Route Origin Authorization

$ rpki-client -vvf rpki-repo.registro.br/repo/3mJW9b3ywV2jMsRMX5RV2R93AVf727LCgjUDsjhZpJRT/0/323830343a383666343a343030303a3a2f33342d3334203d3e20323732363737.roa
File:                     323830343a383666343a343030303a3a2f33342d3334203d3e20323732363737.roa (raw, json)
Hash identifier:          ZL+MTp8XvkofGHOtThIaFPs/nXLuJTGhGMs7qnP/AUI=
Subject key identifier:   A7:6C:A6:F7:AE:3D:C4:FF:5F:77:F0:E7:BC:EE:D0:C7:82:5F:F1:8C
Certificate issuer:       /CN=0504345023EFC15C3D01D89B97881FD18D235AA8
Certificate serial:       34C6D5354B42D5C8679C689EFB14B5774196B67E
Authority key identifier: 05:04:34:50:23:EF:C1:5C:3D:01:D8:9B:97:88:1F:D1:8D:23:5A:A8
Authority info access:    rsync://rpki-repo.registro.br/repo/nicbr_repo/0/0504345023EFC15C3D01D89B97881FD18D235AA8.cer
Subject info access:      rsync://rpki-repo.registro.br/repo/3mJW9b3ywV2jMsRMX5RV2R93AVf727LCgjUDsjhZpJRT/0/323830343a383666343a343030303a3a2f33342d3334203d3e20323732363737.roa
Signing time:             Thu 22 Feb 2024 20:56:31 +0000
ROA not before:           Thu 22 Feb 2024 20:51:31 +0000
ROA not after:            Thu 20 Feb 2025 20:56:31 +0000
asID:                     272677
IP address blocks:        2804:86f4:4000::/34 maxlen: 34

Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            34:c6:d5:35:4b:42:d5:c8:67:9c:68:9e:fb:14:b5:77:41:96:b6:7e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0504345023EFC15C3D01D89B97881FD18D235AA8
        Validity
            Not Before: Feb 22 20:51:31 2024 GMT
            Not After : Feb 20 20:56:31 2025 GMT
        Subject: CN=A76CA6F7AE3DC4FF5F77F0E7BCEED0C7825FF18C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e0:b5:9c:3f:c6:a5:b9:3f:2f:32:2b:82:5f:30:
                    aa:28:05:7d:12:fd:da:0d:92:9e:01:6d:2c:9f:4c:
                    f2:7a:2f:47:4e:83:a9:01:c3:7c:68:9e:94:e4:2c:
                    44:20:96:11:d7:1a:31:74:07:e8:f6:a7:d5:ab:ec:
                    2c:ad:58:8b:ce:42:51:75:a2:63:b2:7d:05:ce:09:
                    5e:3f:20:07:82:b9:25:59:5c:2d:ca:60:5b:f3:7d:
                    55:31:db:a3:49:2d:db:3c:e8:e7:b0:f5:d8:4b:81:
                    ae:71:99:be:33:cc:bb:1f:cf:69:43:76:6b:79:d7:
                    97:c7:81:ea:36:dc:d4:47:0c:34:60:4f:7a:3b:f5:
                    6f:89:d0:8e:83:df:53:6b:27:b0:83:72:40:27:b2:
                    50:73:3a:13:8c:94:f8:47:7f:9b:a3:0c:69:22:f6:
                    35:b4:2b:1c:3b:16:5c:5e:18:d3:d1:f2:75:cb:f9:
                    36:6a:48:13:55:69:55:bd:f7:28:ef:51:f8:94:17:
                    3f:35:17:72:f9:fe:ec:17:b7:3e:dc:c1:31:ef:32:
                    53:c2:4e:09:a3:d9:4b:b0:0e:16:2c:cf:cc:2d:df:
                    52:7e:11:8f:fc:97:ed:6e:e3:f8:3f:d2:af:d3:43:
                    f5:c4:dd:10:e8:64:38:9f:10:53:31:30:6d:93:db:
                    a5:ed
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A7:6C:A6:F7:AE:3D:C4:FF:5F:77:F0:E7:BC:EE:D0:C7:82:5F:F1:8C
            X509v3 Authority Key Identifier:
                keyid:05:04:34:50:23:EF:C1:5C:3D:01:D8:9B:97:88:1F:D1:8D:23:5A:A8

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repo.registro.br/repo/3mJW9b3ywV2jMsRMX5RV2R93AVf727LCgjUDsjhZpJRT/0/0504345023EFC15C3D01D89B97881FD18D235AA8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repo.registro.br/repo/nicbr_repo/0/0504345023EFC15C3D01D89B97881FD18D235AA8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-repo.registro.br/repo/3mJW9b3ywV2jMsRMX5RV2R93AVf727LCgjUDsjhZpJRT/0/323830343a383666343a343030303a3a2f33342d3334203d3e20323732363737.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2804:86f4:4000::/34

    Signature Algorithm: sha256WithRSAEncryption
         97:e2:30:02:b6:d8:21:b0:05:bc:2c:a9:86:a9:12:fd:c9:84:
         41:18:21:08:3d:46:96:8e:b9:19:78:83:a5:0e:3f:9e:1e:27:
         06:16:3b:94:ae:92:6a:2a:63:23:ca:27:4f:54:e6:9b:68:c5:
         d1:e5:05:35:16:5f:91:4d:d0:e9:ae:79:95:0a:89:dc:85:6d:
         22:95:3d:a2:7a:17:6a:09:0c:07:06:aa:f6:76:6a:12:1a:21:
         42:29:79:3a:81:98:af:d7:82:2a:4a:ca:7c:61:e6:32:57:87:
         c9:ce:e4:3e:12:e9:9f:1c:e1:af:30:b0:2b:4e:93:2d:11:87:
         c0:36:63:48:70:ac:7b:84:e7:64:aa:5c:b1:d5:24:d2:a9:02:
         a1:65:d5:78:6d:ba:df:d4:cb:fb:5f:49:28:3a:c6:7f:a8:2c:
         7e:2f:90:2e:f7:ad:07:5d:fb:83:b0:35:06:f2:eb:68:b4:62:
         ec:38:31:a2:88:c0:7c:33:56:09:7e:80:f8:97:0a:c4:a3:77:
         1d:6f:49:c8:6c:bf:06:7d:9c:62:f5:d0:c5:a1:bb:01:06:d8:
         5a:32:6c:5f:32:42:6d:44:c9:ab:16:c9:74:0a:43:61:20:d7:
         4a:09:ad:1f:95:74:a2:4d:a6:e3:5a:02:95:27:d5:b6:92:e5:
         10:c1:07:44
-----BEGIN CERTIFICATE-----
MIIFUTCCBDmgAwIBAgIUNMbVNUtC1chnnGie+xS1d0GWtn4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMDUwNDM0NTAyM0VGQzE1QzNEMDFEODlCOTc4ODFGRDE4
RDIzNUFBODAeFw0yNDAyMjIyMDUxMzFaFw0yNTAyMjAyMDU2MzFaMDMxMTAvBgNV
BAMTKEE3NkNBNkY3QUUzREM0RkY1Rjc3RjBFN0JDRUVEMEM3ODI1RkYxOEMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgtZw/xqW5Py8yK4JfMKooBX0S
/doNkp4BbSyfTPJ6L0dOg6kBw3xonpTkLEQglhHXGjF0B+j2p9Wr7CytWIvOQlF1
omOyfQXOCV4/IAeCuSVZXC3KYFvzfVUx26NJLds86Oew9dhLga5xmb4zzLsfz2lD
dmt515fHgeo23NRHDDRgT3o79W+J0I6D31NrJ7CDckAnslBzOhOMlPhHf5ujDGki
9jW0Kxw7FlxeGNPR8nXL+TZqSBNVaVW99yjvUfiUFz81F3L5/uwXtz7cwTHvMlPC
Tgmj2UuwDhYsz8wt31J+EY/8l+1u4/g/0q/TQ/XE3RDoZDifEFMxMG2T26XtAgMB
AAGjggJbMIICVzAdBgNVHQ4EFgQUp2ym9649xP9fd/DnvO7Qx4Jf8YwwHwYDVR0j
BBgwFoAUBQQ0UCPvwVw9Adibl4gf0Y0jWqgwDgYDVR0PAQH/BAQDAgeAMIGUBgNV
HR8EgYwwgYkwgYaggYOggYCGfnJzeW5jOi8vcnBraS1yZXBvLnJlZ2lzdHJvLmJy
L3JlcG8vM21KVzliM3l3VjJqTXNSTVg1UlYyUjkzQVZmNzI3TENnalVEc2poWnBK
UlQvMC8wNTA0MzQ1MDIzRUZDMTVDM0QwMUQ4OUI5Nzg4MUZEMThEMjM1QUE4LmNy
bDB4BggrBgEFBQcBAQRsMGowaAYIKwYBBQUHMAKGXHJzeW5jOi8vcnBraS1yZXBv
LnJlZ2lzdHJvLmJyL3JlcG8vbmljYnJfcmVwby8wLzA1MDQzNDUwMjNFRkMxNUMz
RDAxRDg5Qjk3ODgxRkQxOEQyMzVBQTguY2VyMIG2BggrBgEFBQcBCwSBqTCBpjCB
owYIKwYBBQUHMAuGgZZyc3luYzovL3Jwa2ktcmVwby5yZWdpc3Ryby5ici9yZXBv
LzNtSlc5YjN5d1Yyak1zUk1YNVJWMlI5M0FWZjcyN0xDZ2pVRHNqaFpwSlJULzAv
MzIzODMwMzQzYTM4MzY2NjM0M2EzNDMwMzAzMDNhM2EyZjMzMzQyZDMzMzQyMDNk
M2UyMDMyMzczMjM2MzczNy5yb2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAh
BggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGBigEhvRAMA0GCSqGSIb3DQEBCwUA
A4IBAQCX4jACttghsAW8LKmGqRL9yYRBGCEIPUaWjrkZeIOlDj+eHicGFjuUrpJq
KmMjyidPVOabaMXR5QU1Fl+RTdDprnmVConchW0ilT2iehdqCQwHBqr2dmoSGiFC
KXk6gZiv14IqSsp8YeYyV4fJzuQ+EumfHOGvMLArTpMtEYfANmNIcKx7hOdkqlyx
1STSqQKhZdV4bbrf1Mv7X0koOsZ/qCx+L5Au960HXfuDsDUG8utotGLsODGiiMB8
M1YJfoD4lwrEo3cdb0nIbL8GfZxi9dDFobsBBthaMmxfMkJtRMmrFsl0CkNhINdK
Ca0flXSiTabjWgKVJ9W2kuUQwQdE
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:26 2024 by rpki-client on console-ams.rpki-client.org