Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/vMWAdAYOebaZ42X9-3X-kCuNfGk.roa
File:                     vMWAdAYOebaZ42X9-3X-kCuNfGk.roa (raw, json)
Hash identifier:          CHASr0Y2Z/cZ6BxhzQyUlleaYGPHYym4XvR9Spx44rY=
Subject key identifier:   BC:C5:80:74:06:0E:79:B6:99:E3:65:FD:FB:75:FE:90:2B:8D:7C:69
Certificate issuer:       /CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Certificate serial:       0182D0B456629A114BF8DDF3145317F55A62
Authority key identifier: C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/vMWAdAYOebaZ42X9-3X-kCuNfGk.roa
Signing time:             Wed 24 Aug 2022 16:34:15 +0000
ROA not before:           Wed 24 Aug 2022 16:34:15 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     6060
IP address blocks:        194.36.175.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:82:d0:b4:56:62:9a:11:4b:f8:dd:f3:14:53:17:f5:5a:62
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
        Validity
            Not Before: Aug 24 16:34:15 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=bcc58074060e79b699e365fdfb75fe902b8d7c69
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:eb:71:56:eb:69:e7:5d:02:31:dd:45:50:8c:be:
                    e1:bb:9c:df:8b:a5:c0:ba:5b:a1:39:68:3e:62:15:
                    12:a9:24:b9:49:58:5c:d0:84:10:59:72:e8:c8:74:
                    ef:45:1b:1c:52:f8:e3:9e:8f:9c:a9:06:37:62:7a:
                    79:3c:a4:13:1f:a7:39:03:20:a2:27:11:e8:e1:88:
                    80:69:11:5b:ab:29:51:6b:62:78:4a:3d:6c:79:ae:
                    d3:34:70:c4:82:0c:91:41:bc:62:44:c5:1d:ee:32:
                    86:07:4e:8a:df:5a:92:b2:89:03:ab:15:f3:0b:f7:
                    25:f7:fd:13:17:34:2a:ca:e4:dc:92:45:f2:6c:66:
                    3a:60:71:cf:b7:5e:76:0d:64:2b:42:dd:8a:80:be:
                    77:d3:ab:e7:f0:f5:de:9e:d0:8f:b4:90:40:3c:b5:
                    09:eb:fb:04:3b:0d:8e:db:b6:19:6d:04:e8:c5:06:
                    9b:fd:82:b5:e6:5e:07:98:57:c4:bc:63:f2:42:31:
                    b2:fa:22:45:b2:13:27:d2:c0:50:c6:86:07:73:62:
                    00:0e:b4:13:29:b9:19:5d:ce:18:b2:df:2e:f4:77:
                    7b:b7:75:3f:6c:bc:7c:76:89:d7:18:05:e3:18:18:
                    b5:81:b0:60:54:39:6c:7f:13:d9:12:5a:08:32:9e:
                    7c:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BC:C5:80:74:06:0E:79:B6:99:E3:65:FD:FB:75:FE:90:2B:8D:7C:69
            X509v3 Authority Key Identifier:
                keyid:C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/vMWAdAYOebaZ42X9-3X-kCuNfGk.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  194.36.175.0/24

    Signature Algorithm: sha256WithRSAEncryption
         23:92:1a:2f:d6:32:77:28:42:79:6f:3e:e7:a3:13:b4:9a:f7:
         db:73:8d:0a:aa:63:14:98:18:25:10:96:eb:8e:0b:64:67:9e:
         be:13:4c:84:a4:82:f4:4a:11:f3:4f:97:04:84:a3:08:01:9e:
         92:aa:3d:56:6b:29:02:65:c6:7e:82:16:65:47:d7:36:ff:a0:
         d2:f6:0b:67:90:1d:e2:12:97:bd:95:60:6b:85:ef:8d:eb:4d:
         02:e0:0d:49:af:49:d3:49:28:17:61:9f:dc:c3:24:d8:f2:12:
         4a:f7:ad:be:ef:43:0b:4a:5d:c7:16:2c:ad:d8:a1:d0:89:50:
         43:c9:8c:77:90:e3:d2:d7:00:35:e0:89:ed:9b:b2:42:c3:94:
         7c:9e:b8:c7:9c:d9:8e:05:14:29:05:4f:46:1c:37:6d:e3:0c:
         30:24:b0:03:b6:39:98:c2:cc:db:15:f0:ec:11:a1:e4:96:41:
         dc:55:78:d4:e1:08:8a:0f:10:65:07:d9:c0:b2:66:5f:ca:44:
         f7:a2:a7:56:59:f2:1a:a0:6e:17:78:ee:12:1f:b2:b9:86:ad:
         2a:3d:5f:4e:40:bd:0f:83:9f:4e:77:a3:cb:3c:59:48:b8:b3:
         5b:44:1c:f7:c1:92:b8:07:5d:bd:52:71:aa:49:59:88:a3:29:
         a6:a4:9c:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:18 2024 by rpki-client on console-ams.rpki-client.org