Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/71eeb3-4482-43c2-a99d-09349383f222/1/FvnrDLBFWbQcCGuHwL0E1dX6Pf4.roa
File:                     FvnrDLBFWbQcCGuHwL0E1dX6Pf4.roa (raw, json)
Hash identifier:          F6jISQp4v7MyWY887aaiMmpCiG0s6QaqzX1Nef15pns=
Subject key identifier:   16:F9:EB:0C:B0:45:59:B4:1C:08:6B:87:C0:BD:04:D5:D5:FA:3D:FE
Certificate issuer:       /CN=e44f62f836e56a94737c7e030eff36e3b3e052ba
Certificate serial:       0154C1
Authority key identifier: E4:4F:62:F8:36:E5:6A:94:73:7C:7E:03:0E:FF:36:E3:B3:E0:52:BA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5E9i-DblapRzfH4DDv8247PgUro.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/9e/71eeb3-4482-43c2-a99d-09349383f222/1/FvnrDLBFWbQcCGuHwL0E1dX6Pf4.roa
Signing time:             Wed 13 Apr 2022 13:08:44 +0000
ROA not before:           Wed 13 Apr 2022 13:08:44 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     8220
IP address blocks:        185.226.242.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 87233 (0x154c1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e44f62f836e56a94737c7e030eff36e3b3e052ba
        Validity
            Not Before: Apr 13 13:08:44 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=16f9eb0cb04559b41c086b87c0bd04d5d5fa3dfe
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8f:26:5e:1e:49:28:c3:e0:35:41:aa:57:f5:e4:
                    e6:93:e3:7f:27:ac:3c:a9:86:b5:c8:c7:79:21:a6:
                    44:63:79:41:2a:12:74:fc:d5:46:2a:46:eb:7f:71:
                    19:64:82:19:23:7a:3b:6b:28:03:85:8b:0f:a2:49:
                    07:38:07:69:bf:24:d2:6d:8e:d5:ba:a5:3c:7f:b3:
                    cd:45:33:78:37:8a:32:74:82:58:6a:f6:f5:57:91:
                    00:67:de:a8:6d:3c:86:09:f7:6f:21:ce:e2:73:80:
                    be:b1:20:4b:9e:e1:10:af:26:f4:33:98:dd:c2:aa:
                    d4:74:bb:9f:d5:d6:58:14:2d:f5:e5:8b:0b:c2:96:
                    1f:8d:fc:4a:e2:4b:41:56:0d:8c:e9:be:c3:ae:62:
                    53:64:e4:d2:82:e5:de:04:19:d8:58:54:05:c6:4f:
                    10:6d:bd:16:8c:5e:06:f8:e5:f6:9b:ed:5b:77:9c:
                    eb:85:87:24:3c:51:9b:b7:62:f8:f8:5f:05:e2:b6:
                    0c:b6:1a:0c:9c:3d:2d:b3:03:cb:21:c3:37:e6:cd:
                    eb:76:09:09:21:a2:2a:be:c9:28:d3:ee:fd:94:a2:
                    c3:0d:04:f7:52:c9:02:bf:d4:61:b0:66:a1:cd:a1:
                    d8:58:a9:3a:37:e0:01:62:4c:0e:ca:86:01:0d:da:
                    37:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                16:F9:EB:0C:B0:45:59:B4:1C:08:6B:87:C0:BD:04:D5:D5:FA:3D:FE
            X509v3 Authority Key Identifier:
                keyid:E4:4F:62:F8:36:E5:6A:94:73:7C:7E:03:0E:FF:36:E3:B3:E0:52:BA

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5E9i-DblapRzfH4DDv8247PgUro.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/71eeb3-4482-43c2-a99d-09349383f222/1/FvnrDLBFWbQcCGuHwL0E1dX6Pf4.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/71eeb3-4482-43c2-a99d-09349383f222/1/5E9i-DblapRzfH4DDv8247PgUro.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.226.242.0/24

    Signature Algorithm: sha256WithRSAEncryption
         49:15:07:01:67:49:32:1e:21:3c:99:78:38:b9:9c:53:3f:e4:
         21:10:ff:4a:c2:42:e8:02:24:f6:6c:d5:b1:52:fd:e8:19:36:
         c4:22:eb:9e:ce:1a:66:c3:0f:8a:68:b7:25:aa:e7:ff:35:82:
         e0:48:71:ab:aa:e4:67:59:af:12:f4:c9:99:96:3e:43:c4:05:
         6c:14:88:5d:63:48:66:49:ed:df:7a:c5:43:b8:71:15:7f:ab:
         f9:0a:a8:95:94:7f:83:97:82:2c:d7:1e:0a:fe:6f:5a:23:bb:
         ff:6e:7b:c6:20:2f:0e:3b:2f:bc:9b:32:5a:a0:53:ed:a8:f5:
         07:0e:9e:79:5e:ed:a6:95:79:79:89:25:4b:f8:63:15:84:f1:
         e6:4c:18:83:ba:50:f5:ff:41:5f:5a:58:46:8f:d0:36:71:c4:
         74:57:81:41:9e:f7:02:d9:cd:75:4f:4f:f3:85:84:eb:05:19:
         2c:6c:fb:c8:66:e8:6a:61:f4:8a:9e:f7:f1:8b:d4:b8:4f:20:
         27:f7:21:fd:e4:b5:a6:05:9c:e2:ad:4c:5f:c9:98:36:2e:71:
         ec:67:79:80:a0:19:17:25:a7:e6:47:fe:d2:e3:42:79:12:68:
         97:8e:29:8e:7a:a7:6e:26:91:aa:80:cb:9c:d0:54:0d:6b:91:
         f8:9a:59:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:02 2024 by rpki-client on console-fra.rpki-client.org