Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/58bc3b-7f2e-422b-b3a0-ab6fe6868a45/1/FJOwsVY296TsoLSKZewUCYdlj0k.roa
File:                     FJOwsVY296TsoLSKZewUCYdlj0k.roa (raw, json)
Hash identifier:          8/CjkB6GoXlehwj4Yb/SqylBnPaJmEsfEBfN97LMMPo=
Subject key identifier:   14:93:B0:B1:56:36:F7:A4:EC:A0:B4:8A:65:EC:14:09:87:65:8F:49
Certificate issuer:       /CN=1212f3d60b208cff09d05e49c6be4b16e8acd768
Certificate serial:       024454F3
Authority key identifier: 12:12:F3:D6:0B:20:8C:FF:09:D0:5E:49:C6:BE:4B:16:E8:AC:D7:68
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/EhLz1gsgjP8J0F5Jxr5LFuis12g.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c5/58bc3b-7f2e-422b-b3a0-ab6fe6868a45/1/FJOwsVY296TsoLSKZewUCYdlj0k.roa
Signing time:             Fri 27 May 2022 06:04:13 +0000
ROA not before:           Fri 27 May 2022 06:04:13 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     21859
IP address blocks:        188.93.137.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 38032627 (0x24454f3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1212f3d60b208cff09d05e49c6be4b16e8acd768
        Validity
            Not Before: May 27 06:04:13 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=1493b0b15636f7a4eca0b48a65ec140987658f49
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:53:2c:36:59:3d:77:fb:fa:a0:ae:9e:97:28:
                    86:6b:98:ac:81:bb:3f:f1:24:f3:d9:7c:9d:48:85:
                    82:ba:3a:65:40:6d:a5:7c:05:35:b9:db:d7:9e:ed:
                    41:01:d7:8c:60:5d:de:a7:ba:a1:1d:b8:64:3b:f4:
                    37:29:d7:37:47:43:ba:05:90:1e:db:d9:94:05:52:
                    5a:c2:56:6c:23:08:8b:64:fb:ac:7d:8f:e5:00:7d:
                    c3:f7:ef:c9:b4:95:ae:fe:8d:a9:c5:be:03:d1:4b:
                    34:58:d8:0f:b1:62:e4:58:4d:56:6b:b4:c7:b7:f2:
                    c6:f9:b9:d9:06:4e:90:66:69:e6:2f:f1:6d:7c:7d:
                    12:ad:20:35:b8:ab:37:4a:b4:04:c3:08:a6:0d:63:
                    ec:8c:ad:17:34:22:8e:d6:9e:ef:f3:32:d8:08:95:
                    16:3f:99:b1:b4:07:66:0f:90:3b:67:e6:f8:1a:34:
                    3d:55:d8:c7:77:b9:2e:1c:65:ad:63:81:11:06:0a:
                    f7:0a:32:d1:d9:22:5a:7d:79:50:00:6f:36:a5:de:
                    e6:04:1b:91:c4:3a:76:f4:a4:e2:78:64:a6:e3:76:
                    94:21:11:97:ba:8a:c6:46:4d:76:c2:f4:60:c8:71:
                    ab:fb:64:e9:b0:ad:35:66:82:ec:3c:c9:ed:ca:a8:
                    e6:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                14:93:B0:B1:56:36:F7:A4:EC:A0:B4:8A:65:EC:14:09:87:65:8F:49
            X509v3 Authority Key Identifier:
                keyid:12:12:F3:D6:0B:20:8C:FF:09:D0:5E:49:C6:BE:4B:16:E8:AC:D7:68

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EhLz1gsgjP8J0F5Jxr5LFuis12g.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/58bc3b-7f2e-422b-b3a0-ab6fe6868a45/1/FJOwsVY296TsoLSKZewUCYdlj0k.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/58bc3b-7f2e-422b-b3a0-ab6fe6868a45/1/EhLz1gsgjP8J0F5Jxr5LFuis12g.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  188.93.137.0/24

    Signature Algorithm: sha256WithRSAEncryption
         03:07:f1:c5:0a:bd:5a:93:7b:90:06:ac:2a:9f:4e:f4:b0:20:
         8e:5d:ea:90:d8:be:dd:a9:c9:21:b7:c0:9d:69:2e:ed:cc:61:
         59:4c:99:8b:28:d2:4b:4b:c0:95:ee:42:b8:a5:e9:e6:f9:3e:
         9c:f9:38:74:a4:28:df:0a:37:36:23:67:e9:04:69:a7:e8:c2:
         c9:f1:56:be:dc:bf:a9:d4:e0:29:54:7a:f9:99:13:27:96:c1:
         17:b9:08:b5:f5:4c:01:46:ff:07:b0:7e:1f:c1:56:8c:bd:83:
         bc:78:8f:bd:32:e8:8b:5d:34:f3:a7:bd:b4:a2:9a:3b:fc:ac:
         d2:44:96:36:32:b1:bf:b5:b0:af:20:9b:90:ef:a9:ac:a5:b3:
         74:2f:bc:97:5f:97:d6:d9:52:f9:37:88:99:cf:50:7e:6f:73:
         2a:6e:8c:c7:88:af:10:05:fc:36:7d:56:d4:bc:f9:fc:5e:0d:
         16:f8:8c:17:7a:0f:81:b0:c9:d4:20:2b:cf:1d:f4:d0:a9:a4:
         34:16:94:a2:62:ce:5a:9a:7d:f5:1f:87:48:26:c2:c5:b3:82:
         01:eb:cf:5c:50:c0:35:ed:43:3a:94:3e:cb:09:62:ba:3d:74:
         4f:1d:8a:ba:de:4a:c1:2b:54:71:1b:38:fe:34:51:14:42:97:
         6e:b9:d6:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:07 2024 by rpki-client on console-ams.rpki-client.org