Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/2aTnJenuRpCfV3HB1FWcdFGCeXwWt6d9fbrp25J5uLaG/0/3230312e3138322e3132302e302f32322d3332203d3e20323637353137.roa
File:                     3230312e3138322e3132302e302f32322d3332203d3e20323637353137.roa (raw, json)
Hash identifier:          LEmiGIyJeJkOjRguivtjXx+G6XY00OW84sXmRTEdIQ0=
Subject key identifier:   15:84:1F:0D:18:40:C4:06:FE:AC:A5:20:23:CF:B9:AA:0D:8A:0D:44
Certificate issuer:       /CN=43776BCC03A02AECDEDDF74F3558BD76D054B5EF
Certificate serial:       148D17E6697E6E73F298C09347FCF5549B0C0978
Authority key identifier: 43:77:6B:CC:03:A0:2A:EC:DE:DD:F7:4F:35:58:BD:76:D0:54:B5:EF
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/43776BCC03A02AECDEDDF74F3558BD76D054B5EF.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/2aTnJenuRpCfV3HB1FWcdFGCeXwWt6d9fbrp25J5uLaG/0/3230312e3138322e3132302e302f32322d3332203d3e20323637353137.roa
Signing time:             Mon 02 Oct 2023 17:47:31 +0000
ROA not before:           Mon 02 Oct 2023 17:42:31 +0000
ROA not after:            Mon 30 Sep 2024 17:47:31 +0000
asID:                     267517
IP address blocks:        201.182.120.0/22 maxlen: 32

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            14:8d:17:e6:69:7e:6e:73:f2:98:c0:93:47:fc:f5:54:9b:0c:09:78
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=43776BCC03A02AECDEDDF74F3558BD76D054B5EF
        Validity
            Not Before: Oct  2 17:42:31 2023 GMT
            Not After : Sep 30 17:47:31 2024 GMT
        Subject: CN=15841F0D1840C406FEACA52023CFB9AA0D8A0D44
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:85:07:2e:ef:f8:95:93:4a:f6:bb:7c:cf:a7:
                    2c:01:1c:d8:2b:73:f0:60:d8:27:9e:43:7d:c1:1f:
                    b0:bd:4a:c2:22:d7:92:45:10:4c:cd:4d:e8:af:85:
                    59:f4:9e:d5:40:67:4d:db:11:b0:ac:84:33:8f:22:
                    e9:f4:32:3d:77:a4:f1:b7:65:07:fb:4f:db:32:43:
                    ba:64:91:2a:be:05:97:f2:28:83:3b:2b:33:77:76:
                    a3:59:85:7a:8e:4d:58:11:b6:10:c8:4a:e2:75:a5:
                    91:ab:72:37:d5:03:f3:3b:54:04:cb:ca:bf:4b:38:
                    28:b8:e6:8c:f8:c8:5d:0e:ae:1b:6b:b4:d4:a6:06:
                    17:f6:f5:76:77:ad:51:b5:75:54:7f:71:46:dd:f8:
                    9b:e1:83:8e:1a:5b:e8:89:e7:38:16:bc:2d:8e:53:
                    62:65:39:53:a9:99:34:d6:79:45:b7:ef:62:6d:2b:
                    fb:66:37:d3:30:68:15:11:d6:09:e7:58:50:0e:20:
                    e9:33:9c:cc:9b:fc:b9:4a:da:53:0d:2c:f9:c4:9d:
                    04:75:5d:65:80:49:7e:c8:79:92:3f:02:76:65:5d:
                    ee:2d:d9:f2:ef:ac:b5:e5:99:a8:32:1c:54:9a:57:
                    2c:3f:3d:54:92:c8:ba:db:5c:5b:2b:e0:66:d1:03:
                    4a:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                15:84:1F:0D:18:40:C4:06:FE:AC:A5:20:23:CF:B9:AA:0D:8A:0D:44
            X509v3 Authority Key Identifier:
                keyid:43:77:6B:CC:03:A0:2A:EC:DE:DD:F7:4F:35:58:BD:76:D0:54:B5:EF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/2aTnJenuRpCfV3HB1FWcdFGCeXwWt6d9fbrp25J5uLaG/0/43776BCC03A02AECDEDDF74F3558BD76D054B5EF.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/43776BCC03A02AECDEDDF74F3558BD76D054B5EF.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/2aTnJenuRpCfV3HB1FWcdFGCeXwWt6d9fbrp25J5uLaG/0/3230312e3138322e3132302e302f32322d3332203d3e20323637353137.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  201.182.120.0/22

    Signature Algorithm: sha256WithRSAEncryption
         a8:33:15:d6:03:ed:98:93:0d:33:bd:2e:0e:21:11:d8:c5:e2:
         e7:77:30:b9:65:64:55:22:7e:b2:3e:13:dd:a6:c5:d5:1a:02:
         49:46:30:85:6c:35:41:22:3d:a6:bf:7f:ac:ed:5d:c8:a8:4e:
         68:54:3f:01:7a:f4:07:4d:d4:0c:ee:dc:e5:02:98:8c:88:a5:
         32:86:6f:20:46:49:4b:7e:ee:61:7f:82:74:2b:59:c8:e9:14:
         22:5b:e4:29:47:89:d0:62:ca:57:01:82:81:b3:15:34:10:f9:
         d5:76:b1:98:32:62:0f:59:b2:1b:49:1d:05:e8:03:d5:06:7a:
         00:3e:a3:49:dd:22:48:81:18:02:7c:85:99:72:cc:cf:a3:1f:
         6e:ae:e7:97:51:0b:55:04:35:3f:ac:62:05:e2:50:cd:e0:4d:
         c8:da:ac:30:1f:a4:97:dc:56:ed:1e:90:e2:0f:70:e1:6a:56:
         20:34:1f:9a:e8:1b:74:8f:3e:c0:28:88:14:cf:1c:55:fb:b2:
         4d:33:34:ec:9f:33:a3:bf:e2:00:64:62:37:4c:25:26:0c:75:
         0a:81:58:d5:21:c2:49:13:62:22:01:72:66:1d:f6:26:cf:1b:
         fe:3b:22:19:f2:55:6e:dc:12:76:4b:12:f7:92:2a:5e:c6:fa:
         e4:5b:7e:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:20 2024 by rpki-client on console-fra.rpki-client.org