Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/1rkrmu44o66wAPvYC81Gmq2uE37YFv4gRZCNboiyD3c/0/323830343a323834303a3a2f33322d3332203d3e20323633393530.roa
File:                     323830343a323834303a3a2f33322d3332203d3e20323633393530.roa (raw, json)
Hash identifier:          WelEUtXbd3e8g2e0bzpULwzlHma3IF9itOSDAXN0DwM=
Subject key identifier:   E3:61:9B:FD:DA:52:4C:3B:60:E0:BD:5C:82:6E:A4:57:56:AE:6A:CA
Certificate issuer:       /CN=F541966412A9926340E8F10C31ABE0041F25A41F
Certificate serial:       242620E0E3D4E59582B46EBE98D4A44C221E55DD
Authority key identifier: F5:41:96:64:12:A9:92:63:40:E8:F1:0C:31:AB:E0:04:1F:25:A4:1F
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/F541966412A9926340E8F10C31ABE0041F25A41F.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/1rkrmu44o66wAPvYC81Gmq2uE37YFv4gRZCNboiyD3c/0/323830343a323834303a3a2f33322d3332203d3e20323633393530.roa
Signing time:             Fri 09 Feb 2024 19:07:53 +0000
ROA not before:           Fri 09 Feb 2024 19:02:53 +0000
ROA not after:            Fri 07 Feb 2025 19:07:53 +0000
asID:                     263950
IP address blocks:        2804:2840::/32 maxlen: 32

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            24:26:20:e0:e3:d4:e5:95:82:b4:6e:be:98:d4:a4:4c:22:1e:55:dd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F541966412A9926340E8F10C31ABE0041F25A41F
        Validity
            Not Before: Feb  9 19:02:53 2024 GMT
            Not After : Feb  7 19:07:53 2025 GMT
        Subject: CN=E3619BFDDA524C3B60E0BD5C826EA45756AE6ACA
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:ab:89:e4:72:1a:62:11:14:66:db:56:c1:5c:
                    11:93:cd:2b:43:c8:c0:93:d8:b4:7a:56:70:12:bb:
                    9b:37:0b:a5:9e:9e:6a:4e:1d:d8:4d:c2:ed:d3:8a:
                    45:58:9a:8a:d8:d5:3b:9d:e0:22:c2:1f:19:9a:77:
                    c4:58:d4:cf:8b:05:2f:60:70:b4:c9:2f:4f:66:bb:
                    c7:90:bb:69:5a:ee:53:48:5f:c8:96:15:bf:2c:64:
                    52:1f:16:bb:4f:bd:79:67:f8:d9:0f:81:a3:fb:59:
                    dd:03:04:c5:c0:d3:17:41:61:1b:6e:64:a8:8d:00:
                    64:fb:8c:ec:c0:14:1b:24:bf:cd:6a:37:cc:92:f9:
                    06:77:6e:47:a2:b9:e0:f1:78:39:e0:1a:3f:48:d1:
                    15:ee:3b:9a:ba:7c:d8:ca:e4:30:87:20:43:93:18:
                    81:2f:c7:fb:05:93:36:88:a9:a9:e9:39:e8:5a:d6:
                    0e:3a:8c:96:06:a5:38:28:14:dc:f9:cd:35:95:d2:
                    83:7d:38:41:cd:da:1a:79:1f:6d:69:d6:63:f3:fd:
                    1c:8c:bf:f8:b7:9e:81:49:df:35:98:fe:27:29:79:
                    d6:02:2a:dd:38:a2:34:b9:02:30:62:4f:f0:5c:d2:
                    23:4e:39:0c:6d:b2:4f:30:66:7f:00:1e:95:fd:a5:
                    c0:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E3:61:9B:FD:DA:52:4C:3B:60:E0:BD:5C:82:6E:A4:57:56:AE:6A:CA
            X509v3 Authority Key Identifier:
                keyid:F5:41:96:64:12:A9:92:63:40:E8:F1:0C:31:AB:E0:04:1F:25:A4:1F

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/1rkrmu44o66wAPvYC81Gmq2uE37YFv4gRZCNboiyD3c/0/F541966412A9926340E8F10C31ABE0041F25A41F.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/F541966412A9926340E8F10C31ABE0041F25A41F.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/1rkrmu44o66wAPvYC81Gmq2uE37YFv4gRZCNboiyD3c/0/323830343a323834303a3a2f33322d3332203d3e20323633393530.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:2840::/32

    Signature Algorithm: sha256WithRSAEncryption
         7a:f3:b8:d0:2c:e6:82:d2:26:c3:f1:b5:c7:9c:fb:a3:cc:4c:
         e2:4b:f4:05:83:f0:24:d4:a2:3b:9f:79:9c:f8:c6:60:95:59:
         4a:b1:eb:0c:79:4a:6c:5e:f4:7e:46:76:11:2a:1a:2e:40:1c:
         6b:b8:c4:f9:89:61:7a:c0:94:e1:54:84:4f:79:1c:cd:b3:0b:
         46:47:88:7b:6a:27:f0:02:64:f0:f0:77:d6:3f:e5:f0:b2:75:
         c0:ed:a8:06:6e:bb:e1:27:ab:c3:f4:38:e9:56:25:48:6b:c3:
         55:9e:b0:9d:79:9a:5b:94:a8:39:99:38:76:f2:2a:6a:6d:87:
         70:f9:af:d7:23:09:f5:17:fb:33:af:48:77:36:c1:f9:1b:4b:
         9f:70:49:80:6e:73:80:a6:14:f7:05:1d:36:98:dd:03:9b:b1:
         fc:c5:6d:bb:c3:62:cc:cc:e6:35:95:92:e6:0f:de:0d:1c:03:
         af:1f:e6:1b:73:5d:af:41:9a:a0:1b:5e:35:71:ca:5d:83:76:
         29:8a:1b:7f:d6:37:0e:54:d8:16:26:0f:47:10:00:b1:ef:2f:
         32:2c:59:60:07:43:73:1c:c5:33:aa:e0:73:c6:6e:23:36:99:
         ed:f0:13:26:5d:eb:32:3f:95:87:76:45:5f:cd:91:37:e0:ff:
         a5:a6:2d:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:16 2024 by rpki-client on console-fra.rpki-client.org