Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/2vPKgoXhoVNBNfX4H2REEFZ1PVmF8R8XmU8q1UUdimGb/0/34352e3137342e3139382e302f32342d3234203d3e20323731353939.roa
File:                     34352e3137342e3139382e302f32342d3234203d3e20323731353939.roa (raw, json)
Hash identifier:          abp8Z5zXR9H1Cq+Tj2UjqWG36JVqdI1xpQTp4W5uQbw=
Subject key identifier:   EB:A2:FC:2A:61:EB:52:68:9F:14:3B:BD:9D:D2:6B:BD:4C:0E:6D:40
Certificate issuer:       /CN=3CE59A2255B0F6DB40FED1C97D0EB393550AFAA5
Certificate serial:       75A8C1B5B9186236B9223897D7F052E1BEF2CDE4
Authority key identifier: 3C:E5:9A:22:55:B0:F6:DB:40:FE:D1:C9:7D:0E:B3:93:55:0A:FA:A5
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/3CE59A2255B0F6DB40FED1C97D0EB393550AFAA5.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/2vPKgoXhoVNBNfX4H2REEFZ1PVmF8R8XmU8q1UUdimGb/0/34352e3137342e3139382e302f32342d3234203d3e20323731353939.roa
Signing time:             Thu 28 Mar 2024 22:04:53 +0000
ROA not before:           Thu 28 Mar 2024 21:59:53 +0000
ROA not after:            Thu 27 Mar 2025 22:04:53 +0000
asID:                     271599
IP address blocks:        45.174.198.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            75:a8:c1:b5:b9:18:62:36:b9:22:38:97:d7:f0:52:e1:be:f2:cd:e4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3CE59A2255B0F6DB40FED1C97D0EB393550AFAA5
        Validity
            Not Before: Mar 28 21:59:53 2024 GMT
            Not After : Mar 27 22:04:53 2025 GMT
        Subject: CN=EBA2FC2A61EB52689F143BBD9DD26BBD4C0E6D40
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:cc:7e:10:a0:7d:13:4a:8a:dd:5d:0f:2d:a9:
                    da:92:b5:b2:c2:6d:cf:60:1a:b4:70:10:50:21:25:
                    5c:ca:0a:21:84:e2:eb:c7:18:a9:f7:1d:dc:84:6d:
                    29:21:fa:bc:01:22:c7:9e:b3:0e:22:db:3c:17:4a:
                    09:c2:de:62:39:35:fb:3b:91:1d:9f:e3:04:61:d9:
                    4e:b5:6b:1d:c8:0a:43:aa:3f:ff:8a:4f:9d:03:3a:
                    cb:a1:0f:91:0b:dc:de:2b:4b:68:e1:ca:a3:da:ec:
                    6b:86:62:5c:e4:cb:16:d4:d9:3a:91:dd:ab:b7:23:
                    36:1b:3f:7d:5f:60:9d:22:9f:67:38:13:64:d1:97:
                    1c:a9:ed:0b:db:d3:90:9b:57:8d:1f:77:39:b6:df:
                    6f:3a:af:ac:c6:f1:e8:36:05:ce:c0:81:84:05:4b:
                    d0:62:90:24:4e:c7:e3:94:39:a6:15:41:8c:db:4e:
                    f4:a9:29:5a:cb:f2:be:35:98:9f:f8:22:ab:e9:26:
                    23:89:4b:56:d6:9c:56:dc:08:3b:c2:12:20:70:73:
                    38:85:24:f9:2a:33:07:20:9e:c1:94:51:6c:09:6e:
                    2e:0d:28:6d:42:df:d3:ee:05:7b:17:d6:12:18:95:
                    da:0b:d7:ef:7c:23:10:48:85:95:e1:aa:88:86:d5:
                    86:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EB:A2:FC:2A:61:EB:52:68:9F:14:3B:BD:9D:D2:6B:BD:4C:0E:6D:40
            X509v3 Authority Key Identifier:
                keyid:3C:E5:9A:22:55:B0:F6:DB:40:FE:D1:C9:7D:0E:B3:93:55:0A:FA:A5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/2vPKgoXhoVNBNfX4H2REEFZ1PVmF8R8XmU8q1UUdimGb/0/3CE59A2255B0F6DB40FED1C97D0EB393550AFAA5.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/3CE59A2255B0F6DB40FED1C97D0EB393550AFAA5.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/2vPKgoXhoVNBNfX4H2REEFZ1PVmF8R8XmU8q1UUdimGb/0/34352e3137342e3139382e302f32342d3234203d3e20323731353939.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.174.198.0/24

    Signature Algorithm: sha256WithRSAEncryption
         9b:d9:a5:7c:71:7d:c5:dd:ae:8b:ef:ce:74:52:3f:16:6f:66:
         b8:70:2c:94:8c:42:1d:22:c4:18:97:df:bf:59:7c:dc:a8:20:
         cb:db:a1:9c:b9:3c:45:29:0a:85:69:19:57:17:0e:53:45:3b:
         2f:58:c6:1d:60:91:9f:a8:14:d0:8b:31:dd:19:3d:94:90:12:
         33:3a:c9:1c:d9:05:3f:66:f6:29:01:4f:c5:fd:f2:ac:9b:d8:
         68:9f:58:b1:44:25:12:9a:35:22:af:a7:c3:88:4b:31:43:16:
         4b:52:06:01:86:2c:a0:6c:3b:26:ed:3b:e4:46:ac:5f:ce:25:
         ea:45:1e:75:de:8a:ca:2f:43:12:cb:a2:47:5d:c0:56:25:20:
         5e:70:69:15:fa:f9:1a:cb:e8:f0:20:77:40:49:0b:5c:3e:23:
         9d:84:dd:10:7d:a2:79:81:24:74:01:e6:91:ad:f1:f3:15:5b:
         54:72:93:2e:4a:27:a9:fa:77:ac:7e:dd:0f:87:c3:cd:fd:c2:
         5c:1a:e3:88:07:1a:3e:75:11:a4:1c:ab:09:90:69:f4:a8:56:
         81:85:a2:ea:62:6d:fa:ac:68:80:48:a7:00:3d:fe:e4:84:90:
         23:bc:1e:07:db:e6:1f:b5:e7:ee:fa:d8:86:11:93:5e:15:0f:
         74:38:20:e5
-----BEGIN CERTIFICATE-----
MIIFRzCCBC+gAwIBAgIUdajBtbkYYja5IjiX1/BS4b7yzeQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoM0NFNTlBMjI1NUIwRjZEQjQwRkVEMUM5N0QwRUIzOTM1
NTBBRkFBNTAeFw0yNDAzMjgyMTU5NTNaFw0yNTAzMjcyMjA0NTNaMDMxMTAvBgNV
BAMTKEVCQTJGQzJBNjFFQjUyNjg5RjE0M0JCRDlERDI2QkJENEMwRTZENDAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCizH4QoH0TSordXQ8tqdqStbLC
bc9gGrRwEFAhJVzKCiGE4uvHGKn3HdyEbSkh+rwBIseesw4i2zwXSgnC3mI5Nfs7
kR2f4wRh2U61ax3ICkOqP/+KT50DOsuhD5EL3N4rS2jhyqPa7GuGYlzkyxbU2TqR
3au3IzYbP31fYJ0in2c4E2TRlxyp7Qvb05CbV40fdzm23286r6zG8eg2Bc7AgYQF
S9BikCROx+OUOaYVQYzbTvSpKVrL8r41mJ/4IqvpJiOJS1bWnFbcCDvCEiBwcziF
JPkqMwcgnsGUUWwJbi4NKG1C39PuBXsX1hIYldoL1+98IxBIhZXhqoiG1YaNAgMB
AAGjggJRMIICTTAdBgNVHQ4EFgQU66L8KmHrUmifFDu9ndJrvUwObUAwHwYDVR0j
BBgwFoAUPOWaIlWw9ttA/tHJfQ6zk1UK+qUwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vMnZQS2dvWGhvVk5CTmZYNEgyUkVFRloxUFZtRjhSOFhtVThxMVVVZGlt
R2IvMC8zQ0U1OUEyMjU1QjBGNkRCNDBGRUQxQzk3RDBFQjM5MzU1MEFGQUE1LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8wLzNDRTU5QTIyNTVCMEY2REI0
MEZFRDFDOTdEMEVCMzkzNTUwQUZBQTUuY2VyMIGuBggrBgEFBQcBCwSBoTCBnjCB
mwYIKwYBBQUHMAuGgY5yc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzJ2UEtnb1hob1ZOQk5mWDRIMlJFRUZaMVBWbUY4UjhYbVU4cTFVVWRpbUdiLzAv
MzQzNTJlMzEzNzM0MmUzMTM5MzgyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjM3
MzEzNTM5Mzkucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUH
AQcBAf8EEDAOMAwEAgABMAYDBAAtrsYwDQYJKoZIhvcNAQELBQADggEBAJvZpXxx
fcXdrovvznRSPxZvZrhwLJSMQh0ixBiX379ZfNyoIMvboZy5PEUpCoVpGVcXDlNF
Oy9Yxh1gkZ+oFNCLMd0ZPZSQEjM6yRzZBT9m9ikBT8X98qyb2GifWLFEJRKaNSKv
p8OISzFDFktSBgGGLKBsOybtO+RGrF/OJepFHnXeisovQxLLokddwFYlIF5waRX6
+RrL6PAgd0BJC1w+I52E3RB9onmBJHQB5pGt8fMVW1Ryky5KJ6n6d6x+3Q+Hw839
wlwa44gHGj51EaQcqwmQafSoVoGFoupibfqsaIBIpwA9/uSEkCO8Hgfb5h+15+76
2IYRk14VD3Q4IOU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:24 2024 by rpki-client on console-fra.rpki-client.org