Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/2dSoa12UGnYxP6vT935eLg8MtFxneihFC63zdZB2kg4q/0/323830343a333964343a3a2f33322d313238203d3e20323636303533.roa
File:                     323830343a333964343a3a2f33322d313238203d3e20323636303533.roa (raw, json)
Hash identifier:          ql3yja+y4+Lj5NsAlaCucUGUBjJdU8NpIYULOkUO8Jw=
Subject key identifier:   FF:91:CC:CF:AE:D1:9C:39:18:5F:B3:15:49:10:A6:DF:CF:B4:FE:9A
Certificate issuer:       /CN=A13EA64BD25C6CCF8A661032B6E815B35F442816
Certificate serial:       2AB3C280BBFE7E9D89CCEF9CF1F7D375CB188C09
Authority key identifier: A1:3E:A6:4B:D2:5C:6C:CF:8A:66:10:32:B6:E8:15:B3:5F:44:28:16
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/A13EA64BD25C6CCF8A661032B6E815B35F442816.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/2dSoa12UGnYxP6vT935eLg8MtFxneihFC63zdZB2kg4q/0/323830343a333964343a3a2f33322d313238203d3e20323636303533.roa
Signing time:             Thu 15 Feb 2024 10:02:56 +0000
ROA not before:           Thu 15 Feb 2024 09:57:56 +0000
ROA not after:            Thu 13 Feb 2025 10:02:56 +0000
asID:                     266053
IP address blocks:        2804:39d4::/32 maxlen: 128

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            2a:b3:c2:80:bb:fe:7e:9d:89:cc:ef:9c:f1:f7:d3:75:cb:18:8c:09
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A13EA64BD25C6CCF8A661032B6E815B35F442816
        Validity
            Not Before: Feb 15 09:57:56 2024 GMT
            Not After : Feb 13 10:02:56 2025 GMT
        Subject: CN=FF91CCCFAED19C39185FB3154910A6DFCFB4FE9A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:56:65:c1:1c:ca:84:a8:5e:7d:c9:c9:ab:4b:
                    06:df:03:7e:a1:99:5b:2c:3c:4d:60:b2:b2:cd:2f:
                    d9:f5:c7:6c:d9:53:9d:84:60:1f:13:81:21:a9:41:
                    b5:eb:06:12:74:fc:40:5b:b1:47:a5:94:02:5a:ca:
                    9e:91:c0:82:82:ca:f8:06:10:9a:72:90:c5:ac:8b:
                    75:69:bb:c5:46:a9:80:c8:b2:ae:8f:88:0f:b9:5a:
                    7a:dd:5d:ae:f7:a2:09:9b:4d:58:8d:5a:87:2d:79:
                    8c:c3:50:6d:91:db:f8:42:56:e8:5e:d2:8a:5e:3d:
                    d6:fb:7b:d2:a5:82:ba:bc:e5:78:ce:52:e1:16:c0:
                    20:da:2c:ef:d7:0c:f5:05:c4:d6:2f:42:97:bd:d7:
                    85:f3:1a:ed:08:a3:13:24:8e:82:1a:69:06:64:ad:
                    42:a7:d0:00:21:1e:ca:69:5c:81:fd:36:d4:99:68:
                    ed:e8:b2:e6:60:07:84:d3:17:0a:d1:d8:c7:d5:e9:
                    a8:f7:99:f8:a9:4f:dd:22:f2:9e:26:a3:e2:06:14:
                    c8:a6:c5:45:2b:08:8a:e4:6e:bc:4e:21:68:b2:8c:
                    e8:f9:76:59:fa:14:8c:2a:04:ad:88:91:05:1a:3f:
                    48:df:70:18:23:c6:a7:f8:c7:a9:73:3b:85:ab:5b:
                    ad:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FF:91:CC:CF:AE:D1:9C:39:18:5F:B3:15:49:10:A6:DF:CF:B4:FE:9A
            X509v3 Authority Key Identifier:
                keyid:A1:3E:A6:4B:D2:5C:6C:CF:8A:66:10:32:B6:E8:15:B3:5F:44:28:16

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/2dSoa12UGnYxP6vT935eLg8MtFxneihFC63zdZB2kg4q/0/A13EA64BD25C6CCF8A661032B6E815B35F442816.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/A13EA64BD25C6CCF8A661032B6E815B35F442816.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/2dSoa12UGnYxP6vT935eLg8MtFxneihFC63zdZB2kg4q/0/323830343a333964343a3a2f33322d313238203d3e20323636303533.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:39d4::/32

    Signature Algorithm: sha256WithRSAEncryption
         13:da:ab:0a:c5:d3:fb:39:f1:91:46:a7:cc:13:ee:df:df:af:
         42:ca:8d:b1:77:80:02:05:ff:0c:1d:f5:51:1d:c0:27:90:83:
         58:4a:c1:c3:22:5f:ce:04:fa:8f:1f:9e:3a:2f:92:f2:a0:e8:
         4e:0c:e1:b3:a1:a8:fb:02:c7:e4:7f:7e:68:2d:56:64:f1:51:
         87:a3:8c:be:58:34:6d:a7:d0:d9:a5:8d:da:ed:d0:74:97:94:
         2c:f5:23:67:f3:9b:40:93:99:d1:f3:9f:01:ba:7d:57:44:5e:
         c5:a3:ae:31:06:88:b4:35:b5:c8:99:ab:43:15:d3:ad:45:6f:
         ff:03:67:db:3c:19:1d:bd:bc:bf:84:76:4e:02:8f:2c:c5:99:
         79:f4:fc:63:a2:be:fb:af:aa:b8:03:8c:8e:59:06:f4:c6:55:
         f3:30:48:06:9c:c3:b5:5b:5d:03:c6:b7:d5:74:90:5e:ac:36:
         9e:ec:cc:4d:a7:e1:1d:ee:09:11:1f:e6:3a:33:fc:a7:10:ad:
         6a:10:48:e8:a2:69:3c:f9:7d:8a:0b:7a:25:ca:4d:18:19:d1:
         6e:23:53:25:81:a7:96:6b:9a:bf:64:90:a2:c1:c1:f6:50:90:
         9e:54:dc:1f:86:8a:56:ff:9d:b2:3c:58:76:3a:0c:f7:da:08:
         9e:bb:7f:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:07 2024 by rpki-client on console-ams.rpki-client.org