Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/3mJW9b3ywV2jMsRMX5RV2R93AVf727LCgjUDsjhZpJRT/0/3137392e36332e38352e302f32342d3234203d3e20323732363737.roa
File:                     3137392e36332e38352e302f32342d3234203d3e20323732363737.roa (raw, json)
Hash identifier:          KzfvyCwxblrrKZIQ3Yy/NwRo2TbcFGka7ZSW1Qpkw+k=
Subject key identifier:   8B:6A:B7:91:DE:F5:27:57:98:D0:DC:A9:A3:AF:65:AB:3B:E1:1F:CD
Certificate issuer:       /CN=0504345023EFC15C3D01D89B97881FD18D235AA8
Certificate serial:       6B4D931973E4AC1CFA5F2D0D8EFED4CA5F5F7A2C
Authority key identifier: 05:04:34:50:23:EF:C1:5C:3D:01:D8:9B:97:88:1F:D1:8D:23:5A:A8
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/0504345023EFC15C3D01D89B97881FD18D235AA8.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/3mJW9b3ywV2jMsRMX5RV2R93AVf727LCgjUDsjhZpJRT/0/3137392e36332e38352e302f32342d3234203d3e20323732363737.roa
Signing time:             Thu 22 Feb 2024 20:56:19 +0000
ROA not before:           Thu 22 Feb 2024 20:51:19 +0000
ROA not after:            Thu 20 Feb 2025 20:56:19 +0000
asID:                     272677
IP address blocks:        179.63.85.0/24 maxlen: 24

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            6b:4d:93:19:73:e4:ac:1c:fa:5f:2d:0d:8e:fe:d4:ca:5f:5f:7a:2c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0504345023EFC15C3D01D89B97881FD18D235AA8
        Validity
            Not Before: Feb 22 20:51:19 2024 GMT
            Not After : Feb 20 20:56:19 2025 GMT
        Subject: CN=8B6AB791DEF5275798D0DCA9A3AF65AB3BE11FCD
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:91:26:81:01:a6:a1:65:ae:99:df:56:ca:66:
                    cf:19:27:f1:19:20:bc:2d:e9:67:a0:36:d0:60:d7:
                    36:d2:04:f9:6b:04:f1:f0:05:fa:d4:78:64:d5:f8:
                    18:ba:b6:96:b9:2c:40:04:ab:21:6c:25:7d:c2:98:
                    75:67:4a:ce:d1:ac:c7:32:2f:f9:49:da:f9:64:1c:
                    cf:32:fb:ff:38:b2:7f:27:66:c9:7f:b7:48:cf:ad:
                    92:12:d6:71:3a:8f:8e:b6:0f:74:64:b8:61:5e:c6:
                    75:2e:ee:60:8d:3e:e5:87:bc:7a:c5:fa:fe:96:f6:
                    be:27:8c:8f:dd:49:7f:50:95:ba:c0:3d:42:3e:1e:
                    24:13:f5:4d:28:19:a8:96:de:e2:68:64:b7:a3:db:
                    ba:19:8f:54:54:fd:af:1a:2d:35:ef:a4:8c:a2:49:
                    11:54:64:57:c6:ae:14:f7:09:8f:24:7b:f9:ee:b2:
                    06:5a:cf:8e:9f:45:c0:0a:b2:35:32:32:1a:de:ff:
                    83:95:09:8d:87:5d:3f:08:a7:13:37:b1:4f:f0:f4:
                    3c:7f:32:bb:c1:7a:26:05:0f:15:52:bc:cf:4c:36:
                    bf:96:69:f4:80:db:c4:03:ba:d2:3e:18:9d:0c:e4:
                    79:ca:1c:00:80:70:1e:68:d2:fd:c9:f4:af:43:0f:
                    13:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8B:6A:B7:91:DE:F5:27:57:98:D0:DC:A9:A3:AF:65:AB:3B:E1:1F:CD
            X509v3 Authority Key Identifier:
                keyid:05:04:34:50:23:EF:C1:5C:3D:01:D8:9B:97:88:1F:D1:8D:23:5A:A8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/3mJW9b3ywV2jMsRMX5RV2R93AVf727LCgjUDsjhZpJRT/0/0504345023EFC15C3D01D89B97881FD18D235AA8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/0504345023EFC15C3D01D89B97881FD18D235AA8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/3mJW9b3ywV2jMsRMX5RV2R93AVf727LCgjUDsjhZpJRT/0/3137392e36332e38352e302f32342d3234203d3e20323732363737.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  179.63.85.0/24

    Signature Algorithm: sha256WithRSAEncryption
         6a:56:3d:1a:b6:41:94:5d:d5:51:a8:69:1b:bd:ff:5c:2c:00:
         08:78:44:71:ad:1c:75:d4:62:19:cc:7a:a6:37:79:ab:03:65:
         bb:41:7b:bf:6f:eb:1c:87:31:da:48:7e:0f:d7:40:d7:9c:9f:
         eb:14:be:bc:18:0b:4b:e1:a5:f0:5f:68:54:bf:3d:84:1c:d6:
         69:cf:fb:fd:1c:29:d6:79:0b:27:d3:d3:82:c0:9c:b3:c6:84:
         25:51:20:98:b5:ef:03:2b:64:fd:50:20:e3:a0:00:14:e7:82:
         0e:14:83:ef:e0:ec:a6:ea:39:1a:79:9d:21:a0:7e:24:e9:ad:
         91:f8:60:25:c5:3d:33:ad:32:2d:85:ef:5d:6f:00:3a:13:c1:
         10:d4:b1:62:67:f6:58:a1:8d:95:8f:1d:66:8c:83:1a:c5:2a:
         88:95:8c:f5:00:87:f9:4e:e2:3f:d0:df:61:79:e6:0d:d2:4a:
         99:71:de:db:61:49:97:69:bb:b5:3b:05:ce:c4:4a:db:7f:2b:
         ae:cf:79:53:2d:13:bb:3d:9e:9b:8a:ea:bb:8a:4c:61:d5:20:
         49:bf:a8:30:47:09:7c:06:93:a4:fe:10:92:27:47:9c:45:15:
         e9:f6:f6:69:0c:c0:14:33:19:a3:b7:cf:27:2c:23:a1:a2:3d:
         16:24:b3:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:28 2024 by rpki-client on console-fra.rpki-client.org