Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/25Pj2NuqSpcuCtgWnpU8HQtdkVXho9kkha9qWoMCW6Ec/0/34352e3136332e37322e302f32322d3234203d3e20323638353733.roa
File:                     34352e3136332e37322e302f32322d3234203d3e20323638353733.roa (raw, json)
Hash identifier:          yKlwdpZx1ZlhFSmfTyLMV5hLM7JZGP71KTvvWN7hTtY=
Subject key identifier:   F4:3F:DF:CC:F5:DE:82:35:E1:66:44:CC:FB:03:2F:16:95:91:81:02
Certificate issuer:       /CN=4E98765D4D9282DA108EF0EE4CB3846708EB3B2D
Certificate serial:       3FE6F1480C80ADCCD78B81FBF7113084B04218B8
Authority key identifier: 4E:98:76:5D:4D:92:82:DA:10:8E:F0:EE:4C:B3:84:67:08:EB:3B:2D
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/4E98765D4D9282DA108EF0EE4CB3846708EB3B2D.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/25Pj2NuqSpcuCtgWnpU8HQtdkVXho9kkha9qWoMCW6Ec/0/34352e3136332e37322e302f32322d3234203d3e20323638353733.roa
Signing time:             Thu 14 Dec 2023 12:47:34 +0000
ROA not before:           Thu 14 Dec 2023 12:42:34 +0000
ROA not after:            Thu 12 Dec 2024 12:47:34 +0000
asID:                     268573
IP address blocks:        45.163.72.0/22 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3f:e6:f1:48:0c:80:ad:cc:d7:8b:81:fb:f7:11:30:84:b0:42:18:b8
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4E98765D4D9282DA108EF0EE4CB3846708EB3B2D
        Validity
            Not Before: Dec 14 12:42:34 2023 GMT
            Not After : Dec 12 12:47:34 2024 GMT
        Subject: CN=F43FDFCCF5DE8235E16644CCFB032F1695918102
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:40:51:1b:91:d6:ab:0f:1b:cf:68:43:0c:45:
                    77:73:a0:ba:41:d5:6f:e6:ab:71:12:10:e3:5d:d6:
                    b0:5e:2b:aa:e1:cb:84:e7:2d:ea:91:fd:70:14:cb:
                    d4:c4:7e:23:0f:5e:c5:a7:c7:f0:1f:da:ad:16:1d:
                    9d:0b:d5:c2:1c:ce:72:88:58:87:64:d9:dc:ba:5e:
                    80:4b:83:03:e4:fe:1e:3e:47:3f:02:3a:91:bb:0e:
                    33:9f:ff:e9:d7:ce:ba:d3:69:5c:ad:c5:29:30:ed:
                    0b:4b:f8:8d:08:63:18:59:78:39:ab:00:b9:67:ed:
                    4e:4c:cd:c0:ec:ed:69:c7:7f:f2:f8:98:ba:1d:0b:
                    fb:e8:43:7d:bd:bc:61:6a:8f:8c:35:2b:78:24:c6:
                    31:c3:9c:4f:26:86:cf:23:36:2d:5e:41:94:94:4c:
                    a5:42:bd:ba:be:91:54:c9:f5:02:fa:69:35:2c:dc:
                    3a:cc:02:ae:12:55:99:27:33:19:4e:92:1d:ec:13:
                    2f:33:f9:07:80:66:5a:c0:79:61:d4:06:1e:39:a2:
                    44:f8:2d:07:8b:f1:e8:9d:06:dd:4c:ee:e2:5c:00:
                    bd:c2:5e:67:9d:cf:d0:6d:2f:ff:44:60:2d:19:a2:
                    e6:7a:0c:a2:a7:86:8a:b7:6c:b4:4f:59:38:b1:75:
                    d2:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F4:3F:DF:CC:F5:DE:82:35:E1:66:44:CC:FB:03:2F:16:95:91:81:02
            X509v3 Authority Key Identifier:
                keyid:4E:98:76:5D:4D:92:82:DA:10:8E:F0:EE:4C:B3:84:67:08:EB:3B:2D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/25Pj2NuqSpcuCtgWnpU8HQtdkVXho9kkha9qWoMCW6Ec/0/4E98765D4D9282DA108EF0EE4CB3846708EB3B2D.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/4E98765D4D9282DA108EF0EE4CB3846708EB3B2D.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/25Pj2NuqSpcuCtgWnpU8HQtdkVXho9kkha9qWoMCW6Ec/0/34352e3136332e37322e302f32322d3234203d3e20323638353733.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.163.72.0/22

    Signature Algorithm: sha256WithRSAEncryption
         2d:80:80:99:25:c0:65:37:bd:44:51:85:de:ff:1c:a3:68:85:
         9b:cf:4c:d9:25:0e:80:78:38:2c:f0:56:87:61:0f:20:a6:f0:
         29:93:aa:0b:65:d4:f2:18:0d:8a:28:66:a3:9f:fa:57:0b:17:
         64:29:eb:5e:34:9d:d2:13:ac:af:e9:5a:8b:b1:ce:c9:88:db:
         de:78:98:9c:97:3c:f5:ea:ca:76:b9:92:c3:32:22:98:89:6d:
         6b:44:4f:18:0d:1e:68:f7:02:ed:0c:16:2e:b8:56:59:d5:9f:
         c6:44:69:06:99:92:57:06:9e:7d:4e:f0:de:42:c7:ce:68:9a:
         1e:9d:c0:86:e0:59:e5:38:22:9a:d3:11:d2:95:ef:65:19:d1:
         8a:75:a2:22:95:7d:e8:10:1e:1e:09:bf:92:2c:7f:8e:33:52:
         78:dc:7d:80:c9:dc:72:34:14:1e:34:d2:a5:05:e8:b5:8f:6b:
         9c:4e:de:cb:f2:08:68:62:5b:1f:97:10:75:62:7b:10:27:a4:
         e2:31:d8:b0:5b:a7:3f:6c:5b:0f:4c:5e:13:be:d7:19:e1:f5:
         4f:e4:a7:28:2d:d7:9a:bd:75:5f:ef:53:82:b7:a0:64:a1:af:
         72:16:da:b6:17:f6:db:1f:a7:1a:0c:ef:b2:a6:b9:ee:6f:1b:
         2b:4e:d4:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:16 2024 by rpki-client on console-fra.rpki-client.org