Route Origin Authorization

$ rpki-client -vvf rsync.rp.ki/repo/misakaio/2/3138352e3233342e3231322e302f32342d3234203d3e203439353539.roa
File:                     3138352e3233342e3231322e302f32342d3234203d3e203439353539.roa (raw, json)
Hash identifier:          +LN1MuNQk75sZVWVurgYQwYkBPx0B6yZZ8kNjvxr0aQ=
Subject key identifier:   3B:1E:A5:E3:38:65:2B:55:A1:F0:A7:B7:62:96:62:69:74:ED:4E:F7
Certificate issuer:       /CN=e36a3cbcb6635d140f694b0cd99d1cd62456de2e
Certificate serial:       0B87F73CC197ADD3B1A8C8BD3FE78EB7918547CB
Authority key identifier: E3:6A:3C:BC:B6:63:5D:14:0F:69:4B:0C:D9:9D:1C:D6:24:56:DE:2E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/42o8vLZjXRQPaUsM2Z0c1iRW3i4.cer
Subject info access:      rsync://rsync.rp.ki/repo/misakaio/2/3138352e3233342e3231322e302f32342d3234203d3e203439353539.roa
Signing time:             Tue 14 Jun 2022 23:15:03 +0000
ROA not before:           Tue 14 Jun 2022 23:10:03 +0000
ROA not after:            Tue 13 Jun 2023 23:15:03 +0000
asID:                     49559
IP address blocks:        185.234.212.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0b:87:f7:3c:c1:97:ad:d3:b1:a8:c8:bd:3f:e7:8e:b7:91:85:47:cb
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e36a3cbcb6635d140f694b0cd99d1cd62456de2e
        Validity
            Not Before: Jun 14 23:10:03 2022 GMT
            Not After : Jun 13 23:15:03 2023 GMT
        Subject: CN=3B1EA5E338652B55A1F0A7B76296626974ED4EF7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:62:4e:f6:bc:8e:0c:7c:27:05:80:3c:59:a7:
                    76:23:cb:94:93:90:b2:1c:f6:6c:66:fa:8d:87:17:
                    8d:04:82:18:27:f0:47:3c:ac:2b:36:0f:6f:06:30:
                    03:04:93:bb:dd:01:4f:2a:2a:9e:ba:b3:66:01:42:
                    37:10:0c:55:55:f7:80:be:15:7b:e3:52:08:26:2e:
                    d6:60:43:5f:3e:9a:15:36:ad:eb:21:31:d7:d3:e1:
                    b8:cc:f1:eb:d0:38:06:88:df:ed:3c:13:b9:b3:c3:
                    9c:b4:af:a0:7b:04:aa:8a:76:0e:77:04:49:ef:13:
                    88:ba:3e:f5:4e:80:a5:8c:bc:e9:f9:eb:c9:8b:8c:
                    0c:e8:00:5e:d3:4e:9b:f2:7b:f5:86:3f:6d:8b:07:
                    97:c6:54:b7:ae:0b:12:54:4d:db:b3:59:32:37:6d:
                    e7:55:bf:c7:b3:97:30:ca:6c:88:42:51:79:d3:f8:
                    1b:ae:82:d7:01:35:49:12:d9:55:cc:4c:ce:89:4c:
                    4a:31:ca:67:bf:3c:10:a2:21:e3:b3:a8:42:38:62:
                    1b:e3:b1:26:68:7c:24:c8:56:a2:b0:c6:c7:c5:71:
                    f0:cd:27:a4:06:06:fc:62:57:45:62:3d:a2:62:15:
                    70:42:00:00:c5:55:fa:85:2b:51:d2:6f:5e:77:65:
                    ae:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3B:1E:A5:E3:38:65:2B:55:A1:F0:A7:B7:62:96:62:69:74:ED:4E:F7
            X509v3 Authority Key Identifier:
                keyid:E3:6A:3C:BC:B6:63:5D:14:0F:69:4B:0C:D9:9D:1C:D6:24:56:DE:2E

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.rp.ki/repo/misakaio/2/E36A3CBCB6635D140F694B0CD99D1CD62456DE2E.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/42o8vLZjXRQPaUsM2Z0c1iRW3i4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.rp.ki/repo/misakaio/2/3138352e3233342e3231322e302f32342d3234203d3e203439353539.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.234.212.0/24

    Signature Algorithm: sha256WithRSAEncryption
         28:6f:fc:be:24:c7:3e:4c:b0:c1:83:64:2a:ac:c0:8f:6e:83:
         f1:25:c5:3f:10:31:6e:d7:4c:d1:d9:f8:da:e4:f4:f2:1b:b6:
         15:c1:7f:15:1e:37:20:44:db:78:8a:0d:34:1c:23:2e:2f:40:
         9e:b7:45:78:a7:3a:39:1f:0d:10:5d:16:c7:18:67:43:cc:36:
         52:03:03:05:b5:8a:62:93:9f:58:ab:93:fd:09:29:69:6c:cf:
         56:08:f6:1b:b0:83:4b:c1:73:63:64:e4:a2:99:fa:8e:23:15:
         a3:2c:6a:dc:e5:f2:41:c0:e3:10:cb:51:97:75:62:c6:a3:8d:
         d2:7e:63:ab:f5:81:d3:1b:a3:c0:2b:1a:50:f2:d3:a7:d7:23:
         b8:b3:0a:08:72:4e:c8:57:78:fd:e0:6e:34:2c:fc:70:86:58:
         44:2e:fa:69:0e:28:2f:c6:9a:08:cb:18:4d:3d:6c:39:f9:1c:
         0d:42:a4:41:07:54:3e:c7:d9:75:24:be:22:ef:7c:5a:1d:cb:
         6a:b6:57:0f:b5:64:a4:75:7a:4d:4a:23:bc:24:c3:58:fc:67:
         27:23:01:cb:7e:09:78:8c:a5:1f:a9:8c:2a:d9:3b:0e:cd:1b:
         37:3a:23:f3:06:a8:a7:1f:a1:d0:d5:30:8b:59:e9:50:e9:2f:
         70:81:18:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:01:13 2024 by rpki-client on console-ams.rpki-client.org