Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/2vPKgoXhoVNBNfX4H2REEFZ1PVmF8R8XmU8q1UUdimGb/0/323830343a376530633a3a2f33332d3333203d3e20323731353939.roa
File:                     323830343a376530633a3a2f33332d3333203d3e20323731353939.roa (raw, json)
Hash identifier:          2j4t6lP21f1/8Kuz4/jyviFlBllYCEyDxDzswl3A+mo=
Subject key identifier:   25:D8:A6:AA:7C:31:45:32:DA:D4:F1:C8:71:52:7B:AC:38:CA:64:E7
Certificate issuer:       /CN=3CE59A2255B0F6DB40FED1C97D0EB393550AFAA5
Certificate serial:       2783B2898085A30CBFFB309687B1D6B3FF789A28
Authority key identifier: 3C:E5:9A:22:55:B0:F6:DB:40:FE:D1:C9:7D:0E:B3:93:55:0A:FA:A5
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/3CE59A2255B0F6DB40FED1C97D0EB393550AFAA5.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/2vPKgoXhoVNBNfX4H2REEFZ1PVmF8R8XmU8q1UUdimGb/0/323830343a376530633a3a2f33332d3333203d3e20323731353939.roa
Signing time:             Thu 28 Mar 2024 22:04:53 +0000
ROA not before:           Thu 28 Mar 2024 21:59:53 +0000
ROA not after:            Thu 27 Mar 2025 22:04:53 +0000
asID:                     271599
IP address blocks:        2804:7e0c::/33 maxlen: 33

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            27:83:b2:89:80:85:a3:0c:bf:fb:30:96:87:b1:d6:b3:ff:78:9a:28
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3CE59A2255B0F6DB40FED1C97D0EB393550AFAA5
        Validity
            Not Before: Mar 28 21:59:53 2024 GMT
            Not After : Mar 27 22:04:53 2025 GMT
        Subject: CN=25D8A6AA7C314532DAD4F1C871527BAC38CA64E7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b2:a0:d0:75:b0:b4:5f:5d:b1:f7:af:ae:ef:68:
                    38:72:cc:57:d9:10:27:b5:c9:62:d4:a9:ee:bc:34:
                    c0:75:f5:87:a2:b4:bb:0c:c7:d4:24:40:ad:a1:32:
                    e8:53:95:ef:f7:f8:2b:52:6d:55:82:31:e1:9d:4f:
                    8d:cf:b4:49:99:a7:d5:25:7a:bf:af:40:c5:97:4a:
                    d5:a2:dd:34:02:b9:32:39:ba:01:cc:e4:09:fa:ee:
                    ad:53:3f:4f:13:dd:2d:20:51:f4:80:57:c0:5f:75:
                    2f:62:51:0b:44:8a:da:30:44:f7:bc:de:1b:75:8d:
                    bc:61:13:e5:3a:1f:bc:2d:1d:ab:2c:85:12:52:34:
                    41:16:36:08:60:b9:22:44:5d:ba:84:fa:51:f7:17:
                    ee:18:d4:58:6a:49:a4:2e:c6:98:83:8d:06:d6:d0:
                    67:ce:06:4e:f1:2a:6e:02:e3:32:50:3d:08:9a:09:
                    33:df:3d:d6:33:50:dd:8a:0a:50:ae:3b:ca:f0:39:
                    de:5c:fb:6b:46:9a:4b:f1:26:5d:68:2a:b5:a6:5e:
                    86:ac:ab:17:b4:cf:72:be:92:9d:e2:2b:43:9d:fa:
                    9e:8f:e3:e2:50:b4:7d:03:b8:f4:1c:1e:a2:32:56:
                    6b:27:a9:e4:d7:f9:40:42:df:e1:9f:6b:21:b5:08:
                    98:0d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                25:D8:A6:AA:7C:31:45:32:DA:D4:F1:C8:71:52:7B:AC:38:CA:64:E7
            X509v3 Authority Key Identifier:
                keyid:3C:E5:9A:22:55:B0:F6:DB:40:FE:D1:C9:7D:0E:B3:93:55:0A:FA:A5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/2vPKgoXhoVNBNfX4H2REEFZ1PVmF8R8XmU8q1UUdimGb/0/3CE59A2255B0F6DB40FED1C97D0EB393550AFAA5.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/3CE59A2255B0F6DB40FED1C97D0EB393550AFAA5.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/2vPKgoXhoVNBNfX4H2REEFZ1PVmF8R8XmU8q1UUdimGb/0/323830343a376530633a3a2f33332d3333203d3e20323731353939.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:7e0c::/33

    Signature Algorithm: sha256WithRSAEncryption
         07:17:2d:f9:2d:98:dd:01:6b:0a:91:3a:de:bd:f9:14:d6:e9:
         ca:76:fb:69:e1:37:ea:73:56:fb:b2:69:65:51:88:df:78:05:
         00:2d:03:99:73:0e:41:09:50:6a:97:80:2f:2d:c6:99:0b:0f:
         a9:75:89:c3:19:9f:90:48:79:f6:98:45:97:c6:ce:ce:1d:b6:
         21:04:75:13:ab:5e:02:13:c5:38:b6:50:49:47:6d:da:14:1b:
         b1:5f:15:7c:21:35:7d:f6:0a:a5:2e:6d:b3:c1:41:c2:74:ff:
         ea:73:ff:ac:2e:3f:fd:98:fb:21:8d:b2:31:5b:63:bc:2a:b4:
         84:31:70:ff:d2:76:1e:d8:08:2f:ee:37:f3:56:f8:5e:6a:a0:
         cd:66:97:87:c5:f2:dc:af:55:81:00:15:7c:f5:45:82:f6:93:
         8a:c9:3c:6f:fa:84:e4:e5:44:3a:94:45:24:d8:b6:31:36:24:
         0b:1e:f5:ee:45:1a:e8:02:2e:bf:67:99:41:cb:53:60:45:5e:
         b4:57:df:7b:69:81:be:20:0d:85:0c:09:3f:27:49:9e:ae:d1:
         cb:e3:ce:03:02:2f:05:fd:af:f7:fe:e1:0e:d5:a0:1c:fe:24:
         05:91:77:db:00:cc:39:02:f2:ae:36:ad:a0:d5:0c:82:ee:a8:
         f1:fc:b6:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:09 2024 by rpki-client on console-ams.rpki-client.org