Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/c78f12-2d14-4276-8c8e-8bdc8fbbd40d/1/PHMbIfDDupaU_DWCJzCW0sA83-Y.roa
File:                     PHMbIfDDupaU_DWCJzCW0sA83-Y.roa (raw, json)
Hash identifier:          W6eofORiHsD2YHSuzrxsi2a0e2792oHJ3hP/SMBMAnQ=
Subject key identifier:   3C:73:1B:21:F0:C3:BA:96:94:FC:35:82:27:30:96:D2:C0:3C:DF:E6
Certificate issuer:       /CN=e9fb6dd5a5cbfd84da82e2759f6955622c1ee932
Certificate serial:       0183ADD5660F87AAB0D9ED2EBF1BE9861E72
Authority key identifier: E9:FB:6D:D5:A5:CB:FD:84:DA:82:E2:75:9F:69:55:62:2C:1E:E9:32
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/6ftt1aXL_YTaguJ1n2lVYiwe6TI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7f/c78f12-2d14-4276-8c8e-8bdc8fbbd40d/1/PHMbIfDDupaU_DWCJzCW0sA83-Y.roa
Signing time:             Thu 06 Oct 2022 15:06:27 +0000
ROA not before:           Thu 06 Oct 2022 15:06:27 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     43260
IP address blocks:        62.233.46.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:83:ad:d5:66:0f:87:aa:b0:d9:ed:2e:bf:1b:e9:86:1e:72
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e9fb6dd5a5cbfd84da82e2759f6955622c1ee932
        Validity
            Not Before: Oct  6 15:06:27 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=3c731b21f0c3ba9694fc3582273096d2c03cdfe6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:0c:2a:02:76:72:4d:ef:2c:0a:c3:f0:b9:be:
                    87:16:36:f3:0c:2d:2f:fc:a9:1e:a3:e5:a0:24:65:
                    78:af:f4:f8:99:c7:d4:be:65:e2:20:f2:c9:e2:2a:
                    f7:31:26:d9:5f:f8:33:37:9b:ba:cf:c9:74:24:ac:
                    a1:3e:c1:e5:df:89:65:c7:cf:21:89:bb:80:61:6e:
                    60:ec:4a:71:ff:8d:f0:fd:31:27:0c:c6:a5:bd:34:
                    e5:c8:9e:c4:52:ae:81:b4:34:24:45:ed:3b:8a:16:
                    78:b7:df:87:94:74:97:55:44:b3:a9:58:c1:42:39:
                    07:23:39:f8:40:62:ed:4e:c4:63:83:08:df:21:ce:
                    fc:99:aa:82:43:fd:db:12:1c:37:0d:ed:bd:84:92:
                    58:db:ac:d3:64:73:68:c1:43:4d:6f:e7:47:aa:68:
                    51:00:29:f6:bd:e1:2f:be:a8:66:1c:64:eb:43:52:
                    19:90:84:68:04:17:44:a9:67:4c:a9:92:f2:05:17:
                    69:80:03:81:08:7c:4b:cc:9e:19:1f:7e:9b:e4:71:
                    df:68:51:2b:6f:70:08:ee:f4:14:88:81:9d:74:ca:
                    40:ac:b4:aa:75:4e:7c:60:b2:df:35:ed:45:d8:7a:
                    12:7f:d1:8f:10:92:39:6e:7a:98:48:43:4c:44:ad:
                    3b:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3C:73:1B:21:F0:C3:BA:96:94:FC:35:82:27:30:96:D2:C0:3C:DF:E6
            X509v3 Authority Key Identifier:
                keyid:E9:FB:6D:D5:A5:CB:FD:84:DA:82:E2:75:9F:69:55:62:2C:1E:E9:32

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6ftt1aXL_YTaguJ1n2lVYiwe6TI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/c78f12-2d14-4276-8c8e-8bdc8fbbd40d/1/PHMbIfDDupaU_DWCJzCW0sA83-Y.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/c78f12-2d14-4276-8c8e-8bdc8fbbd40d/1/6ftt1aXL_YTaguJ1n2lVYiwe6TI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  62.233.46.0/24

    Signature Algorithm: sha256WithRSAEncryption
         43:31:23:4f:51:21:a3:8e:36:ca:8e:b2:7b:31:bb:67:63:15:
         96:64:f5:61:40:bf:d6:54:83:6f:ed:f9:65:48:01:0a:90:06:
         ba:72:5d:3c:96:9d:f9:7f:3c:9c:e5:03:b7:66:da:26:0f:47:
         72:f4:30:42:42:92:3b:67:4c:c5:ff:79:9c:cd:97:02:d8:e5:
         37:56:b6:8a:a3:26:0f:e0:92:f8:c0:69:61:b0:f6:12:a5:70:
         4d:07:4b:ca:85:12:08:3f:da:86:de:43:51:fb:bc:d0:27:42:
         ee:6c:b8:d7:55:28:b9:4d:e5:cb:9c:75:0d:2f:4a:86:dd:bd:
         3c:cc:26:82:bb:7b:41:dc:83:4b:6d:49:6d:d6:47:40:f2:0b:
         d1:a4:cb:95:5a:e9:2b:a0:0f:92:52:4e:ce:8c:cf:ad:01:7c:
         b4:ba:d3:d1:08:08:16:8b:d2:0a:ba:e8:64:4e:23:48:74:6c:
         1d:36:d3:cd:5c:27:52:0e:68:d1:49:06:ef:9e:33:06:8b:e5:
         3d:31:f0:19:a8:78:dd:71:72:94:63:16:79:06:c2:1f:2e:fa:
         ce:f2:3b:33:f4:5b:1f:ef:37:70:60:39:f2:8a:db:60:02:6b:
         db:2a:ac:1e:b5:21:73:bc:a4:59:e8:b0:68:3f:22:99:66:44:
         09:4c:66:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:39 2024 by rpki-client on console-fra.rpki-client.org