Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/2qosEFHVQbeQvy8iktdNzpWNHKcB1zeV4mSd6F1ea1WN/0/3136382e3139372e3232382e302f32322d3332203d3e20323633323532.roa
File:                     3136382e3139372e3232382e302f32322d3332203d3e20323633323532.roa (raw, json)
Hash identifier:          JyaQs/982o4SfUu61VCB3wlZtEcAX4VLtH4zfmpE0Gs=
Subject key identifier:   38:F3:D2:EB:B8:2D:6B:2D:79:F3:C4:AF:11:0A:A6:2C:D3:6C:96:77
Certificate issuer:       /CN=028B43AD112899168CE5212FE3FB097B8D664FD2
Certificate serial:       1BF0629A4F1FC2ED4BB7057E07E337371B6F0A0F
Authority key identifier: 02:8B:43:AD:11:28:99:16:8C:E5:21:2F:E3:FB:09:7B:8D:66:4F:D2
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/028B43AD112899168CE5212FE3FB097B8D664FD2.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/2qosEFHVQbeQvy8iktdNzpWNHKcB1zeV4mSd6F1ea1WN/0/3136382e3139372e3232382e302f32322d3332203d3e20323633323532.roa
Signing time:             Mon 11 Mar 2024 20:48:20 +0000
ROA not before:           Mon 11 Mar 2024 20:43:20 +0000
ROA not after:            Mon 10 Mar 2025 20:48:20 +0000
asID:                     263252
IP address blocks:        168.197.228.0/22 maxlen: 32

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            1b:f0:62:9a:4f:1f:c2:ed:4b:b7:05:7e:07:e3:37:37:1b:6f:0a:0f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=028B43AD112899168CE5212FE3FB097B8D664FD2
        Validity
            Not Before: Mar 11 20:43:20 2024 GMT
            Not After : Mar 10 20:48:20 2025 GMT
        Subject: CN=38F3D2EBB82D6B2D79F3C4AF110AA62CD36C9677
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:56:1b:7f:69:56:33:cb:82:0d:91:26:18:d4:
                    41:96:e5:ad:33:19:9e:e8:76:88:fa:10:29:8a:63:
                    1a:2a:a1:e2:a4:7d:b0:ac:07:7a:48:c6:be:fa:5e:
                    f7:e8:0a:d2:09:38:a1:1e:d9:a9:11:7e:f9:d8:58:
                    c7:95:0e:66:dd:92:22:e4:d1:dc:da:61:ef:ed:af:
                    56:c7:f2:99:b4:ed:d3:8f:d8:ed:f4:b1:97:bb:a7:
                    73:90:ac:b0:89:26:d6:7a:f7:94:bf:b1:7e:8b:5d:
                    3c:9d:d1:58:c3:b5:14:bd:1c:d6:70:42:37:68:2f:
                    51:fe:36:f4:0d:62:6b:d1:22:81:01:cf:8f:94:3a:
                    bf:4c:14:99:c2:ad:50:25:01:5c:43:2a:2f:8d:1f:
                    75:e5:74:4c:46:7f:56:35:27:23:9e:90:96:fc:fd:
                    ad:f5:13:9d:37:35:bf:14:a9:ba:fe:15:e3:eb:01:
                    a8:db:20:c2:b8:b8:55:06:27:c1:cd:33:25:0e:55:
                    de:1d:e9:b1:48:12:4d:a9:e3:fc:2e:2c:f7:7c:3b:
                    ea:cd:d7:de:fc:14:dc:0d:a3:c0:3d:cb:ef:0b:a4:
                    b3:dc:c9:fb:69:de:68:78:fc:5b:08:08:1d:49:d5:
                    1c:2d:23:4e:94:96:f1:e3:3b:6e:ae:87:9e:9a:3d:
                    cd:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                38:F3:D2:EB:B8:2D:6B:2D:79:F3:C4:AF:11:0A:A6:2C:D3:6C:96:77
            X509v3 Authority Key Identifier:
                keyid:02:8B:43:AD:11:28:99:16:8C:E5:21:2F:E3:FB:09:7B:8D:66:4F:D2

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/2qosEFHVQbeQvy8iktdNzpWNHKcB1zeV4mSd6F1ea1WN/0/028B43AD112899168CE5212FE3FB097B8D664FD2.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/028B43AD112899168CE5212FE3FB097B8D664FD2.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/2qosEFHVQbeQvy8iktdNzpWNHKcB1zeV4mSd6F1ea1WN/0/3136382e3139372e3232382e302f32322d3332203d3e20323633323532.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  168.197.228.0/22

    Signature Algorithm: sha256WithRSAEncryption
         8e:06:e9:7e:82:97:0b:68:f7:8b:f6:57:ad:85:3d:3d:c2:36:
         69:34:e2:41:37:7c:b1:78:b1:18:42:89:79:c8:b8:44:c4:25:
         d5:80:40:39:66:d6:d2:c9:74:56:de:7e:5f:28:10:3e:0b:e2:
         5b:24:9e:ec:6d:64:75:da:e5:7d:2f:47:43:b4:fa:c3:92:f6:
         5d:11:5c:66:ed:9a:10:a8:34:b6:8a:7b:35:e0:78:61:d9:42:
         48:87:2a:df:1c:85:2f:91:79:fc:c0:87:cf:1d:9f:c8:38:47:
         63:00:ea:ab:f7:5c:04:fc:a4:3c:e0:81:b2:97:a9:3e:4b:97:
         6f:8c:7c:3f:19:4d:78:f9:47:b8:75:07:15:54:52:d0:9b:0e:
         e5:ba:ea:95:9f:3a:5e:98:b9:84:88:33:e2:c7:a1:89:6f:c2:
         41:b5:23:3f:29:b1:7a:cd:64:21:f9:dc:35:76:d5:15:ad:a5:
         d3:0a:29:a3:c9:73:f4:22:24:c3:63:29:c8:e9:71:e1:11:77:
         9e:18:29:a2:5f:17:5c:ce:e0:7e:78:5f:38:cb:f5:0d:6b:74:
         15:17:dc:d6:44:0f:18:bc:3d:25:73:61:b9:ed:3b:fd:0f:f9:
         f3:9c:70:08:dd:72:58:32:ea:ab:5a:e7:3f:7a:cf:38:99:29:
         4c:e2:05:6e
-----BEGIN CERTIFICATE-----
MIIFSTCCBDGgAwIBAgIUG/Bimk8fwu1LtwV+B+M3NxtvCg8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDI4QjQzQUQxMTI4OTkxNjhDRTUyMTJGRTNGQjA5N0I4
RDY2NEZEMjAeFw0yNDAzMTEyMDQzMjBaFw0yNTAzMTAyMDQ4MjBaMDMxMTAvBgNV
BAMTKDM4RjNEMkVCQjgyRDZCMkQ3OUYzQzRBRjExMEFBNjJDRDM2Qzk2NzcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVVht/aVYzy4INkSYY1EGW5a0z
GZ7odoj6ECmKYxoqoeKkfbCsB3pIxr76XvfoCtIJOKEe2akRfvnYWMeVDmbdkiLk
0dzaYe/tr1bH8pm07dOP2O30sZe7p3OQrLCJJtZ695S/sX6LXTyd0VjDtRS9HNZw
QjdoL1H+NvQNYmvRIoEBz4+UOr9MFJnCrVAlAVxDKi+NH3XldExGf1Y1JyOekJb8
/a31E503Nb8Uqbr+FePrAajbIMK4uFUGJ8HNMyUOVd4d6bFIEk2p4/wuLPd8O+rN
1978FNwNo8A9y+8LpLPcyftp3mh4/FsICB1J1RwtI06UlvHjO26uh56aPc2DAgMB
AAGjggJTMIICTzAdBgNVHQ4EFgQUOPPS67gtay1588SvEQqmLNNslncwHwYDVR0j
BBgwFoAUAotDrREomRaM5SEv4/sJe41mT9IwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vMnFvc0VGSFZRYmVRdnk4aWt0ZE56cFdOSEtjQjF6ZVY0bVNkNkYxZWEx
V04vMC8wMjhCNDNBRDExMjg5OTE2OENFNTIxMkZFM0ZCMDk3QjhENjY0RkQyLmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8wLzAyOEI0M0FEMTEyODk5MTY4
Q0U1MjEyRkUzRkIwOTdCOEQ2NjRGRDIuY2VyMIGwBggrBgEFBQcBCwSBozCBoDCB
nQYIKwYBBQUHMAuGgZByc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzJxb3NFRkhWUWJlUXZ5OGlrdGROenBXTkhLY0IxemVWNG1TZDZGMWVhMVdOLzAv
MzEzNjM4MmUzMTM5MzcyZTMyMzIzODJlMzAyZjMyMzIyZDMzMzIyMDNkM2UyMDMy
MzYzMzMyMzUzMi5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF
BQcBBwEB/wQQMA4wDAQCAAEwBgMEAqjF5DANBgkqhkiG9w0BAQsFAAOCAQEAjgbp
foKXC2j3i/ZXrYU9PcI2aTTiQTd8sXixGEKJeci4RMQl1YBAOWbW0sl0Vt5+XygQ
PgviWySe7G1kddrlfS9HQ7T6w5L2XRFcZu2aEKg0top7NeB4YdlCSIcq3xyFL5F5
/MCHzx2fyDhHYwDqq/dcBPykPOCBspepPkuXb4x8PxlNePlHuHUHFVRS0JsO5brq
lZ86Xpi5hIgz4sehiW/CQbUjPymxes1kIfncNXbVFa2l0wopo8lz9CIkw2MpyOlx
4RF3nhgpol8XXM7gfnhfOMv1DWt0FRfc1kQPGLw9JXNhue07/Q/585xwCN1yWDLq
q1rnP3rPOJkpTOIFbg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:08 2024 by rpki-client on console-ams.rpki-client.org