Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3138372e36312e39372e302f32342d3234203d3e203533313533.roa
File:                     3138372e36312e39372e302f32342d3234203d3e203533313533.roa (raw, json)
Hash identifier:          wNewEMMKZbMSE2LUZEGFHMiz0vP9bpcIyBgVA2+aTXg=
Subject key identifier:   52:0F:9F:24:DD:F5:58:C5:A5:F9:0C:2A:C8:0B:B9:2C:EC:D6:8D:6C
Certificate issuer:       /CN=9536A4A25799142864EDF97B100393D50D163742
Certificate serial:       45665C905E24630FA6DDF6A85DD4BD7AD60A8E
Authority key identifier: 95:36:A4:A2:57:99:14:28:64:ED:F9:7B:10:03:93:D5:0D:16:37:42
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9536A4A25799142864EDF97B100393D50D163742.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3138372e36312e39372e302f32342d3234203d3e203533313533.roa
Signing time:             Fri 24 May 2024 14:20:12 +0000
ROA not before:           Fri 24 May 2024 14:15:12 +0000
ROA not after:            Fri 23 May 2025 14:20:12 +0000
asID:                     53153
IP address blocks:        187.61.97.0/24 maxlen: 24

Validation:               Failed, unable to get certificate CRL

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            45:66:5c:90:5e:24:63:0f:a6:dd:f6:a8:5d:d4:bd:7a:d6:0a:8e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9536A4A25799142864EDF97B100393D50D163742
        Validity
            Not Before: May 24 14:15:12 2024 GMT
            Not After : May 23 14:20:12 2025 GMT
        Subject: CN=520F9F24DDF558C5A5F90C2AC80BB92CECD68D6C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:39:26:54:74:b3:88:c4:7b:cc:8f:76:84:60:
                    f7:9f:b6:70:6a:69:23:7e:59:81:c3:b9:f7:3b:58:
                    3e:86:56:f4:58:22:13:9a:e8:85:88:92:5e:a1:c0:
                    8b:0b:40:bb:c3:03:1e:56:62:c1:74:af:8a:23:20:
                    7a:47:27:ae:94:c3:ef:07:ae:d2:ed:48:2a:9b:3e:
                    36:bd:53:5d:5c:5a:ae:c3:7f:f0:fc:91:6e:61:2f:
                    e8:7b:c4:76:22:b1:12:47:37:4b:94:b2:64:e4:11:
                    4d:7b:ef:e8:8a:f6:76:10:ec:7b:7c:69:08:90:09:
                    de:b0:61:c4:cc:2a:cf:2a:73:c4:23:26:b0:03:0a:
                    0c:92:75:bc:65:d9:92:f1:0f:20:b9:19:43:80:95:
                    59:55:dd:3f:c8:62:c3:a7:b5:3f:d2:75:dc:2b:1f:
                    78:df:98:b7:6f:9b:19:24:91:09:ea:4e:5b:04:d0:
                    44:82:86:1f:6c:3e:fa:a0:9b:1a:07:a6:fd:92:33:
                    85:3d:5f:71:1d:d2:db:4a:c5:a3:f4:7f:8b:82:ef:
                    94:d9:e2:74:98:2b:cf:89:e0:f8:2d:28:e0:56:22:
                    64:4c:c6:87:54:df:74:66:ee:8f:2f:05:b8:1a:43:
                    86:ce:ba:6e:5c:a2:cb:f5:3e:1d:0e:a4:7b:77:af:
                    69:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                52:0F:9F:24:DD:F5:58:C5:A5:F9:0C:2A:C8:0B:B9:2C:EC:D6:8D:6C
            X509v3 Authority Key Identifier:
                keyid:95:36:A4:A2:57:99:14:28:64:ED:F9:7B:10:03:93:D5:0D:16:37:42

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/9536A4A25799142864EDF97B100393D50D163742.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/1/9536A4A25799142864EDF97B100393D50D163742.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/2nsdtLtmqpH3PPmbrsLsHXhm7jxkPrTsdJrnvgNzRBJh/0/3138372e36312e39372e302f32342d3234203d3e203533313533.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  187.61.97.0/24

    Signature Algorithm: sha256WithRSAEncryption
         6c:45:e8:cc:a7:52:7d:5d:af:ab:10:27:07:d5:aa:a2:aa:93:
         e3:5c:98:8f:00:a3:c5:98:0b:e9:fd:60:58:14:85:21:03:be:
         ba:8d:4b:f0:d4:64:cf:74:f2:2f:27:a9:6b:ed:80:45:cd:92:
         3d:09:99:bd:17:e5:4d:da:5c:59:c6:90:57:61:17:fa:93:73:
         af:ea:f3:19:17:fd:f8:15:d6:cb:9a:03:ef:7f:3f:c9:c9:c9:
         5e:7a:68:27:28:65:54:03:b5:50:f0:9c:b7:a1:52:5a:12:68:
         14:bb:07:96:d6:0b:bf:0c:36:34:c4:94:38:63:47:72:a0:27:
         95:bd:a4:94:64:9c:4e:bd:2c:89:8c:01:d2:08:9c:e8:f7:6f:
         90:fa:ab:0c:a9:1c:70:2a:07:aa:bb:04:ff:ed:b3:66:fc:f2:
         22:79:18:89:9d:63:cc:e2:b0:c1:9f:e6:b7:d9:d1:7a:18:c2:
         7d:96:25:5a:2b:47:05:e5:55:e0:60:e4:ee:cf:fe:7d:8a:14:
         53:82:e7:48:fe:47:06:da:ba:56:d3:2d:d0:11:c9:41:9e:75:
         fc:9b:9d:6d:a4:02:6e:a0:69:18:72:01:6e:f6:93:68:53:44:
         42:8f:88:dd:02:5e:50:8e:fa:70:a1:de:fe:ef:11:e3:db:3f:
         7b:1f:a1:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 07:59:36 2024 by rpki-client on console-fra.rpki-client.org