1D
paeHqXt3aSRj83Qrsjd5xFD5+7vwwxLmAMnhSCGHKLZb2/tiTji/ALBEZaVN6f67
lR391dgz1oFX9dBur4wl06+nTCs1Bzt1Z1cSop8Mp8yDBj/5GQY20BbUyczx2CJa
7JvF+XEdTmJN/C735pbXgKZEm6uEOJaI66elqY1z2Wgtuz7ESy2vMiTL7dKiKunZ
mCta1lvJENMjGWFEq5/XSzRx4lEzppDnfYrNR03s0Wor
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:26 2024 by rpki-client on console-fra.rpki-client.org