Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/2vPKgoXhoVNBNfX4H2REEFZ1PVmF8R8XmU8q1UUdimGb/0/34352e3137342e3139362e302f32332d3233203d3e20323731353939.roa
File:                     34352e3137342e3139362e302f32332d3233203d3e20323731353939.roa (raw, json)
Hash identifier:          EJwxe+ob3fIJpoQbfbhI0x7Q195KUU6LQr/3nga9Cp8=
Subject key identifier:   26:4E:8E:84:1D:1D:51:01:9B:64:AE:B4:34:1F:6A:31:CF:1E:2F:1E
Certificate issuer:       /CN=3CE59A2255B0F6DB40FED1C97D0EB393550AFAA5
Certificate serial:       3E08F79CF8DE649C3B0D517A7D619BF28B6432C7
Authority key identifier: 3C:E5:9A:22:55:B0:F6:DB:40:FE:D1:C9:7D:0E:B3:93:55:0A:FA:A5
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/3CE59A2255B0F6DB40FED1C97D0EB393550AFAA5.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/2vPKgoXhoVNBNfX4H2REEFZ1PVmF8R8XmU8q1UUdimGb/0/34352e3137342e3139362e302f32332d3233203d3e20323731353939.roa
Signing time:             Thu 28 Mar 2024 22:04:54 +0000
ROA not before:           Thu 28 Mar 2024 21:59:54 +0000
ROA not after:            Thu 27 Mar 2025 22:04:54 +0000
asID:                     271599
IP address blocks:        45.174.196.0/23 maxlen: 23

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3e:08:f7:9c:f8:de:64:9c:3b:0d:51:7a:7d:61:9b:f2:8b:64:32:c7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3CE59A2255B0F6DB40FED1C97D0EB393550AFAA5
        Validity
            Not Before: Mar 28 21:59:54 2024 GMT
            Not After : Mar 27 22:04:54 2025 GMT
        Subject: CN=264E8E841D1D51019B64AEB4341F6A31CF1E2F1E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:14:e2:c8:5a:4c:e7:41:5e:0f:e4:5f:90:6d:
                    ae:12:80:24:4c:fd:6a:0f:87:2c:01:4d:82:1b:e6:
                    03:87:24:6c:2e:a5:55:58:c6:f7:e9:03:01:63:64:
                    cc:6c:aa:c0:df:ef:15:66:11:91:01:61:20:c0:28:
                    cd:20:58:0d:17:9a:e6:af:85:b3:df:bf:31:f4:45:
                    74:94:cd:e4:b0:7f:6d:db:40:5a:06:a6:2c:03:b3:
                    8c:96:67:c7:f9:70:40:25:20:88:64:93:2f:06:df:
                    6b:b3:c5:af:fb:bd:05:67:2b:aa:34:b0:3a:ed:49:
                    4f:bb:71:e3:21:0c:1f:c9:4c:30:57:f9:3a:4c:92:
                    e9:2c:00:61:e5:d0:64:b4:54:61:b9:c3:30:b4:c7:
                    8c:58:b6:3f:65:88:ff:ba:fe:2d:04:6c:b1:2d:8c:
                    f9:5b:4a:00:45:a8:e7:8b:65:99:ca:19:d7:88:92:
                    ed:af:c1:d7:28:c7:3d:f2:ea:68:7d:4a:65:0e:59:
                    53:f9:5f:d5:b7:e3:3f:bd:96:09:c1:60:6f:b3:f8:
                    9b:b0:ca:c2:a6:3e:40:d1:50:76:52:65:6c:6a:ab:
                    e8:55:82:97:cd:5f:7f:a8:7c:b8:b0:36:4d:53:ce:
                    13:ca:94:f8:fa:ec:47:a6:f1:b9:dc:ef:a1:07:4e:
                    27:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                26:4E:8E:84:1D:1D:51:01:9B:64:AE:B4:34:1F:6A:31:CF:1E:2F:1E
            X509v3 Authority Key Identifier:
                keyid:3C:E5:9A:22:55:B0:F6:DB:40:FE:D1:C9:7D:0E:B3:93:55:0A:FA:A5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/2vPKgoXhoVNBNfX4H2REEFZ1PVmF8R8XmU8q1UUdimGb/0/3CE59A2255B0F6DB40FED1C97D0EB393550AFAA5.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/3CE59A2255B0F6DB40FED1C97D0EB393550AFAA5.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/2vPKgoXhoVNBNfX4H2REEFZ1PVmF8R8XmU8q1UUdimGb/0/34352e3137342e3139362e302f32332d3233203d3e20323731353939.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.174.196.0/23

    Signature Algorithm: sha256WithRSAEncryption
         1e:e1:17:cd:dd:35:c3:fe:d8:2d:3d:ff:2c:41:be:f9:c5:59:
         36:45:a3:c5:8b:4d:30:af:d7:e0:27:df:35:39:61:ad:fe:63:
         3d:52:15:13:b5:62:a3:51:51:94:43:0f:d9:a5:e6:fd:9c:b1:
         7e:f1:79:83:81:2c:6c:93:b0:73:71:98:d9:86:a8:71:98:a5:
         43:e5:72:70:b1:7f:e8:9c:f5:02:f5:6c:82:9f:c0:39:ee:fa:
         93:1f:6b:9b:f0:8c:50:d0:74:1b:e7:c0:8f:a9:f8:be:32:6b:
         39:9e:4e:6c:68:8b:c6:26:8c:b9:1d:48:b8:4a:79:80:87:fb:
         1b:79:55:1b:05:c3:cb:ea:04:4a:c8:36:85:7c:9d:05:33:3b:
         f0:6e:cd:9a:9e:1d:a8:04:c8:20:df:75:4d:05:08:52:27:09:
         f1:df:45:c4:be:2a:bd:c5:41:10:dc:df:68:3b:34:eb:bf:57:
         dc:4c:ff:54:56:c3:a7:19:fe:5a:dc:4c:5e:36:b0:44:27:ea:
         ce:84:6d:cc:05:cc:af:7e:90:b5:fe:c1:2c:d8:e9:b8:5b:61:
         37:24:ad:ea:2a:4c:94:f8:b7:a4:f8:fe:37:1c:11:70:e9:2d:
         89:f5:58:32:2f:dd:cc:4b:d5:f4:b0:aa:b9:4a:da:8f:9c:a2:
         c1:3f:94:20
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgIUPgj3nPjeZJw7DVF6fWGb8otkMscwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoM0NFNTlBMjI1NUIwRjZEQjQwRkVEMUM5N0QwRUIzOTM1
NTBBRkFBNTAeFw0yNDAzMjgyMTU5NTRaFw0yNTAzMjcyMjA0NTRaMDMxMTAvBgNV
BAMTKDI2NEU4RTg0MUQxRDUxMDE5QjY0QUVCNDM0MUY2QTMxQ0YxRTJGMUUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCFOLIWkznQV4P5F+Qba4SgCRM
/WoPhywBTYIb5gOHJGwupVVYxvfpAwFjZMxsqsDf7xVmEZEBYSDAKM0gWA0Xmuav
hbPfvzH0RXSUzeSwf23bQFoGpiwDs4yWZ8f5cEAlIIhkky8G32uzxa/7vQVnK6o0
sDrtSU+7ceMhDB/JTDBX+TpMkuksAGHl0GS0VGG5wzC0x4xYtj9liP+6/i0EbLEt
jPlbSgBFqOeLZZnKGdeIku2vwdcoxz3y6mh9SmUOWVP5X9W34z+9lgnBYG+z+Juw
ysKmPkDRUHZSZWxqq+hVgpfNX3+ofLiwNk1TzhPKlPj67Eem8bnc76EHTifxAgMB
AAGjggJRMIICTTAdBgNVHQ4EFgQUJk6OhB0dUQGbZK60NB9qMc8eLx4wHwYDVR0j
BBgwFoAUPOWaIlWw9ttA/tHJfQ6zk1UK+qUwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vMnZQS2dvWGhvVk5CTmZYNEgyUkVFRloxUFZtRjhSOFhtVThxMVVVZGlt
R2IvMC8zQ0U1OUEyMjU1QjBGNkRCNDBGRUQxQzk3RDBFQjM5MzU1MEFGQUE1LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8wLzNDRTU5QTIyNTVCMEY2REI0
MEZFRDFDOTdEMEVCMzkzNTUwQUZBQTUuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB
mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzJ2UEtnb1hob1ZOQk5mWDRIMlJFRUZaMVBWbUY4UjhYbVU4cTFVVWRpbUdiLzAv
MzQzNTJlMzEzNzM0MmUzMTM5MzYyZTMwMmYzMjMzMmQzMjMzMjAzZDNlMjAzMjM3
MzEzNTM5Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH
AQcBAf8EEDAOMAwEAgABMAYDBAEtrsQwDQYJKoZIhvcNAQELBQADggEBAB7hF83d
NcP+2C09/yxBvvnFWTZFo8WLTTCv1+An3zU5Ya3+Yz1SFRO1YqNRUZRDD9ml5v2c
sX7xeYOBLGyTsHNxmNmGqHGYpUPlcnCxf+ic9QL1bIKfwDnu+pMfa5vwjFDQdBvn
wI+p+L4yazmeTmxoi8YmjLkdSLhKeYCH+xt5VRsFw8vqBErINoV8nQUzO/BuzZqe
HagEyCDfdU0FCFInCfHfRcS+Kr3FQRDc32g7NOu/V9xM/1RWw6cZ/lrcTF42sEQn
6s6EbcwFzK9+kLX+wSzY6bhbYTckreoqTJT4t6T4/jccEXDpLYn1WDIv3cxL1fSw
qrlK2o+cosE/lCA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:24 2024 by rpki-client on console-fra.rpki-client.org