Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/3X5ufx2nrRCkv7seYquPGe1cHUSpjY1VYVoR4BgNCEAi/0/3137372e3133372e34382e302f32312d3234203d3e203533303438.roa
File:                     3137372e3133372e34382e302f32312d3234203d3e203533303438.roa (raw, json)
Hash identifier:          T4eADQw7aX+ZtdD5eIdyKgpm+kQlHFKcFcjizioB1e8=
Subject key identifier:   D4:FC:B8:6A:DA:61:34:00:7B:EB:BD:91:DA:18:3D:FB:AF:64:DC:60
Certificate issuer:       /CN=E70D2018024CE6AFCA39C3D63C91946107DC165C
Certificate serial:       0A2453D9DEB8D5E620762539A2F0A7B2520D0E9E
Authority key identifier: E7:0D:20:18:02:4C:E6:AF:CA:39:C3:D6:3C:91:94:61:07:DC:16:5C
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/E70D2018024CE6AFCA39C3D63C91946107DC165C.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/3X5ufx2nrRCkv7seYquPGe1cHUSpjY1VYVoR4BgNCEAi/0/3137372e3133372e34382e302f32312d3234203d3e203533303438.roa
Signing time:             Thu 22 Feb 2024 15:29:48 +0000
ROA not before:           Thu 22 Feb 2024 15:24:48 +0000
ROA not after:            Thu 20 Feb 2025 15:29:48 +0000
asID:                     53048
IP address blocks:        177.137.48.0/21 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0a:24:53:d9:de:b8:d5:e6:20:76:25:39:a2:f0:a7:b2:52:0d:0e:9e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=E70D2018024CE6AFCA39C3D63C91946107DC165C
        Validity
            Not Before: Feb 22 15:24:48 2024 GMT
            Not After : Feb 20 15:29:48 2025 GMT
        Subject: CN=D4FCB86ADA6134007BEBBD91DA183DFBAF64DC60
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:c8:0d:87:8a:81:c6:e4:84:8d:a1:1a:67:25:
                    5f:49:e6:17:72:cc:5a:11:6e:30:0f:47:7f:84:03:
                    91:a8:40:a6:98:61:6c:0f:21:a7:a3:64:66:a2:19:
                    ea:43:ee:12:0e:74:60:83:e4:9b:a4:71:a4:ef:14:
                    ed:1e:f8:27:6d:5b:4b:c7:02:c9:4e:3f:f2:d7:6c:
                    22:09:1f:68:06:8b:e8:06:6e:e8:f5:cf:01:a0:a0:
                    8a:e9:d6:b0:b1:0b:54:71:48:3d:79:1f:01:0a:43:
                    e9:bc:03:cd:81:b0:3a:51:26:98:51:d8:18:8b:80:
                    c3:9c:0d:fb:8a:a5:c2:a3:b0:55:31:45:71:4e:20:
                    12:22:bd:d2:57:07:91:ca:ba:ce:be:09:54:57:0f:
                    d4:0e:fa:3c:e9:e1:36:31:4a:fa:98:5b:64:71:94:
                    e1:bf:56:57:34:fb:64:a3:41:35:8e:ff:8b:e6:a6:
                    9f:f8:6d:20:8e:a6:0b:2d:31:6a:2a:de:57:a5:e2:
                    80:16:91:dc:35:b6:2b:c1:f7:f1:1f:30:00:0d:af:
                    1b:c5:d7:7e:09:f7:bc:21:96:58:88:3f:64:fd:e7:
                    c1:35:80:9e:da:64:6d:51:b8:31:29:c2:09:75:f1:
                    14:68:11:b4:48:f1:39:12:04:a4:92:0f:d9:09:4e:
                    37:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D4:FC:B8:6A:DA:61:34:00:7B:EB:BD:91:DA:18:3D:FB:AF:64:DC:60
            X509v3 Authority Key Identifier:
                keyid:E7:0D:20:18:02:4C:E6:AF:CA:39:C3:D6:3C:91:94:61:07:DC:16:5C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/3X5ufx2nrRCkv7seYquPGe1cHUSpjY1VYVoR4BgNCEAi/0/E70D2018024CE6AFCA39C3D63C91946107DC165C.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/E70D2018024CE6AFCA39C3D63C91946107DC165C.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/3X5ufx2nrRCkv7seYquPGe1cHUSpjY1VYVoR4BgNCEAi/0/3137372e3133372e34382e302f32312d3234203d3e203533303438.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  177.137.48.0/21

    Signature Algorithm: sha256WithRSAEncryption
         42:b9:30:7e:c0:a8:d9:ec:62:2c:9b:ac:ed:87:93:e8:6c:a5:
         98:62:47:8e:c4:d8:61:a9:17:ff:bc:ef:79:65:b4:b1:72:d4:
         a3:74:1c:84:86:a6:e5:bb:21:ab:94:3f:c7:4b:89:01:e6:9a:
         22:44:e6:dd:58:d0:b9:a5:1b:fa:60:ce:bc:05:82:ef:b1:6b:
         eb:2c:d7:54:d2:d6:e0:65:c4:11:4a:92:b5:30:99:4e:4b:de:
         ee:72:74:07:0f:4d:57:d4:ff:6d:b1:15:e9:47:66:96:18:05:
         45:f4:b6:69:3b:3c:b7:04:ca:f5:9c:84:57:e9:ca:3d:7f:b9:
         9d:10:78:11:0b:1e:4f:fb:7d:dd:86:ee:56:3b:25:9a:10:8b:
         b2:10:80:ef:b7:6c:85:81:ef:14:42:c6:dc:8e:f5:a1:db:89:
         34:17:f1:02:22:f6:fd:50:de:0b:5f:67:4b:99:2c:1f:cc:bf:
         10:8c:22:9d:c4:f2:d2:90:ee:00:b0:c4:6c:f4:62:fd:61:99:
         f1:d9:63:31:a3:7f:44:4c:da:b7:4c:e5:26:c2:c6:23:40:88:
         5c:1c:05:26:9c:75:bf:46:92:59:08:ea:28:52:4c:8e:7c:21:
         48:ca:fc:c5:29:9e:26:68:10:65:e5:ce:84:31:0f:17:33:63:
         0c:94:d6:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:24 2024 by rpki-client on console-ams.rpki-client.org