Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/645fb6-8edf-4a75-bbc1-ae13eef4f12e/1/7ougcwatOsYU_U4M-T_hMM0HaY4.roa
File:                     7ougcwatOsYU_U4M-T_hMM0HaY4.roa (raw, json)
Hash identifier:          HHOFbmGo7d47bJVtSoAeEt9MVbdNBehoZAjg6zX873M=
Subject key identifier:   EE:8B:A0:73:06:AD:3A:C6:14:FD:4E:0C:F9:3F:E1:30:CD:07:69:8E
Certificate issuer:       /CN=0881c26efd7671f272dc4fe7d43ecc998a5c0cf2
Certificate serial:       016713C0
Authority key identifier: 08:81:C2:6E:FD:76:71:F2:72:DC:4F:E7:D4:3E:CC:99:8A:5C:0C:F2
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/CIHCbv12cfJy3E_n1D7MmYpcDPI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/fc/645fb6-8edf-4a75-bbc1-ae13eef4f12e/1/7ougcwatOsYU_U4M-T_hMM0HaY4.roa
Signing time:             Wed 12 Jan 2022 16:43:23 +0000
ROA not before:           Wed 12 Jan 2022 16:43:23 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     834
IP address blocks:        77.246.240.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 23532480 (0x16713c0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0881c26efd7671f272dc4fe7d43ecc998a5c0cf2
        Validity
            Not Before: Jan 12 16:43:23 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=ee8ba07306ad3ac614fd4e0cf93fe130cd07698e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:98:33:b3:24:8e:92:7e:b6:e4:61:ee:0d:5e:7c:
                    b9:23:a3:6d:60:84:7b:26:46:7a:6f:f4:d3:4f:d2:
                    eb:13:fc:b0:f7:93:7c:d9:6a:26:31:7a:03:c2:31:
                    95:fd:c5:e4:d6:a7:a0:82:3f:82:67:51:6d:24:32:
                    98:c7:59:e2:3e:e9:23:38:8e:4c:af:82:f6:7a:9c:
                    93:33:3e:19:d2:8a:53:26:aa:14:8b:63:0f:50:90:
                    d4:b6:d4:27:18:07:79:71:4f:45:d0:6c:0e:e3:0d:
                    e3:5c:c2:3e:7a:c5:d4:1e:1b:a8:00:f0:5d:f6:b8:
                    7b:3c:c9:46:fc:25:8a:b2:f1:ed:68:55:3e:46:25:
                    90:23:ee:56:17:0e:23:35:cb:b1:46:a7:46:72:68:
                    35:ee:74:e1:45:1f:cc:85:ac:cf:1f:b4:cd:3e:e3:
                    d5:3e:f2:c3:f2:e7:de:ae:e0:99:d0:32:0a:8c:41:
                    e0:52:7a:40:65:59:38:71:0f:83:63:58:9e:2d:1f:
                    41:ab:3a:fc:d2:3a:61:b3:74:7e:9c:10:ba:72:2f:
                    b7:ee:6e:6a:b9:60:33:bb:19:6d:c9:27:b8:cb:c8:
                    07:f3:97:ee:27:2d:0e:b7:45:98:83:2c:50:2c:c2:
                    23:ef:36:e2:6c:71:df:c3:e1:c8:8c:52:20:fc:cc:
                    15:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EE:8B:A0:73:06:AD:3A:C6:14:FD:4E:0C:F9:3F:E1:30:CD:07:69:8E
            X509v3 Authority Key Identifier:
                keyid:08:81:C2:6E:FD:76:71:F2:72:DC:4F:E7:D4:3E:CC:99:8A:5C:0C:F2

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIHCbv12cfJy3E_n1D7MmYpcDPI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/645fb6-8edf-4a75-bbc1-ae13eef4f12e/1/7ougcwatOsYU_U4M-T_hMM0HaY4.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/645fb6-8edf-4a75-bbc1-ae13eef4f12e/1/CIHCbv12cfJy3E_n1D7MmYpcDPI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  77.246.240.0/24

    Signature Algorithm: sha256WithRSAEncryption
         0d:ce:37:76:df:a3:79:ca:a0:21:61:d2:13:b7:41:1a:bd:56:
         27:fe:99:09:6b:4f:8e:d7:f6:a2:65:22:13:d3:c4:5c:60:57:
         28:cb:73:27:30:00:83:9a:47:81:8b:4d:e4:b1:47:76:c1:a6:
         5c:f3:42:f0:1b:8d:46:a3:9e:2f:44:97:f6:d4:61:b5:58:c2:
         6d:5c:6f:97:c8:ec:85:a7:0c:70:95:3a:7f:22:a4:f9:7a:ec:
         18:47:eb:82:13:48:30:6a:f4:2c:66:4d:4d:9e:40:cd:b7:72:
         bd:4e:02:e1:6d:ae:aa:52:5d:ba:8f:4c:e0:d8:3b:01:e8:8e:
         16:9e:f1:59:c1:5a:d1:a9:05:88:b1:9f:13:32:45:85:23:4c:
         5a:af:7c:2c:a2:5e:4e:93:52:e3:d1:b3:bd:47:d4:d4:83:84:
         36:50:14:fc:b5:02:b4:f6:aa:3b:97:3e:de:65:5a:ea:52:65:
         cf:ff:85:d0:6c:e0:1d:bd:68:bc:53:74:0c:cb:2e:21:c9:c0:
         d3:ea:32:65:61:14:02:32:d4:42:e8:c1:53:49:51:d9:fa:78:
         3e:fc:6b:b9:ba:28:2c:f1:54:bb:2f:84:9f:81:7b:06:23:64:
         24:78:fa:af:3f:9e:00:50:73:e9:40:80:8d:53:85:17:72:4f:
         b2:2e:d6:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:45 2024 by rpki-client on console-fra.rpki-client.org